infoasec3 Flashcards
(34 cards)
Security Principles
Confidentiality
Integrity
Availability
Information States
Data at rest or in storage
Data in transit
Data in process
Countermeasures
Technologies
Policies and Practice
People
Methods use to ensure confidentiality
data encryption, authentication and access control
AAA
Authentication, Authorization, and Accounting
verifies the identity of a user to prevent unauthorized access
Authentication
determines which resources users can access
Authorization
it keeps track of what users do including what they access n shi
Accounting
the appopriate use of data
privacy
it is the accuracy, consistency, and trustworthiness of data
integrity
CIA TRIAD
CONFFIDENTIALITY
INTEGRITY
AVAILABILITY
it is the principle used to describe the need to maintain availability of information systems and services at all times.
Data availability
a type of storage devices that retains the data when user or process is using it
data at rest
it is a storage connected to a computer. ex hard drive or usb flashdrive
Direct-attached storage
it uses multiple hard drives in an array
Redundant array of independent disks
it is a storage device connected to a network
Network attached storage
it is an network based storage system
Storage area network
it is sending info from one device to another
data transmission
uses removable media to physically move data from one computer to another
sneaker net
uses cables to transmit data
wired networks
uses the airwaves to transmit data
wireless networks
this refers to data during initial input
data in process
this includes programs and services that protect operating systems, databases and other services
software safeguards
appliances that are installed iwthin the network faculties
hardware based technology