wgu d430 fundamentals of information security exam
Written for
WGU D430
All documents for this subject (225)
Seller
Follow
ACADEMICAIDSTORE
Reviews received
Content preview
WGU D430 Fundamentals of Information Security
Exam Questions and Correct Answers, 95 Q&A.
100% Correct. With Complete Solution.
Define the confidentiality in the CIA triad.
Our ability to protect data from those who are not authorized to view it.
Examples of confidentiality
A patron using an ATM card wants to keep their PIN number confidential.
An ATM owner wants to keep bank account numbers confidential.
How can confidentiality be broken?
Losing a laptop
An attacker gets access to info
A person can look over your shoulder
Define integrity in the CIA triad.
The ability to prevent people from changing your data and the ability to reverse unwanted changes.
How do you control integrity?
Permissions restrict what users can do (read, write, etc.)
Examples of integrity
Data used by a doctor to make medical decisions needs to be correct or the patient can die.
Define the availability in the CIA triad.
Our data needs to be accessible when we need it.
How can availability be broken?
Loss of power, application problems. If caused by an attacker, this is a Denial of Service attack.
Define information security.
The protection of information and information systems from unauthorized access, use, disclosure,
disruption, modification, or destruction in order to provide confidentiality, integrity, and availability.
Define the Parkerian Hexad and its principles.
The Parkerian Hexad includes confidentiality, integrity, and availability from the CIA triad. It also includes
possession (or control), authenticity, and utility.
, Authenticity
Whether the data in question comes from who or where it says it comes from (i.e. did this person
actually send this email?)
Confidentiality is affected by what type of attack?
Interception (eaves dropping)
Integrity is affected by what type of attacks?
Interruption (assets are unusable), modification (tampering with an asset), fabrication (generating false
data)
Authenticity is affected by what type of attacks?
Interruption (assets are unusable), modification (tampering with an asset), fabrication (generating false
data)
Utility
How useful the data is to you (can be a spectrum, not just yes or no)
Possession
Do you physically have the data in question? Used to describe the scope of a loss
Identify the four types of attacks
interception, interruption, modification, and fabrication
Interception attacks
Make your assets unusable or unavailable
Interruption attacks
cause assets to become unusable or unavailable for our use, on a temporary or permanent basis
Modification attacks
Tampering with an asset
Fabrication attacks
Generating data, process, and communications
Define the risk management process
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller ACADEMICAIDSTORE. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $11.49. You're not tied to anything after your purchase.
