What is the term used to describe the potential for loss or damage to an asset due to a threat?

What is the process of verifying the identity of a user or a system?

What is the mechanism that restricts the actions or operations that a user or a system can perform on an asset?

What is the term used to describe the unintentional errors or flaws in a software program that can be exploited by an attacker?

What is the term used to describe the software programs that are designed to harm or disrupt a system or a network?

What is the term used to describe the actions or techniques that are used to prevent, detect, or mitigate the effects of a threat?

Which of the following is not a type of threat to information security?