Quiz 1: Computer and Network Security Concepts

the OSI security architecture focuses on security attacks, mechanisms, and services.

Security attacks are classified as either passive or aggressive.

Cybersecurity strives to ensure the attainment and maintenance of the security properties of the organization and users' assets against relevant security risks in the cyberspace environment.

Information security and network security are subsets of cybersecurity.

Data authenticity assures that private or confidential information is not made available or disclosed to unauthorized individuals.

the OSI security architecture focuses on security attacks, mechanisms, and services.

An active attack attempts to alter system resources or affect their operation.

Authentication exchange is the use of a trusted third party to assure certain properties of a data exchange.

A loss of integrity is the unauthorized modification or destruction of information.

the emphasis in dealing with active attacks is on prevention rather than detection.

the connection-oriented integrity service addresses both message stream modification and denial of service.

the denial of service prevents or inhibits the normal use or management of communication facilities.

Integrity can apply to a stream of messages, a single message, or selected fields within a message.

Passive attacks are very easy to detect because they involve alteration of the dat A.

Security services implement security policies and are implemented by security mechanisms.

_______ is the collection of tools, policies, security concepts, security safeguards, guidelines, risk management approaches, actions, training, best practices, assurance, and technologies that can be used to protect the cyberspace environment and organization and users' assets. A) Access control B) Data authenticity C) Cybersecurity D) Authentication

A common technique for masking contents of messages or other information traffic so that opponents can not extract the information from the message is __________ . A) integrity B) encryption C) analysis D) masquerade

__________ involves the passive capture of a data unit and its subsequent retransmission to produce an unauthorized effect. A) Disruption B) Replay C) Service denial D) Masquerade

_________ is a branch of mathematics that deals with the transformation of dat A. A) Cryptography B) Modularity C) Encapsulation D) Encryption

A loss of __________ is the unauthorized disclosure of information. A) authenticity B) confidentiality C) reliability D) integrity

Verifying that users are who they say they are and that each input arriving at the system came from a trusted source is _________ . A) authenticity B) credibility C) accountability D) integrity

A _________ is a value computed with a cryptographic algorithm and associated with a data object in such a way that any recipient of the data can use the signature to verify the data's origin and integrity. A) key exchange B) digital signature C) message authentication code D) notarization

A __________ is any action that compromises the security of information owned by an organization. A) security attack B) security service C) security alert D) security mechanism

A __________ takes place when one entity pretends to be a different entity. A) replay B) masquerade C) service denial D) passive attack

__________ is the protection of transmitted data from passive attacks. A) Access control B) Data control C) Nonrepudiation D) Confidentiality

A(n) __________ service is one that protects a system to ensure its availability and addresses the security concerns raised by denial-of-service attacks. A) replay B) availability C) masquerade D) integrity

two types of __________ attacks are the release of message contents and traffic analysis. A) information B) eavesdropping C) service D) passive

A(n) __________ is any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. A) threat B) attack C) risk D) attack vector

A __________ is a hardware and/or software capability that limits access between a network and device attached to the network, in accordance with a specific security policy. A) trust model B) cryptographic algorithm C) firewall D) router

Data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of the data unit and protect against forgery is a(n) ___________ . A) security audit trail B) digital signature C) encipherment D) authentication exchange

the general security objectives of cybersecurity comprise the following: availability; integrity, which may include data authenticity and nonrepudiation; and __________ .

A ______________ is a process (or a device incorporating such a process) that is designed to detect, prevent, or recover from a security attack.

An ___________ is any kind of malicious activity that attempts to collect, disrupt, deny, degrade, or destroy information system resources or the information itself.

A __________ attack attempts to learn or make use of information from the system but does not affect system resources.

the emphasis in dealing with __________ attacks is on prevention rather than detection.

Active attacks can be subdivided into four categories: replay, __________ , modification of messages, and denial of service.

__________ prevents either sender or receiver from denying a transmitted message.

__________ is the property of a system, or a system resource being accessible and usable upon demand by an authorized system entity, according to performance specifications for the system.

__________ is the insertion of bits into gaps in a data stream to frustrate traffic analysis attempts.

Digital __________ is data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of the data unit and protect against forgery.

Cryptographic algorithms can be divided into three categories: keyless, __________ , and two-key.

A __________ number generator produces a deterministic sequence of numbers or bits that has the appearance of being a truly random sequence.

Encryption algorithms that use a single key are referred to as ___________ encryption algorithms.

__________ is a measure of the extent to which an entity is threatened by a potential circumstance or event, and typically a function of 1) the adverse impacts that would arise if the circumstance or event occurs; and 2) the likelihood of occurrence.

__________ is a characteristic of an entity that reflects the degree to which that entity is deserving of trust.