Deck 1: Computer and Network Security Concepts

Integrity can apply to a stream of messages, a single message, or
selected fields within a message.

Information security and network security are subsets of
cybersecurity.

Security services implement security policies and are
implemented by security mechanisms.

An active attack attempts to alter system resources or affect their
operation.

the emphasis in dealing with active attacks is on prevention
rather than detection.

Security attacks are classified as either passive or aggressive.

Passive attacks are very easy to detect because they involve
alteration of the dat
A.

Data authenticity assures that private or confidential information is
not made available or disclosed to unauthorized individuals.

the OSI security architecture focuses on security attacks,
mechanisms, and services.

the OSI security architecture focuses on security attacks,
mechanisms, and services.

the denial of service prevents or inhibits the normal use or
management of communication facilities.

the connection-oriented integrity service addresses both
message stream modification and denial of service.

Cybersecurity strives to ensure the attainment and maintenance of
the security properties of the organization and users' assets against relevant security risks in the cyberspace environment.

Authentication exchange is the use of a trusted third party to
assure certain properties of a data exchange.

the emphasis in dealing with __________ attacks is on prevention rather than detection.

Active attacks can be subdivided into four categories: replay, __________ , modification of messages, and denial of service.

__________ is the property of a system, or a system resource being accessible and usable upon demand by an authorized system entity, according to performance specifications for the system.

__________ prevents either sender or receiver from denying a transmitted message.

A ______________ is a process (or a device incorporating such a process) that is designed to detect, prevent, or recover from a security attack.

__________ is the insertion of bits into gaps in a data stream to frustrate traffic analysis attempts.

Digital __________ is data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of the data unit and protect against forgery.

the general security objectives of cybersecurity comprise the following: availability; integrity, which may include data authenticity and nonrepudiation; and __________ .

A __________ attack attempts to learn or make use of information from the system but does not affect system resources.

An ___________ is any kind of malicious activity that attempts to collect, disrupt, deny, degrade, or destroy information system resources or the information itself.

__________ is a measure of the extent to which an entity is threatened by a potential circumstance or event, and typically a function of 1) the adverse impacts that would arise if the circumstance or event occurs; and 2) the likelihood of occurrence.

__________ is a characteristic of an entity that reflects the degree to which that entity is deserving of trust.

A __________ number generator produces a deterministic sequence of numbers or bits that has the appearance of being a truly random sequence.

Encryption algorithms that use a single key are referred to as ___________ encryption algorithms.

Cryptographic algorithms can be divided into three categories: keyless, __________ , and two-key.