CIA Triad Quiz

Questions and Answers

Confidentiality focuses on protecting personal privacy and proprietary information

True (A)

Availability refers to ensuring timely and reliable access to information

True (A)

Integrity ensures that information is always available and accessible

False (B)

A severe security breach level implies a limited adverse effect on organizational operations

False (B)

Computer security is a simple concept and easy to implement

False (B)

What is the primary difference between a computer virus and a computer worm?

A virus needs a host program, while a worm can run independently (C)

How do viruses evade antivirus software?

By employing complex anti-detection/stealth strategies (A)

What is the metaphor used to describe the spread of a computer virus?

Infection (C)

What is a key method virus writers use to initially infect systems?

Social engineering deceptions (A)

Why does a computer worm not need a host program?

It is an independent program or code chunk (A)

Flashcards

Confidentiality

Protecting personal privacy and proprietary information.

Availability

Ensuring timely and reliable access to information.

Integrity

Ensuring the accuracy and trustworthiness of information.

Severe security breach

A significant negative impact on organizational operations.

Computer security

Protecting computer systems and data from threats.

Virus vs. Worm

A virus needs a host program, while a worm can run independently.

Virus anti-detection

Methods used by viruses to avoid antivirus software.

Virus spread metaphor

Infection is a common metaphor

Initial system infection

Social engineering through deceptions.

Worm independence

Worms don't need a host program to spread.

Study Notes

Confidentiality, Availability, and Integrity

• Confidentiality focuses on protecting personal privacy and proprietary information
• Availability refers to ensuring timely and reliable access to information
• Integrity ensures that information is accurate, complete, and unaltered

Security Breach Levels

• A severe security breach level implies a limited adverse effect on organizational operations

Computer Security

• Computer security is not a simple concept and is difficult to implement

Computer Viruses and Worms

• The primary difference between a computer virus and a computer worm is that a virus needs a host program to replicate, while a worm can replicate independently
• Viruses evade antivirus software through methods such as code obfuscation, polymorphism, and metamorphism
• The spread of a computer virus is often described using the "biological virus" metaphor
• A key method virus writers use to initially infect systems is through exploiting vulnerabilities or using social engineering tactics
• A computer worm does not need a host program because it can replicate and spread without attaching to a program

Description

Test your knowledge of key security concepts with this quiz on the CIA triad, focusing on confidentiality, integrity, and availability. See how well you understand the principles of preserving authorized restrictions on information access, guarding against improper information modification, and ensuring information availability.