0

CISSP Certification Study Vocabulary

Posted by Stephen on November 9, 2014 in Information Security |
internet-50568-m

CIA

  • Confidentiality:
    • Information must be kept confidential, it must not be disclosed to people or ententes who do not need or should not have the information
  • Integrity
    • Information must be kept accurate and reliable
  • Availability
    • Information must be available to those who need it and have rights to it, when they need it.

 

Security Definitions

Vulnerability

  • A vulnerability is the lack of a countermeasure or a weakness in a countermeasure.

Threat Agent

  • A entity that takes advantage of a threat.

Threat

  • A threat is any exploitation that takes advantage of a Vulnerability.

Risk

  • The likelihood that a vulnerability will be taken advantage of and the associated business impact.

Control

  • A counter measure put in place to mitigate the Risk (though not necessarily the vulnerability).

Exposure

  • The damage that a vulnerability exposes a organization or person to.

Tags: , , , , , ,

Leave a Reply

Your email address will not be published.

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Copyright © 2014-2017 StephensProjects.com All rights reserved.
This site is using the Multi Child-Theme, v2.1.3, on top of
the Parent-Theme Desk Mess Mirrored, v2.3, from BuyNowShop.com.