So I guess I should actually watch out for these sort of questions in the real exam...<br><br>Andrea<br><br><div class="gmail_quote">On Sun, Sep 20, 2009 at 12:28 AM, Mike Archuleta <span dir="ltr"><<a href="mailto:mlarchuleta@gmail.com">mlarchuleta@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div bgcolor="#FFFFFF"><div>I remember this question. It is the most correct answer based on wording. After realizing that answer included placed with autorized users. </div>
<div><br></div><div>I think I argued with myself for five minutes. Who places a database near authorized users? I put a database in the data center with aal my servers and backup systems.<br><br>Sent from my iPhone</div>
<div><div></div><div class="h5"><div><br>On Sep 19, 2009, at 5:19 PM, Andrea Gatta <<a href="mailto:andrea.gatta@gmail.com" target="_blank">andrea.gatta@gmail.com</a>> wrote:<br><br></div><div></div><blockquote type="cite">
<div>Well, same here. <br><br>Unfortunately the question is from the official ISC2 guide, page 747 ;-)<br><br>Point is, any chance they got it wrong ?<br><br>Andrea<br><br><div class="gmail_quote">On Sun, Sep 20, 2009 at 12:15 AM, Mike Archuleta <span dir="ltr"><<a href="mailto:mlarchuleta@gmail.com" target="_blank"></a><a href="mailto:mlarchuleta@gmail.com" target="_blank">mlarchuleta@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">I would think niether improve or reduce availability. I don't think if crypto as an availability feature.<br>
<br>
Sent from my iPhone<div><div></div><div><br>
<br>
On Sep 19, 2009, at 5:06 PM, Andrea Gatta <<a href="mailto:andrea.gatta@gmail.com" target="_blank"></a><a href="mailto:andrea.gatta@gmail.com" target="_blank">andrea.gatta@gmail.com</a>> wrote:<br>
<br>
</div></div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div></div><div>
Hi there,<br>
I am wondering if anyone could shed a light on the following question (and answer):<br>
<br>
In terms of databases, cryptography can:<br>
<br>
- only restrict and reduce availability<br>
<br>
- improve availability by allowing data to be easily placed where authorized users can access it<br>
<br>
- improve availability by increasing the granularity of the access controls<br>
<br>
- neither reduce or improve availability<br>
<br>
<br>
As far as the author of the question is concerned the correct answer is: "improve availability by allowing data to be easily placed where authorized users can access it"<br>
<br>
The only reason I can think of for the answer to have a sense is that cryptography protects a resource from unauthorized users access through the mean of concealing its content.<br>
<br>
With a very long shot one could say that the resource would be "available" just to authorizaed users. Which means that this question uses "availability" in a very extensive - and I would add divious - way.<br>
<br>
As far as I am concerned encryption does provide confidentiality and integrity as natural security services.<br>
<br>
Thoughts ?<br>
<br>
Thanks<br>
Andrea<br></div></div>
_______________________________________________<br>
cisspstudy mailing list<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank"></a><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank"></a><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
</blockquote>
<br>
_______________________________________________<br>
cisspstudy mailing list<br>
<a href="mailto:cisspstudy@cccure.org" target="_blank"></a><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank"></a><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
</blockquote></div><br>
</div></blockquote><blockquote type="cite"><div><span>_______________________________________________</span><br><span>cisspstudy mailing list</span><br><span><a href="mailto:cisspstudy@cccure.org" target="_blank">cisspstudy@cccure.org</a></span><br>
<span><a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a></span><br></div></blockquote></div></div></div><br>_______________________________________________<br>
cisspstudy mailing list<br>
<a href="mailto:cisspstudy@cccure.org">cisspstudy@cccure.org</a><br>
<a href="http://cccure.org/mailman/listinfo/cisspstudy_cccure.org" target="_blank">http://cccure.org/mailman/listinfo/cisspstudy_cccure.org</a><br>
<br></blockquote></div><br>