Exam 1: Computer and Network Security Concepts

An ___________ is any kind of malicious activity that attempts to collect, disrupt, deny, degrade, or destroy information system resources or the information itself.

Encryption algorithms that use a single key are referred to as ___________ encryption algorithms.

A _________ is a value computed with a cryptographic algorithm and associated with a data object in such a way that any recipient of the data can use the signature to verify the data's origin and integrity.

A(n) __________ service is one that protects a system to ensure its availability and addresses the security concerns raised by denial-of-service attacks.

Information security and network security are subsets of cybersecurity.

A loss of __________ is the unauthorized disclosure of information.

Cryptographic algorithms can be divided into three categories: keyless, __________ , and two-key.

Authentication exchange is the use of a trusted third party to assure certain properties of a data exchange.

A ______________ is a process (or a device incorporating such a process) that is designed to detect, prevent, or recover from a security attack.

Data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of the data unit and protect against forgery is a(n) ___________ .

__________ is a measure of the extent to which an entity is threatened by a potential circumstance or event, and typically a function of 1) the adverse impacts that would arise if the circumstance or event occurs; and 2) the likelihood of occurrence.

A __________ is any action that compromises the security of information owned by an organization.

__________ is the protection of transmitted data from passive attacks.

__________ is the insertion of bits into gaps in a data stream to frustrate traffic analysis attempts.

A(n) __________ is any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, or the Nation through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service.

Passive attacks are very easy to detect because they involve alteration of the dat A.

A common technique for masking contents of messages or other information traffic so that opponents can not extract the information from the message is __________ .

Cybersecurity strives to ensure the attainment and maintenance of the security properties of the organization and users' assets against relevant security risks in the cyberspace environment.

the connection-oriented integrity service addresses both message stream modification and denial of service.

Security services implement security policies and are implemented by security mechanisms.