1 CIA Triad - Confidentially, Integrity and Availability. Least privilege /Need -to-know basis - Giving someone the most limited access required to so they can perform their job. Defence in Depth - Protecting a company' s data with a series of protective layers. Annual Risk Assessment - A risk register where the financial director will look at all of the risks associated with money and the IT manager will look at all of the risks posed. Annual Security Awareness Training - Where you are reminded about what you should be doing on a daily basis to keep the company safe. Change Advisory Board (CAB) - Assists with the prioritisation of changes. Business Continuity Plan (BCP) - Contingency planning to keep the business up and running when a disaster occurs, by identifying single points of failure. Firewall Rule - A rule in the firewall specifying if a connection is allowed or denied. Antivirus/Antimalware - Software or hardware that protects against or removes malicious software. Screen Saver - A feature that logs computers off when they are idle. Screen Filter - A device which prevents people from viewing your screen, while they are walking past. Closed Circuit Television (CCTV) - Equipment used to record events through cameras and or sensors. Log Files - Text files that record events and times that occur. Write -Once Read -Many Drive (WORM) - A hard drive that can only be written to once, but read many times. Fire Suppression System - An oxygen suppressant system that starves a fire to prevent damage to equipment. CompTIA Security+ (SY0 -601) Exam Questions and Answers Graded A 100% Verified 2 Disable User Accounts - When someones leaves a company, their account is disabled and password changed immediately. Operating System Hardening - The operating system is fully patched, all unused features and services are disabled. Identification (Access Controls) - An identifying piece of information such as a number or list of characters. Security Identifier (SID) - An identifier, that is tied to an account. Authentication (Access Controls) - The person making the request, is who they say they are. Authorisation (Access Controls) - The amount of access given to a user. New Technology File System (NTFS) - A proprietary file system created by Microsoft. Discretionary Access Control (DAC) - A control system, that the user is only given access, that they need to perform their job. Full Control (DAC) - The user has full control. Modify (DAC) - The user can change, read and execute data. Read and Execute (DAC) - The user can read the data or run the program. List Folder Contents (DAC) - The user can see the directory and its subdirectories. Read (DAC) - The user can read the data. Write (DAC) - The user can write to the file. Special Permissions (DAC) - The user has granular access. Data Creator/Owner (DAC) - The user has permission to get permissions for other users. Mandatory Access Control (MAC) - A classification of data based on how much damage it could cause. Top Secret (MAC) - The highest level of damage. Secret (MAC) - Causes serious damage. 3 Confidential (MAC) - Causes damage. Restricted (MAC) - Has an undesirable effect. Owner (MAC) - The user who writes data and determines classification. Steward (MAC) - The user who labels the data. Custodian (MAC) - The user who stores and manages classified data. Security Administrator (MAC) - The user who gives access to classified data, once approved. Role-Based Access Control (RBAC) - An access control system, which uses roles to determine access. Rule Based Access Control (RBAC) - An access control system, which uses rules to determine access. Attribute -Based Access Controls (ABAC) - An access control system, which uses account attributes to determine access. Group -Based Access Control (GBAC) - An access control system, which uses account groups to determine access. Linux -Based Access Control (LBAC) - An access control system, which is used by Linux to determine access and uses a numeric or alpha format. Owner (LBAC) - The first number listed in the LBAC permissions. Group (LBAC) - The second number listed in the LBAC permissions. All other uses (LBAC) - The third number listed in the LBAC permissions. Read (LBAC) - Represented as an 'r' in LBAC permissions. Write (LBAC) - Represented as an 'w' in LBAC permissions. Execute (LBAC) - Represented as an 'x' in LBAC permissions. Signage - Highly visible signs warning, this is a secure area. Fence/Gates - Used to block unauthorised physical access to a secure area. Armed Guards - People who manage physical access to a secure area. 4 Lighting - Used to illuminate areas, which could be used to gain unauthorised access to a secure area. Cameras - Used to monitor the perimeter of a secure area. Robot Sentries - Robots used to patrol the perimeter of a secure area. Industrial Camouflage - Camouflage used by buildings to obscure the building from aerial photos. Two-Person Integrity/Control - When two people are guarding a secure area, in case one is occupied with something else. Badge - An item with a photo, name and signature, used to identify someone. Key Management - Departmenta l keys are signed in and out, to prevent someone from taking keys away and making copies. Mantrap - A turnstile device used to limit one person from entering at a time. Proximity Card - Contactless card used to gain access to secure areas. Tokens (Physical) - Small physical device used to gain access to a secure area. Biometric Lock - A lock that uses biometric authentication. Eletronic Lock - A lock that uses a PIN code to allow access. Internal Protection - Separation of secure and non-secure areas. Conduit - A container to secure cables from tampering or being destroyed. Heating, Ventilation , and Air Conditioning (HVAC) - A system used to control environmental conditions within a building. Cable Lock - A cable with a lock at the end, to stop people from stealing devices. Air Gap - A computer with no network connections. USB Data Blocker - A device that blocks the data pins on a USB device. Juice Jacking - Stealing data from a machine when it's charging. Vault - A cloud server that stores encrypted data. Faraday Cage - A metal structure that blocks wireless or cellular signals.
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller gradebooster. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $15.49. You're not tied to anything after your purchase.
