Introduction to Computer Security 352ISM

Questions and Answers

A vulnerability is a strength in the system that protects it from harm.

False

An advanced persistent threat (APT) often involves a state-sponsored group gaining unauthorized access to a network.

True

Insider threats arise from individuals who have unauthorized access to sensitive information.

False

Data disclosure threats can occur due to human error when sensitive information is improperly shared.

True

An alteration threat focuses on making authorized changes to information or systems.

False

Sabotage threats can include damaging an organization's physical infrastructure.

True

Threats to a computing system can only come from external sources.

False

The harm caused by a realized threat is considered a negative consequence.

True

An attacker needs only method to ensure the success of an attack.

False

Confidentiality in a system means that all users can access any data.

False

Integrity ensures that an asset can only be modified by authorized parties.

True

Availability refers to the ability of a system to prevent unauthorized modification of data.

False

Controls are measures taken to protect against vulnerabilities in a system.

True

Detecting an attack means recognizing it as it happens or after the fact.

True

Physical controls are intangible measures used to block an attack.

False

Making another target more attractive is considered a way to deter an attack.

False

An attacker requires method, opportunity, and motive to successfully execute an attack.

True

Confidentiality ensures that protected data is accessible to anyone with a computer.

False

Integrity allows data to be modified by anyone without restriction.

False

Availability guarantees that an asset can be accessed by any authorized party when needed.

True

Controls or countermeasures are interventions designed to exploit vulnerabilities in a system.

False

Mitigation refers to making an attack's impact less severe after it occurs.

True

Deflecting an attack involves making it harder for the attacker to succeed.

False

Physical controls are interventions that utilize tangible measures to block an attack.

True

Determent involves taking measures to completely prevent an attack from occurring.

False

Detecting an attack means recognizing it beforehand so that harm can be prevented.

False

A vulnerability is a strength in the system that may prevent loss or harm.

False

An insider is someone who has unauthorized access to an organization's resources.

False

Advanced persistent threats (APTs) are often conducted by state-sponsored groups.

True

A data disclosure threat specifically involves trying to gain unauthorized access to information.

False

An alteration threat aims to make malicious changes to information or systems.

True

Sabotage threats can only pertain to digital environments and not physical infrastructure.

False

Threats to a computing system can originate from both insiders and external sources.

True

An attacker requires only a single method for a successful attack.

False

Integrity ensures that only unauthorized parties can modify assets.

False

Study Notes

Introduction to Computer Security

• Computer security involves protecting all computer assets including hardware, software, and data.
• Assets are categorized as items of value that require security measures.

Key Concepts

• Vulnerabilities: Weaknesses in a system that can be exploited, often found in procedures, design, or implementation.
• Threats: Circumstances that have the potential to cause loss or harm to a computing system.

Types of Threats

• Insider Threats: Individuals with authorized access who may exploit their knowledge to harm the organization.
• Advanced Persistent Threat (APT): Stealthy, often state-sponsored groups that gain unauthorized access for prolonged periods.
• Data Disclosure Threat: Unauthorized release of sensitive information, often due to human error.
• Alteration Threat: Focus on unauthorized changes to information or systems.
• Sabotage Threat: Actions that deliberately harm an organization’s infrastructure.

Harmful Consequences

• The realization of a threat results in harm to the assets within a system.
• Attackers exploit vulnerabilities using methods, opportunities, and motives to succeed.

Security Goals

• Confidentiality: Ensures assets are accessible only to authorized individuals.
• Integrity: Ensures modifications to assets are made only by authorized users.
• Availability: Ensures that assets are accessible to authorized users when needed.

Importance of Security Goals

• Protects against unauthorized viewing (confidentiality) and modification (integrity) while ensuring access (availability).

Controls (Countermeasures)

• Controls prevent threats from exploiting vulnerabilities with strategies including:
  • Prevention: Blocking attacks or closing vulnerabilities.
  • Deterrence: Making attacks harder but not impossible.
  • Deflection: Attracting attackers to alternative targets.
  • Mitigation: Reducing the severity of an impact.
  • Detection: Identifying attacks in real-time or post-event.
  • Recovery: Restoring systems after an attack.

Types of Controls

• Physical Controls: Tangible measures that block or stop attacks.
• Controls are integral to safeguarding computer systems and their information.

Introduction to Computer Security

• Computer security involves protecting all computer assets including hardware, software, and data.
• Assets are categorized as items of value that require security measures.

Key Concepts

• Vulnerabilities: Weaknesses in a system that can be exploited, often found in procedures, design, or implementation.
• Threats: Circumstances that have the potential to cause loss or harm to a computing system.

Types of Threats

• Insider Threats: Individuals with authorized access who may exploit their knowledge to harm the organization.
• Advanced Persistent Threat (APT): Stealthy, often state-sponsored groups that gain unauthorized access for prolonged periods.
• Data Disclosure Threat: Unauthorized release of sensitive information, often due to human error.
• Alteration Threat: Focus on unauthorized changes to information or systems.
• Sabotage Threat: Actions that deliberately harm an organization’s infrastructure.

Harmful Consequences

• The realization of a threat results in harm to the assets within a system.
• Attackers exploit vulnerabilities using methods, opportunities, and motives to succeed.

Security Goals

• Confidentiality: Ensures assets are accessible only to authorized individuals.
• Integrity: Ensures modifications to assets are made only by authorized users.
• Availability: Ensures that assets are accessible to authorized users when needed.

Importance of Security Goals

• Protects against unauthorized viewing (confidentiality) and modification (integrity) while ensuring access (availability).

Controls (Countermeasures)

• Controls prevent threats from exploiting vulnerabilities with strategies including:
  • Prevention: Blocking attacks or closing vulnerabilities.
  • Deterrence: Making attacks harder but not impossible.
  • Deflection: Attracting attackers to alternative targets.
  • Mitigation: Reducing the severity of an impact.
  • Detection: Identifying attacks in real-time or post-event.
  • Recovery: Restoring systems after an attack.

Types of Controls

• Physical Controls: Tangible measures that block or stop attacks.
• Controls are integral to safeguarding computer systems and their information.

Description

Explore the foundational concepts of computer security, including its definition, vulnerabilities, and the various threats and attacks that can harm systems. This quiz will help you understand the importance of protecting computer assets and the controls needed for effective security.