4.9. Answers to Review Questions
D. The primary goal of auditing is to check compliance with security policy. Virus infection detection is handed by a virus scanner. Rogue service detection is performed manually or with a sniffer. Port scanning is performed with a port-scanning tool.
D. The annual loss expectancy (ALE) represents the total potential loss a company may experience within a single year due to a specific risk to an asset. EF is the percentage of asset value loss that would occur if a risk was realized. SLE is the potential dollar value loss from a single risk realization incident. ARO is the statistical probability that a specific risk may be realized a certain number of times in a year.
B. An asset is anything used in a work task. ...
Get CompTIA Security+™: Review Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.