Information Security Management Quiz

Questions and Answers

What is the course number for Information Security Management?

• SPRING 2024-25
• M5 - 220
• 1502373 (correct)
• Information Security Management

What is the name of the instructor for this course?

• Dr. srubab (correct)
• Dr.
• srubab
• [email protected]
• [email protected]

Which of these is the correct email address for the instructor?

• [email protected] (correct)
• [email protected] (correct)
• [email protected]
• [email protected]
• sharjah.ac.ae

What is the term for the academic year being taught?

SPRING 2024-25 (C)

Based on the content provided, what is the title of the lecture?

LECTURE 1 – INTRODUCTION TO INFORMATION SECURITY (E)

What is the primary function of information security?

To protect the confidentiality, integrity, and availability of information. (D)

Which of the following is NOT a component of an information system?

Security Policy (C)

What is the difference between a threat and a vulnerability?

A threat is a potential for harm, while a vulnerability is a weakness that can be exploited. (A)

What is the primary goal of implementing confidentiality measures?

To prevent unauthorized access to information. (D)

Which of the following is NOT a measure typically used to protect the confidentiality of information?

Regular system backups (D)

Which of the following scenarios presents a threat to the integrity of information?

A user accidentally deleting a critical file. (A)

What is meant by 'availability' in the context of information security?

Ensuring that authorized users can access information when needed. (A)

What is the primary difference between authentication and access control?

Authentication verifies identity, while access control manages permissions. (B)

Which of the following is an example of 'Something you have' authentication?

A security token (B)

What is the primary purpose of authorization in information security?

To regulate the actions a user can perform on a system (A)

How does the modern approach to computer security differ from the traditional approach?

It includes both prevention and reactive measures to mitigate attacks (A)

What is the fundamental difference between authentication and access control?

Authentication determines user identity, while access control regulates user actions within a system (B)

In the context of information security, what is the primary purpose of accountability?

To track user activity and assign responsibility for actions (B)

Which of the following is NOT considered a component of the modern approach to computer security?

Elimination (D)

What is the key principle underlying the balance between security and access?

Security measures should allow for reasonable access while protecting against threats (A)

Which statement best describes the concept of perfect security in the context of information security?

Perfect security is an ongoing process, not an absolute goal (B)

What is a key reason why security in early internet implementations was considered a low priority?

There was a lack of awareness about potential threats and vulnerabilities. (D)

Based on the text, what is the most important reason why information should be protected?

To protect the organization's valuable assets, including information. (A)

What is the most significant difference between the early years of the internet and the current landscape?

The increased connectivity and reliance on networks. (A)

Which of the following is NOT a layer of security that a successful organization should have in place?

Systems security (A)

What is the central message conveyed by the quote from the Book of Five Rings?

Preparation and anticipation are key to effective security. (A)

Which of these examples BEST illustrates the vulnerability of information in the current interconnected world?

A single compromised computer can potentially compromise an entire network. (D)

What does the text suggest is the most effective way to address the increasing threat of cyber attacks?

Elevating cybersecurity as a priority in all organizational operations and decision-making. (B)

What is a key takeaway from the statement about information being an asset?

Organizations must have a robust security program in place to protect their information assets. (C)

Flashcards

Information Security

Protecting data from unauthorized access and breaches.

Confidentiality

Ensuring that sensitive information is not disclosed to unauthorized users.

Integrity

Maintaining the accuracy and completeness of data over its lifecycle.

Availability

Ensuring that authorized users have access to information when needed.

Information Security Management

The process of managing measures to protect information assets.

Components of an Information System

Includes software, hardware, data, people, procedures, and networks necessary for information management.

Authentication

The process of verifying a user's claimed identity through controls.

Risk

The potential for loss or damage related to an asset, threat, or vulnerability.

Threat Agent

An entity that can exploit a vulnerability to cause harm to an information asset.

Three types of authentication

Authentication methods include something you know, have, or are.

Authorization

Process of confirming a user's permissions after authentication.

Authentication vs Access Control

Authentication proves identity; access control regulates actions.

Accountability

Requirement that actions can be traced to an individual.

Protection in Security

Protection is not just prevention, but also detection and response.

Subject vs Object of Attack

A computer can be an active attacker or a target of an attack.

Balancing Security and Access

Security involves balancing protection with reasonable access.

Ongoing Process of Security

Security cannot be perfect; it is an evolving process.

Information Asset

Information is a valuable asset that needs protection.

Early Internet Security

Security was a low priority during early Internet deployments.

Cybersecurity Threats

Growing threats have increased the need for improved security measures.

Forms of Information

Information can be stored, processed, transmitted, and destroyed in various forms.

Layers of Security

An organization should implement multiple layers of security.

Types of Security

Includes physical, personal, operations, communications, network, and information security.

Internet Evolution

From isolated networks to a global network filled with security risks.

Study Notes

Introduction to Information Security Management

• Course details: 1502373 - Information Security Management, Spring 2024-25, taught by Dr. Saddaf Rubab, in MS-220
• Quote from Book of the Five Rings: "Do not figure on opponents not attacking; worry about your own lack of preparation."
• Information security issues can exist even with comprehensive protections in place
• Examples of security problems: poor passwords, security breaches in security practices, credential spills, credential abuse

Information Security Management

• Real-life data breaches occur due to insider threats
• Data breaches caused by malicious or inadvertent insider actions result in financial and reputational damage
• The importance of understanding information assets, security threats and how to prepare for incidents is highlighted

Early Forms of Information Security

• German Enigma code machines broken earlier by the Poles (1930s) and later by the British/Americans during World War II
• Allied forces benefited from decryption of German communications
• Complex versions of the Enigma machine caused considerable issues for the allied forces before being cracked

The 1990s

• Increased networking and internet use created the need to interconnect networks
• Security wasn't treated as a priority in early internet deployments

2000 to Present

• Internet connects various (and many insecure) computer networks
• A computer's security depends on the security of the interconnected systems
• Increased cyberattacks necessitate improved security efforts

Information

• Data is an asset that, like other critical business components, requires safety
• Information assets need security protection

Information Can Be

• Information is displayed, transmitted, shown on video, displayed/published online, stolen, printed/written on paper, stored electronically, and created
• Information, regardless of form, must be appropriately protected

What is Security

• Organizations should use multiple layers of security measures (physical, personal, operations, communication, network, and information security)

What is Information Security?

• Information security aims to safeguard organizational data assets

Components of an Information System

• Information systems consist of software, hardware, data, people, procedures, and networks
• Understanding these components is crucial to fully grasping the importance of information security

Key Information Security Concepts

• Protection profile/security posture: Information security evaluation
• Risk: The potential loss associated with a threat
• Subjects and objects: Subjects are users and devices; objects are data
• Threat Agent: A person or organization that could pose a threat
• Vulnerability: A weakness that can be exploited
• Access, Asset, Attack, Control/Safeguard, Exploit, Exposure, and Loss are key facets of security

Components of Information Security

• Confidentiality, Integrity, and Availability (CIA) are the core elements of information security.
• Managing computer security, data security, and network security is essential

Confidentiality

• Access to information restricted to authorized users
• Measures like classification, secure storage, security policies, and user education are important

Integrity

• Information accuracy and completeness are maintained
• Data quality is preserved and safeguards against corruption, damage, destruction, or disruption of information

Availability

• Authorized users can access data when needed without interference
• Data should be available in the required format to authorized users

Key Concepts of Information Security (Authentication and Authorization)

• Authentication: Verifying a user's identity
• Three types of authentication: Something you know, something you have, something you are
• Authorization: Granting access based on the authenticated user's role or permission
• Access control regulates interactions with assets and dictates permitted actions

Key Concepts of Information Security (Accountability)

• Tracking actions to accountable parties.

The Operational Method of Computer Security and Technologies

• Protection: Prevention, detection, and response
• Prevention, Detection, and Response (PDR) is a comprehensive approach
• Access controls, firewalls, encryption, audit logs, intrusion detection systems, honeypots, incident response teams, and computer forensics are used

Securing the Components

• Computers can be attacked or used to launch attacks
• Attack subjects and objects, along with attack methods.

CNSS Security Model

• Policy, Education, Technology.
• CIA's principles are crucial aspects of computer security.

Balancing Security and Access

• Balancing security with access to systems requires understanding how to protect data and user security

On-Going Process

• Perfect security is unachievable; ongoing improvements and risk management are critical
• Security needs continuous monitoring and improvement.

References

• Michael & Herbert,(2017), Principles of Information Security; ISBN: 9781337102063

Case Study 1

• Discussion questions: Insider or outsider attack?, Next incident preparation? (beyond software), Virus or worm cause?, Ethical implications of file opening, appropriate response to suspicious emails