Fundamental Security Concepts

Questions and Answers

What does the 'C' in the CIA triad stand for?

• Control
• Confidentiality (correct)
• Compliance
• Credibility

Which of the following best describes non-repudiation?

• The method of tracking user activities in information systems.
• The ability to deny the occurrence of a transaction.
• The assurance that an operation was performed by an authorized individual. (correct)
• The process of ensuring data accuracy over time.

What is the primary purpose of gap analysis in the context of security?

• To track user permissions
• To create a Zero Trust model
• To identify potential technologies for implementation
• To assess the effectiveness of existing controls (correct)

What is the primary purpose of integrity in the CIA triad?

To maintain consistency and accuracy of data. (D)

Which authentication method involves using a password plus a second factor?

Multi-factor authentication (A)

Which principle is central to the Zero Trust model?

All access must be verified by default (A)

What does AAA stand for in information security?

Authentication, Authorization, Accounting (A)

In a Zero Trust architecture, what role does the policy engine play?

Interpret real-time policies for access decisions (C)

What does the concept of Adaptive Identity refer to?

Changing permissions based on contextual factors (D)

Which authorization model is based on user roles and permissions?

Role-Based Access Control (RBAC) (B)

What is an example of a measure that ensures availability in information security?

High-availability configurations (B)

Which of the following is NOT considered a physical security measure?

Policy enforcement points (A)

Which of the following is NOT a common form of human authentication?

API keys (C)

What does the term 'Policy Enforcement Point' refer to in a Zero Trust environment?

Where Zero Trust policies are enforced (D)

What do honeypots and related technologies aim to achieve in cybersecurity?

Collect information on attacker methods (D)

Which component is part of the Control Plane in a cybersecurity architecture?

High-level access policies (A)

Flashcards

Confidentiality

Ensuring only authorized individuals access data or resources.

Integrity

Ensuring data accuracy and trustworthiness.

Availability

Ensuring authorized users access resources when needed.

Non-repudiation

Assurance a transaction occurred and was initiated by a specific entity.

Authentication

Proving you are who you claim to be.

Authorization

Determining what you can do with access.

Accounting

Tracking actions of an entity with access.

CIA Triad

Confidentiality, Integrity, and Availability combination.

Gap Analysis

Identifying the difference between a current security posture and the desired security posture.

Zero Trust

A security model that assumes no trust, even for users inside the network perimeter, requiring continuous verification.

Control Plane

High-level policies defining who can access what resources.

Adaptive Identity

Access permissions and rights can change based on user behavior, device, or context.

Threat Scope Reduction

Zero Trust aims to reduce attack surface by limiting access to the minimum necessary for tasks.

Zero Trust Model

A security model that always verifies users and systems, even those inside the network perimeter.

Physical Security

Protecting physical assets and infrastructure, including areas, barriers, and personnel.

Policy-Driven Access Control

Security access decisions are dynamic, determined by a global policy set by the policy administrator and executed by a policy engine.

Study Notes

Fundamental Security Concepts

• Information security principles form the foundation for advanced topics.
• Core concepts include Confidentiality, Integrity, and Availability (CIA).
• CIA triad is the building block of information security.

CIA Triad

• Confidentiality: Ensures only authorized users access data or resources.
  • Examples include password-protected files, encryption, and secure channels.
• Integrity: Maintains data accuracy and trustworthiness.
  • Measures like checksums, digital signatures, and hashing algorithms.
• Availability: Ensures resources are accessible to authorized users when needed.
  • Includes backup systems, fault tolerance, and high availability configurations.
  • "Keeping Secrets (Confidentiality), Keeping it Real (Integrity), and Keeping it Accessible (Availability)".

Non-repudiation

• Provides assurance that an operation or transaction occurred and was initiated by a specific entity.
• Digital signatures and stringent authentication methods establish non-repudiation.

Authentication, Authorization, and Accounting (AAA)

• Authentication: Proves user identity.
• Authorization: Determines user permissions and actions.
• Accounting: Tracks user activity.
  • Analogy: Showing ID (authentication), boarding pass limits (authorization), and travel records (accounting).

Physical Security

• Measures to secure physical assets and infrastructure.
  • Bollards, access control vestibules, fencing, video surveillance, security guards, access badges.

Deception and Disruption Technology

• Technologies (honeypots, honeynets, etc.) mislead attackers.
• Collects information about attacker methods.

Zero Trust

• Assumes no trust by default, even for internal systems.
• Focuses on limiting access.
• Core principle: "Never Trust, Always Verify".

Data Plane, Implicit Trust Zones, Subject/System, Policy Enforcement Point

• Data plane controls data flow within the network.
• Implicit Trust Zones allow data free flow within network segments.
• Policy Enforcement Points apply Zero Trust policies.

Gap Analysis

• Identifies the difference between current and desired security posture.
• Essential for assessing existing security controls and determining needs for improvements.

Adaptive Identity

• Permissions and access may adjust based on actions, devices, and contexts.

Description

Test your knowledge on core information security principles, including the CIA triad: Confidentiality, Integrity, and Availability. This quiz covers the foundational concepts and measures that ensure data protection and operational reliability. Understanding these principles is essential for anyone looking to delve deeper into information security.