Chapter 1: Understanding Security Fundamentals

1. D. Accountability, although important, is not part of the CIA triad. The CIA triad includes confidentiality, integrity, and availability.
2. A. The principle of least privilege requires that a user or process is given only the minimum access privilege needed to perform a particular task. Its main purpose is to ensure that users have access only to the resources they need and are authorized to perform only the tasks they need to perform.
3. B. A threat occurs when vulnerability is identified or exploited. A threat would occur when an attacker identified the folder on the computer that has an inappropriate or absent access control list.
4. D. NIST SP 800-30 identifies ...