EIDWS COMMON CORE pt2 Jeopardy Template

SECURITY

INFORMATION ASSSURANCE

NETWORKS

COMMUNICATIONS

OPERATIONS

100

Classification categories and color associated with each

What is Top Secret-Orange, Secret-Red, Confidential-Blue, Unclassified-Green

100

Five attributes of IA

What is Confidentiality, Integrity, Availability, Non-repudation, Authentication

100

Layers of Routing and Common Devices

What is Access-Small Office/Home Office (SOHO) routers. Distribution-Aggregte traffic from mulitple access routers to a major enterprise location. Core-backbone interconnecting distro tier routers from mulitple buildings of a campus or large enterprise locations

100

Explain GINGERBREAD, BEAD WINDOW, RIVER CITY, TEMPEST

What is GINGERBREAD-code word used to alert that there is an intruder on the voice network. BEAD WINDOW-real time procedure that brings the immediate attention of circuit operators that an EEFI disclosure occured. RIVER CITY-comms is cut/limited as a precautionary tactic when sensitive mission, even will be or is taking place. There are 4 levels. TEMPEST-unclass code name reffering to investigations & studies of compromising emanations.

100

Primary Warfare Areas

What is ASW, SUW, IW, AW, STW, NSW

200

SSBI & NACLC

What is Single Scope Background Investigation. Good for 5 years. National Agency Check w/ Local Agency & Credit Checks. Good for 10 years.

200

Nine Categories of Computer Incidents

What is Root Level Intrusion, User Level Intrusion, Denial of Service, Malicious Logic, Unsuccessful Activity Attempt, Non-Compliance Activity, Reconnaissance, Investigating, Explained Anomaly

200

Topology

What is Bus, Star, Ring, Mesh

200

ADNS, CUDIXS, VERDIN, NOVA, IBS, INMARSAT, DMS, VTC, DCO

What is Automated Digital Network System, Common User Digital Information Exchange System, VERy low frequency Digital Information Network, Integrated Broadcast Service, INternational MARItime SATellite, Defence Messaging System, Video TeleConference, Defence Connect Online

200

Core pillars of IO

What is computer network defence, computer network attack, military deception, OPSEC, psychological ops, electronic warfare.

300

SECURITY FORMS: SF700, SF701, SF702, SF703, SF153, SF312

What is SF700-Stores Combos, SF701-End of Day Check, SF702-Open/Close Log, SF703-TS Cover Sheet, SF153-COMSEC Material Report, SF312-Classified Information Nondisclosure Agreement

300

Difference between vulnerability and threat

What is vulnerability is an actual weakness in an information system/could be exploited. Threat is a circumstance or event with potential to adversely impact organizational ops via unauthorized access.

300

LAN, WAN, MAN, GAN

What is LAN-comp network covering a small physical area. WAN-network covering a broad area. MAN-large comp network spanning city or large campus. GAN-composed of different interconnected computer networks and covers an unlimited geographical area (internet, google)

300

List components of a standard navy message.

What is FL/2: Message Header, FL/4: Classification, FL5: DTG, FL/6: From, FL/7: To, FL/8: INFO, FL12: Subject-Classification-Body.

300

Explain difference between USC Title 10 & USC Title 50

What is Title 10=military punishment & articles of the UCMJ. Title 50= outlines the role of war & national defence/rules of engagement

400

THREATCON Levels

What is Level 1: Low-Basic network posture. Level 2: Medium-Increased alertness. Level 3: High-Known threat. Level 4: Extreme-Full alert

400

IAVA, IAVB, IAVT

What is Information Assurance Vulnerability Alert (announcement of high risk comp software). Information Assurance Vulnerability Bulletin (announcement of medium risk). Information Assurance Vulnerability Technical Advisory (announcement of low risk).

400

OSI (Open System Interconnection) Model

What is Application, Presentation, Session, Transport, Network, Data Link, Physical

400

R, P, O, Z, W

What is Message Precedences. R=Routine, 6 hrs. P=Priority, 3 hrs. O=Immediate, 30 min. Z=Flash, <10 min. W=Flash Override, <10 min---ASAP

400

Deployable Systems: CCOP, NITES, JDISS

What is CCOP=the Cryptologic Carry-On Program. NITES=Navy Integrated Environmental Support subsystem service. JDISS=Joint Deployable Intelligence Suppot System

500

Define RAM, EAP, EDP, SCI, ATFP, SSO, CSM, JPAS

What is Random Anti-Terrorism Measures, Emergency Action Plan, Emergency Destruction Procedures, Secret Compartmented Information, Anti-Terrorism Force Protection, Special Security Officer, Command Security Manager, Joint Personnel Adjudication System

500

Living document: formal agreement between DAA, Certification Authority, Program Manager, and user representative

What is System Security Authorization Agreement (SSAA)

500

Name/Explain threats to computers

What is Virus, Worm, Trojan, Backdoor, Phishing

500

EEFI List

What is Essential Elements of Friendly Info. Position, Capabilities, Operations, Electronic Warfare, Personnel, COMSEC, Wrong Circuit, NATO, CONUSNAVEUR, COMUSFLTFORCOM, COMPACFLT.

500

Deployable METOC teams

What is MIW UUV Platoons, NOAT, SGOT, MET, FST