Test Your Knowledge of Information Security

Questions and Answers

A process designed to detect, prevent, or recover from a security attack

An action that compromises the security of information owned by an organization

A service that enhances the security of information transfers

By detecting security attacks and taking appropriate actions Signup and view all the answers

Snoop on message contents Signup and view all the answers

To obtain transmitted information Signup and view all the answers

Replay attack Signup and view all the answers

Traffic analysis Signup and view all the answers

Study Notes

A security mechanism is a system or process designed to prevent, detect, and respond to security threats.

A security attack is an intentional attempt to compromise the confidentiality, integrity, or availability of a resource.
Security attacks can be classified into two categories: passive and active.

A security service is a facility or capability provided by a system to enhance its security.

Security services counter security attacks by providing mechanisms to prevent, detect, and respond to threats.

Eavesdropping and traffic analysis are examples of passive attacks.
The goal of a passive attack is to obtain unauthorized access to information without modifying the system or data.

Masquerade attacks, replay attacks, and denial-of-service (DoS) attacks are examples of active attacks.
Active attacks involve modifying the system, data, or traffic to compromise security.

Active attacks can be categorized into masquerade attacks, replay attacks, denial-of-service (DoS) attacks, and modification of messages.
Note: Manipulation of messages is NOT a category of active attacks.