Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

1007ICT - Computer Systems and Cyber Security > Cyber Security > Flashcards

Cyber Security Flashcards

(6 cards)

Start Studying
1
Q

What are the three types of security threats? Briefly explain them

CIA triad

A
  1. Confidentiality Threat - Attacks data: Gain unauthorized access to private information
  2. Availablility Threat - Attacks program: Deny access to the system
  3. Integrity Threat - Attacks data and/or program: Intends to the damage/modify the program and/or data
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the eight core cyber security knowledge areas?

A
  1. Data security
  2. Software security
  3. Component security
  4. Connection security
  5. System security
  6. Organisational security
  7. Human security
  8. Societal security
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Security management and operational security… What are they and their significance?

A

Security management is the underlying framework, principles and policies put in place to protect assets. Where operational security are best-practices put in place to help users protect themselves and/or an organisation from security threats. These compliement each other.

E.g. rules/policies about authentication put in place. Best-practice is multi-factor authentication

Security Management: Authorisation, authenitcation, system infrastructure management, attack monitoring and backups
Operational Security: Auto-logout, user command logging, multi-factor authentication

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the three authenitcation approaches?

A
  1. Knowledge based
  2. Possesion based
  3. Attribute based
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are the attacks taught for cybersecurity and breifly explain them and link to the three types of threats

There are more than these but these are just the ones taught

A
  1. SQL Poisoning - Injection attack: Input malicious SQL responses into input fields (integrity)
  2. Cross-site scripting - Injection attack: Malicious javascript in the ebpage executes and damages/steals information (integrity/Confidentiality)
  3. Session-hijacking attack - MinM attack: Steal session cookie to impersonate an authorised user (confidentiality)
  4. DDoS - Denial of Service attack: Distributed DoS affects many stations. Floods server with requests to deny access (availbality)
  5. Brute force - Brute force attack: Repeatedly try to gain access via, for example, password generation (confidentiality)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q
A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

1007ICT - Computer Systems and Cyber Security (10 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions