Shared Flashcard Set

Details

CISSP (Round 2)
ISC2 CISSP Certification questions
21
Computer Networking
Advanced
06/02/2016

Additional Computer Networking Flashcards

 


 

Cards

Term
Threat
Definition
a potentially negative occurrence
Term
Confidentiality
Definition
seeks to prevent the unauthorized disclosure of information: it keeps data secret
Term
Integrity
Definition
seeks to prevent unauthorized modification of information. In other words, integrity seeks to prevent unauthorized write access to data. Integrity also seeks to ensure data that is written in an authorized manner is complete and accurate.
Term
Availability
Definition
ensures that information is available when needed
Term
Subject
Definition
An active entity on an information system
Term
Object
Definition
A passive data file
Term
Annualized Loss Expectancy
Definition
the cost of loss due to a risk over a year
Term
Vulnerability
Definition
a weakness in a system
Term
Risk
Definition
a matched threat and vulnerability
Term
Safeguard
Definition
a measure taken to reduce risk
Term
Total Cost of Ownership
Definition
the cost of a safeguard
Term
Return on Investment
Definition
money saved by deploying a safeguard
Term
CIA triad
Definition
Confidentiality, Integrity, and Availability
Term
DAD
Definition
disclosure, alteration, and destruction - Counterpoint to CIA
Term
An example of a confidentiality attack
Definition
Theft of PII such as SSNs or Credit Card info
Term
Data integrity
Definition
protect information against unauthorized modification
Term
An example of attack on availability
Definition
DOS or Denial of Service
Term
AAA
Definition
Authorization, Authentication, Accountability
Term
Due care
Definition
informal- doing what a reasonable person would do. It is sometimes called the “prudent man” rule
Term
due diligence
Definition
follows a process - management of due care.
Term
Gross negligence
Definition
opposite of due care
Supporting users have an ad free experience!