What is a Threat in the context of information security?

A possibility of data or systems being compromised

An organizational resource being protected

The act of verifying identification

A weakness in data confidentiality

What do Security Controls refer to?

Safeguards or countermeasures used to protect data and infrastructure

Regulations on user access levels

Processes to limit or allow access based on roles

What is the purpose of Administrative Network Security?

Manage user access levels within the network

Focus on protecting data within the network

Prevent unauthorized personnel from accessing network components

Implement measures to ensure only authorized individuals interact with network elements

What is Cryptology concerned with?

Providing confidentiality, integrity, and accuracy

Transforming information into a form that is impossible to duplicate

Converting plaintext into cipher text

Storing data in secure and secret form

What do Security Tools refer to?

Software applications and solutions designed to enhance the security of computer systems, networks, and data.

Act as a barrier between a trusted internal network and untrusted external networks, controlling incoming and outgoing traffic based on predefined security rules.

Detect, prevent, and remove malicious software from a computer system.

Monitor network traffic for suspicious activity or unauthorized access attempts and alert administrators.

What do Security Tools refer to?What is the purpose of Firewalls?

Act as a barrier between a trusted internal network and untrusted external networks, controlling incoming and outgoing traffic based on predefined security rules.

Software applications and solutions designed to enhance the security of computer systems, networks, and data.

Detect, prevent, and remove malicious software from a computer system.

Monitor network traffic for suspicious activity or unauthorized access attempts and alert administrators.

What is the function of Antivirus/Anti-malware Software?

Detect, prevent, and remove malicious software from a computer system.

Software applications and solutions designed to enhance the security of computer systems, networks, and data.

Act as a barrier between a trusted internal network and untrusted external networks, controlling incoming and outgoing traffic based on predefined security rules.

Monitor network traffic for suspicious activity or unauthorized access attempts and alert administrators.

What do Intrusion Detection Systems (IDS) do?

Monitor network traffic for suspicious activity or unauthorized access attempts and alert administrators.

Software applications and solutions designed to enhance the security of computer systems, networks, and data.

Act as a barrier between a trusted internal network and untrusted external networks, controlling incoming and outgoing traffic based on predefined security rules.

Detect, prevent, and remove malicious software from a computer system.

What do Vulnerability Scanners help organizations with?

Identify security weaknesses in systems, applications, or networks.

Assist in bookkeeping and accounting.

Scan barcodes at a supermarket.

What do Data Loss Prevention (DLP) tools prevent?

Unauthorized access, transmission, or leakage of sensitive data by monitoring and enforcing data usage policies.

Manage user identities, permissions, and access rights within an organization's IT environment.

Individual devices such as computers, laptops, smartphones, and tablets from malware, unauthorized access, and other security threats.

Collect, analyze, and correlate security event data from various sources across an organization's IT infrastructure.

What is the function of Identity and Access Management (IAM) solutions?

Manage user identities, permissions, and access rights within an organization's IT environment.

Unauthorized access, transmission, or leakage of sensitive data by monitoring and enforcing data usage policies.

Individual devices such as computers, laptops, smartphones, and tablets from malware, unauthorized access, and other security threats.

Collect, analyze, and correlate security event data from various sources across an organization's IT infrastructure.

What is the goal of vulnerability analysis?

To identify, assess, and prioritize weaknesses in systems

To create new vulnerabilities in organizations

To hack into networks and applications

Which type of vulnerability analysis focuses on network infrastructure?

Web Application Vulnerability Analysis

Host-based Vulnerability Analysis

Physical Security Vulnerability Analysis

What does Network Device Security refer to?

Monitoring and protecting internet-connected devices within a network

Controlling network bandwidth usage

Securing physical access points only

What is the difference between a software firewall and a hardware firewall?

Software firewalls are installed on servers or virtual machines, while hardware firewalls are physical devices

Software firewalls are more secure than hardware firewalls

Software firewalls are only used for cloud deployment, while hardware firewalls are for physical deployment

Hardware firewalls are more cost-effective than software firewalls

What is the purpose of Content Filtering?

Helping users filter or categorize content according to certain parameters

Providing unlimited access to all websites

What is the function of Blacklisting?

Blocking items by adding them to a banned list

What does Whitelisting do?

Allows content by adding items to an allowed list

Provides unlimited access to all websites

What is the purpose of a honeypot in network security?

To trap hackers within the system

To provide free internet access

What is the purpose of protocol spoofing in network attacks?

To misrepresent a network protocol to attack a network

To create a secure tunnel over a public network

What is the role of IPsec in network security?

To protect data by creating an encrypted tunnel

To provide free internet access

What is the purpose of network sniffing tools?

To analyze data packets in a network

To block all incoming connections

To trap hackers within the system

What are the main threats for physical and environmental security?

Energy, equipment, fire, and human threats

Cyber attacks, phishing, and malware

Financial fraud, insider threats, and espionage

What do Content Filters control in the context of Preventive Information Assurance Tools?

Access to specific portions of the Internet based on policy

Access to online shopping websites

Access to social media websites

What is the primary function of Cryptographic Protocols and Tools in information security?

To hide information and provide confidentiality, integrity, and nonrepudiation protection

To provide physical security to buildings

To monitor network traffic for anomalies

What is the purpose of Firewalls in information assurance technology?

To act as a primary control for network security

To establish virtual private networks

To provide secure communication over public networks

What is the role of a Network Intrusion Prevention System (NIPS) in preventing attacks?

To inspect network traffic based on organizational policy and detect attacks

To manage hardware and software configurations

To provide secure communication between clients and the Internet

What is the purpose of a Virtual Private Network (VPN) in network security?

To provide secure communication over public networks

To act as a backup system for data

To manage configuration changes in IT systems

To monitor and prevent network intrusions

Why is Change Management important in organizations?

To manage and implement changes to IT infrastructure in a controlled manner

To provide IT support for day-to-day operations

To ensure proper labeling of media

To establish secure communication channels

What is the purpose of Backups in information assurance?

To provide a copy of information assets and ensure business continuity

To track changes to configuration items

To act as a proxy server for network connections

To prevent unauthorized access to media

What do Media Controls and Documentation address in information security?

Safeguarding all media including tapes, disks, and printouts

Protection against natural disasters

Ensuring proper encryption of data transmissions

Managing hardware and software configurations

What is the purpose of Patch Management in maintaining IT systems?

To perform planned and timely system patches to mitigate security vulnerabilities

To ensure standardized methods and procedures for implementing changes

To provide IT support for day-to-day operations

To track changes to configuration items

What is the main purpose of an access control system?

To prevent actions on an object by unauthorized individuals

To improve network connectivity

To increase system storage capacity

Which type of access control model uses a centrally managed set of rules based on subject roles?

Role-Based Access Control Model

Discretionary Access Control Model

What is the benefit of using a Role-Based Access Control (RBAC) model?

It simplifies access management as subjects acquire permissions through their roles

It is only suitable for small organizations

It requires constant maintenance and monitoring

It allows subjects to directly assign permissions to objects

What is the benefit of using a Role-Based Access Control (RBAC) model?

It simplifies access management as subjects acquire permissions through their roles

It is only suitable for small organizations

It requires constant maintenance and monitoring

It allows subjects to directly assign permissions to objects

What is the purpose of a Constrained User Interface in access control?

To restrict access to specific resources based on subject privileges

To provide unlimited access to all subjects

To limit access to resources based on subject roles

To grant access to all resources without any restrictions

In which access control model does the system decide on access control based on information security classification and policy rules?

Role-Based Access Control Model

Discretionary Access Control Model

Which mode of access control administration gives control to people closer to the objects?

Decentralized Access Control Administration

Role-Based Access Control Administration

Centralized Access Control Administration

Mandatory Access Control Administration

What is the purpose of an Access Control Matrix?

To represent accessibility using individual or group permissions

To use simple rules to determine privileges

To control access based on information security classification

To determine access rights based on subject roles

Which technique aims at controlling the availability of information by means of views in databases?

Content-Dependent Access Control

Context-Dependent Access Control

MidExam InfoAssuSec2

Authored by Jhenice Sacdalan

Computers

University

Used 7+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

50 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What are the Five Information Assurance Pillars?

Confidentiality, Integrity, Availability, Authentication, Authorization

Confidentiality, Integrity, Availability, Authorization, Non-Repudiation

Confidentiality, Integrity, Availability, Authentication, Non-Repudiation

Confidentiality, Integrity, Availability, Authentication, Accountability

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the main goal of Information Assurance?

To ensure the confidentiality, integrity, and availability of information

To delete all information

To provide unlimited access to information

To restrict access to information

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the main purpose of Security Countermeasures in Information Assurance?

To slow down information processing

To protect information systems from threats

To expose information to unauthorized parties

To increase vulnerabilities

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What does Defense in Depth refer to?

Securing the physical door

Security through layers of a building

Securing only the external perimeter

Securing only the internal part of a building

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is part of the CIA Triangle?

Confidentiality, Integrity, and Authorization

Confidentiality, Integrity, and Authentication

Confidentiality, Integrity, and Accountability

Confidentiality, Integrity, and Availability

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the main goal of Non-repudiation?

Proving the legitimacy of a message or data transfer

Ensuring data is accurate and valid

Protecting data from unauthorized changes

Providing undeniable evidence of authenticity and integrity

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What are Assets in the context of information security?

Organizational resources being protected

Weaknesses in data confidentiality

Probabilities of threats becoming realities

Parameters implemented to protect data

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

50 questions

UH 1

Quiz

•

University

45 questions

Microsoft Excels: Formulas and Functions

Quiz

•

12th Grade - University

50 questions

RIA Revision for Class Test_Set 2

Quiz

•

University

48 questions

Audit Sistem Informasi Quiz UTS Bag_1

Quiz

•

University

50 questions

ICT 201-250

Quiz

•

University

45 questions

Computer Hardware and Software Review

Quiz

•

KG - University

50 questions

VIRUS AND ANTIVIRUS

Quiz

•

10th Grade - University

45 questions

Davinci Resolve 17 Fusion 101

Quiz

•

11th Grade - Professi...

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

20 questions

Figurative Language Review

Quiz

•

6th Grade

Discover more resources for Computers

30 questions

Quiz 1 Review

Quiz

•

University