DAS
Refer to Chapter 2 - Slides 14 - Data at Rest

Direct-attached storage (DAS) is storage connected to a computer. A hard drive or USB flash drive is an example of direct-attached storage.

NAS
Refer to Chapter 2 - Slides 15 - Data at Rest

A network attached storage (NAS) device is a storage device connected to a network that allows storage and retrieval of data from a centralized location by authorized network users. NAS devices are flexible and scalable, meaning administrators can increase the capacity as needed.

SAN
Refer to Chapter 2 - Slides 15 - Data at Rest

A storage area network (SAN) architecture is a network-based storage system. SAN systems connect to the network using high-speed interfaces allowing improved performance and the ability to connect multiple servers to a centralized disk storage repository

RAID
Refer to Chapter 2 - Slides 15 - Data at Rest

Redundant array of independent disks (RAID) uses multiple hard drives in an array, which is a method of combining multiple disks so that the operating system sees them as a single disk. RAID provides improved performance and fault tolerance

at rest
Refer to curriculum topic: 2.3.1

The protection of the cyber world requires cybersecurity professionals to account for the safeguarding of data in-transit, in-cloud, and at rest.

encrypted

in-process

in-transit

hashing
Refer to Chapter 2 - Slides 11 - Integrity

Methods used to ensure data integrity include hashing, data validation checks, data consistency checks, and access controls.

repudiation

availability
Refer to Chapter 2 - Slides 12 - Availability

Data availability is the principle used to describe the need to maintain availability of information systems and services at all times. Cyberattacks and system failures can prevent access to information systems and services.

data consistency checks

accounting
Refer to Chapter 2 - Slides 8 - Confidentiality

Accounting keeps track of what users do, including what they access, the amount of time they access resources, and any changes made.

authentication
Refer to Chapter 2 - Slides 8 - Confidentiality

Authentication verifies the identity of a user to prevent unauthorized access. Users prove their identity with a username or I.D

authorization
Refer to Chapter 2 - Slides 8 - Confidentiality

Authorization services determine which resources users can access, along with the operations that users can perform. Authorization can also control when a user has access to a specific resource.

biometric

Blowfish

MD5
Refer to Chapter 2 - Slides 11 - Integrity

Common hash functions include MD5, SHA-1, SHA-256, and SHA-512. These hash functions use complex mathematical algorithms. The hashed value is simply there for comparison. For example, after downloading a file, the user can verify the integrity of the file by comparing the hash values from the source with the one generated by any hash calculator.

RSA

SHA

backups
Refer to Chapter 2 - Slides 11 - Integrity

Accurate backups help to maintain data integrity if data becomes corrupted. An organization needs to verify its backup process to ensure the integrity of the backup before data loss occurs.

Refer to Chapter 2 - Slides 12 - Availability

Methods used to ensure availability include system redundancy, system backups, increased system resiliency, equipment maintenance, up-to-date operating systems and software, and plans in place to recover quickly from unforeseen disasters

encryption
Refer to Chapter 2 - Slides 7 - Confidentiality

Methods used to ensure confidentiality include data encryption, authentication, and access control.

hashing
Refer to Chapter 2 - Slides 11 - Integrity

Methods used to ensure data integrity include hashing, data validation checks, data consistency checks, and access controls. Data integrity systems can include one or more of the methods listed above.

version control
Refer to Chapter 2 - Slides 11 - Integrity

Organizations use version control to prevent accidental changes by authorized users. Two users cannot update the same object. Objects can be files, database records, or transactions. For example, the first user to open a document has the permission to change that document; the second person has a read-only version.