Domain 3 - Security Architecture and Engineering Flashcards

Question

Private cloud

Answer 1

cloud environment in your own datacenter, legacy support (can support older versions vs public which will typically always be latest versions), control, compliance

Answer 2

combines public and private allowing every app to run in the right location, connect the 2 clouds with VPN, flexible in legacy, compliance, and scalability

Answer 3

cloud access security broker, security policy enforcement solution, ie ensuring specific users only use the applications we have in place, prevent sensitive information from being shared externally, solves problem of shadow IT

Answer 4

development of new kinds of cryptographic approaches that can be implemented using todays conventional computers, but will be resistant to quantum computing attacks of the future

Answer 5

bulk encryption, fast, holds up well to quantum, uses 1 shared secret key

Answer 6

quantum computer speeds up attacks to halve the key length, 256 bit key is as strong against quantum as 128 bit

Answer 7

quantum can easily break all commonly used PK alogorithms, RSA is vulnerable, Elliptic curve is vulnerable, Lattice offers some resistance against quantum

Answer 8

makes up most publications on post-quantum cryptography, QUANTUM RESISTANT

Answer 9

symmetric key, one character at a time

Answer 10

crypto key and algo are applied to a block of data at once as a group

Answer 11

replace each character with a different character

Answer 12

rearrange the letters of a plaintext message to form ciphertext

Answer 13

random bit string (nonce) that is XORed with the message to reduce predictability and repeatability, same length as the block size or as large as the encryption key

Answer 14

similar STREAM ciphers, difference is key length, caeser=1, vigenere=longer key like a word/ sentence, one-time pad=same length as the message

Answer 15

key must be generated randomely, as long as message to be encrypted, pads be protected against disclosure, pad must be used one-time then discarded

Answer 16

communication concept, specific type of info is exchanged but no real data is transferred, ie digital signature and digital certificate, enables one to prove knowledge of a fact without revealing the fact

Answer 17

information/ priv required to perform an operation is divided among multiple users, ensures no single person has sufficient priv to compromise security, role seperation

Answer 18

aka work factor, measure strength of crypto system by measuring cost/ time to decrypt, work function rating typically represents the amount of time to complete a brute-force attack against a crypto system, TIME AND EFFORT TO BREAK A PROTECTIVE MEASURE

Answer 19

crypto keys provide security to crypto system, modern systems utilize keys of at least 128 bits

Answer 20

shared secret key, faster, lacks support for scalability/ easy key distro/ nonrepudiation AES > block > 128 Blowfish > 64 DES > block > 64 > weak 3DES > block > 64 > moderate RC4 > stream cipher RC5 > RSA block mode cipher > 32/63/128 > VERY strong Skipjack > 64 Twofish > 128

Answer 21

PKI for communication between parties, supports scalability, easy key distribution, and nonrepudiation, public and private key pairs, stronger than symmetric, encrypt with recipients public key, digital signature signed with own private key RSA > key transport > 512 > strong Diffie Hellman > key exchange > moderate El Gamal > key exchange > very strong ECC > elliptic curve > very strong

Answer 22

DES/3DES mode simplest and least secure, 64-bit blocks, easy to break

Answer 23

DES/3DES mode each block of unencrypted text is XORed w/ block of ciphertext immediately preceding. Decryption process simply decrypts ciphertext and reverse the XOR operation,

Answer 24

streaming version of CBC, works on data in real time, uses chaining so errors propogate

Answer 25

operates similar to CFB but XORs plaintext with a seed value, no chaining function so errors do not propogate

Answer 26

incrementing value instead of a seed, errors do not propogate

Answer 27

exclusiveOR, flipping bits in a simple systemic fashion, when values match = 1, when values don't match = 0.

Answer 28

weakness where plaintext message generates identical ciphertext message using same algo but different keys, similar to hash collision, same reason why MD5 is no longer used

Answer 29

allow input of any length, provide fixed length output, easy to compute hash function, must be irreversible, must be collision free. MD5 not used anymore, sha-256 is the standard HMAC - variable hash value length > very strong MD5 > 128 > weak SHA1 > 160 > weak SHA2 > 256 > strong > current standard SHA3 > 384 > strong SHA5 > 512 > strong

Answer 30

random data added before hashing, reduces effectiveness of rainbow table attacks`

Answer 31

uses SHA-1, SHA-2 (must use SHA-256 these days), and SHA-# message digest functions, works with Digital signature algo (DSA), Rivest, Shamir, Adleman (RSA) algo, and Eliptic Curve DSA (ECDSA) algo, FIPS-186-4 (digital signature standard)

Answer 32

Certificate authorities (CAs) generate digital certificates containing public keys of system users, Users then distribute certificates to people with whom they want to communicate, recipients verify a certificate using CAs public key, used for web/ network/ email security

Answer 33

standards for encrypted messages include S/MIME and Pretty Good Privacy (PGP)

Answer 34

standard is HTTP over TLS (HTTPS), this has replaced SSL

Answer 35

Ipsec is standard

Answer 36

secure communication over IP, transport mode or tunnel mode, establish direct communication between computers or over VPN, windows OS can Ipsec between computers, uses 2 protocols - Authentication header (AH) and encapsulating security payload (ESP)

Answer 37

exploits protocols using 2 rounds of encryption

Answer 38

fools both parties into communicating with the attacker instead of directly with each other

Answer 39

attempts to find collisions in hash functions

Answer 40

attempt to reuse authentication requests

Answer 41

allows content owners to enforce restrictions, common in entertainment ie music/ movies/ books, occasionally found in enterprise to protect sensitive info

Answer 42

most famous public key crypto system

Answer 43

Public key cryptosystem, Based on Diffie-Hellman key exchange, less common than RSA

Answer 44

public key cryptosystem, provides more security than other algos with same length key

Answer 45

formalize security policy, implemented by enforcing integrity, confidentiality, or other controls, lay out broad guidelines (not specific), up to the developer to decide how models will be integrated into specific designs, map abstract statements into sec policy, determines what subjects can access system and what objects they will have access to

Answer 46

describes rules for read, subject cannot read data at a higher classification level (no read up)

Answer 47

describes rules for write

Answer 48

rules around invocation (calls), such as to subjects

Answer 49

system that is always secure no matter what state its in, based on finite state machine (FSM), "state" is a snapshot of a system at a moment in time, all state transitions must be evaluated, if each transition results in a secure state then the system is a "secure state machine",

Answer 50

focuses on flow of information, Biba and Bell-Lapadula

Answer 51

prevent info flow from high security to low security level, no read up no write down, CONFIDENTIALITY, government (DoD), uses mandatory access control (MAC) to enforce DoD multilevel sec policy, simple security property and star * sec property, no read up no write down, lattice based

Answer 52

focuses on flow from low to high security level, INTEGRITY, no read down no write up, simple integrity property (no read down), star * integrity property (no write down), lattice based, invocation property prohibits subject from invoking subject at a higher integrity level

Answer 53

how actions of a subject at a higher security level affect the system or actions of a subject at a lower security level, ensures that actions of different objects/ subjects arent seen by/ interfere with other objects/ subjects on the same system

Answer 54

based on interaction between objects (resources, computers, and applications) and subjects (individuals, groups, organizations), used to define levels of security that an object may have and that a subject may have access to

Answer 55

access control triple, INTEGRITY, uses security LABELS to grant access, constrained data item (CDI), unconstrained data item (UDI), integrity verification procedure (IVP), Transformation procedures (TPs), access control triplet!!

Answer 56

THE non-interference model, INTEGRITY

Answer 57

preventing interference (Information flow and SMM)

Answer 58

Chinese wall, CONFIDENTIALITY, prevent conflict of interest problems

Answer 59

employs a directed graph, CONFIDENTIALITY, 4 operations (take, grant, create, and revoke)

Answer 60

Clark Wilson model, any data item whose integrity is protected by the sec model

Answer 61

Clark Wilson model, any data item that is not controlled by the sec model

Answer 62

Clark Wilson model, scans data items and confirms integrity

Answer 63

Clark Wilson model, procedures that are allowed to modify a constrained data item (CDI)

Answer 64

authenticated principal (subjects/ users) > programs (transformational procedures) > data items (Objects/ UDIs/ CDIs), refers to relationship between users, programs and a set of data items, used in Clark Wilson model

Answer 65

protections rules where each object has an owner and a controller, focused on secure creation and deletion of both subjects and objects, 8 primary protection rules that define the boundaries of certain secure actions, securely create object/ subject, securely delete object/ subject, securely provide the read/ grant/ delete/ transfer access right

Answer 66

clearance that permits access to ALL info, approval for ALL info, valid need-to-know for ALL info

Answer 67

can process info at different levels even when all system users do not have required sec clearance

Answer 68

each user must have valid clearance, access approval for ALL info, and valid need-to-know for SOME info on a system. Offers most GRANULAR control over resources and users of these models

Answer 69

one step further than system high, each user must have valid clearance, access approval for ALL INFO processed by a system, but requires valid need to know for ALL INFO they will have access to on the system

Answer 70

combo of hardware, software, and controls that work together to form a "trusted base" that enforces sec policy, subset of the complete information system, portion that can be trusted to adhere/enforce sec policy, separated by a security perimeter from the untrusted parts of the system, creates secure channels to communicate w/ rest of system

Answer 71

logical part of TCB that confirms whether subject has right to use a resource prior to granting access, ENFORCES ACCESS CONTROL

Answer 72

collection of TCB components that implement the functionality of the reference monitor, IMPLEMENTS ACCESS CONTROL

Answer 73

enable objective evaluation to validate a product/ system satisfies a defined set of sec requirements, gold standard, has replaced BOTH TCSEC and ITSEC 1. description of assets 2 identification of threats 3 analysis and rating of threats 4 determination of sec operations 5 selection of sec functional requirements levels 1 through 7 vary from minimal/no protection up to verified security design

Answer 74

flavor of common criteria (ISO-IEC 15408), black box

Answer 75

flavor of common criteria (ISO-IEC 15408), white box, see chart below!! White box

Answer 76

set of criteria for evaluation computer sec within products and systems, REPLACED BY COMMON CRITERIA

Answer 77

represents initial attempt to create sec evaluation criteria in Europe. ITSEC uses 2 scales to rate functionality and assurance, REPLACED BY COMMON CRITERIA

Answer 78

method to pass info over a path that is not normally used for comms, since its not used it may not be protected by sec controls, i.e. steganography, 2 types: covert timing and covert storage

Answer 79

chip that lives on motherboard, storage/ management of keys used for disk encryption, provides OS with access to keys but prevents drive removal and data access

Answer 80

enforces access policy determined by the system not the object owner, relies on classification labels that are representative of sec domains and realms, every object/ subject has one or more labels, labels are predefined and system determines access based on labels

Answer 81

classification labels are assigned in an ordered structure from low to medium to high security, type of MAC

Answer 82

requires security clearances over compartments/ domains instead of objects, type of MAC

Answer 83

contains levels with compartments that are isolated from the rest of the sec domain, combines both hierarchical and compartmentalized environments so that sec levels have sub compartments, type of MAC

Answer 84

permits owner of an object to control/ define its accessibility, because the owner has full control by default, at the discretion of the owner

Answer 85

enables enforcement of system-wide restrictions that override object specific access control

Answer 86

well-defined collection of named job roles to endow each one with specific permissions, ensures users in each role have access to get their jobs done, i.e. global admin/ security reader/ normal user

Answer 87

technical evaluation of each part of a comp system to assess its alignment with sec standards

Answer 88

formal acceptance of certified configuration from a designated authority

Answer 89

designed using industry standards, easy to integrate with other open systems

Answer 90

proprietary hardware and software, specifications are not normally published, harder to integrate with other systems

Answer 91

restricts process to reading from and writing to certain memory locations

Answer 92

are the limits of memory a process cannot exceed when reading or writing

Answer 93

mode a process runs in when it is confined through the use of memory bounds

Answer 94

something you know (pin or password), something you have (trusted device), something you are (biometric)

Answer 95

process of proving that you are who you say you are, IDENTITY

Answer 96

act of granting an authenticated party permission to do something, ACCESS

Answer 97

simultaneous execution of more than one application on a comp and is managed by the OS

Answer 98

permits multiple concurrent tasks to be performed within a single process

Answer 99

use of more than one processor to increase compute power

Answer 100

similar to multitasking, takes place on mainframe systems and requires specific programming, MULTITASKING FOR MAINFRAME

Answer 101

operate at only one security level at a time vs multiple sec levels

Answer 102

apps operate in a limited instruction set environment known as user mode, normal end user operations

Answer 103

controlled ops are performed in privileged mode aka system mode, kernel mode, supervisory mode

Answer 104

contents burned in at factory, read only

Answer 105

static RAM (SRAM) uses flip flops, dynamic RAM (DRAM) uses capacitors

Answer 106

programmable chip similar to ROM, subtypes: erasable (EPROM) for overwriting with unclassified data, Ultraviolet (EPROM) uses UV light to erase, Electronically erasable PROM (EEPROM) uses electrical voltage to erase

Answer 107

derivative of EEPROM, nonvolatile, can be electronically erased and rewritten

Answer 108

same as memory

Answer 109

consists of magnetic, flash, and optical media that must first be read into primary memory before the CPU can use the data, 3 SECURITY ISSUES: removable media can be used to steal data ie USB drives, access controls and encryption must be applied to protect data, data can remain after deletion/ formatting

Answer 110

devices can be read at any point

Answer 111

require scanning through all the data physically stored before the desired location

Answer 112

software stored on a ROM chip containing basic instructions to start computer, provide OS instructions in peripherals like printers/ keyboards etc

Answer 113

ensures that individual processes can only access their own data

Answer 114

creates different realms of security within a process and limits comms between them

Answer 115

creates a black box interface for programmers to use without requiring knowledge of algo/ devices inner workings

Answer 116

prevents info from being read at a different sec level, hardware segmentation enforces this with physical controls

Answer 117

inform design/ development/ implementation/ testing/ maintenance of systems,

Answer 118

processing/ storage are performed over a network connection instaed of locally (Azure, AWS, GCP)

Answer 119

Virtual machine management/ creator/ operator, Type 1 = 1 bare metal, type 2 = runs on a standard OS and the hypervisor is an app ie virtualbox/ vmware workstation

Answer 120

cloud access sec broker, sec policy enforcement, prevents shadow IT, installed on-prem or in the cloud, ensure only secure apps are used in your environment, ensure data is not stored in unauthorized repos (only approved storage locations)

Answer 121

security is provided to an org by an online entity

Answer 122

mobile devices offering app installs, may use on-device or cloud AI processing

Answer 123

class of devices connected to internet to provide automation, remote control, or AI processing in a home/ business ie smart switches/ thermostats/ alexa/ cars

Answer 124

encryption, remote wiping (can be selective for business data), screen locking, GPS, app control, apps and functions NEED TO BE SECURED, concepts include key management/ cred management/ authentication/ geotagging/ encryption/ app whitelisting/ transitive trust and authentication

Answer 125

policy that allows employees to use their personal mobile devices to access business info/ resources, may improve morale but INCREASES SEC RISKS, MDM platforms like intune offer solutions

Answer 126

designed around a limited set of specific functions, in relation to the larger product of which it’s a component, ie motion sensors/ lighting system/ wifi routers/ cash registers

Answer 127

apps/ Oss/ hardware sets/ networks that are configured for a specific need, capability, or function and then set to remain UNALTERED

Answer 128

ensures a minimum number of processes are authorized to run in supervisory/ system mode, also applies to role based access where people are given what they need to do their jobs and not more

Answer 129

separating privs that any one entity can perform, aka role separation

Answer 130

ensures that an audit trail exists

Answer 131

occurs when programmer fails to check size of input data prior to writing data into a specific memory location, overwrites the bounds of memory for which it has been granted access, programmers can also leave backdoors and privileged programs on system after deployment, some systems are susceptible to time-of-check-to-time-of-use (TOTTOU) attacks where state change presents opportunity for attacker to compromise system

Answer 132

where state change presents opportunity for attacker to compromise system

Answer 133

as each one fails they move to the next Deterrence > denial > detection > delay > determine (what is occuring) > decide (whether to aprehend, collect evidence)

Answer 134

(site management/ personnel controls/ awareness training/ emergency response and procedures/facility selection and management/ policy)

Answer 135

(access control/ IDS/ alarms/ CCTV/ fire detection)

Answer 136

for physical security, fences/lights/locks/mantraps/dogs/guards, VERY IMPORTANT, no amount of admin or logical/technical controls can provide adequate security without control over physical environment!!

Answer 137

deter casual trespasser (3-4 feet), too hard to climb easily (6-7 feet), will deter intruders (8 feet+ with barbed wire)

Answer 138

humidity (40-60%, any higher causes corrosion any lower causes static), temps for computers 60-75 F damaged at 175F, storage devices damaged at 100F

Answer 139

blackout=prolonged loss of power, brownout=prolonged low voltage, fault=short loss of power, surge=prolonged high voltage, spike=temporary high voltage, sag=temporary low voltage

Answer 140

8 feet high with 2 feet candle power

Answer 141

Class A (ASH)=common combustibles ie wood/paper=extinguish with water or soda acid, Class B (BOIL)=burning alcohol/oil/other petroleum=extinguish with gas or soda acid NOT water, Class C (CONDUCTIVE)=electrical=extinguish with any type of gas, Class D (DILYTHIUM)=burning metals=extinguished with dry powder, Class K (KITCHEN)=oil or grease=extinguish with wet chemicals

Answer 142

smoke, heat, or flame sensing

Answer 143

smoke damages storage devices, heat damages electronics, suppression mediums can cause short circuits

Answer 144

preaction systems= BEST FOR COMPUTER SYSTEMS closed sprinkler heads, pipe is charged with compressed air instead of water / wet pipe systems=filled with water, dry pipe systems= compressed air until water is needed (useful for parking garages etc where water freezes) / Deluge systems=sprinkler heads are open and larger than dry pipe heads, empty at normal air pressure and water is held back by deluge valve / NOT FOR ELECTRICAL FIRES

Answer 145

more effective than water but shouldn’t be used near people because it removes O2 from the air, Halon is effective but bad for environment and toxic at over 900F, Halon replacements = FM-200, CEA-410, NAF-S-III, FE-13, ARGON, Inergen, Aero-K

Answer 146

common mode noise=difference in power between hot and ground wires of a power source operating electrical equipment, traverse mode noise=difference in power between hot and neutral wires of a power source operating electrical equipment,

Answer 147

generated by electrical applicances/ light sources/ cables/ circuits/ etc.

Answer 148

40 - destroys sensitive circuits 1000 scrambles monitors 1500 destroys hard drive data 2000 abrupt shutdown 4000 printer jam 17000 - permanent circuit damage

Answer 149

○ Electronic combo locks - aka cipher lock, something you KNOW ○ Key card systems - something you HAVE ○ Biometric systems - something you ARE Conventional locks - easily picked/ bumped, keys easily duplicated, least secure, pick and bump resistant exist

Answer 150

visibility, accessibility, effects of natural disasters

Answer 151

understand level of security needed and plan for it before construction begins

Answer 152

should NOT be equal access to all locations, high value assets require restricted access, should be located at CENTER OF PROTECTION, centralized server rooms don’t need to be human compatible

Answer 153

propping doors, bypassing locks or access controls, masquerading is using someone elses ID, guard or monitoring system MUST be present, piggybacking/ tailgating is following someone through secure gateway/ doorway

Answer 154

assign an escort, monitor activities and access, badges

Answer 155

used to retain logs, drive images, VM snapshots, PROTECTIONS INCLUDE: locked cabinets/ safes, dedicated isolated storage facilities, offline storage, access restrictions and activity tracking, hash management and encryption

Answer 156

useful for managing physical access control, may need to be created manually by security guards or automatically by smartcards etc, monitor with CCTV, important to reconstruct the events of an intrusion/ attack

Answer 157

most electronic equipment requires clean power, UPS self charging battery that can supply consistent clean power to sensitive equipment, can supply power for minutes or hours depending on size, then generators after that

Answer 158

does not authenticate users before relaying their message, if internet exposed they are typically quickly exploited

Answer 159

capacitance=electromagnetic field

Answer 160

governs digital certificates and PKI, defines processes used by CAs, international telecommunications union (ITU) standard