INFORMATION ASSURANCE Flashcards Preview

NIOCSD EIDWS BOARD STUDY > INFORMATION ASSURANCE > Flashcards

Flashcards in INFORMATION ASSURANCE Deck (23)
Loading flashcards...
1
Q

What is Information Assurance?

A

Measures that protect and defend information and information systems.

2
Q

What is DAA?

A

Designated Approving Authority

3
Q

What is ATO?

A

Approval to Operate

4
Q

What is IATO?

A

Interim Approval to Operate

5
Q

What is Configuration Management?

A

Controlling changes to a system’s hardware and software; ensuring such changes will not lead to decreased security.

6
Q

How many attributes of IA are there and what are they?

A
5;
Confidentiality
Integrity
Authentication
Non-Repudiation
Availability
7
Q

What is Confidentiality?

A

INFORMATION IS NOT DISCLOSED

8
Q

What is Availability?

A

TIMELY, RELIABLE ACCESS TO DATA AND INFORMATION SYSTEMS

9
Q

What is Non-Repudiation?

A

PROOF OF AUTHENTICATION

10
Q

What is Authentication?

A

PROOF OF IDENTITY. “WHO YOU SAY YOU ARE”

11
Q

What is Integrity?

A

INFORMATION IS NOT MODIFIED.

12
Q

How many categories of Computer Incidents are there?

A

9

13
Q

Give an example of a Root Level Intrusion:

A

Unauthorized Privileged Access

14
Q

Give an example of a User Lever Intrusion:

A

Unauthorized NON-Privileged Access

15
Q

What is Denial of Service?

A

Activity that impairs or halts functionality of a system

16
Q

What is Malicious Logic?

A

Installation of malicious software

17
Q

What does IAVA stand for?

A

Information Assurance Vulnerability Alert

18
Q

What does IAVB stand for?

A

Information Assurance Vulnerability Bulletin

19
Q

What does IAVT stand for?

A

Information Assurance Vulnerability Technical Advisory

20
Q

What does CTO stand for?

A

Computer Tasking Order

21
Q

What does NTD stand for?

A

Navy Telecommunications Directive

22
Q

What is a Service Pack?

A

A group of different patches, fixes, and updates

23
Q

What is the difference between a vulnerability and a threat?

A

Vulnerability is a weakness; Threat exploits a vulnerability