Information Security
Goals Of Computer Security
Security Terms
Computer Security
?????????
100
Computer Security =
What is Informatio Security
100
Assurance that information is not disclosed to unauthorized persons, processes, or devices.
What is Confidentiality
100
Weakness in an information system like security procedures, design or implementation
What is Vulnerability
100
Active and ppassive measures designed to prevent unauthorized access and safeguard against espionage, sabotage, damage and theft. Typically devided into two categories: Envoronmental Security and People Security
What is Physical Security
100
Protection against intruders
What is People Security
200
Awareness of threats, minimizing vulnerabilities and employment of countermeasures to reduce problems with the goals of computer security
What is Information Assurance
200
Verification of identity of a use or user device.
What is Authentication
200
The probability that a given threat will exploit a given vulnerability and the existing countermeasure will not stop the threat
What is Risk
200
Protection against natural disasters
What is Environmental Security
200
A threat that can be anything such as an uneducated user, a disgruntled employee or a spy inside your organization
What is Internal
300
The use of measures and controls designed to ensure the confidentiality, integrity, availability, authenticity and non-repudiation of information systems assets to include hardware, software and information being processed, stored or communicated
What is COMPUSEC
300
Ensures computer resources operate correctly and data is accurate.
What is Integrity
300
Action, device procedure, technique or other measures that reduces the vulnerability of an information system
What is Countermeasure
300
Protection and control of electronic and mechanical equipment used for processing data
What is Hardware Security
300
A threat that can be terrorists, hackers or natural disasters outside of your organization
What is External
400
Investigation, studies and control of compromising emanation
What is TEMPEST
400
Assurance the sender of the data is provided with proof of delivery and the recipient is provided with proof of the sender’s identity.
What is Non-Repudiation
400
Anything with potential harm to an information system through unauthorized access, disclosure or modification of data
What is threat
400
Concept of applying multiple barriers to prevent malicious activity from entering your network
What is Multi-layred Defense
400
The two Primary networks utilized in the DoD are
What is SIPRNET, NIPRNET
500
Measures and controls taken to deny unauthorized persons information derived from telecommunication and ensure the authenticity of such telecommunications, to include cryptographic security, transmission security, emissions security and physical security of COMSEC material
What is COMSEC
500
The reliable and timely access to data and information services for authorized users
What is Availability
500
The corruption or loss of information due to ignorance or improper training is the example of this tye of threat
What is unintentional
500
Concerned with the control of software, operatings systems and utilities
What is Software Security
500
What CIK must be used in order to configure the TACLANE
What is Master CIK
M
e
n
u