Exam 1: Introduction to Information Security

In file hashing, a file is read by a special algorithm that uses the value of the bits in the file to compute a single number called the __________ value.

The senior technology officer is typically the chief ____________________ officer.

A potential weakness in an asset or its defensive control system(s) is known as a(n) ​_________.

The __________ design phase of an SDLC methodology is implementation independent, meaning that it contains no reference to specific technologies, vendors, or products.

During the early years of computing, the primary threats to security were physical theft of equipment, espionage against the products of the systems, and sabotage.

The probability of an unwanted occurrence, such as an adverse event or loss, is known as a(n) _________.

Which of the following phases is often considered the longest and most expensive phase of the systems development life cycle?

A data custodian works directly with data owners and is responsible for the storage, maintenance, and protection of the information.

Software is often created under the constraints of ____________________ management, placing limits on time, cost, and manpower.

The CNSS model of information security evolved from a concept developed by the computer security industry known as the ____________________ triad.

The famous study entitled "Protection Analysis: Final Report" focused on a project undertaken by ARPA to understand and detect __________ in operating systems security.

The Security Development Life Cycle (SDLC) is a general methodology for the design and implementation of an information system. _________________________

Outline types of data ownership and their respective responsibilities.

During the ____________________ War, many mainframes were brought online to accomplish more complex and sophisticated tasks, so it became necessary to enable the mainframes to communicate via a less cumbersome process than mailing magnetic tapes between computer centers.

Information security can begin as a grassroots effort in which systems administrators attempt to improve the security of their systems, often referred to as the bottom-up approach. _________________________

The physical design is the blueprint for the desired solution.

Hardware is the physical technology that houses and executes the software, stores and transports the data, and provides interfaces for the entry and removal of information from the system. _________________________

In an organization, the value of ____________________ of information is especially high when it involves personal information about employees, customers, or patients.

A computer is the __________ of an attack when it is used to conduct an attack against another computer.

__________ security addresses the issues necessary to protect the tangible items, objects, or areas of an organization from unauthorized access and misuse.