Exam 1: Computer Systems Overview

A(n)_________ is any means taken to deal with a security attack.

The more critical a component or service,the higher the level of availability required.

Misappropriation and misuse are attacks that result in ________ threat consequences.

__________ is the insertion of bits into gaps in a data stream to frustrate traffic analysis attempts.

T F 4.Availability assures that systems works promptly and service is not denied to authorized users.

A(n)__________ is an action,device,procedure,or technique that reduces a threat,a vulnerability,or an attack by eliminating or preventing it,by minimizing the harm it can cause,or by discovering and reporting it so that correct action can be taken.

A(n)_________ assessment is periodically assessing the risk to organizational operations,organizational assets,and individuals,resulting from the operation of organizational information systems and the associated processing,storage,or transmission or organizational information.

Assurance is the process of examining a computer product or system with respect to certain criteria.

A flaw or weakness in a system's design,implementation,or operation and management that could be exploited to violate the system's security policy is a(n)__________.

The assurance that data received are exactly as sent by an authorized entity is __________.

Computer security is essentially a battle of wits between a perpetrator who tries to find holes and the administrator who tries to close them.

An assault on system security that derives from an intelligent act that is a deliberate attempt to evade security services and violate the security policy of a system is a(n)__________.

__________ assures that individuals control or influence what information related to them may be collected and stored and by whom and to whom that information may be disclosed.

Security implementation involves four complementary courses of action: prevention,detection,response,and _________.

Hardware is the most vulnerable to attack and the least susceptible to automated controls.

The _________ prevents or inhibits the normal use or management of communications facilities.

Masquerade,falsification,and repudiation are threat actions that cause __________ threat consequences.

An example of __________ is an attempt by an unauthorized user to gain access to a system by posing as an authorized user.

________ assures that a system performs its intended function in an unimpaired manner,free from deliberate or inadvertent unauthorized manipulation of the system.

A(n)_________ is a threat that is carried out and,if successful,leads to an undesirable violation of security,or threat consequence.