Computer Security Basics

What is the main difference between a directed attack and other types of attacks?

Directed attacks targets a specific organization.

What type of threat violates the confidentiality security concept?

Interception

What is an example of an interruption threat?

Malicious destruction of a hardware device.

What type of threat involves unauthorized creation of counterfeit objects on a computing system?

Fabrication Signup and view all the answers

What type of threat involves unauthorized access and tampering with an asset?

Modification Signup and view all the answers

What is the term for unauthorized access to an asset?

Interception Signup and view all the answers

What is computer security primarily concerned with?

Protecting assets that have value to individuals or organizations Signup and view all the answers

What is confidentiality in the context of computer security?

Ensuring only authorized parties have access to assets Signup and view all the answers

What is the primary goal of integrity in computer security?

Ensuring assets can be modified only by authorized parties Signup and view all the answers

What is the opposite of availability in computer security?

Denial of service Signup and view all the answers

What determines the value of an asset in computer security?

Factors such as personal, time-dependent, replicable, or not, and cost of loss Signup and view all the answers

What is a necessary condition for an object or service to be considered available?

It is present in a usable form Signup and view all the answers

How many important aspects of computer security are there?

Three Signup and view all the answers

What is a vulnerability in the context of computer security?

A weakness in the security system that can be exploited Signup and view all the answers

What is the negative consequence of an actualized threat?

Harm Signup and view all the answers

What is an attack in the context of computer security?

An actualized threat Signup and view all the answers

What is the primary purpose of a control in computer security?

To remove or reduce a vulnerability Signup and view all the answers

What is the relationship between a threat and a vulnerability?

A threat is a circumstance that can exploit a vulnerability Signup and view all the answers

What type of program controls enforce security restrictions within a program?

Internal program controls Signup and view all the answers

What is the primary function of independent control programs?

To protect against specific types of vulnerabilities Signup and view all the answers

What type of hardware device verifies users' identities?

Device to verify users' identities Signup and view all the answers

What type of controls enforce procedures or policies among users?

User Policies and Procedures Signup and view all the answers

What is the primary goal of development controls?

To prevent software faults from becoming exploitable vulnerabilities Signup and view all the answers

What type of control limits access to a program's features?

Internal program controls Signup and view all the answers

What is a Trojan horse in the context of software modification?

A program that overtly does one thing while covertly doing another Signup and view all the answers

What is the primary concern of software security?

Ensuring programmers and analysts take responsibility for creating secure programs Signup and view all the answers

What is the result when a threat is realized against a vulnerability?