Tenta Flashcards

Question

What are fingerprint minutiae?

Answer 1

Features like ridge endings and bifurcations used for fingerprint recognition.

Answer 2

A method where the system issues a challenge that the user must respond to correctly.

Answer 3

DoS, eavesdropping, host attacks, replay, client attacks, and Trojan horses.

Answer 4

To prevent easy access by attackers who know factory-set credentials.

Answer 5

A secure method of communication ensuring interaction with a legitimate system component.

Answer 6

Rules on password length, complexity, and change frequency.

Answer 7

To require users to change passwords regularly.

Answer 8

Authentication once to access multiple services.

Answer 9

They may indicate unauthorized attempts to access an account.

Answer 10

'123456', '123456789', 'password', 'qwerty', 'picture1'

Answer 11

A Digital Authentication Guideline defining confidence in user identities presented electronically.

Answer 12

An example of an admin password policy.

Answer 13

Image CAPTCHA, Text CAPTCHA, FunCAPTCHA, Phone Prompt, Authenticator App.

Answer 14

To verify the user is human and not a bot.

Answer 15

Read-only memory (ROM), EEPROM, and RAM.

Answer 16

To process data and support authentication protocols.

Answer 17

Manual interface (keypad/display) and electronic interface (contact/contactless).

Answer 18

Features like ridge endings, bifurcations, cores, and deltas.

Answer 19

To increase accuracy of fingerprint recognition.

Answer 20

The rate at which unauthorized users are incorrectly accepted.

Answer 21

The rate at which legitimate users are incorrectly rejected.

Answer 22

The point where FMR and FNMR are equal; used to evaluate biometric systems.

Answer 23

Iris pattern recognition.

Answer 24

Convenience, e.g., unlocking a smartphone with fingerprint or face.

Answer 25

To reduce FMR and enhance difficulty of misuse.

Answer 26

Using multiple biometrics lowers FMR but may increase FNMR.

Answer 27

An adversary reuses a previously captured user response.

Answer 28

A malicious program or device mimicking a legitimate one to steal credentials.

Answer 29

An adversary attempts to authenticate without access to host or communication path, e.g., by guessing passwords.

Answer 30

Targeting the user file where credentials or biometric templates are stored.

Answer 31

Observing the authentication process to steal credentials.

Answer 32

Flooding the system with requests to disable the service.

Answer 33

A secure mechanism ensuring communication with the operating system, not spoofed software.

Answer 34

By displaying the real URL in a way that cannot be spoofed by web servers.

Answer 35

To prevent shoulder surfing.

Answer 36

Improves usability, especially for long or complex passwords.

Answer 37

A potential security harm to an asset.

Answer 38

When an attack successfully exploits a vulnerability.

Answer 39

The entity carrying out an attack, such as an attacker.

Answer 40

Curiosity, challenge, and reputation.

Answer 41

Viruses, worms, phishing.

Answer 42

Monetary gain.

Answer 43

Apprentice.

Answer 44

Cyberwarfare, counter-intelligence, strategic goals.

Answer 45

Botnets, ransomware, inside information.

Answer 46

Servers, networking equipment, storage devices, workstations.

Answer 47

Brand reputation, data, software, encryption keys.

Answer 48

They are not readily discovered or documented like hardware or software.

Answer 49

A weakness that could be exploited to damage assets.

Answer 50

Corrupted (integrity), Leaky (confidentiality), Unavailable (availability).

Answer 51

Insecure data transfer and storage.

Answer 52

Nessus Vulnerability Scanner, NMAP.

Answer 53

1) Decompose the application, 2) Determine and rank threats, 3) Determine countermeasures.

Answer 54

To understand how the application functions and identify vulnerabilities.

Answer 55

Places where data enters the system.

Answer 56

Places where data exits, such as output or session termination.

Answer 57

A defined access right assigned to entities interacting with the system.

Answer 58

Visual representations of how data moves and is processed in the application.

Answer 59

A change in trust level.

Answer 60

To represent where data is stored without modifying it.

Answer 61

Spoofing, Tampering, Repudiation, Information Disclosure, Denial of Service, Elevation of Privilege.

Answer 62

Authentication.

Answer 63

Changing data in the backend to grant unauthorized privileges.

Answer 64

Denial of an action to avoid responsibility.

Answer 65

Confidentiality.

Answer 66

Flooding the network with requests.

Answer 67

Gaining more privileges than entitled.

Answer 68

Damage, Reproducibility, Exploitability, Affected Users, Discoverability.

Answer 69

Subjective scoring and lack of widespread adoption.

Answer 70

Qualitative risk model (Low, Medium, High).

Answer 71

Reachable and exploitable vulnerabilities in a system.

Answer 72

Software, Network, Human.

Answer 73

Assessing the scale and severity of threats.

Answer 74

The ultimate goal of the attacker.

Answer 75

Specific methods to initiate an attack.

Answer 76

With encryption in storage and transit.

Answer 77

Salted hashes.

Answer 78

Role-based access control.

Answer 79

Principle of least privilege.

Answer 80

Hashed message authentication codes (HMACs).

Answer 81

Authentication and protecting secret data.

Answer 82

Authorization, hashes, HMACs, digital signatures.

Answer 83

Digital signatures, audit trails, timestamps.

Answer 84

Encryption, privacy-enhanced protocols.

Answer 85

Throttling, filtering, quality of service.

Answer 86

Strong access control and least privilege.

Answer 87

Microsoft Threat Modeling Tool.

Answer 88

An open-source tool for threat modeling.

Answer 89

A program covertly inserted into a system to compromise confidentiality, integrity, or availability.

Answer 90

By propagation and by payload.

Answer 91

Virus, worm, Trojan horse.

Answer 92

Ransomware, logic bomb, botnet, spyware, keylogger, phishing, backdoor, rootkit.

Answer 93

The first computer worm spreading via ARPANET; displayed a message but did no harm.

Answer 94

First antivirus created to remove Creeper.

Answer 95

It was a global ransomware attack using Bitcoin for payment.

Answer 96

Infected USB drives; targeted Iranian nuclear facilities.

Answer 97

A botnet of IoT devices used in DDoS attacks.

Answer 98

IoT devices using weak passwords and unpatched vulnerabilities.

Answer 99

By attaching itself to executable code and running with the host program.

Answer 100

Viruses that infect the master boot record.

Answer 101

Viruses that replicate with different bit patterns to avoid detection.

Answer 102

A virus that hides its presence from antivirus programs.

Answer 103

A virus that infects multiple file types for complex eradication.

Answer 104

A worm replicates without attaching to a host file.

Answer 105

An early worm targeting UNIX systems using multiple attack vectors.

Answer 106

An attack that uses previously unknown vulnerabilities.

Answer 107

Software that appears harmless but hides malicious functionality.

Answer 108

By tricking users into copying and running the program.

Answer 109

Encrypts data and demands ransom for decryption.

Answer 110

Gpcode, WannaCry.

Answer 111

Malicious code triggered by specific events or conditions.

Answer 112

A network of infected machines used for malicious tasks.

Answer 113

DDoS, keylogging, spam, sniffing, manipulating polls.

Answer 114

Malware that monitors user activity and redirects web traffic.

Answer 115

Tricking users into revealing personal data through fake websites or emails.

Answer 116

Malware that records keystrokes to steal sensitive info.

Answer 117

A hidden way to access a system, often installed by developers.

Answer 118

Software that hides the presence of malicious processes or programs.

Answer 119

Storing more data than a buffer's allocated space.

Answer 120

A buffer overflow on the stack, used to alter control flow.

Answer 121

Overflows targeting the heap to redirect data or pointers.

Answer 122

gets(), strcpy(), strcat(), vsprintf().

Answer 123

A vulnerability that allows attackers to interfere with database queries.

Answer 124

Using UNION SELECT to extract additional data from a query.

Answer 125

Injecting conditions like 'OR 1=1' to bypass authentication.

Answer 126

Injecting system commands via unvalidated input.

Answer 127

Injecting script code into HTML output sent to other users.

Answer 128

Tricking a server into making internal network requests.

Answer 129

An attack exploiting XML parsers to access sensitive files or internal services.

Answer 130

A framework for exploiting vulnerabilities and injecting payloads.

Answer 131

A collection of tools for penetration testing.

Answer 132

Web vulnerability scanning and proxying.

Answer 133

Network traffic analysis.

Answer 134

Tool for fuzzing, spidering and proxying web apps.

Answer 135

Scans networks and discovers devices.

Answer 136

Information gathering and analysis.

Answer 137

Analyzes web traffic and supports proxying.

Answer 138

The art and science of keeping messages secure using mathematical techniques.

Answer 139

Confidentiality, privacy preservation, authentication, data integrity, non-repudiation.

Answer 140

The original, unencrypted message or data.

Answer 141

The scrambled message produced by encryption.

Answer 142

An algorithm that performs substitutions and transformations on plaintext.

Answer 143

Used in symmetric encryption for both encrypting and decrypting.

Answer 144

Used in asymmetric encryption for encrypting data.

Answer 145

Used in asymmetric encryption for decrypting data.

Answer 146

The process of attempting to discover the plaintext or key.

Answer 147

The attacker only knows the ciphertext and attempts to decrypt it.

Answer 148

The attacker knows plaintext-ciphertext pairs encrypted with the same key.

Answer 149

The attacker chooses plaintexts and obtains their ciphertexts.

Answer 150

The attacker chooses ciphertexts and gets corresponding plaintexts.

Answer 151

Combination of chosen plaintext and chosen ciphertext attacks.

Answer 152

Symmetric uses one key; asymmetric uses two keys (public/private).

Answer 153

Processes input in fixed-size blocks, e.g., 128-bit blocks in AES.

Answer 154

Encrypts data one bit or byte at a time.

Answer 155

A substitution cipher that shifts letters a fixed number down the alphabet.

Answer 156

ek(x) = (x + k) mod 26; dk(y) = (y - k) mod 26.

Answer 157

Both sender and receiver use the same secret key.

Answer 158

Sender and receiver use different keys (public/private).

Answer 159

It helps verify public key authenticity.

Answer 160

A trusted third party that issues digital certificates.

Answer 161

Subject's name, public key, and digital signature from CA.

Answer 162

A block cipher design dividing data into left/right halves with multiple rounds.

Answer 163

A cipher structure used in AES combining S-boxes and P-boxes.

Answer 164

AES (Advanced Encryption Standard).

Answer 165

10 for 128-bit keys, 12 for 192-bit, 14 for 256-bit keys.

Answer 166

A symmetric block cipher standard replacing DES.

Answer 167

128, 192, or 256 bits.

Answer 168

SSL/TLS, SFTP, WPA, IPSec, WhatsApp, BitLocker.

Answer 169

Encrypts each block independently with the same key.

Answer 170

Each block is XORed with the previous ciphertext block before encryption.

Answer 171

CFB, OFB, CTR.

Answer 172

A function that maps variable-length input to a fixed-length output.

Answer 173

It’s hard to find any input that hashes to a specific output.

Answer 174

It’s hard to find a different input with the same hash.

Answer 175

It’s hard to find two inputs with the same hash.

Answer 176

MD5, RIPEMD128, SHA-1, SHA-256.

Answer 177

Password verification, digital signatures, integrity checking, etc.

Answer 178

A short piece of information to authenticate a message using a shared key.

Answer 179

Using encryption algorithms or hash functions (e.g., HMAC).

Answer 180

A keyed-hash message authentication code standard documented in RFC 2104.

Answer 181

Usability, replaceability of hash functions, and strong authentication.

Answer 182

Authenticated Encryption with Associated Data, ensures both confidentiality and integrity.

Answer 183

It is not encrypted but is authenticated for integrity protection.

Answer 184

Internet of Things.

Answer 185

Because IoT devices handle sensitive data and are increasingly integrated into critical infrastructure.

Answer 186

Fences, locks, and signatures.

Answer 187

Smart lighting, connected cars, smart homes.

Answer 188

They often lack user interfaces, making them harder to monitor and secure.

Answer 189

IoT devices often have limited processing power, memory, and energy, making strong security hard to implement.

Answer 190

Different IoT devices use various communication protocols, making standardization and security more complex.

Answer 191

IoT devices often connect and disconnect dynamically, which complicates monitoring and control.

Answer 192

The ability of a device to resist physical access or modification.

Answer 193

IoT devices are expected to function for many years, often beyond their supported update cycles.

Answer 194

Confidentiality, Integrity, and Availability.

Answer 195

Disclosure (Confidentiality), Alteration (Integrity), Destruction (Availability).

Answer 196

From individual hackers to organized crime and nation state actors.

Answer 197

High-level attacks for espionage, sabotage, and influence.

Answer 198

Hackers, nation states, and organized crime groups.

Answer 199

Hardware encryption, secure platforms, enhanced algorithms.

Answer 200

VPNs, firewalls, intrusion prevention and detection systems (IPS/IDS).

Answer 201

Security-by-design, privacy-by-design, and compliance with standards.

Answer 202

Certifications or marks indicating a device meets certain security standards.

Answer 203

Never trust, always verify.

Answer 204

They should not be trusted by default, even inside secure networks.

Answer 205

Artificial Intelligence – the ability of machines to mimic human intelligence.

Answer 206

The ability to accomplish complex goals.

Answer 207

11 minutes ago.

Answer 208

0.17 seconds ago.

Answer 209

Computations to manage data and make decisions.

Answer 210

A factor of 10^33.

Answer 211

Another 200 years.

Answer 212

Not just computation, but the right computations (software).

Answer 213

No, the definition evolves with new research.

Answer 214

A subfield of AI where computers learn from past data.

Answer 215

ML learns from data without being explicitly programmed.

Answer 216

Learning algorithm, input data, and the learned model.

Answer 217

Predictions or decisions.

Answer 218

Mapping observations into predefined categories using labeled data.

Answer 219

Classifying emails as spam or not spam.

Answer 220

Predicting a numerical value based on input features.

Answer 221

Estimating a car’s price based on model, year, mileage, etc.

Answer 222

Grouping observations based on similarities without labeled data.

Answer 223

Supervised and unsupervised learning.

Answer 224

Labeled data.

Answer 225

Learning actions through rewards to maximize outcomes.

Answer 226

An ML technique using neural networks to learn multiple abstraction levels.

Answer 227

Big data and high computational power.

Answer 228

Speech recognition and image recognition.

Answer 229

Robotics, text-to-image generation, self-driving cars, conversation systems like ChatGPT.

Answer 230

A field concerned with moral principles guiding AI behavior and impact.

Answer 231

Self-driving cars deciding between protecting passengers or pedestrians.

Answer 232

It may affect user privacy and introduce bias.

Answer 233

Prediction quality, outcome impact, and effect on humans.

Answer 234

Adversarial input attacks and data poisoning attacks.

Answer 235

Slightly modifying input features to trick ML models into incorrect classification.

Answer 236

A stop sign misclassified as a speed limit sign due to added stickers.

Answer 237

Injecting malicious data into the training set to mislead the model.

Answer 238

Affect availability (useless model) or integrity (add backdoor).

Answer 239

AI models are often too complex to understand.

Answer 240

Local Interpretable Model-Agnostic Explanations.

Answer 241

To interpret and explain decisions made by AI models.

Answer 242

A framework of standards that ensures private and secure communications over IP networks using cryptographic services.

Answer 243

Secure/Multipurpose Internet Mail Extension – a security enhancement to the MIME email format.

Answer 244

AES (symmetric) and RSA (asymmetric).

Answer 245

Encrypted content and encryption keys for one or more recipients.

Answer 246

A digital signature of the content created using the sender’s private key.

Answer 247

Message is encrypted with AES using a pseudorandom key; the key is encrypted with the recipient's RSA public key.

Answer 248

Message User Agent (MUA) and Message Handling Service (MHS: MSA, MTA, MDA).

Answer 249

A cryptographic protocol ensuring secure transmission between users and servers.

Answer 250

Authentication, data integrity (via MAC), and confidentiality (via encryption).

Answer 251

An association between a client and server created by the handshake protocol.

Answer 252

A peer-to-peer transport service linked to one session.

Answer 253

Authenticates client and server, negotiates keys and algorithms.

Answer 254

HTTPS, IMAP, SMTP, XMPP, MQTT (IoT), video conferencing.

Answer 255

TLS 1.0 and 1.1.

Answer 256

Simpler and stronger ciphers, single roundtrip, better performance.

Answer 257

Targets block cipher vulnerabilities like DES to steal HTTPS cookies.

Answer 258

Forces downgrade to SSL 3.0 to exploit vulnerabilities.

Answer 259

Targets older block and stream ciphers like DES and RC4.

Answer 260

Exploits timing side-channels in MAC padding.

Answer 261

Hypertext Transfer Protocol Secure – an encrypted version of HTTP using SSL/TLS.

Answer 262

URL, document content, form data, cookies, HTTP headers.

Answer 263

A protocol suite securing IP traffic with encryption, authentication, and key exchange.

Answer 264

IP level (network layer).

Answer 265

Authentication, confidentiality, key management.

Answer 266

Encapsulating Security Payload (ESP) and Internet Key Exchange (IKE).

Answer 267

VoIP, LAN/WAN security, e-commerce, intranet/extranet communication.

Answer 268

A TTP-based protocol for secure remote authentication.

Answer 269

A token generated by the Kerberos server used to access application servers.

Answer 270

Password transmission over the network.

Answer 271

Single Sign-On (SSO) and mutual authentication.

Answer 272

A virtual private tunnel between a device and remote server that encrypts data and hides IP addresses.

Answer 273

Remote access VPN, Site-to-site VPN, VPN apps.

Answer 274

Potential speed reduction, possible logging by free VPNs.

Answer 275

A cryptographic protocol for secure network services over insecure networks.

Answer 276

TCP port 22.

Answer 277

Symmetric, asymmetric, and hashing.

Answer 278

Encrypt-and-authenticate (E&A).

Answer 279

`ssh-keygen -t ed25519 -C 'email@example.com'` and copy the public key.

Answer 280

Secure File Transfer Protocol – secure version of FTP using SSH.

Answer 281

HTTPS secures web traffic using SSL/TLS; SFTP secures file transfers using SSH.

Answer 282

An authorization protocol that allows limited access to user data across services.

Answer 283

A security technique that regulates who or what can view or use resources in a computing environment.

Answer 284

A component that validates access requests and grants or denies access based on security policy.

Answer 285

The locked filing cabinets.

Answer 286

The security guard with the guest list.

Answer 287

A unique user identification number.

Answer 288

A group ID used to organize users.

Answer 289

A file-based data structure that holds metadata about files.

Answer 290

Read (4), Write (2), Execute (1).

Answer 291

Grants full read, write, execute permissions to owner, group, and others.

Answer 292

`sudo chown user file.txt`

Answer 293

It indicates a directory.

Answer 294

Allows reading file names in the directory.

Answer 295

Allows modifying directory contents (create, delete, rename files).

Answer 296

Allows accessing files if their name is known (traverse permission).

Answer 297

Access based on user identity; users can delegate their privileges.

Answer 298

It becomes inefficient and hard to manage at scale.

Answer 299

A list for each object specifying which subjects have what access.

Answer 300

A list for each subject specifying access rights to various objects.

Answer 301

Subjects in rows, objects in columns, access rights in entries.

Answer 302

Authorization table, ACLs, and Capability lists.

Answer 303

Poor efficiency due to search overhead and large storage space needs.

Answer 304

Hard to revoke/change rights and manage memory.

Answer 305

Focuses on the object (club), and who is allowed in.

Answer 306

Each user has a key ring (capabilities) for the cabinets they can access.

Answer 307

Access based on user roles within an organization.

Answer 308

Roles are more stable than changing user-permission pairs.

Answer 309

Active Directory, Oracle DB, Microsoft SQL Server, PostgreSQL.

Answer 310

Access decisions based on attributes of subjects, objects, and environment.

Answer 311

Age, department, role.

Answer 312

Context like location, time, or network condition.

Answer 313

Firewalls, servers, APIs, databases.

Answer 314

Uses predefined rules to allow/deny access, e.g., firewall policies.

Answer 315

Access decisions made by a central authority, often used in military/government.

Answer 316

Restricts access based on user type (e.g., admin vs. regular user).

Answer 317

Restricts access based on ownership of resources.

Answer 318

Restricts access based on system/user state or sequence of actions.

Answer 319

An event or series of events where an intruder gains or attempts to gain unauthorized access.

Answer 320

A service that monitors and analyzes system events for signs of unauthorized access.

Answer 321

1. Target acquisition, 2. Initial access, 3. Privilege escalation, 4. System exploit & access maintenance, 5. Covering tracks.

Answer 322

1. Sensors, 2. Analyzers, 3. User Interface.

Answer 323

Collects data such as logs, packets, system calls.

Answer 324

Determines if an intrusion has occurred.

Answer 325

Guidance and control over the IDS output.

Answer 326

Host-based Intrusion Detection System – monitors individual host systems.

Answer 327

Network-based Intrusion Detection System – monitors network traffic.

Answer 328

An IDS combining multiple sensors and data from across systems.

Answer 329

Uses known attack patterns or rules to detect intrusions.

Answer 330

Identifies deviations from normal behavior, useful for zero-day attacks.

Answer 331

1. Statistical, 2. Knowledge-based, 3. Machine Learning.

Answer 332

Changes to registry, critical files, failed logins, rootkits, backdoors.

Answer 333

Resource use, tampering risk, false alarms, management difficulty.

Answer 334

Deploy on critical systems, secure the HIDS, monitor alerts, update signatures.

Answer 335

1. Between Internet and firewall, 2. Inside firewall, 3. On backbone, 4. On workstation networks.

Answer 336

Inline inspects live traffic; passive inspects copied traffic.

Answer 337

Network, transport, and application.

Answer 338

DoS, scanning, worms.

Answer 339

Sudden behavior changes, policy violations.

Answer 340

Timestamp, protocols, IPs, ports, session ID, severity, and payload.

Answer 341

A decoy system designed to attract attackers and log their behavior.

Answer 342

Low interaction and high interaction honeypots.

Answer 343

A system that controls incoming and outgoing traffic based on rules.

Answer 344

Blocks unauthorized access, monitors traffic, supports VPN/IPSec.

Answer 345

Can't stop insider threats or attacks bypassing the firewall.

Answer 346

Inspects IP header info to allow/deny packets based on rules.

Answer 347

Maintains a table of active connections to make decisions.

Answer 348

Acts as an intermediary for application traffic like FTP, Telnet.

Answer 349

IP spoofing, source routing, tiny fragment attacks.

Answer 350

No application awareness, weak logging, vulnerable to config errors.

Answer 351

Standalone device, router, LAN switch, server, personal device.

Answer 352

Firewall software on individual devices like servers or workstations.

Answer 353

A separate network zone for publicly accessible services.

Answer 354

A network of firewalls managed centrally across hosts.

Answer 355

An intrusion detection system that can block or prevent attacks.

Answer 356

Host-based IPS – protects system resources and files.

Answer 357

Network-based IPS – protects against network-level attacks.

Answer 358

1. Pattern matching, 2. Stateful matching, 3. Traffic anomaly, 4. Statistical anomaly.

Answer 359

Rootkits, privilege escalation, buffer overflow, directory traversal.

Answer 360

The claim of individuals to control how, when, and to what extent information about them is communicated.

Answer 361

Protection against arbitrary interference with privacy, family, home, or correspondence.

Answer 362

Part of the fundamental right to life and enjoyment of life.

Answer 363

Belief in the reliability, truth, or ability of someone or something.

Answer 364

The study of right and wrong and how people should act.

Answer 365

Warren and Brandeis (1890).

Answer 366

Adherence to informational norms of a context—what is appropriate sharing.

Answer 367

R. Dahl (1957).

Answer 368

Power is not a possession but a dynamic force that exists everywhere.

Answer 369

Systematic and routine attention to personal details for influence or control.

Answer 370

Systematic use of personal data systems to monitor behavior.

Answer 371

Bottom-up surveillance by individuals, often toward powerful institutions.

Answer 372

When people self-censor due to fear of surveillance or regulation.

Answer 373

Freely given, specific, informed and unambiguous indication of data subject's wishes.

Answer 374

A model where no user or system is inherently trusted – 'never trust, always verify'.

Answer 375

Institutional trust, trust in government, trust in self, business, citizens.

Answer 376

How much freedom one is willing to sacrifice in exchange for security.

Answer 377

When data collected for one purpose is used for another.

Answer 378

Business model that profits from the extraction and analysis of personal data.

Answer 379

Shoshana Zuboff.

Answer 380

An information-driven structure of surveillance used for behavior prediction and control.

Answer 381

To expose unethical or illegal conduct, often in the public interest.

Answer 382

Workers from reprisals for whistleblowing on serious misconduct.

Answer 383

The conditions under which work-related reporting is protected under EU law.

Answer 384

Ethics based on rules and duties.

Answer 385

Ethics based on outcomes or consequences.

Answer 386

Ethics based on character and virtues.

Answer 387

The way race, gender, class, etc., intersect to affect individuals’ experiences.

Answer 388

Kimberlé Crenshaw (1989).

Answer 389

Misinformation is false info spread unknowingly; disinformation is spread deliberately.

Answer 390

Facebook whistleblower who exposed the company’s harmful practices.

Answer 391

Criticism of large language models generating text without understanding meaning.

Answer 392

Bender, Gebru, McMillan-Major, & Shmitchell (2021).

Answer 393

A proposed epoch where human activity dominates Earth's systems.

Answer 394

Sustainable consumption, lifecycle management, intergenerational justice.

Answer 395

Psychological manipulation to trick users into giving up sensitive information.

Answer 396

A famous hacker who used social engineering; later became a security consultant.

Answer 397

The biggest threat is people, not technology.

Answer 398

Strategic direction and oversight of security, risk, and resources.

Answer 399

A framework for developing, monitoring, and improving IT governance.

Answer 400

1. Meeting stakeholder needs, 2. Holistic approach to business.

Answer 401

Use unique user IDs and conduct regular access rights reviews.

Answer 402

A policy is a broad statement; a procedure is detailed instructions.

Answer 403

Mandatory specification for implementing a policy.

Answer 404

A non-mandatory recommendation related to a policy.

Answer 405

Board focuses only on profits and ignores security.

Answer 406

Executives participate in risk committees and set acceptable risk levels.

Answer 407

Authentication policy, access control policy, business continuity policy.

Answer 408

1. Plan, 2. Implement, 3. Monitor, 4. Evaluate.

Answer 409

To protect critical assets cost-effectively.

Answer 410

Determine requirements, specify safeguards, monitor implementation.

Answer 411

Management, IT staff, users, third parties.

Answer 412

Informing employees about risks and responsibilities.

Answer 413

Chief Security Officer, Security Manager, Security Technician.

Answer 414

Standard for implementing and maintaining an ISMS.

Answer 415

Code of practice for security controls.

Answer 416

Information security risk management.

Answer 417

93 controls.

Answer 418

Information Security Management System.

Answer 419

To reduce risks of fraud, theft, or misuse.

Answer 420

To define responsibilities, confidentiality, and policy compliance.

Answer 421

Ensure orderly exit and removal of access.

Answer 422

Users have only the access necessary for their role.

Answer 423

Dividing tasks among people to prevent abuse.

Answer 424

To prevent malware, ensure productivity, and avoid misconduct.

Answer 425

To minimize damage, recover quickly, and learn from incidents.

Answer 426

Fences, locked doors, access control to server rooms.

Answer 427

To mitigate risks like flooding or natural disasters.

Answer 428

All tasks and oversight to keep systems secure and running.

Answer 429

Security Operations Center – facility to monitor and protect systems.

Answer 430

Data, services, networks, remote access.

Answer 431

Who gets access, when, and how.

Answer 432

To ensure safe design, patching, and secure operations.

Answer 433

To ensure operations continue during major failures or disasters.

Answer 434

Payment Card Industry Data Security Standard – for organizations handling card payments.

Answer 435

The ongoing protection of assets, ensuring proper access, oversight, and controls.

Answer 436

An event where corporate assets are at risk or have been compromised.

Answer 437

Risk = Likelihood × Impact or Risk = Threat × Vulnerability × Impact.

Answer 438

Identification, Assessment, Prioritization, Mitigation.

Answer 439

Avoidance, Mitigation, Transference, Acceptance.

Answer 440

Detects, monitors, and manages security incidents and vulnerabilities.

Answer 441

Detection, incident handling, threat intelligence, vulnerability management.

Answer 442

Investigating potential threats proactively, possibly based on CTI information.

Answer 443

Evidence collection and management during incident investigation.

Answer 444

VM looks from the inside (authenticated), Pentesting simulates external attacks.

Answer 445

Common Vulnerability Scoring System – used in vulnerability management.

Answer 446

Reconnaissance → Scanning → Access → Exfiltration.

Answer 447

1) Preparation, 2) Detection and analysis, 3) Containment, eradication, recovery, 4) Post-incident activity.

Answer 448

To stop the attack as early as possible.

Answer 449

To remove the threat from the system.

Answer 450

Lessons learned are documented for future improvement.

Answer 451

Information about threats, their sources, capabilities, and intentions.

Answer 452

Direction, Collection, Analysis, Production, Dissemination & Feedback.

Answer 453

Strategic, Tactical, Operational.

Answer 454

CTI data such as IoCs (Indicators of Compromise) or TTPs (Tactics, Techniques, and Procedures).

Answer 455

Security Information and Event Management – aggregates and analyzes security data.

Answer 456

Endpoint Detection and Response – monitors and responds to threats on endpoints.

Answer 457

Security Orchestration, Automation, and Response – enhances SIEM with automated workflows.

Answer 458

Splunk, Qradar, Sentinel.

Answer 459

Microsoft Defender, Qualys.

Answer 460

Budget constraints, legacy systems, differing priorities.

Answer 461

Privacy issues, hallucinations, data poisoning.

Answer 462

Deepfakes, reconnaissance, payload crafting, anomaly detection evasion.

Answer 463

Via thesis projects and internships.

Answer 464

The expectation of loss from a threat exploiting a vulnerability with a harmful result.

Answer 465

To reduce risk to an acceptable level.

Answer 466

A system resource that has value to its owner and requires protection.

Answer 467

Monetary and non-monetary value of an asset.

Answer 468

Potential for violation of security by exploiting a vulnerability.

Answer 469

Flaw or weakness that could be exploited.

Answer 470

Susceptibility to asset loss due to a threat.

Answer 471

A countermeasure to reduce or remove vulnerabilities or threats.

Answer 472

Uses mathematical models to calculate expected losses.

Answer 473

Uses expert judgment, scenarios, and ratings to assess risk.

Answer 474

Advantage: structured calculation; Drawback: inputs often imprecise.

Answer 475

ALE = SLE × ARO

Answer 476

Single Loss Expectancy – the cost of one loss.

Answer 477

Annual Rate of Occurrence – frequency of threat occurring per year.

Answer 478

Exposure Factor – percent of asset lost in an incident.

Answer 479

Brainstorming, Delphi, Storyboarding, Focus groups, Interviews.

Answer 480

A narrative that describes a potential major threat.

Answer 481

Insignificant – Severe.

Answer 482

Rare – Almost Certain.

Answer 483

Avoidance, Acceptance, Transference, Reduce likelihood, Reduce consequence.

Answer 484

Mitigate by encrypting data.

Answer 485

Transfer risk using insurance.

Answer 486

Implementing standard controls for common threats without deep analysis.

Answer 487

For small organizations with limited resources.

Answer 488

Physical, Administrative, Technical.

Answer 489

Locks, security guards.

Answer 490

Policies, awareness training.

Answer 491

Encryption, access control.

Answer 492

A layered approach using multiple, diverse security measures.

Answer 493

Reduces risk of total failure from single point of weakness.

Answer 494

Prevention, Detection, Reaction.

Answer 495

Encrypt orders in e-commerce.

Answer 496

Check for unauthorized transactions.

Answer 497

Report fraud and cancel the credit card.

Answer 498

Security that focuses on protecting individual devices.

Answer 499

Security focused on protecting the network and controlling access.

Answer 500

Combine host and network-level security.

Answer 501

Confidentiality, Integrity, Availability, Authenticity, Accountability.

Answer 502

Preventing unauthorized disclosure of information.

Answer 503

Preventing unauthorized modification of information.

Answer 504

Ensuring access to authorized users when needed.

Answer 505

Verifying identity of communication partners.

Answer 506

Ensuring users are held responsible for actions.

Answer 507

Preventing denial of having performed an action.

Answer 508

Encryption.

Answer 509

Redundancy.

Answer 510

Audit logs.

Answer 511

Digital signature.

Tenta Flashcards

(541 cards)