Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
13 Cards in this Set
- Front
- Back
What are the three Security Objectives?
|
Confidentiality, Intergrity, Availability
|
|
A loss of Confidentiality is?
|
The unauthorized disclosure of information.
|
|
A loss of Integrity is?
|
The unauthorized modification or destruction of information.
|
|
A loss of Availability is?
|
The disruption of access to or use of information or an information system.
|
|
What are the three Pontential Impacts?
|
Low, Moderate and High
|
|
Definition of Low Impact
|
Limited adverse effect on organizational operations, organizational assets, or individuals
|
|
Definition of Moderate Impact
|
Serious adverse effect on organizational operations, organizational assets, or individuals
|
|
Definition of High Inpact
|
Severe or Catastrophic adverse effect on organizational operations, organizational assets, or individuals
|
|
Definition of Confidentiality
|
Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information.
[44 U.S.C., SEC. 3542] |
|
Definition of Integrity
|
Guarding against improper
information modification or destruction, and includes ensuring information non-repudiation and authenticity. [44 U.S.C., SEC. 3542] |
|
Definition of Availability
|
Ensuring timely and reliable access to and use of information.
[44 U.S.C., SEC. 3542] |
|
Definition of Security Category
|
Is the assessment of the potential impact that a loss of confidentiality, integrity, or availability of such information or information system would have on organizational operations, organizational assets, or individuals.
|
|
Definition of Security Controls
|
The management, operational, and technical controls (i.e., safeguards or countermeasures) prescribed to protect the confidentiality, integrity, and availability of the system and its information.
|