What is CERT /CC? - ANSWERS-This nongovermental entity is interested entity is
interested in any computer security incidents involving the Internet
What is IAIP apart of and what it it interested in? - ANSWERS-This org is apart of
DHS, and it is interested in any threats to critical US infrastructure.
*Any incident that involves compromised PII must be reported to US-CERT within
one hour regardless of the incident category reporting time frame. True or False?
- ANSWERS-True
What are Federal Agency Incident Reporting Categories - ANSWERS-CAT 0 -
Exercise/Network Defense Testing
CAT 1 - *Unauthorized Access
CAT 2 - *Denial of Service
CAT 3 - * Malicious Code
CAT 4 - * Inappropriate Usage
,CAT 5 - Scans/Probes/Attempted Access
CAT 6 - Investigation
What is NIST 800-63 - ANSWERS-E-Auth (IA)
What is NIST 800-88 - ANSWERS-Sanitization (MP)
What is FIPS 140-2 - ANSWERS-Crypto
What is FIP 197 - ANSWERS-AES
What is FIPS 201 - ANSWERS-PIV (IA)
What are Encryptions Standards? - ANSWERS-FIP 140-2
-Level 1 - Basic
-Level (EAL) 2 - Tamper-evidence, requires role based authentication
What does NIST 800 56 and 800 57 address? - ANSWERS-Key Management
,What is NIST 800-111 - ANSWERS-Storage Encryption
What are some Storage Encryption Technologies? - ANSWERS-Full disk encryption
Virtual Disk encryption
Volume encryption
File encryption
What are Media Sanitization? - ANSWERS-Disposal - Discarding media with no
other sanitization consideration
Cleaning - Must not allow information to be retrieved by data, disk, or file
recovery utilities
Purging - Protects the confidentiality of data against a laboratory attack
Destroying - Ultimate form of santization: disintegration, incineration,
pulverizing,shredding, and melting
What is NIST 800-46 - ANSWERS-Telework/Remote Access
What NIST documents cover PIV? - ANSWERS-SP-73 - PIV
SP-76 Biometric / PIV
SP-78 Crypto /PIV
What are Physical Access Controls? - ANSWERS-Badges
, Memory cards
Guards
Keys
True-floor-to-true-ceiling wall construction
Fences
Locks
What does 5 CFR 731.106 address? - ANSWERS-Sutiability - Designation of public
trust positions and investigative requirements
What does Intelligence Community Directive (ICD) 704 address? - ANSWERS-
Personnel Security Standards
What the staffing process? - ANSWERS-Position Description
Determine Position Sensitivity
Fill Position
Employee Training and Awareness
What does User Administration cover? - ANSWERS-User Account Managment
Audit and Managment Reviews
Detecting Unauthorized/Illegal Activities
Temporary Assisgnment and In-house Transfers
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Teacher101. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $17.99. You're not tied to anything after your purchase.