Cissp stuvia Study guides, Class notes & Summaries

CIA Triangle - ANSWER Cornerstone of infosec. Confidentiality, Integrity, Availability Confidentiality (CIA Triangle) - ANSWER prevention of unauthorized disclosure of information; prevention of unauthorized read access to data Integrity (CIA Triangle) - ANSWER prevention of unauthorized modification of data; prevention of unauthorized write access to data Availability (CIA Triangle) - ANSWER ensures data is available when needed to authorized users Opposing forces to CIA - ANSWER DA...

What is the CIA triad? - ANSWER Confidentiality, Integrity, and Availability. Which are the elements of the information system that each organization is trying to protect. Confidentiality - ANSWER the concept of the measures used to ensure the protection of the security of the data, objects, or resources. The goal is to prevent or minimize unauthorized access to data. I.E. encryption, access controls, and steganography. Access Control - ANSWER The management of the relationship between sub...

Policy - ANSWER A high-level document that dictates management intentions toward security. Trademark - ANSWER A symbol, word, name, sound or thing that identifies the origin of a product or service in a particular trade. Patent - ANSWER Documents a process or synthesis and grants the owner a legally enforceable right to exclude others from using it Copyright - ANSWER A legal device that provides creator the right to control how the work is used. For Life plus 70 years Data Mining - A...

Half-duplex mode is being used for communication between two applications. At which layer of the OSI model is this connection being established?. - ANSWER Layer 5: the session layer, is responsible for setting up connections between applications, maintaining dialog control, and negotiating, establishing, maintaining, and ending the communication channel. This layer is responsible for name recognition and identification so that only the designated parties can participate in the session. A connect...

baseline - ANSWER NIST SP 800-53 discusses security control baselines as a list of security controls. CIS releases security baselines, and a baseline is a useful part of a threat management strategy and may contain a list of acceptable configuration items. *Content Distribution Network (CDN) - ANSWER is designed to provide reliable, low-latency, geographically distributed content distribution. In this scenario, a CDN is an ideal solution. A P2P CDN like BitTorrent isn't a typical choice for ...

CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Application Security| 100 Questions| Correct 100%(RATED A) CISSP Exam Guide Applicati...

CISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And AnswersCISSP CHAPTER 1 Correct Questions And Answers

Layer 2 of the OSI model is called the transport layer. - ANSWER False The IP address 192.168.5.5 is a private IP address according to RFC 1918. - ANSWER True The contention method used in Ethernet is called Token passing. - ANSWER False A Metropolitan-area network (MAN) is a type of LAN that encompasses a large area such as the downtown of a city. - ANSWER True 802.11g operates at a maximum of 11 Mbps - ANSWER False Wired Equivalent Privacy (WEP) was the first security measure us...

Which attack is used to understand the type of network topology implemented at the target? - ANSWER Scanning The primary goal of a security awareness program is: - ANSWER To make everyone aware of potential risk and exposure Fault tolerance safeguards help us to combat threats to - ANSWER Data Reliability What is the term used to describe a component, which in case of failure automatically responds in way that causes no or minimum harm? - ANSWER Fail Safe Which one of the following i...

1. Which of the following best describes the relationship between COBIT and ITIL? A. COBIT is a model for IT governance, whereas ITIL is a model for corporate governance. B. COBIT provides a corporate governance roadmap, whereas ITIL is a customizable framework for IT service management. C. COBIT defines IT goals, whereas ITIL provides the process-level steps on how to achieve them. D. COBIT provides a framework for achieving business goals, whereas ITIL defines a framework for achieving IT ...