

Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A series of questions and answers related to network security concepts. It covers topics such as course policies, lab environments, key security requirements (confidentiality, integrity, availability), security threats and attacks, and security design principles. The document also discusses attack surfaces and attack trees, providing a basic understanding of these concepts.
Typology: Exams
1 / 3
This page cannot be seen from the preview
Don't miss anything!


Describe the course policies and expectations - answer See syllabus Create and interact with lab environments in CECH Sandbox - answer log in, request plan, issue item, remote console, destroy when finished Describe the key security requirements of confidentiality, integrity, and availability - answer Confidentiality: Data Confidentiality (Assures that private or confidential information is not made available or disclosed to unauthorized individuals), Privacy (Assures that individuals control or influence what information related to them may be collected and stored and by whom and to whom that information may be disclosed)
Integrity: Data Integrity (Assures that information and programs are changed only in a specified and authorized manner), System Integrity (Assures that a system performs its intended function in an unimpaired manner, free from deliberate or inadvertent unauthorized manipulation of the system) Availability: Assures that systems work promptly and service is not denied to authorized users Discuss the types of security threats and attacks and give examples of these and how they apply to different computer and network assets. - answer Threat: A potential for violation of security; a possible danger that might exploit a vulnerability Attacks: passive (attempts to learn or make use of info from system, but without affecting system resources) and active (attempts to alter system resources or affect their operation) Explain the fundamentals of security design principles - answer Economy of mechanism, separation or privilege, fail-safe default, least privilege, complete mediation, least common mechanism, open design, psychological acceptability, etc Discuss the use of attack surfaces and attack trees - answer Attack Surface: reachable and exploitable vulnerabilities in a system (Network, Software, or Human)