Principles of Security is another info-based level, where it gives you information and you should read it and understand it before proceeding to the next level.
you can access the level on TryHackMe from here.
Since it’s information based level, only answers will be provided.
What element of the CIA triad ensures that data cannot be altered by unauthorised people?
integrityWhat element of the CIA triad ensures that data is available?
availabilityWhat element of the CIA triad ensures that data is only accessed by authorised people?
confidentialityWhat does the acronym “PIM” stand for?
Privileged Identity ManagementWhat does the acronym “PAM” stand for?
Privileged Access ManagementIf you wanted to manage the privileges a system access role had, what methodology would you use?
PAMIf you wanted to create a system role that is based on a users role/responsibilities with an organisation, what methodology is this?
PIMWhat is the name of the model that uses the rule “can’t read up, can read down”?
The Bell-LaPadula ModelWhat is the name of the model that uses the rule “can read up, can’t read down”?
The Biba ModelIf you were a military, what security model would you use?
The Bell-LaPadula ModelIf you were a software developer, what security model would the company perhaps use?
The Biba ModelWhat model outlines “Spoofing”?
STRIDEWhat does the acronym “IR” stand for?
Incident ResponseYou are tasked with adding some measures to an application to improve the integrity of data, what STRIDE principle is this?
TamperingAn attacker has penetrated your organisation’s security and stolen data. It is your task to return the organisation to business as usual. What incident response stage is this?
RecoveryAnd that’s all for Principles of Security.
Recent Comments