Domain 2 Test Notes

Question 1

Exceptional Grave Damage

Answer 1

Top Secret (Government)
Confidential (Non-Government)

Question 2

Serious Damage

Answer 2

Secret (Government)
Private (Non-Government)

Question 3

Damage

Answer 3

Confidential (Government)
Sensitive (Non-Government)

Question 4

No Damage

Answer 4

Unclassified (Government)
Public (Non- Government)

Question 5

Is memory that the system can read but can’t change (nonvolatile). The contents of it are burned in at the factory and can’t be altered. Common use is BIOS.

Answer 5

Read Only Memory (ROM)

Question 6

The contents isn’t burned in at the factory., instead it has a special functionality that allows an end user to burn in the chip’s contents later. Once data is written, no further changes are possible.

Answer 6

Programmable Read Only Memory (PROM)

Question 7

Can be erased with special ultraviolet light after which user can burn new information into it.

Answer 7

Ultraviolet Erasable Programmable Read Only Memory (UVEPROM)

Question 8

Electric voltages are delivered to the pins of the chip to force erasure.

Answer 8

Electronically Erasable Programmable Read Only Memory (EEPROM)

Question 9

Nonvolatile form of storage media where it can be erased and written in blocks or pages. Examples Memory cards, thumb drives

Answer 9

Flash Memory

Question 10

Readable and writable memory that contains information a computer uses during processing. It retains it contents only when power is continuously supplied to it.

Answer 10

Random Access Memory (RAM)

Question 11

A type of RAM that uses latches (flip-flop) to store bits. It is fast and expensive, but has low capacity. Example: CPU cache memory

Answer 11

Static Random Access Memory (SRAM)

Question 12

A type of RAM that use small capacitors to store bits. Must be refreshed regularly. It is slower and cheaper with a higher capacity.

Answer 12

Dynamic Random Access Memory (DRAM)

Question 13

prevents data from being discovered or accessed by a subject by positioning the data in a logical storage compartment that is not accessible or seen by the subject.

Answer 13

Data Hiding

Question 14

Performing a delete operation against a file, files, or media. Simply
deleting a file doesn’t actually remove the data from the storage device. The space the file occupied is marked as “free” and can be overwritten by new data, but until that happens, the data might still be recoverable using forensic tools.

Answer 14

Erasing (deleting)

Question 15

Preparing media for reuse and ensuring data cannot be recovered
using traditional recovery tools. Overwriting the storage media with a single pattern (e.g., zeros) can make it more difficult to recover data using simple techniques. However, sophisticated forensic methods might still be able to recover fragments of the original
data.

Answer 15

Clearing (overwritting)

Question 16

This is a more intense form of clearing, often involving multiple overwrite
passes. While it offers better protection than a single overwrite, it’s not guaranteed to be completely secure against advanced forensic techniques.

Answer 16

Purging

Question 17

creates a strong magnetic field that erases data on some media. Commonly used to remove data from magnetic tapes with the goal of returning the tape to its original state. No Affect option for CDs, DVDs, or SSDs

Answer 17

Degaussing

Question 18

The most secure method of sanitizing media. Ensure that the media can’t be reused or repaired and the data can’t be extracted.

Answer 18

Destruction

Question 19

software placed logically between the uses and the cloud based resources. It can be on premises or within the cloud. Anyone who accesses the cloud goes through it. It monitors all activity and enforces administrator-defined security policies.

Answer 19

Cloud Access Security Broker (CASB)

Question 20

is a set of access control technologies used to restrict the use, modification, and distribution of copyrighted works such as software, multimedia content, and documents. It focuses on protecting intellectual property and controls access, copying, and distribution of digital
content. It is often used for media files, e-books, and software licensing.

Answer 20

Digital Rights Management (DRM)

Question 21

refers to a set of tools and processes designed to detect and prevent breaches, exfiltration, or unwanted destruction of sensitive data. It monitors, detects, and blocks sensitive data in use, in motion, and at rest.

Answer 21

Data Loss Prevention (DLP)

Question 22

1. Collect/Create
2. Store
3. Use
4. Share
5. Retain
6. Destroy

Answer 22

Data Lifecycle

Question 23

The individual or entity with ultimate authority and decision-making power
over the data. They determine how the data is used, protected, and disposed of. Accountable for data security, meaning they bear the ultimate responsibility for data security.

Answer 23

Data Owner

Question 24

The organization or individual who determines the purposes and means
of data processing. They are responsible for ensuring compliance with relevant regulations and implementing appropriate security controls. The data owner often delegates responsibility to the Controller for ensuring security and compliance.

Answer 24

Data Controller

Question 25

The entity entrusted with physically storing and managing the data on a day-to-day basis. They are responsible for data availability, integrity, and access controls. (Responsibilities: Carries out the tasks as directed by owner/controller)

Answer 25

Data Custodian

Question 26

An organization or individual that processes data on behalf of the data controller. They must comply with the controller’s instructions and implement appropriate security safeguards. (Responsibilities: Carries out specific processing tasks)

Answer 26

Data Processor

Question 27

Individuals who are authorized to access and use the data. They are responsible for following security policies and procedures to protect the data. (Responsibilities: Uses the data according to permissions)

Answer 27

User/Subject

Question 28

The process of removing all relevant data so that it is impossible to identify the original subject or person. You should only use this technique if you do not need to identify the original subject

Answer 28

Anonymization

Question 29

The process of using pseudonyms (aliases) to represent other data. It removes the privacy data so the remaining data can be shared, while sensitive data remains available in a separate dataset.

Answer 29

Pseudonymization

Question 30

A data security technique that replaces sensitive data with unique identification symbols that retain all the essential information about the data without compromising its security. It is commonly used for protecting sensitive data like credit card numbers, social security numbers, etc.

Answer 30

Tokenization

Question 31

An obfuscation technique where only partial data is visible in a data field. For example, a credit card may be shown as **** **** **** 1234. This technique is commonly implemented within the database tier, but also possible in code of frontend applications.

Answer 31

Data masking

Question 32

Modifying the list of security controls within a baseline to align with the organization's mission. In other words, customizing a standard to your organization

Answer 32

Tailoring

Question 33

Reviewing a list of baseline security controls and selecting only those controls that apply to the IT system you're trying to protect.

Answer 33

Scoping

Question 34

Focuses on ensuring that only authorized subjects (users or processes) can access specific memory locations (objects) and perform permitted operations on them.

Answer 34

Memory Access Control

Question 35

a system that tracks the location of assets or people in real-time, typically using tags or transponders attached to the tracked items and receivers strategically placed to detect the signals.

Answer 35

Real Time Location System