IDS/IPS
IDS/IPS is the pairing of an Intrusion Detection System (IDS), which alerts on suspicious traffic, and an Intrusion Prevention System (IPS), which can actively block it. CC introduces both as monitoring and defensive network controls.
IDS/IPS is the pairing of an Intrusion Detection System (IDS), which alerts on suspicious traffic, and an Intrusion Prevention System (IPS), which can actively block it. CC introduces both as monitoring and defensive network controls.
The CIA triad is the trio of confidentiality, integrity, and availability that defines the goals of information security.
Non-repudiation ensures that someone cannot credibly deny having taken an action, typically through logging and digital signatures.
Defense in depth uses multiple layers of controls so that if one fails, others still protect the asset.
Least privilege means giving a user or process only the access it needs to do its job, and nothing more.
Risk is the potential for loss when a threat exploits a vulnerability, measured by likelihood and impact.
Security controls are the safeguards used to reduce risk, grouped as technical, administrative, and physical.
Multi-factor authentication (MFA) requires two or more different factors — something you know, have, or are — to verify identity.
Access control models — DAC, MAC, and RBAC — define how permissions are assigned and enforced.
A firewall filters network traffic against a set of rules to allow or block connections between network segments.
IDS/IPS is the pairing of an Intrusion Detection System (IDS), which alerts on suspicious traffic, and an Intrusion Prevention System (IPS), which can actively block it.
A Distributed Denial-of-Service (DDoS) attack floods a target with traffic from many sources to exhaust its resources and deny availability.
Hashing produces a fixed-length, one-way fingerprint of data that is used to verify integrity rather than to conceal content.
Encryption transforms readable data into ciphertext that can only be reversed with the correct key, protecting confidentiality.
Data classification labels information by sensitivity so that appropriate handling, retention, and destruction rules apply.
An Acceptable Use Policy (AUP) defines how employees may use organizational systems and data.