212-82 Exam Dumps : Certified Cybersecurity Technician (CCT)

Availability is the information security element that ensures that Stella’s transaction status is immediately reflected in her bank account in this scenario. Information security is the practice of protecting information and information systems from unauthorized access, use, disclosure, modification, or destruction. Information security can be based on three fundamental principles: confidentiality, integrity, and availability. Confidentiality is the principle that ensures that information is accessible only to authorized parties and not disclosed to unauthorized parties. Integrity is the principle that ensures that information is accurate, complete, and consistent and not altered or corrupted by unauthorized parties. Availability is the principle that ensures that information and information systems are accessible and usable by authorized parties when needed. In the scenario, Stella purchased a smartwatch online using her debit card. After making payment for the product through the payment gateway, she received a transaction text message with a deducted and available balance from her bank. This means that her transaction status was immediately reflected in her bank account, which indicates that availability was ensured by her bank’s information system. 

For a mobile banking app, ensuring secure user authentication is crucial. Multi-factor authentication (MFA) provides a robust security layer:

Multi-Factor Authentication (MFA):

Definition: MFA requires users to provide two or more verification factors to gain access, combining something they know (password), something they have (smartphone), and something they are (biometric verification).

Security Benefits: Significantly reduces the risk of unauthorized access even if one factor is compromised.

Implementation:

User Convenience: Integrate seamlessly into the app to maintain a positive user experience.

Enhanced Security: Protects against various attack vectors, including phishing, brute force attacks, and credential stuffing.

References:

NIST Digital Identity Guidelines:NIST SP 800-63

OWASP Mobile Security Testing Guide: OWASP MSTG

In the context of developing a cryptographic protocol resilient against quantum computing attacks, SHA-3 is the most appropriate choice. Here’s why:

Quantum Computing Threats: Quantum computers can potentially break current cryptographic methods like RSA and ECC due to Shor's algorithm. Traditional hash functions like SHA-256 might not offer sufficient security in a post-quantum world.

SHA-3 Overview: SHA-3, part of the Secure Hash Algorithm family, was designed with quantum resistance in mind. It was selected through an open competition by NIST, ensuring it incorporates advanced cryptographic techniques.

Resilience: SHA-3’s design is fundamentally different from SHA-2, providing enhanced security properties, including resistance to various attack vectors that might be feasible with quantum computing advancements.

References:

NIST SHA-3 Standard:NIST FIPS PUB 202

Research on quantum-resistant cryptography:IEEE Xplore