domain 1: Access Control

Question 0

access control models

Answer 0

mandatory access control (MAC), discretionary access control (DAC), and role-based access control (RBAC)

Question 1

CIA Triad

Answer 1

confidentiality, integrity, and availability

Question 2

confidentiality

Answer 2

seeks prevent the unauthorized disclosure of information: it keeps data secret.

Question 3

integrity

Answer 3

seeks to prevent unauthorized modification of information.

Question 4

availability

Answer 4

ensures that information is available when needed.

Question 5

identification

Answer 5

.

Question 6

proving an identity claim is called:

Answer 6

authentication

Question 7

describes the actions you can perform on a system once you have identified and authenticated

Answer 7

Authorization.

Question 8

typically accomplished by logging and analyzing audit data

Answer 8

accountability

Question 9

active entity on a data system

Answer 9

subject

Question 10

passive data within the system

Answer 10

object

Question 11

discretionary access control

Answer 11

.

Question 12

mandatory access control

Answer 12

.

Question 13

role-based access control

Answer 13

.

Question 14

false reject rate

Answer 14

.

Question 15

false accept rate

Answer 15

.

Question 16

crossover error rate

Answer 16

.

Question 17

seeks to protect information against unauthorized modification

Answer 17

Data integrity

Question 18

seeks to protect the system such as Windows 2012 server operating system from unauthorized modification

Answer 18

System integrity

Question 19

The CIA Triad may also be described by its opposite

Answer 19

disclosure alteration and destruction

Question 20

AAA

Answer 20

authentication authorization and accountability

Question 21

means a user cannot deny having performed the transaction

Answer 21

non-repudiation

Question 22

means users should be granted the minimum amount of access required to do their jobs but no more

Answer 22

least privilege

Question 23

more granular than least privilege: the user must need to know that specific piece of information before accessing it

Answer 23

need to know

Question 24

applies multiple safeguards (also called controls: measures taken to reduce risk) to protect an asset

Answer 24

defense in depth

Question 25

The primary models are discretionary access control (DAC), mandatory access control (M AC), and nondiscretionary access control.

Answer 25

access control models

Question 26

gives subjects full control of objects they have been given access to, including sharing the objects with other subjects.

Answer 26

discretionary access control (DAC)

Question 27

System enforced access control based on subjects clearance and object's labels.

Answer 27

mandatory access control (M AC)

Question 28

usually focused on preserving the confidentiality of data.

Answer 28

mandatory access control

Question 29

defines how information is accessed on the system based on the role of the subject.

Answer 29

role-based access control (RBAC)

Question 30

A type of nondiscretionary access control because users do not have to discretion regarding the groups of objects they are allowed to access and are unable to transfer text to other subjects.

Answer 30

RBAC

Question 31

another nondiscretionary Access Control model, related to RBAC

Answer 31

task-based access control

Question 32

based on the tasks each subject must perform, such as writing prescriptions, restoring data from backup tape, or opening a helpdesk ticket.

Answer 32

task-based access control

Question 33

uses a series of defined rules restrictions and filters for accessing objects within a system.

Answer 33

rule-based access control system

Question 34

in the form of if/then statements

Answer 34

The rules

Question 35

A proxy firewall that allows users to surf the web with predefined approved content only.

Answer 35

rule-based access control system