Fundamentals of Security Flashcards
(21 cards)
Information Security
Protects data from unauthorized access.
Information Systems Security
Protects computers, servers, networks.
CIA Triad
Confidentiality
Integrity
Availability
Non-Repudiation
Guarantees action or event cannot be denied (digital signatures)
CIANA Pentagon
An extension of CIA Triad
Triple A’s
Authentication
Authorization
Accounting
Security Control Categories
Technical
Managerial
Operational
Physical
Security Control Types
Preventative
Deterrent
Detective
Corrective
Compensating
Directive
Zero Trust Model
Trust no one
Control Plane
Adaptive Identity
Data Plane
Establish policy enforcement points
Threat
Anything that causes harm to technology systems
Vulnerability
Any weakness in the system
Risk Management
Finding different ways to minimize likelihood of an outcome
Confidentiality
Protection of information from unauthorized access (Encryption)
Data Masking
Making data inaccessible for unauthorized users
Physical Security Measures
Ensure confidentiality of physical data (paper records)
Integrity
Ensures Data accuracy (Hashing)
Availability
Ensures information is available when needed by authorized users (Redundancy)
Authentication
Ensures Individuals are who they say they are
5 Types Of Factors
Knowledge- Something you know
Possession- Physical item
Inherence- Unique characteristic to authenticate
Action-Unique action to prove who they are
Location- Certain geographic
