Copyright (c) 2026 MindMesh Academy. All rights reserved. This content is proprietary and may not be reproduced or distributed without permission.

7.2. Quick Reference

Risk Calculation Formulas

FormulaEquationExample
SLEAsset Value × Exposure Factor$500,000 × 0.4 = $200,000
ALESLE × ARO$200,000 × 0.5 = $100,000/year

Cryptographic Algorithm Quick Reference

AlgorithmTypeKey SizeStatus
AESSymmetric128/192/256-bit✅ Current standard
DESSymmetric56-bit❌ Deprecated
3DESSymmetric168-bit❌ Phasing out
RSAAsymmetric2048/4096-bit✅ Current
ECCAsymmetric256/384-bit✅ Current (smaller keys)
Diffie-HellmanKey exchangeVaries✅ Key exchange only
SHA-256Hashing256-bit output✅ Current
MD5Hashing128-bit output❌ Deprecated
SHA-1Hashing160-bit output❌ Deprecated

Port Numbers

PortProtocolService
20/21TCPFTP (data/control)
22TCPSSH/SFTP/SCP
23TCPTelnet (insecure)
25TCPSMTP
53TCP/UDPDNS
67/68UDPDHCP (server/client)
80TCPHTTP
88TCP/UDPKerberos
110TCPPOP3
143TCPIMAP
389TCP/UDPLDAP
443TCPHTTPS
445TCPSMB
636TCPLDAPS
993TCPIMAPS
995TCPPOP3S
1433TCPMSSQL
3306TCPMySQL
3389TCP/UDPRDP

Authentication Protocols

ProtocolUseKey Feature
RADIUSNetwork access (Wi-Fi, VPN)Encrypts password only
TACACS+Device administrationEncrypts entire payload, separates AAA
KerberosWindows domain authTicket-based, SSO, requires NTP
SAMLWeb-based SSO (enterprise)XML-based, IdP and SP
OAuthAuthorization (API access)Token-based, NOT authentication
OIDCAuthentication on top of OAuthAdds identity token to OAuth

Incident Response Order

Preparation → Detection → Analysis → Containment → Eradication → Recovery → Lessons Learned

Access Control Models

ModelWho DecidesBest For
MACSystem (labels)Military/government
DACResource ownerGeneral file systems
RBACRole assignmentEnterprise (most common)
ABACPolicy engine (attributes)Complex/granular requirements

Shared Responsibility Model

LayerIaaSPaaSSaaS
DataYouYouYou
ApplicationsYouYouProvider
Runtime/OSYouProviderProvider
InfrastructureProviderProviderProvider

Backup Comparison

TypeBacks UpCreate SpeedRestore Speed
FullEverythingSlowestFastest
IncrementalSince last any backupFastestSlowest
DifferentialSince last fullMediumMedium

Agreement Types

AgreementPurposeBinding?
SLAMeasurable performance requirementsYes
NDAConfidentiality protectionYes
MOUMutual understanding/intentUsually no
MOAMore formal mutual agreementUsually yes
MSAOverarching relationship termsYes
BPABusiness partner responsibilitiesYes
Alvin Varughese
Written byAlvin Varughese
Founder15 professional certifications