Busy. Please wait.
or

show password
Forgot Password?

Don't have an account?  Sign up 
or

Username is available taken
show password

why


Make sure to remember your password. If you forget it there is no way for StudyStack to send you a reset link. You would need to create a new account.
We do not share your email address with others. It is only used to allow you to reset your password. For details read our Privacy Policy and Terms of Service.


Already a StudyStack user? Log In

Reset Password
Enter the associated with your account, and we'll email you a link to reset your password.

Remove ads
Don't know
Know
remaining cards
Save
0:01
To flip the current card, click it or press the Spacebar key.  To move the current card to one of the three colored boxes, click on the box.  You may also press the UP ARROW key to move the card to the "Know" box, the DOWN ARROW key to move the card to the "Don't know" box, or the RIGHT ARROW key to move the card to the Remaining box.  You may also click on the card displayed in any of the three boxes to bring that card back to the center.

Pass complete!

"Know" box contains:
Time elapsed:
Retries:
restart all cards




share
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.

  Normal Size     Small Size show me how

Security Chapter 1

Roberts Class

QuestionAnswer
APT Advanced Persistent Threat
Asset An item that has a value
Authentication The steps that ensure that the individual is who he or she claims
Authorization The act of proving permission or approval to technology resources
Availibility security actions that ensure that data is accessible to authorized users
Broker Attacker who sell knowledge of a vulnerability to other attackers or governments
BYOD Bring Your Own Device
California Database Security Breach Notification Act The first state electronic privacy law which covers any state agency person or company that does business in california
Confidentiality Security actions that ensure that only authorized parties can view the information
Cyber Kill Chain A systematic outline of the steps of a cyberattack introduced at lockheed martin in 2011
Cybercrime Targeted attacks against financial networks unauthorized access to information and the theft of personal information
Cyber criminals A network of attackers identity thieves spammers and financial fraudsters
Cyberterrorism A premeditated politically motivated attack against information computer systems computer programs and data which often results in violence
Cyberterrorist Attacker whose motivation may be defined as idological or attacking fo rthe sake of principals or beliefs
Deterrence Understanding the attacker and then informing him of the consequences of the action
Exploit Kit Automated attack package that can be used without an advanced knowledge of computers
GLBA Gramm Leach Bliley Act
Hactivist Attacker who attacks for ideological reasons that are generally not as well defined as a cyberterrorists motivation
HIPAA Health Insurance Portability and Accountability Act
Identifty Theft Stealing another persons personal information such as a social security number and then using the information to impersonate the victim generally for financial gain
Information Security The tasks of protecting the integrity confidentiality and availability of information on the devices that store manipulate and transmit the information through products people and procedures
Insiders Employees, contractors and business partners who can be responsible for an attack
Integrity Security actions that ensure that the information is correct and no unauthorized person or malicious software has been altered
Mitigation Addressing a risk by making it less serious
PCI DSS Payment Card Industry Data Security Standard
Risk A situation that involves exposure to danger
Risk Avoidance Identifying the risk by making the decision to not engage in the activity
Sarbox Sarbanes Oxley Act
Script Kiddie Individual who lacks advanced knowledge of computers and networks and so uses downloaded automated attack software to attack information systems
State Sponsored Attacker Attacker commissioned by governments to attack enemies information systems
Threat a type of action that has the potential to cause harm
Threat Agent A person of action that has the potential to cause harm
Threat Likelihood the probability that a threat will actually occur
Threat Vector The means by which an attack could occur
Transference Transferring the risk to a third party
Vulnerability A flaw or weakness that allows a threat agent to bypass security
Created by: 1019660571411816