100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
Previously searched by you
WGU D430 FUNDAMENTALS OF INFORMATION AND SECURITY YEAR 2024/2025 / ACCURATE CURRENTLY TESTING EXAM VERSIONS WITH ACTUAL QUESTIONS AND DETAILED ANSWERS WITH A STUDY GUIDE / EXPERT VERIFIED FOR GURANTEED PASS / LATEST UPDATE. $24.49
Add to cart
WGU D430 FUNDAMENTALS OF INFORMATION AND SECURITY YEAR 2024/2025 / ACCURATE CURRENTLY TESTING EXAM VERSIONS WITH ACTUAL QUESTIONS AND DETAILED ANSWERS WITH A STUDY GUIDE / EXPERT VERIFIED FOR GURANTEED PASS / LATEST UPDATE.
19 views 0 purchase
Course
WGU D430 FUNDAMENTALS OF INFORMATION AND SECURITY
Institution
WGU D430 FUNDAMENTALS OF INFORMATION AND SECURITY
WGU D430 FUNDAMENTALS OF INFORMATION AND
SECURITY YEAR 2024/2025 / ACCURATE CURRENTLY
TESTING EXAM VERSIONS WITH ACTUAL QUESTIONS AND
DETAILED ANSWERS WITH A STUDY GUIDE / EXPERT
VERIFIED FOR GURANTEED PASS / LATEST UPDATE.
WGU D430 FUNDAMENTALS OF INFORMATION AND
SECURITY YEAR 2024/2025 / ACCURATE CURRENTLY
TESTING EXAM VERSIONS WITH ACTUAL QUESTIONS AND
DETAILED ANSWERS WITH A STUDY GUIDE / EXPERT
VERIFIED FOR GURANTEED PASS / LATEST UPDATE.
Interception - CORRECT ANSWER Attacks allows unauthorized users to access our data,
applications, or environments. Are primarily an attack against confidentiality
Interruption - CORRECT ANSWER Attacks cause our assets to become unstable or unavailable
for our use, on a temporary or permanent basis. This attack affects availability but can also attack
integrity
Modification - CORRECT ANSWER Attacks involve tampering with our asset. Such attacks
might primarily be considered an integrity attack, but could also be an availability attack.
Fabrication - CORRECT ANSWER Attacks involve generating data, processes,
communications, or other similar activities with a system. Attacks primarily affect integrity but
can be considered an availability attack.
Risk - CORRECT ANSWER The likelihood that a threat will occur. There must be a threat and
vulnerability
Threat - CORRECT ANSWER Any event being man-made, natural or environmental that could
damage the assets
Vulnerabilities - CORRECT ANSWER Weakness that a threat event or the threat can take
advantage of
Impact - CORRECT ANSWER taking into account the assets cost
Controls - CORRECT ANSWER The ways we protect assets. Physical, technical/ logical, and
administrative
,Physical controls - CORRECT ANSWER Controls are physical items that protect assets. Think
of locks, doors, guards and fences
Technical/ logical controls - CORRECT ANSWER Controls are devices and software that
protect assets. Think of firewalls, av, ids, and ips
Administrative controls - CORRECT ANSWER Controls are the policies that organizations
create for governance. Ex: email policies
risk mamagement - CORRECT ANSWER A constant process as assets are purchased, used and
retired. The general steps are 1- identify assets
2- identify threats
3- assess vulnerabilities
4- assess risk
5- mitigating risks
Identify assets - CORRECT ANSWER First and most important part or risk management.
Identifying and categorizing the assets we are protecting
Identify threats - CORRECT ANSWER Once we have our critical assets we can identify the
threats that might effect them
Assess Vulnerabilities - CORRECT ANSWER Look at potential threats. any given asset may
have thousand or millions of threats that could impact it, but only a small fraction of the threats
will be relevant
Assess risks - CORRECT ANSWER Once we have identified the threats and vulnerabilities for a
given asset we can access the overall risk
Mitigating risks - CORRECT ANSWER Putting measures in place to help ensure that a given
type of threat is accounted for
,Incident response - CORRECT ANSWER Response to when risk management practices have
failed and have cause an inconvenience to a disastrous event
Preparation phase - CORRECT ANSWER The preparation phase consists of all of the activities
that we can preform in advance of the incident itself in order to better enable us to handle it
Detection and analysis phase - CORRECT ANSWER Where the action begins to happen. We
will detect the occurrence of an issue and decide whether or not it is actually an incident so that
we can respond
Containment phase - CORRECT ANSWER Taking steps to ensure that the situation does not
cause any more damage than it already has, or to at least lessen any ongoing harm.
Eradication phase - CORRECT ANSWER We will attempt to remove the effects of the issue
from our environment
Recovery phase - CORRECT ANSWER Recover to a better state that we were prior to the
incident or perhaps prior to when the issue started if we did not detect it immediately
Post incident activity phase - CORRECT ANSWER We attempt to determine specifically what
happened, why it happened, and what we can do to keep it from happening again.
Defense in depth - CORRECT ANSWER Layering of security controls is more effective and
secure than relying on a single control
, Identity - CORRECT ANSWER Who or what we claim to be ( username)
Authentication CORRECT ANSWER The act of proving who or what we claim to be (password)
Identity verification - CORRECT ANSWER -
The half step between identity and authentication (showing two forms of Id)
single-factor authentication - CORRECT ANSWER Involves the use of simply one of the three
available factors solely in order to carry out the authentication process being requested
Dual-factor authentication - CORRECT ANSWER An authentication method that includes
multiple methods for a single authentication transaction. Often referred to as "something you
have and something you know," when the factors include a device such as a smart card and a
secret such as a password or PIN.
Multi-factor authentication - CORRECT ANSWER Use of several authentication techniques
together, such as passwords and security tokens.
mutual authentication - CORRECT ANSWER The process where the session is authenticated on
both ends and just one end . Prevents man in the middle attacks
man-in-the-middle attack - CORRECT ANSWER a hacker placing himself between a client and
a host to intercept communications between them
brute force attack - CORRECT ANSWER the password cracker tries every possible combination
of characters to guess the password
Password manager - CORRECT ANSWER Programs that store all of the users passwords with a
master password
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller DrMedinaReed. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $24.49. You're not tied to anything after your purchase.