Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

ITEC85A - Information Assurance And Security 1 > Lecture 2B > Flashcards

Lecture 2B Flashcards

(62 cards)

Start Studying
1
Q

?

is “the ownership of ideas and control over the tangible or virtual representation of those ideas”

Compromises to Intellectual property

A

Intellectual property

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

?, ??, ???, ????

(4) Many organizations are in business to create intellectual property

Compromises to Intellectual property

A
  • trade secrets
  • copyrights
  • trademarks
  • patents
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Most common IP breaches involve ?

Compromises to Intellectual property

A

software piracy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

?, ??

(2) Watchdog organizations investigate:

Compromises to Intellectual property

A
  • Software & Information Industry Association (SIIA)
  • Business Software Alliance (BSA)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Enforcement of ? has been attempted with technical security mechanisms

Compromises to Intellectual property

A

copyright

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

?

??, or acts of God are dangerous because they are unexpected and can occur with very little warning

Compromises to Intellectual property

A
  • Forces of nature
  • Force majeure
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

?

Can disrupt not only the lives of individuals, but also the storage, transmission, and use of information

Compromises to Intellectual property

A

Forces of nature

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

?

Include fire, flood, earthquake, and lightning as well as volcanic eruption and insect infestation

Compromises to Intellectual property

A

Forces of nature

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

?

Since it is not possible to avoid many of these threats, management must implement controls to limit damage and also prepare contingency plans for continued operations

Compromises to Intellectual property

A

Forces of nature

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

?

occur when a manufacturer distributes to users equipment containing flaws

Compromises to Intellectual property

A

Technical hardware failures or errors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

?

These defects can cause the system to perform outside of expected parameters, resulting in unreliable service or lack of availability

Compromises to Intellectual property

A

Technical hardware failures or errors

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Some errors are ?, in that they result in the unrecoverable loss of the equipment

Technical hardware failures or errors

Compromises to Intellectual property

A

terminal

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Some errors are ?, in that they only periodically manifest
themselves, resulting in faults that are not easily repeated

Technical hardware failures or errors

Compromises to Intellectual property

A

intermittent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

This category of threats comes from purchasing software with ?

Technical hardware failures or errors

Compromises to Intellectual property

A

unrevealed faults

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Large quantities of computer code are written, debugged, published, and sold only to determine that not all ? were resolved

Technical hardware failures or errors

Compromises to Intellectual property

A

bugs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Sometimes, unique combinations of certain software and hardware reveal ?

Technical hardware failures or errors

Compromises to Intellectual property

A

new bugs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Sometimes, these items aren’t errors, but are ? left by programmers for honest or dishonest reasons

Technical hardware failures or errors

Compromises to Intellectual property

A

purposeful shortcuts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

?

When the infrastructure becomes antiquated or outdated, it leads to unreliable and untrustworthy systems

Compromises to Intellectual property

A

Technological Obsolescence

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Management must recognize that when technology becomes outdated, there is a risk of ? integrity to threats and attacks

Compromises to Intellectual property

A

loss of data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Ideally, ? by management should prevent the risks from technology obsolesce, but when obsolescence is identified, management must take action

Compromises to Intellectual property

A

proper planning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

An ? is the deliberate act that exploits vulnerability

Compromises to Intellectual property

A

attack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

It is accomplished by a ? to damage or steal an organization’s information
or physical asset

Compromises to Intellectual property

A

threat-agent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

An ? is a technique to compromise a system

Compromises to Intellectual property

A

exploit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

A ? is an identified weakness of a controlled system whose controls are not present or are no longer effective

Compromises to Intellectual property

A

vulnerability

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
An **?** is then the use of an exploit to achieve the compromise of a controlled system ## Footnote **Compromises to Intellectual property**
attack
26
This kind of attack includes the execution of **?**, **??**, **???**, and **????** with the intent to destroy or steal information ## Footnote **Compromises to Intellectual property**
* viruses * worms * Trojan horses * active web scripts
27
The state of the art in attacking systems in 2002 is the **?** using up to six attack vectors to exploit a variety of vulnerabilities in commonly found information system devices ## Footnote **Compromises to Intellectual property**
multi-vector worm
28
The state of the art in attacking systems in 2002 is the **?** using up to six attack vectors to exploit a variety of vulnerabilities in commonly found information system devices ## Footnote **Compromises to Intellectual property**
multi-vector worm
29
(23) Attack descriptions ## Footnote **Compromises to Intellectual property**
1. IP Scan Attack 2. Web Browsing 3. Virus 4. Unprotected Shares 5. Mass Mail 6. Simple Network Management Protocol 7. Hoaxes 8. Back Doors 9. Password Crack 10. Brute Force 11. Dictionary 12. Denial-of-service (DoS) 13. Distributed Denial-of-service (DDoS) 14. Spoofing 15. Man-in-the-Middle 16. Spam 17. Mail-bombing 18. Sniffers 19. Social Engineering 20. Brick Attack 21. Buffer Overflow 22. Ping of Death Attacks 23. Timing Attack
30
Compromised system **scans random or local range of IP addresses and targets any of several vulnerabilities** known to hackers or left over from previous exploits ## Footnote **Compromises to Intellectual property**
IP Scan and Attack
31
If the **infected system has write access to any Web pages**, it makes all Web content files infectious, so that users who browse to those pages become infected ## Footnote **Compromises to Intellectual property**
Web Browsing
32
Each **infected machine infects certain common executable or script files** on all computers to which it can write with virus code that can cause infection ## Footnote **Compromises to Intellectual property**
Virus
33
**using file shares** to copy viral component to all reachable locations ## Footnote **Compromises to Intellectual property**
Unprotected Shares
34
**sending e-mail infections** to addresses found in address book ## Footnote **Compromises to Intellectual property**
Mass Mail
35
SNMP vulnerabilities used to **compromise and infect** ## Footnote **Compromises to Intellectual property**
Simple Network Management Protocol
36
A more devious approach to attacking computer systems is the transmission of a **virus hoax**, with a real virus attached ## Footnote **Compromises to Intellectual property**
Hoaxes
37
**Using a known or previously unknown and newly discovered access** mechanism, an attacker can gain access to a system or network resource ## Footnote **Compromises to Intellectual property**
Back Doors
38
Attempting to **reverse calculate a password** ## Footnote **Compromises to Intellectual property**
Password Crack
39
The application of computing and network resources to **try every possible combination of options of a password** ## Footnote **Compromises to Intellectual property**
Brute Force
40
The dictionary password attack narrows the field by selecting specific accounts to attack and uses a **list of commonly used passwords (the dictionary)** to guide guesses ## Footnote **Compromises to Intellectual property**
Dictionary
41
**attacker sends a large number of connection or information requests** to a target ## Footnote **Compromises to Intellectual property**
Denial-of-service (DoS)
42
so **many requests are made that the target system cannot handle them** successfully along with other, legitimate requests for service ## Footnote **Compromises to Intellectual property**
Denial-of-service (DoS)
43
**may result in a system crash**, or merely an inability to perform ordinary functions ## Footnote **Compromises to Intellectual property**
Denial-of-service (DoS)
44
an attack in which a **coordinated stream of requests is launched against a target from many locations at the same time** ## Footnote **Compromises to Intellectual property**
Distributed Denial-of-service (DoS)
45
technique used to gain unauthorized access whereby the intruder **sends messages to a computer with an IP address** indicating that the **message is coming from a trusted host** ## Footnote **Compromises to Intellectual property**
Spoofing
46
an **attacker sniffs packets from the network**, modifies them, and **inserts them back into the network** ## Footnote **Compromises to Intellectual property**
Man-in-the-Middle
47
**unsolicited commercial e-mail** - while many consider spam a nuisance rather than an attack, it is emerging as a vector for some attacks ## Footnote **Compromises to Intellectual property**
Spam
48
another form of e-mail attack that is also a DoS, in which an **attacker routes large quantities of e-mail to the target** ## Footnote **Compromises to Intellectual property**
Mail-bombing
49
a program and/or device that **can monitor data traveling over a network** ## Footnote **Compromises to Intellectual property**
Sniffers
50
can be used both for **legitimate network management functions** and for **stealing information from a network** ## Footnote **Compromises to Intellectual property**
Sniffers
51
within the context of information security, the process of **using social skills to convince people to reveal access credentials** or other valuable information to the attacker ## Footnote **Compromises to Intellectual property**
Social Engineering
52
“**?** are the **weakest link**. You can have the best technology; firewalls, intrusion-detection systems, biometric devices ... and somebody can call an unsuspecting employee. That's all she wrote, baby. They got everything.” ## Footnote **Compromises to Intellectual property**
People
53
the best configured firewall in the world can’t stand up to a **well placed brick** ## Footnote **Compromises to Intellectual property**
Brick attack
54
application error occurs when **more data is sent to a buffer than it can handle** ## Footnote **Compromises to Intellectual property**
Buffer Overflow
55
when the **buffer overflows**, the attacker can make the target system execute instructions, or the attacker can take advantage of some other unintended consequence of the failure ## Footnote **Compromises to Intellectual property**
Buffer Overflow
56
Usually the **attacker fill the overflow buffer** with executable program code to elevate the attacker’s permission to that of an administrator ## Footnote **Compromises to Intellectual property**
Buffer Overflow
57
A type of DoS attack. **Attacker creates an ICMP packet** that is larger than the maximum allowed 65,535 bytes ## Footnote **Compromises to Intellectual property**
Ping of Death Attacks
58
The **?** is fragmented into smaller packets and reassembled at its destination. | Ping of Death Attacks ## Footnote **Compromises to Intellectual property**
large packet
59
Destination user cannot handle the reassembled oversized packet, thereby causing the system to **?** | Ping of Death Attacks ## Footnote **Compromises to Intellectual property**
crash or freeze
60
**relatively new**. works by **exploring the contents of a web browser’s cache** ## Footnote **Compromises to Intellectual property**
Timing Attack
61
can allow collection of information on access to password-protected sites ## Footnote **Compromises to Intellectual property**
Timing Attack
62
another attack by the same name involves attempting to **intercept cryptographic elements to determine keys and encryption algorithms** ## Footnote **Compromises to Intellectual property**
Timing Attack

ITEC85A - Information Assurance And Security 1 (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions