IAS - INFORMATION ASSURANCE AND SECURITY

Question 1

The need to secure the physical location of computer technology from outside threats

Answer 1

Computer Security

Question 2

German code machine Enigma in ____

Answer 2

1930s

Question 3

During these early years infosec was a straightforward process composed predominantly of physical security and simple document classification scheme.

Answer 3

ENIGMA

Question 4

During the cold War, many more mainframe computer were brought online to accomplish more complex and sophisticated tasks.

Answer 4

1960s

Question 5

• He Developed the ARPANET
• Program plan June 3, 1968

Answer 5

Dr. Larry Roberts

Question 6

Is the master document describing a major program.

Answer 6

Program Plan

Question 7

During the next decade ARPANET became more popular and saw wider use increasing the potential of misuse.

Answer 7

1970s and 80s

Question 8

ARPANET Program Plan invented during??

Answer 8

June 3, 1968

Question 9

• Creator of Ethernet
• Identified the fundamentals problems with ARPANET security (1973)

Answer 9

Robert Metcalfe

Question 10

____________ Network security was commonly referred to as “________”.

Answer 10

ARPANET / Network Insecurity

Question 11

What year??

Individual remote site did not have sufficient controls to protect data from unauthorized remote users.

Answer 11

1970s and 80s

Question 12

What year??

Vulnerability of password structure and formats

Answer 12

1970s and 80s

Question 13

what year??

Lack of safety procedures for dial-up connections

Answer 13

1970s and 80s

Question 14

What year??

Phone numbers were widely distributed.

Answer 14

1970s and 80s

Question 15

During ____ the ____ brought connectivity to virtually all computers that could reach a phone line or an internet connected LAN

Answer 15

1990s - Internet

Question 16

What year was the DEFCON conference that was held in Las, Vegas?

White Hats
Black Hats

Answer 16

1993

Question 16

The first global network of networks

Answer 16

Internet

Question 17

Law enforcement and security professionals

Answer 17

White hats

Question 18

Hackers and computer criminals

Answer 18

Black Hats

Question 19

What year??

Internet brings millions of unsecured computer networks.

Answer 19

2000s - Present

Question 20

Awareness of the need to improve InfoSec, as well as realization that InfoSec is important to National Defense

Answer 20

2000s - Present

Question 21

World Trade Centers, resulted in major legislation changes related to computer security

Answer 21

September 11, 2001

Question 22

Protection of ________ and its critical elements, including the systems and hardware that use, store, and transmit information.

Answer 22

Information Security

Question 23

COMPONENT OF INFORMATION SECURITY
(C, D, N) and (C, I, A)

Answer 23

• COMPUTER SECURITY (CONFIDENTIALITY)
• DATA SECURITY (INTEGRITY)
• NETWORK SECURITY (AVAILABILITY)

Question 24

The **industry standard for computer** security since the development of the mainframe.

Answer 24

CIA Triad

Question 24

Data is **protected from disclosure or exposure ** to unauthorized individual or systems

Answer 24

Confidentiality

Question 24

Data is whole **complete and uncorrupted**

Answer 24

Integrity

Question 25

Data is **accessible and correctly formatted** for use without interference or obstruction

Answer 25

Availability

Question 26

# COMPONETS OF AN INFORMATION SYSTEM An IS **includes application (programs)** OS, and assorted command utilities.

Answer 26

Software

Question 27

is perhaps the **most difficult** IS components to secure

Answer 27

Software

Question 28

**carries the lifeblood of information** through an organization

Answer 28

Software

Question 29

The **physical technology** that houses and executes the software, stores and transport data, and provides interfaces for the entry and removal of information from the system.

Answer 29

Hardware

Question 30

Policies deal with hardware as a physical asset from harm or theft.

Answer 30

Physical Security

Question 31

Data stored, processed, and transmitted by a computer system must be protected.

Answer 31

DATA

Question 32

________ is the most valuable asset of an organization and therefore is the main target of intentional attacks

Answer 32

Data

Question 33

Though often overlooked in computer security considerations, **people** have **always been a threat to information system.**

Answer 33

People

Question 34

Are written instructions for accomplishing a specific task. When a unauthorized user obtains an organization procedures, it poses a threat to the integrity of the information.

Answer 34

Procedures

Question 34

When ** information are connected to each other** to form LANs, and these LANs are connected to other networks such as the internet, new security challenges rapidly emerge.

Answer 34

Network