Memorization

Question 1

4th Amendment

Answer 1

Basis for privacy rights in the US

Question 2

ALE

Answer 2

Annualized Loss Expectancy
(Cost of losses per year)

SLE x ARO
(Single Loss Expectancy X Annual Rate of Occurrence)

Question 3

ARO

Answer 3

Annual Rate of Occurence

Number of Losses per Year

Question 4

EF

Answer 4

Exposure Factor

Percentage of Asset Value Lost

Question 5

SLE

Answer 5

Single Loss Expectancy
(Cost of One Loss)

AV x EF
(Asset Value X Exposure Factor)

Question 6

AV

Answer 6

Asset Value

Question 7

Risk Formula

Answer 7

Threat X Vulnerability

multiplied by Impact sometimes

Question 8

ECPA

Answer 8

Electronic Communications Privacy Act

Prohibits eavesdropping or interception without distinguishing private/public.

Protects from warrant-less wiretapping.

Question 9

OECD

Answer 9

Organization for Economic Cooperation and Development

Provides for data collection, specifications, and safeguards.

Question 10

1974 US Data Privacy Act

Answer 10

Protection of PII on Federal databases.

Question 11

GLBA

Answer 11

Gramm-Leach-Bliley Act

Credit related PII.

Question 12

ISC2 Code of Ethics Canons

Answer 12

1. Protect society, the commonwealth, and the infrastructure.
2. Act honorably, justly, responsibly, and legally.
3. Provide diligent and competent service to principals.
4. Advance and protect the profession.

Question 13

EU Data Protection Directive

Answer 13

Notify individuals how personal data is collected and used.

Allow Individuals to opt out of sharing data with 3rd parties.

Require individuals to opt into sharing most sensitive personal data.

Providing reasonable protections for personal data.

Question 14

ISO 27005

Answer 14

Risk Management Framework

Question 15

CIA Triangle

Answer 15

Confidentiality
Integrity
Availability

Question 16

IAAA

Answer 16

4 Key Principles of Access Control

Identification
Authentication
Authorization
Accountability

Question 17

Private Sector Classification Labels

Answer 17

Public - used by public or employees
Private - EX. SSN, CC# (could cause damage)
Confidential - Cause exceptionally grave damage
Proprietary - trade secrets
Sensitive - internal business

Question 18

Government Classification Labels

Answer 18

Confidential - Some Damage
Secret - Serious Damage
Top Secret - Grave Damage

Question 19

NIST 800-14

Answer 19

Securing IT Systems

Question 20

NIST 800-88

Answer 20

Guidelines for sanitization and disposal

Question 21

NIST 800-122

Answer 21

PII Definitions

Question 22

NIST 800-145

Answer 22

Cloud Computing

Question 23

International Safe Harbor Tenets

Answer 23

1. Notice
2. Choice
3. Onward Transfer
4. Security
5. Data Integrity
6. Access
7. Enforcement

Question 24

International Common Criteria

Answer 24

EAL1: Functionally Tested
EAL2: Structurally Tested
EAL3: Methodically tested and checked
EAL4: Methodically designed, tested, and received
EAL5: Semi-formally designed and tested
EAL6: Semi-formally verified, designed, and tested
EAL7: Formally verified, designed, and tested

Question 25

3 Digital Signature Standards

Answer 25

DSA - Digital Signature Algorith
RSA - Rivest-Shamir-Adleman cryptosystem
ECDSA - Eliptical Curve Digital Signature Algorithm

Question 26

Fire Type Code A

Answer 26

Ash: Wood or Paper

Suppression Agent = Water or Soda Acid

Question 27

Fire Type Code B

Answer 27

Boils: Gas or Oils

Suppression Agent = Halon, CO2, Soda Acid (NEVER WATER)

Question 28

Fire Type Code C

Answer 28

Current: Electrical Equipment

Suppression Agent = Halon, CO2

Question 29

Fire Type Code D

Answer 29

Ding Ding: Metal

Suppression Agent = Dry Powder

Question 30

Fire Type Code K

Answer 30

Kitchen: Oil or Fat

Suppression Agent = Wet Chemicals

Question 31

Sag

Answer 31

Temporary Low Voltage

Question 32

Spike

Answer 32

Temporary High Voltage

Question 33

Surge

Answer 33

Prolonged High Voltage

Question 34

Fault

Answer 34

Short Loss of Power

Question 35

Brownout

Answer 35

Prolonged Low Voltage

Question 36

Blackout

Answer 36

Prolonged Loss of Power

Question 37

Physical Gate Classes

Answer 37

I : Residential (home use)
II : Commercial/General (parking garage)
III : Industrial/Limited Access (loading docks)
IV : Restricted Access (Airport or Prison)

Question 38

Asymmetric Algorithms

Answer 38

RSA
DSA
ECC
El Gamal
Diffie-Hellman
Knapsack

Question 39

Symmetric Algorithms

Answer 39

DES
3DES
AES
IDEA
Blowfish
Twofish
RC4
SAFER

Question 40

Biba Model

Answer 40

Information Flow Model
Focused on INTEGRITY!

Simple Integrity Axiom = No Read Down
* Integrity Axiom = No Write Up

Question 41

Bell-Lapadula Model

Answer 41

Information Flow Model
Focused on CONFIDENTIALITY!

Simple Security Property = No Read Up
* Security Property = No Write Down

Question 42

Clark-Wilson Model

Answer 42

INTEGRITY Model

Access to objects only through programs

Don’t touch my shit! Untrusted users aren’t allowed to have access to resources without going through a protected application.

Question 43

Graham-Denning Model

Answer 43

Focuses on relationship between subjects and objects.

Question 44

The Ring Model

Answer 44

Ring 0 = Kernel
Ring 1 = Other OS components
Ring 2 = Device Drivers
Ring 3 = User Applications

Question 45

Generic Security Architecture Layers

Answer 45

1. Hardware
2. Kernel and Device Drivers
3. OS
4. Applications

Question 46

EAP

Answer 46

Extensible Authentication Protocol

Authentication at Layer 2

Question 47

LEAP

Answer 47

Significant flaws, should not be used

Question 48

EAP-TLS

Answer 48

Very secure but complex and costly
Uses PKI
Secure Tunnel
Server and client certificate

Question 49

EAP-TTLS

Answer 49

Simplified EAP-TLS
Drops client side cert
Cheaper and less secure

Question 50

PEAP

Answer 50

Protected EAP

Competitor to TTLS

Question 51

TCP 20-21

Answer 51

FTP

Question 52

TCP 22

Answer 52

SSH (SFTP)

Question 53

TCP 23

Answer 53

Telnet

Question 54

TCP 25

Answer 54

SMTP

Question 55

TCP/UDP 53

Answer 55

DNS

Question 56

UDP 67-68

Answer 56

DHCP / BOOTP

Question 57

TCP 80

Answer 57

HTTP

Question 58

TCP 143

Answer 58

IMAP

Question 59

TCP/UDP 389

Answer 59

LDAP

Question 60

TCP 636

Answer 60

LDAP over SSL or TLS

Question 61

UDP 69

Answer 61

TFTP

Question 62

TCP 443

Answer 62

HTTPS

Question 63

TCP 445

Answer 63

AD

Question 64

TCP 1433-1434

Answer 64

Microsoft SQL

Question 65

TCP 3389

Answer 65

RDP (Microsoft Terminal Services)

Question 66

TCP 137
TCP 138
UDP 139

Answer 66

NetBIOS

Question 67

Circuit Level Firewall

Answer 67

Layer 5 (Short Circuit - Johnny 5)

Monitor TCP Handshakes

Question 68

Stateful Inspection Firewall

Answer 68

Layer 5 (5tateful)

Have access to conversation, state table, context of packets

3rd Generation

Question 69

Static Packet Filtering Firewall

Answer 69

Layer 3 (Static Pack3t)

Simple and fast
Rules based on packet source, destination, port, etc.

1st Generation

Question 70

Kernel Proxy / Application Firewall

Answer 70

Layer 7

Control AD; Uses dynamic TCP/IP stacks to inspect network packages

5th Generation

Question 71

PAP

Answer 71

Password Authentication Protocol

Sends Password unencrypted

Question 72

CHAP

Answer 72

Challenge Handshake Authentication Protocol

Used by PPP servers to authenticate remote clients

Encrypts username and password and re-authenticates periodically.

Question 73

OSI : Application Layer

Answer 73

Layer 7

Applications: Web Browser, messaging apps, word processing

Protocols: FTP, SNMP, Telnet, SMTP, HTTPS, SSL, SCP

Question 74

OS : Presentation Layer

Answer 74

Layer 6

Data Conversion and character sets

Translations: ANSI, ASCII
Standards: JPEG, TIFF, MID, HTML, GIF

Question 75

OSI : Session Layer

Answer 75

Layer 5

“Connections between applications”

Protocols: NFS, SQL, RADIUS, PPTP, RPC

Question 76

OSI : Transport Layer

Answer 76

Layer 4

Packet Sequencing, flow control, error detection

Protocols: TCP, UDP, SSL, SSH-2

Question 77

TCP 3 Way Handshake

Answer 77

SYN, SYN/ACK, ACK

Question 78

OSI : Network Layer

Answer 78

Layer 3

Logical/Network Addressing
Routing: Moving data from, a system on one LAN to a system on another LAN.
IP Addresses and Routers

Protocols: IPv4, IPv6, IPsec, ICMP, BOOTP, DHCP

Question 79

OSI : Data Link Layer

Answer 79

Layer 2

Access to physical layer and LAN communication
Data frames
Ethernet cards, switches, bridges (Hardware addressing)

2 Sub layers (Media Access Control[MAC] and Logical Link Control[LLC])

Protocols: PPTP, L2TP, ARP, CHAP

Question 80

OSI: Physical Layer

Answer 80

Layer 1

Physical Signaling: bits in voltages or light impulses
Electrical, hardware, and software drivers
Hubs, cables, USB, DSL, ISDN

Physical topologies: BUS, MESH, STAR, TREEE

Question 81

OSI Model Layers

Answer 81

All People Seem To Need Data Processing

7. Application
8. Presentation
9. Session
10. Transport
11. Network
12. Data Link
13. Physical

Question 82

TCP/IP Model Layers

Answer 82

AHIN - (3-1-1-2)

Application (3)
Host to Host (1)
Internet (1)
Network Access (2)

Question 83

Most Common VPN Protocols

Answer 83

PPTP
L2F
L2TP
IPsec

Question 84

3 Factors of Authentication

Answer 84

1. Something you know
2. Something you have
3. Something you are

Question 85

Disaster Recovery Tape Rotation Strategies

Answer 85

Tower of Hanoi
Grandfather, Father, Son
First In, First Out
Six Cartridge Weekly

Question 86

Incident Response Lifecycle

Answer 86

1. Preparation
2. Detection (aka identification)
3. Response (aka containment)
4. Mitigation (aka eradication)
5. Reporting
6. Recovery
7. Remediation
8. Lessons Learned

Question 87

RAID 6

Answer 87

3 Disk Minimum

Block level striping with double distributed parity

2 drive loss acceptable

Question 88

RAID 4

Answer 88

3 Disks Minimum

Block Level striping with dedicated parity

Question 89

RAID 5

Answer 89

3 Disks Minimum

Block level striping with distributed parity
Hot Swappable

1 Drive loss acceptable

Question 90

RAID 3

Answer 90

3 Disks Minimum

Byte Level Striping with dedicated parity
Parity drive is SPOF

Question 91

RAID 1

Answer 91

2 Disks Minimum

Mirrored Set
Fault tolerance from single disk failure; expensive

Redundancy only, not speed

Question 92

RAID 0

Answer 92

2 Disks Minimum

Striped

Improved performance but no fault tolerance

Question 93

CMM

Answer 93

Software Capability Maturity Model

1. Initiating
2. Repeatable
3. Defined
4. Managed
5. Optimizing