Weak Spots

Question 1

SAML

Answer 1

Used to exchange authentication and authorization information between federated organizations; often SSO

Question 2

SPML

Answer 2

Service Provisioning Markup Language. Designed for exchanging user information for federated identity SSO purposes; can display LDAP based directory information in XML format.

SPML is used to provision users, resources, and services, not for authentication and authorization

Question 3

Type 4 Authentication

Answer 3

Somewhere you are (IP/MAC address)

Question 4

Type 5 Authentication

Answer 4

Something you do (signature, pattern unlock)

Question 5

Due Care

Answer 5

Due care principle states that an individual should react in a situation using the same level of care that would be expected from any reasonable person.

Question 6

Due Diligence

Answer 6

Due diligence is more specific than due care; states that an individual assigned a responsibility should exercise due care to complete it accurately in a timely manner

Question 7

SOC 1

Answer 7

Financial audit report; has Type 1 and Type 2.

“focuses guidance for auditors assessing financial statement controls at service organizations”; internal use

Question 8

SOC 2

Answer 8

IT security audit report; has Type 1 and Type 2; available to management and others under strict NDA–not widely public

Question 9

SOC 3

Answer 9

More generalized, less sensitive version of SOC 2 IT security audit report ; public facing document, sanitized

Question 10

Atomicity

Answer 10

All or nothing; if part fails, the entire tx must fail and roll back

Question 11

Consistency

Answer 11

Rules must be all still in tact after a tx

Question 12

Isolation

Answer 12

Txs operate separately from each other. One tx must complete in its entirety, before the next is allowed to modify the same data

Question 13

Durability

Answer 13

One a tx is committed to a db, it must be preserved, by way of backup mechanisms such as tx logs

Question 14

Confusion

Answer 14

Relationship between key and ciphertext. One bit change in key should cause 50% change in ciphertext

Question 15

Diffusion

Answer 15

Relationship between plain text and cipher text. One bit change in plain text should cause 50% change in ciphertext

Question 16

SOC (#) Type 1

Answer 16

Describes controls and provides auditors opinion based on that description. Covers a single point in time and does not involve actual testing of the controls

Question 17

SOC (#) Type 2

Answer 17

Covers a minimum 6 month point in time and includes opinion of auditor about effectiveness based on ACTUAL testing

Question 18

SDLC (First half)

Answer 18

1) Project initiation and planning; 2) Functional requirements definition; 3) System design specification

Question 19

SDLC (Second half)

Answer 19

4) Development and implementation; 5) Documentation and common program controls; 6) Testing and evaluation (which includes certification and accreditation); 7) Transition to production / implementation

Question 20

Swapping

Answer 20

Moving entire process from memory to disk

Question 21

Paging

Answer 21

Moving fixed-length blocks of memory to disk

Question 22

DARPA TCP/IP Model Layers To to Bottom

Answer 22

Application / Host-to-host Transport / Internet / Network access

Question 23

What layers are segements, packets, frames, and bits at

Answer 23

Transport/segments Network/packet Datalink/frames Physical/bits

Question 24

GDPR provisions

Answer 24

data breach notification in 72 hours; each member nation must create a centralized data protection authority; individuals must have access to their own data; information must be transferrable; individuals have right to be forgotten / have information deleted

Question 25

Forced Browsing

Answer 25

Brute-force attempt to access content by modifying urls or trying /admin

Question 26

CSMA/CD

Answer 26

half duplex; one device at a time, if collision occurs, random wait

Question 27

STRIDE

Answer 27

an aggregated threat-modeling methodology developed by Microsoft (Spoofing; tampering; repudiation; information disclosed; DoS; elevation of privilege)

Question 28

Live workloads

Answer 28

Simulated behavior, and do not involve live data

Question 29

Virtual memory

Answer 29

Maps hw memory addresses to applications; not a copy process to disk technique

Question 30

Type I biometric errors

Answer 30

False reject rate

Question 31

Type II biometric errors

Answer 31

False accept rate

Question 32

Boundary testing

Answer 32

A specific form of negative testing in which values that are known to be out of the range of accepted values are input into given form fields to determine whether the application handles such errors appropriately.

Question 33

Positive testing

Answer 33

A form of software testing that is intended to determine whether an application is working as it is designed to work.

Question 34

CRUD testing

Answer 34

Create. Read. Update. Delete. A form of software testing that is intended to ensure that database objects are being created correctly. CRUD testing can be used to reveal and troubleshoot caching issues as well as any issues that might arise from simultaneous attempts to perform the same function.

Question 35

Extra SLC Phases (post SDLC)

Answer 35

8) Operation and maintenance support; 9) Revision and system replacement / disposal