Cyber Security Basics Quiz

Questions and Answers

What is the primary goal of ensuring confidentiality in cyber security?

Maintaining data accuracy

Providing access to all users

Protecting information from unauthorized access (correct)

Monitoring network traffic

Which of the following best describes malware?

Malicious software designed to harm systems (correct)

A security protocol for user verification

A method to analyze digital evidence

A network monitoring tool

What is the purpose of a firewall in cyber security?

To monitor and control network traffic (correct)

To create encrypted copies of data

To record evidence handling procedures

To provide expert testimony in court cases

What step comes after identification in the cyber forensics process?

Preservation

Which of the following is a common cyber threat that seeks to obtain sensitive information by deception?

Phishing

What does the chain of custody refer to in cyber forensics?

Keeping a history of evidence handling

Which of the following is NOT a goal of cyber security?

Forensic analysis

Which tool is commonly used for digital evidence analysis in cyber forensics?

Forensic software like EnCase

Study Notes

Cyber Security

• Definition: Protection of systems, networks, and programs from digital attacks.

• Goals:

  • Confidentiality: Ensuring that information is accessible only to those authorized.
  • Integrity: Maintaining the accuracy and completeness of data.
  • Availability: Ensuring that authorized users have access to information and associated assets when required.

• Types of Cyber Threats:

  • Malware: Malicious software such as viruses, worms, and ransomware.
  • Phishing: Fraudulent attempts to obtain sensitive information by disguising as a trustworthy entity.
  • Denial of Service (DoS): Attacks aimed at making a service unavailable to its intended users.
  • Insider Threats: Security risks coming from within the organization.

• Key Concepts:

  • Firewalls: Systems that monitor and control incoming and outgoing network traffic.
  • Encryption: The process of encoding information to prevent unauthorized access.
  • Authentication: Verifying the identity of a user or device.
  • Intrusion Detection Systems (IDS): Tools that monitor network traffic for suspicious activity.

Cyber Forensics

• Definition: The practice of collecting, analyzing, and preserving digital evidence from computers and networks.

• Objectives:

  • Identify and preserve digital evidence for legal proceedings.
  • Analyze data to determine how a cyber incident occurred.
  • Provide expert testimony in legal cases involving cyber crimes.

• Processes:

  • Identification: Recognizing potential digital evidence.
  • Preservation: Securing and maintaining the integrity of evidence.
  • Analysis: Using tools and techniques to examine the evidence.
  • Documentation: Recording findings and methodologies for reporting.

• Tools and Techniques:

  • Disk Imaging: Creating a bit-for-bit copy of storage devices for analysis.
  • Forensic Software: Tools like EnCase, FTK, and Sleuth Kit for analyzing data.
  • Chain of Custody: Maintaining a documented history of evidence handling to ensure admissibility in court.

• Legal Considerations:

  • Adherence to laws and regulations governing privacy and data protection.
  • Understanding of relevant legal standards for digital evidence.
  • Ensuring that forensic activities do not alter or damage original evidence.

Interrelationship

• Cyber security and forensic science work together to enhance the overall security posture and response to incidents.
• Effective cyber security measures can reduce the likelihood of incidents requiring forensic analysis.
• Post-incident forensic analysis provides insights that can improve future cyber security strategies.

Cyber Security

• Protection of systems, networks, and programs from digital attacks.
• Goals include:
  • Confidentiality: Restricting access to authorized individuals only.
  • Integrity: Ensuring accuracy and completeness of data.
  • Availability: Guaranteeing access for authorized users when needed.
• Types of Cyber Threats consist of:
  • Malware: Includes viruses, worms, and ransomware designed to harm systems.
  • Phishing: Attempts to trick users into revealing personal information by pretending to be a legitimate entity.
  • Denial of Service (DoS): Attacks that disrupt services, making them unavailable to users.
  • Insider Threats: Security risks posed by individuals within the organization.
• Key Concepts in cyber security:
  • Firewalls: Monitor and regulate network traffic to prevent unauthorized access.
  • Encryption: Encodes information to safeguard against unauthorized access.
  • Authentication: Confirms the identity of users or devices attempting to access resources.
  • Intrusion Detection Systems (IDS): Tools that flag suspicious network traffic for investigation.

Cyber Forensics

• Collection, analysis, and preservation of digital evidence from computers and networks.
• Objectives include:
  • Identifying and preserving evidence for legal actions.
  • Analyzing incidents to understand their causes.
  • Providing expert testimony on cyber crimes.
• Processes involved in cyber forensics:
  • Identification: Recognizing potential digital evidence.
  • Preservation: Securing and maintaining the integrity of evidence collected.
  • Analysis: Employing tools to examine found evidence comprehensively.
  • Documentation: Keeping thorough records of methodologies and findings for reporting purposes.
• Tools and Techniques:
  • Disk Imaging: Making exact copies of storage devices for forensic analysis.
  • Forensic Software: Programs like EnCase, FTK, and Sleuth Kit for data analysis.
  • Chain of Custody: Keeping a documented trail of evidence handling for court admissibility.
• Legal Considerations:
  • Compliance with privacy laws and data protection regulations.
  • Awareness of legal standards for processing digital evidence.
  • Prevention of alteration or damage to original evidence during forensic activities.

Interrelationship

• Cyber security and forensic science collaborate to improve security and incident response.
• Robust cyber security practices lower the risk of incidents needing forensic investigation.
• Forensic analysis post-incident offers insights to enhance future cyber security measures.

Description

Test your knowledge on the fundamentals of cyber security, including key definitions, goals, types of threats, and essential concepts like firewalls and encryption. This quiz will help you understand the importance of protecting systems from digital attacks and ensuring data integrity.