It is the quality or state of being secure-to be free from danger.

layers of security that protect physical items, objects, or areas from unauthorized access and misuse.

To protect the individual or group of individuals who are authorized to access the organization and its operations

To protect the details of a particular operation or series of activities

to protect communications media, technology, and content

to protect networking components, connections, and contents

to protect the confidentiality, integrity and availability of information assets, whether in storage, processing, or transmission.

Meaning of CNSS

Provides a graphical representation of the architectural approach widely used in computer and information security, it is known as the _______.

It is much more than computer hardware; it is the entire set of software, hardware, data, people, procedures, and networks that make possible the use of information resources in the organization.

A component of the IS comprises applications, operating systems, and assorted command utilities. ______ is perhaps the most difficult IS component to secure.

The physical technology that houses and executes the software, stores and transports the data, and provides interfaces for the entry and removal of information from the system.

Data stored, processed, and transmitted by a computer system must be protected. ______ is often the most valuable asset possessed by an organization and it is the main target of intentional attacks.

Though often overlooked in computer security considerations, _____ have always been a threat to information security. ______ can be the weakest link in an organization’s information security program.

_______ are written instructions for accomplishing a specific task. When an unauthorized user obtains an organization’s procedures, this poses a threat to the integrity of the information.

The IS component that created much of the need for increased computer and information security is networking. When information systems are connected to each other to form local area networks (LANs), and these LANs are connected to other networks such as the Internet, new security challenges rapidly emerge.

SDLC range from having phases?

It illustrates that each phase begins with the results and information gained from the previous stage.

Information security can begin as a grassroots effort in which systems administrators attempt to improve the security of their systems. This is often referred to as a _______.

The _____________ —in which the project is initiated by upper-level managers who issue policy, procedures and processes, dictate the goals and expected outcomes, and determine accountability for each required action—has a higher probability of success.

The first phase, _________, is the most important. What problem is the system being developed to solve? The _______ phase begins with an examination of the event or plan that initiates the process.

begins with the information gained during the investigation phase. This phase consists primarily of assessments of the organization, its current systems, and its capability to support the proposed systems.

the information gained from the analysis phase is used to begin creating a systems solution for a business problem. In any systems solution, it is imperative that the first and driving factor is the business need.

specific technologies are selected to support the alternatives identified and evaluated in the logical design. The selected components are evaluated based on a make-or-buy decision (develop the components in-house or purchase them from a vendor).

any needed software is created. Components are ordered, received, and tested. Afterward, users are trained and supporting documentation created.

The _________is the longest and most expensive phase of the process. This phase consists of the tasks necessary to support and modify the system for the remainder of its useful life cycle.

It is an object, person, or other entity that presents an ongoing danger to an asset.

It is an act that takes advantage of a vulnerability to compromise a controlled system.

It is an identified weakness in a controlled system, where controls are not present or are no longer effective.

It includes the execution of viruses, worms, Trojan horses, and active Web scripts with the intent to destroy or steal information.

A more devious attack on computer systems is the transmission of a virus hoax with a real virus attached.

Using a known or previously unknown and newly discovered access mechanism, an attacker can gain access to a system or network resource through a back door

Attempting to reverse-calculate a password is often called cracking. A cracking attack is a component of many dictionary attacks (to be covered shortly). It is used when a copy of the Security Account Manager (SAM) data file, which contains hashed representation of the user’s password, can be obtained.

The application of computing and network resources to try every possible password combination is called a ________attack. Since the ______attack is often used to obtain passwords to commonly used accounts, it is sometimes called a password attack.

The ______is a variation of the brute force attack which narrows the field by selecting specific target accounts and using a list of commonly used passwords (the dictionary) instead of random combinations.

In a ________ attack, the attacker sends a large number of connection or information requests to a target. So many requests are made that the target system becomes overloaded and cannot respond to legitimate requests for service. The system may crash or simply become unable to perform ordinary functions.

A _________ is an attack in which a coordinated stream of requests is launched against a target from many locations at the same time. Most DDoS attacks are preceded by a preparation phase in which many systems, perhaps thousands, are compromised.

In the well-known _______ or TCP hijacking attack, an attacker monitors (or sniffs) packets from the network, modifies them, and inserts them back into the network. This type of attack uses IP spoofing to enable an attacker to impersonate another entity on the network.

______ is unsolicited commercial e-mail. While many consider spam a trivial nuisance rather than an attack, it has been used as a means of enhancing malicious code attacks.

Another form of e-mail attack that is also a DoS is called a_____, in which an attacker routes large quantities of e-mail to the target.

A ______ is a program or device that can monitor data traveling over a network. _______ can be used both for legitimate network management functions and for stealing information.

It is the process of using social skills to convince people to reveal access credentials or other valuable information to the attacker.

It is an attempt to gain personal or financial information from an individual, usually by posing as a legitimate entity. ______ attacks use three primary techniques, often in combination with one another: URL manipulation, Web site forgery, and phone phishing.

_______ is “the redirection of legitimate Web traffic (e.g., browser requests) to an illegitimate site for the purpose of obtaining private information. _______ often uses Trojans, worms, or other virus technologies to attack the Internet browser’s address bar so that the valid URL typed by the user is modified to that of the illegitimate Web site.

A _______explores the contents of a Web browser’s cache and stores a malicious cookie on the client’s system.

: Keep the design as simple and small as possible.

: Base access decisions on permission rather than exclusion.

: Every access to every object must be checked for authority.

: The design should not be secret, but rather depend on the possession of keys or passwords.

: Where feasible, a protection mechanism should require two keys to unlock, rather than one.

: Every program and every user of the system should operate using the least set of privileges necessary to complete the job.