You are evaluating cryptographic algorithms to secure your order processing. Three block-ciphers, RC6, Rijndael, and Twofish, are on the final list after the first round of evaluation. Which of the following terminologies is least likely used in the evaluation process? (Source: Wentz QOTD)
A. IV
B. Salt
C. Nonce
D. Entropy
You are evaluating cryptographic algorithms to secure your order processing. Three block-ciphers, RC6, Rijndael, and Twofish, are on the final list after the first round of evaluation. Which of the following is the least concern to select the finalist? (Source: Wentz QOTD)
A. Avalanche effect
B. Work factor
C. Key exchange
D. Confusion and diffusion
You are developing an order processing system supported by an RDBMS and wrote a piece of SQL code as a transaction to update the customer’s lifetime value as follows:
1> UPDATE Customers SET LifeTimeValue = LifeTimeValue + 99 WHERE CustomerId = 1
2> UPDATE Invoices SET TotalAmount = 99 WHERE InvoiceId = 1
However, your colleague wrote the same code in the reverse sequence. If only your transaction succeeds its updates, which of the following has been hindered? (Source: Wentz QOTD)
A. Entity integrity
B. Semantic integrity
C. Referential integrity
D. Availability
You are developing an order processing system supported by an RDBMS and wrote a piece of SQL code as a transaction to update the customer’s lifetime value as follows:
1> UPDATE Customers SET LifeTimeValue = LifeTimeValue + 99 WHERE CustomerId = 1
2> UPDATE Invoices SET TotalAmount = 99 WHERE InvoiceId = 1
However, your colleague wrote the same code in the reverse sequence. If a customer may have many invoices, which of the following will occur most likely? (Source: Wentz QOTD)
A. Inference
B. Aggregation
C. Race condition
D. Loss of referential integrity
Remanence
Residual information remaining on storage media.
Sanitization
Sanitization is a process to render access to target data (the data subject to the sanitization technique) on the media infeasible for a given level of recovery effort.
SANITIZE Command
- A command in the ATA and SCSI standards that leverages a firmware-based process to perform a Sanitization action.
- If a device supports the sanitize command, the device must support at least one of three options: overwrite, block erase (usually for flash memory-based media), or crypto scramble (Cryptographic Erase). These commands typically execute substantially faster than attempting to rewrite through the native read and write interface.
- The ATA standard clearly identifies that the Sanitization operations must address user data areas, user data areas not currently allocated (including “previously allocated areas and physical sectors that have become inaccessible”), and user data caches.
- The resulting media contents vary based on the command used.
- The overwrite command allows the user to specify the data pattern applied to the media, so that pattern (or the inverse of that pattern, if chosen) will be written to the media (although the actual contents of the media may vary due to encoding).
- The result of the block erase command is vendor unique, but will likely be 0s or 1s.
- The result of the crypto scramble command is vendor unique, but will likely be cryptographically scrambled data (except for areas that were not encrypted, which are set to the value the vendor defines).
Clear, Purge, and Destroy are actions that can be taken to sanitize media. The categories of sanitization are defined as follows:
- Clear applies logical techniques to sanitize data in all user-addressable storage locations for protection against simple non-invasive data recovery techniques; typically applied through the standard Read and Write commands to the storage device, such as by rewriting with a new value or using a menu option to reset the device to the factory state (where rewriting is not supported).
- Purge applies physical or logical techniques that render Target Data recovery infeasible using state of the art laboratory techniques.
- Destroy renders Target Data recovery infeasible using state of the art laboratory techniques and results in the subsequent inability to use the media for storage of data.
Source: NIST SP 800-88 R1
A network administrator responsible for monitoring network anomalies found, by analyzing network traffic, a sales representative sent an unencrypted email to competitors. It may involve price domination and violate antitrust. Which of the following is the best for the network administrator to convey this finding to appropriate management? (Source: Wentz QOTD)
A. Corporate bylaws
B. Acceptable use policy (AUP)
C. Crisis communication plan
D. Reporting procedure
Your company decides to subscribe to a portfolio of software services as SaaS from a well-known cloud service provider. The program policy limits the consumption of software to business use only. Employees are not allowed to use the software at home or for personal use. As a security professional, you are tasked to assess the risk and propose solutions to mitigate risk. Which of the following least contributes to the risk assessment process. (Source: Wentz QOTD)
A. Context diagram
B. Location-based authentication
C. OSINT (Open-source intelligence)
D. SDLC (System Development Life Cycle)
An offboarding sales representative downloaded customer profiles owned by the head of the sales department from the file server onto a USB dongle on the day he left and sold it online. This data breach occurred because of the miscommunication between the HR and IT departments. The HR department didn’t notify the IT department to disable the user accounts and revoke the privileges of the unhappy employee in time. As a CEO, which of the following roles do you think is accountable for the data breach of customer profiles? (Source: Wentz QOTD)
A. The system owner of the file server, due to inappropriate security controls
B. The vice president of HR, owing to lack of due care
C. The CIO, because of ineffective IT support for user provisioning/deprovisioning
D. The vice president of Sales, for the responsibility and authority of classification and protection
Please enter the Session ID when signing up.
An offboarding sales representative downloaded customer profiles owned by the head of the sales department from the file server onto a USB dongle on the day he left and sold it online. This data breach occurred because of the miscommunication between the HR and IT departments. The HR department didn’t notify the IT department to disable the user accounts and revoke the privileges of the unhappy employee in time. Which of the following best contributes to the solution that can prevent the data breach? (Source: Wentz QOTD)
A. LDAP
B. XACML
C. SAML
D. SPML