Threats & Attacks
Physical Threats
Network & Hosts Design
Devices & Infrastructure
Identity, Access, & Account Mgt.
100

A skilled hacker who uses knowledge and skills only for defensive purposes.

White Hat

100

The first measure in physically securing a building is to secure the perimeter and restrict access to secure entry points.

Perimeter barriers

100

Is a quick fix for a problem.

Hotfix

100

This is broadcasted network is used on most internal networks so that internal users do not require a physical connection to a router or switch. 

Wireless

100

This specifies the name used to identify the subject. Examples include a user name or a user ID number. 

Identification

200

May cross the line of what is ethical, but usually has good intentions and isn't malicious.

Gray Hat

200

This policy ensures that hardware does not leave the organization's premises without a manager's approval. 

Checkout policy

200

Is also a quick fix, but generally more thoroughly tested than a hotfix and designed for a wider deployment.

Patch

200

This is often used to grant resource access to business partners, suppliers, and even customers outside of the organization. 

Extranet

200

This access controls deter intrusion or attacks. These include separation of duties and dual-custody processes.

Preventive

300

Is the process of manipulating others into providing sensitive information.

Social Engineering

300

These are designed to block all electromagnetic emissions. 

Faraday cage

300

Is a standalone storage device or appliance that acts as a file server.

Network attached storage (NAS)

300

This is a type of firewall that stands as an intermediary between clients requesting resources from other servers. 

Proxy server

300

This describes the restriction of data that is highly sensitive and is usually referenced in government and military context.

Need to know

400

In security is the constant change in personal habits and passwords to prevent predictable behavior.

Randomness

400

Is the process of making copies of smart cards.

Card cloning

400

This permissions control access through a network connection with the file server. 

Share

400

This controls access to the network by not allowing computers to access network resources unless they meet certain predefined security requirements. 

Network Access Control (NAC)

400

This requires you to perform a particular action to verify your identity.

Something you can do

500

Uses legitimate programs to infect a computer. Because it doesn’t rely on files, it leaves no footprint, making it undetectable by most antivirus, whitelisting, and other traditional endpoint security solutions.

Fileless virus

500

Is a security method in which a computer, a server, or a small network of computers is physically isolated from the internet or other unsecured networks.

Air gap

500

Both share and NTFS permissions use a this for controlling access.

Discretionary Access Control list (DACL)

500

Port authentication is provided by this protocol and allows only authenticated devices to connect to the LAN through the switch.

802.1x

500

Typically have RAM, ROM, programmable ROM, and a microprocessor integrated within.

Smart Cards

M
e
n
u