Introduction to Cyber Security Lecture Set 01-02

Questions and Answers

What is the primary purpose of confidentiality in computer security?

• To monitor and log all user activities
• To allow modifications by any user
• To ensure that information is accessible to all parties
• To restrict access to information to authorized parties (correct)

Which of the following statements best describes integrity in computer security?

• Integrity focuses solely on data encryption
• Integrity allows for the destruction of unnecessary data
• Integrity ensures that assets are accessible at all times
• Integrity means assets can only be modified by authorized parties (correct)

Which aspect of computer security is primarily concerned with system accessibility?

• Availability (correct)
• Integrity
• Confidentiality
• Authentication

What is a common example of a fabrication attack?

Email spoofing (D)

In the context of the CIA triad, what does the 'A' stand for?

Availability (B)

What challenge is associated with balancing confidentiality, integrity, and availability?

Meeting user demands for access (D)

What does authentication in computer security primarily involve?

Verifying user identity (D)

Which of the following scenarios reflects a breach of confidentiality?

A hacker accessing the database of sensitive information (C)

What is the primary goal of cyber security?

To protect networks, devices, and data from unauthorized access (A)

Which component of a computer system is responsible for controlling hardware resources?

Operating system (B)

What role do application programs play in a computer system?

They solve computing problems using system resources (A)

What type of technologies does cyber security encompass?

Technologies, processes, and practices (A)

Who are considered as users in the context of computer system components?

People, machines, and other computers (C)

Which of the following is NOT a component of a computer system?

User privacy policies (D)

Which of these is an example of an application program?

Web browser (C)

What does the CPU represent in a computer system?

The central processing unit that provides computing resources (B)

What defines a vulnerability in a computing system?

A weakness in the security system. (C)

Which of the following is a part of the computing system?

Hardware, software, and data (D)

What is the term used for a condition that has the potential to cause loss or harm?

Threat (B)

Which of the following best describes the term 'control' in the context of computing system security?

A reduction of threat or vulnerability through safeguards. (D)

What might be considered the most vulnerable aspect of a computing system?

The human factors involved (B)

What is often mistakenly assumed regarding the parts of a computing system?

They are not valuable to outsiders. (A)

Which of the following represents an incident in the vulnerability-threat-control paradigm?

Both a vulnerability and a threat come together. (A)

Which type of asset is considered unique and irreplaceable?

Data (B)

What does confidentiality specifically aim to preserve in a computer security context?

Authorized access restrictions on information (B)

Which aspect of the CIA triad refers to ensuring data is not improperly modified or destroyed?

Integrity (A)

What is an example of a type of threat to information security?

Natural disasters (D)

What characteristic distinguishes advanced persistent threats from random attacks?

They require a substantial financial incentive (D)

What key element is included in the definition of availability in the CIA triad?

Ensuring timely and reliable access (C)

In testing computer systems, what is one primary goal for improving system design?

Imagining potential system malfunctions (D)

Which of the following represents a common misconception about malicious attacks?

They can only come from external sources (A)

What is not a part of ensuring information integrity?

Preventing unauthorized access (B)

What type of controls are put in place to protect against specific vulnerabilities like unauthorized access?

Independent control programs (B)

Which of the following is NOT classified as a type of program control?

Hardware controls (D)

In software controls, what is the challenge when designing user interactions?

Ensuring simplicity versus security effectiveness (B)

What are policies and procedures primarily aimed at when it comes to security enforcement?

Agreed-upon actions among users (D)

Which of the following hardware devices is specifically used to limit access or deter theft?

Cables or locks (D)

Which control type directly influences user interaction by requesting inputs like passwords?

Internal program controls (D)

What is a primary function of physical controls in a security system?

To provide backup for software and data (D)

Which type of control primarily seeks to prevent software faults from becoming vulnerabilities?

Development controls (D)

Flashcards

Computer System Structure

The foundational elements that make up a digital system including the physical components, software, applications, and users.

Hardware

The central processing unit (CPU), memory (RAM), and input/output (I/O) devices like keyboards, monitors, and storage drives.

Operating System

Software that manages the interaction between hardware, applications, and users, providing a platform for running programs.

Application Programs

Programs designed for specific tasks, such as word processing, web browsing, or games.

Users

Individuals or entities interacting with the computer system, including people and other machines.

Computing System Security

The practice of safeguarding the assets within a computing system, including hardware, software, and data, from unauthorized access, use, disclosure, disruption, modification, or destruction.

Vulnerability

A weakness or flaw in a system's security, which could be exploited to gain unauthorized access, cause harm, or disrupt operations.

Threat

A potential danger that could exploit a system's vulnerability to cause harm or damage.

Incident

An event or incident that occurs when a threat successfully exploits a vulnerability.

Control

Strategies, procedures, and technologies implemented to mitigate or eliminate threats and vulnerabilities.

Types of Vulnerabilities

Can arise from design flaws, implementation errors, or procedural weaknesses, making the system susceptible to attacks.

Types of Threats

Can be deliberate attacks by individuals or groups, accidental events, or natural disasters.

Fabrication Tactics

Techniques used to deceive or trick users into revealing confidential information or granting unauthorized access, such as email spoofing.

Confidentiality

Ensuring that only authorized individuals can access information, maintaining privacy and confidentiality.

Integrity

Protecting information from unauthorized modification, alteration, or destruction, ensuring its accuracy and integrity.

Availability

Guaranteeing timely and reliable access to information for authorized users, enabling efficient operations and decision-making.

CIA Triad

Balancing confidentiality, integrity, and availability, as enhancing one aspect may compromise another.

Advanced Persistent Threats

Sophisticated and persistent cyber attacks often carried out by organized groups with the intention of secretly gaining access to sensitive information and systems for extended periods.

Program Controls

Internal security measures limiting user access to specific data based on their roles and privileges.

Hardware Controls

Use of hardware devices for security, such as firewalls, intrusion detection systems, encryption devices, and access verification tools.

Policies and Procedures

Establishing guidelines and regulations for secure practices, including password policies, access control rules, and incident reporting protocols.

Physical Controls

Tangible security measures such as locks on doors, physical barriers, security guards, and meticulous site planning, to deter physical access or damage.

Cyber Security

The practice of safeguarding networks, devices, programs, and data from unauthorized access, use, disclosure, disruption, modification, or destruction.

Cyber Attack

A series of coordinated actions designed to exploit vulnerabilities in a system to gain unauthorized access or cause harm, often targeting sensitive data or critical infrastructure.

Cyber Resilience

The ability of a system to resist, withstand, and recover from cyber attacks or threats.

Risk Management

The process of identifying, assessing, and mitigating potential risks to a system's security.

Data Security

Measures taken to ensure the confidentiality, integrity, and availability of data, and to protect sensitive information, such as encryption and access control mechanisms.

Data Privacy

The practice of preventing unauthorized access to sensitive data, such as customer information or financial records.

Proactive Security

A security strategy focused on identifying and mitigating risks, implementing controls, and continuously monitoring and adjusting security posture.

Reactive Security

The practice of detecting and responding to cyber attacks in real-time, including incident response, containment, and recovery.

Study Notes

Cyber Security Overview

• Cyber security encompasses technologies, processes, and practices aimed at safeguarding networks, devices, programs, and data from attacks, damage, or unauthorized access.
• Protects various components including hardware, software, and critical data from cyber threats.

Computer System Structure

• Composed of four main components:
  • Hardware: Basic computing resources like CPU, memory, and I/O devices.
  • Operating System: Manages hardware use among applications and users.
  • Application Programs: Defines resource usage for user needs (e.g., word processors, web browsers).
  • Users: Includes people and machines interacting with the system.

Computing System Security

• Focuses on protecting assets within a computing system: hardware, software, and data.
• Acknowledges that systems are vulnerable at their weakest points, emphasizing the necessity of comprehensive security.

Vulnerability-Threat-Control Paradigm

• Vulnerability: Identified weakness in the security system.
• Threat: Condition that could exploit a vulnerability.
• Incident: Occurs when both vulnerability and threat converge.
• Control: Measures taken to reduce threats or vulnerabilities.

Types of Vulnerabilities and Threats

• Vulnerabilities can exist in design, implementation, or procedural aspects, posing risks for exploitation.
• Threats may be human-made or result from natural disasters and system failures.
• Attacks exploiting vulnerabilities can include fabrication tactics like email spoofing.

Security Goals

• Confidentiality: Ensures information is accessed only by authorized individuals to maintain privacy.
• Integrity: Protects information from unauthorized modification or destruction.
• Availability: Guarantees timely and reliable access to information for authorized users.

CIA Triad

• Balancing confidentiality, integrity, and availability often presents challenges as enhancing one may compromise another.
• Security efforts must prevent unauthorized access while ensuring efficient data usability.

Advanced Persistent Threats

• Describes sophisticated and methodical attacks, often orchestrated by organized groups aiming to stealthily exploit systems over time.

Controls and Countermeasures

• Program Controls: Includes internal restrictions (e.g., database access limits) and independent security programs (e.g., virus scanners).
• Hardware Controls: Encompasses encryption devices, access verification tools, firewalls, and intrusion detection systems.
• Policies and Procedures: Emphasizes community standards for security, like routine password changes.
• Physical Controls: Involves tangible measures such as locks, guards, and site planning to mitigate physical risks.

Conclusion

• Understanding the elements of cyber security, vulnerabilities, and controls is crucial for developing effective strategies to protect computer systems against various threats. Balancing security goals while ensuring functionality is key to maintaining robust cyber resilience.