WGU D430 FUNDAMENTALS OF
INFORMATION SECURITY EXAM STUDY
GUIDE 2026/2027 COMPLETE QUESTIONS
WITH VERIFIED CORRECT ANSWERS ||
100% GUARANTEED PASS
<NEWEST VERSION>
Define the confidentiality in the CIA triad. - ANSWER✔Our ability to protect data
from those who are not authorized to view it.
Examples of confidentiality - ANSWER✔A patron using an ATM card wants to
keep their PIN number confidential.
An ATM owner wants to keep bank account numbers confidential.
How can confidentiality be broken? - ANSWER✔Losing a laptop
An attacker gets access to info
A person can look over your shoulder
Define integrity in the CIA triad. - ANSWER✔The ability to prevent people from
changing your data and the ability to reverse unwanted changes.
How do you control integrity? - ANSWER✔Permissions restrict what users can
do (read, write, etc.)
,Examples of integrity - ANSWER✔Data used by a doctor to make medical
decisions needs to be correct or the patient can die.
Define the availability in the CIA triad. - ANSWER✔Our data needs to be
accessible when we need it.
How can availability be broken? - ANSWER✔Loss of power, application
problems. If caused by an attacker, this is a Denial of Service attack.
Define information security. - ANSWER✔The protection of information and
information systems from unauthorized access, use, disclosure, disruption,
modification, or destruction in order to provide confidentiality, integrity, and
availability.
Information security - ANSWER✔Keeping data, software, and hardware secure
against unauthorized access, use, disclosure, disruption, modification, or
destruction.
Compliance - ANSWER✔The requirements that are set forth by laws and industry
regulations. Example : HIPPA/ HITECH- healthcare, PCI/DSS- payment card
industry, FISMA- federal government agencies
CIA - ANSWER✔The core model of all information security. Confidential,
integrity and availability
Confidential - ANSWER✔Allowing only those authorized to access the data
requested
,integrity - ANSWER✔Keeping data unaltered by accidental or malicious intent
Availability - ANSWER✔The ability to access data when needed
Parkerian hexad model - ANSWER✔Confidentiality , integrity, availability,
possession/control, authenticity, utility
Possession/ control - ANSWER✔Refers to the physical disposition of the media
on which the data is stored
authenticity - ANSWER✔Allows us to talk about the proper attribution as to the
owner or creator of the data in question
Utility - ANSWER✔How useful the data is to us
Types of attacks - ANSWER✔1- interception
2- interruption
3- modification
4- fabrication
Interception - ANSWER✔Attacks allows unauthorized users to access our data,
applications, or environments. Are primarily an attack against confidentiality
Interruption - ANSWER✔Attacks cause our assets to become unstable or
unavailable for our use, on a temporary or permanent basis. This attack affects
availability but can also attack integrity
, Modification - ANSWER✔Attacks involve tampering with our asset. Such attacks
might primarily be considered an integrity attack, but could also be an availability
attack.
Fabrication - ANSWER✔Attacks involve generating data, processes,
communications, or other similar activities with a system. Attacks primarily affect
integrity but can be considered an availability attack.
Risk - ANSWER✔The likelihood that a threat will occur. There must be a threat
and vulnerability
Threat - ANSWER✔Any event being man-made, natural or environmental that
could damage the assets
Vulnerabilities - ANSWER✔Weakness that a threat event or the threat can take
advantage of
Impact - ANSWER✔taking into account the assets cost
Controls - ANSWER✔The ways we protect assets. Physical, technical/ logical,
and administrative
Physical controls - ANSWER✔Controls are physical items that protect assets.
Think of locks, doors, guards and fences
Technical/ logical controls - ANSWER✔Controls are devices and software that
protect assets. Think of firewalls, av, ids, and ips
INFORMATION SECURITY EXAM STUDY
GUIDE 2026/2027 COMPLETE QUESTIONS
WITH VERIFIED CORRECT ANSWERS ||
100% GUARANTEED PASS
<NEWEST VERSION>
Define the confidentiality in the CIA triad. - ANSWER✔Our ability to protect data
from those who are not authorized to view it.
Examples of confidentiality - ANSWER✔A patron using an ATM card wants to
keep their PIN number confidential.
An ATM owner wants to keep bank account numbers confidential.
How can confidentiality be broken? - ANSWER✔Losing a laptop
An attacker gets access to info
A person can look over your shoulder
Define integrity in the CIA triad. - ANSWER✔The ability to prevent people from
changing your data and the ability to reverse unwanted changes.
How do you control integrity? - ANSWER✔Permissions restrict what users can
do (read, write, etc.)
,Examples of integrity - ANSWER✔Data used by a doctor to make medical
decisions needs to be correct or the patient can die.
Define the availability in the CIA triad. - ANSWER✔Our data needs to be
accessible when we need it.
How can availability be broken? - ANSWER✔Loss of power, application
problems. If caused by an attacker, this is a Denial of Service attack.
Define information security. - ANSWER✔The protection of information and
information systems from unauthorized access, use, disclosure, disruption,
modification, or destruction in order to provide confidentiality, integrity, and
availability.
Information security - ANSWER✔Keeping data, software, and hardware secure
against unauthorized access, use, disclosure, disruption, modification, or
destruction.
Compliance - ANSWER✔The requirements that are set forth by laws and industry
regulations. Example : HIPPA/ HITECH- healthcare, PCI/DSS- payment card
industry, FISMA- federal government agencies
CIA - ANSWER✔The core model of all information security. Confidential,
integrity and availability
Confidential - ANSWER✔Allowing only those authorized to access the data
requested
,integrity - ANSWER✔Keeping data unaltered by accidental or malicious intent
Availability - ANSWER✔The ability to access data when needed
Parkerian hexad model - ANSWER✔Confidentiality , integrity, availability,
possession/control, authenticity, utility
Possession/ control - ANSWER✔Refers to the physical disposition of the media
on which the data is stored
authenticity - ANSWER✔Allows us to talk about the proper attribution as to the
owner or creator of the data in question
Utility - ANSWER✔How useful the data is to us
Types of attacks - ANSWER✔1- interception
2- interruption
3- modification
4- fabrication
Interception - ANSWER✔Attacks allows unauthorized users to access our data,
applications, or environments. Are primarily an attack against confidentiality
Interruption - ANSWER✔Attacks cause our assets to become unstable or
unavailable for our use, on a temporary or permanent basis. This attack affects
availability but can also attack integrity
, Modification - ANSWER✔Attacks involve tampering with our asset. Such attacks
might primarily be considered an integrity attack, but could also be an availability
attack.
Fabrication - ANSWER✔Attacks involve generating data, processes,
communications, or other similar activities with a system. Attacks primarily affect
integrity but can be considered an availability attack.
Risk - ANSWER✔The likelihood that a threat will occur. There must be a threat
and vulnerability
Threat - ANSWER✔Any event being man-made, natural or environmental that
could damage the assets
Vulnerabilities - ANSWER✔Weakness that a threat event or the threat can take
advantage of
Impact - ANSWER✔taking into account the assets cost
Controls - ANSWER✔The ways we protect assets. Physical, technical/ logical,
and administrative
Physical controls - ANSWER✔Controls are physical items that protect assets.
Think of locks, doors, guards and fences
Technical/ logical controls - ANSWER✔Controls are devices and software that
protect assets. Think of firewalls, av, ids, and ips
