Home > Quiz: Storage security
Security Quiz:
EMAIL THIS

Quiz: Storage security

15 Dec 2005 | SearchSecurity.com

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

Regulations like SOX and the recently approved Personal Data Privacy and Security Act are bringing the importance of data protection to light. Loss of data -- be it inadvertent or surreptitious -- can result in fines, loss of revenue and loss of customer confidence. Take our quiz to see how much you know about securing data storage.

Backup

Related Information

Learn more about storage vulnerabilities in this tip.

Read about the five As of functional SAN security.

Learn about SAN approaches to LUN security.
1.) Which of the following is not a potential problem associated with encrypting data when it's backed up?
a. Slow down in backup and recoveries
b. Loss of compression
c. Rogue admins can read old backups
d. Can't encrypt data when transmitted
Answer

2.) Which type of backup is the safer of the two?
a. Cold backup
b. Hot backup
Answer

3.) True or false: It is possible to encrypt all backups?
Answer

4.) California SB-1386 requires companies to...
a. Alert customers when a third-party has requested access to their data.
b. Notify customers in writing after a data breach.
c. Encrypt backed up data with 128-bit encryption.
d. Appoint a data steward to secure customer information.
Answer

5.) What type of backup encryption has the highest upfront cost?
a. Backup software encryption
b. In-line hardware encryption
c. Source encryption
d. Initial costs are roughly equivalent.
Answer

Disaster recovery/Business continuity

6.) What is the first step in business continuity planning?
a. Put in place failover mechanisms
b. Apportion available budget
c. Identify essential functions
d. None of the above
Answer

7.) Which of the following precautions help limit downtime?
a. Constant monitoring
b. Regular testing of recovery procedure
c. Thorough documentation of system configurations, patches, etc.
d. All of the above
Answer

8.) Which of the following plans specifies a means of maintaining essential services at a crisis location?
a. Contingency plan
b. Business recovery plan
c. Business resumption plan
d. Disaster recovery plan
Answer

9.) Which of the following, as part of a business continuity plan, is applied to mission-critical systems that must be constantly available?
a. Backups
b. Failover
c. Auto-provisioning
d. Encryption
Answer

10.) What do incident response and business continuity plans have in common?
a. They both seek to reduce recovery time and costs.
b. They both define in specific terms what constitutes an incident.
c. They are only practical for larger enterprises.
d. The first step of both is to identify essential functions of the organization.
Answer

How'd you do?
9-10: You're storage security savvy
6-8: You're skilled in storage security
3-5: You're a storage security simpleton
0-2: You're a storage security slacker

BROWSE BY TAG
Enterprise Data Protection,   Disk Encryption and File Encryption,   Enterprise Data Governance,   VIEW ALL TAGS

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED CONTENT
Disk Encryption and File Encryption
Health Net healthcare data breach affects1.5 million
Heartland CIO is critical of First Data's credit card tokenization plan
Heartland CIO on end-to-end encryption, credit card tokenization
Should developers create libraries of common cryptographic algorithms?
What is an encryption collision?
Heartland CIO on PCI, E3 project
Visa probes tokens, encryption for PCI card data protection
Voltage, RSA spar over tokenization, data protection
Truth, lies and fiction about encryption
What are new and commonly used public-key cryptography algorithms?

Enterprise Data Governance
How to protect distributed information flows
Interpreting 'risk' in the Massachusetts data protection law
Creating an enterprise data protection framework
Analyst DLP study finds maturity, ranks top DLP vendors
Voltage, RSA spar over tokenization, data protection
Twitter gets condemned by CISOs at Forrester forum
PCI DSS compliance requirements: Ensuring data integrity
Trustwave acquires data loss prevention vendor Vericept
Data has become too distributed to secure, Forrester says
Cloud-based security services should start private

RELATED GLOSSARY TERMS
Terms from Whatis.com − the technology online dictionary
Advanced Encryption Standard  (SearchSecurity.com)
data key  (SearchSecurity.com)
Encrypting File System  (SearchSecurity.com)
encryption  (SearchSecurity.com)
Escrowed Encryption Standard  (SearchSecurity.com)
network encryption  (SearchSecurity.com)
output feedback  (SearchSecurity.com)
Quiz: Cryptography  (SearchSecurity.com)
Rijndael  (SearchSecurity.com)
Twofish  (SearchSecurity.com)

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary




Search Additional Security Research and Solutions
TechTarget Security Media
Information Security View this month\\'s issue and subscribe today.
Information Security Decisions Apply online for free conference admission.
SearchSecurity.com
HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
SEARCH :     Site Index Powered by: Search Powered by Google

About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts