Exam 1: Computer Systems Overview

In the context of security our concern is with the vulnerabilities ofsystem resources.

Security implementation involves four complementary courses of action: prevention, detection, response, and _________.

__________ is the insertion of bits into gaps in a data stream to frustrate traffic analysis attempts.

Misappropriation and misuse are attacks that result in ________ threat consequences.

Assurance is the process of examining a computer product or systemwith respect to certain criteria.

The assets of a computer system can be categorized as hardware, software, communication lines and networks, and _________.

Release of message contents and traffic analysis are two types of _________ attacks.

Masquerade, falsification, and repudiation are threat actions that cause __________ threat consequences.

Data integrity assures that information and programs are changed onlyin a specified and authorized manner.

Availability assures that systems works promptly and service is notdenied to authorized users.

A loss of _________ is the unauthorized disclosure of information.

Computer security is protection of the integrity, availability, andconfidentiality of information system resources.

Hardware is the most vulnerable to attack and the least susceptible toautomated controls.

________ assures that a system performs its intended function in an unimpaired manner, free from deliberate or inadvertent unauthorized manipulation of the system.

A __________ is data appended to, or a cryptographic transformation of, a data unit that allows a recipient of the data unit to prove the source and integrity of the data unit and protect against forgery.

A(n) _________ is an attempt to learn or make use of information from the system that does not affect system resources.

__________ assures that individuals control or influence what information related to them may be collected and stored and by whom and to whom that information may be disclosed.

The OSI security architecture focuses on security attacks, __________, and services.

An assault on system security that derives from an intelligent act that is a deliberate attempt to evade security services and violate the security policy of a system is a(n) __________.

Computer security is essentially a battle of wits between a perpetratorwho tries to find holes and the administrator who tries to close them.