Question 1

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Accepted Answer

A) True 
 B)False

Question 2

Which of the following specifications replaces WEP with a stronger security standard that features changing encryption keys?

Accepted Answer

A) TLS 
B) AUP 
C) VPN 
D) WPA2 
E) UTM 
A) TLS 
B) AUP 
C) VPN 
D) WPA2 
E) UTM

Question 3

Wireless networks are more difficult for hackers to gain access too because radio frequency bands are difficult to scan.

Accepted Answer

A) True 
 B)False

Question 4

Evil twins are

Accepted Answer

A) Trojan horses that appears to the user to be a legitimate commercial software application. 
B) e-mail messages that mimic the e-mail messages of a legitimate business. 
C) fraudulent Web sites that mimic a legitimate business's Web site. 
D) computers that fraudulently access a Web site or network using the IP address and identification of an authorized computer. 
E) bogus wireless network access points that look legitimate to users. 
A) Trojan horses that appears to the user to be a legitimate commercial software application. 
B) e-mail messages that mimic the e-mail messages of a legitimate business. 
C) fraudulent Web sites that mimic a legitimate business's Web site. 
D) computers that fraudulently access a Web site or network using the IP address and identification of an authorized computer. 
E) bogus wireless network access points that look legitimate to users.

Question 5

Smartphones typically feature state-of-the-art encryption and security features,making them highly secure tools for businesses.

Accepted Answer

A) True 
 B)False

Question 6

You have just been hired as a security consultant by MegaMalls Inc.,a national chain of retail malls,to make sure that the security of their information systems is up to par.Outline the steps you will take to achieve this.

Accepted Answer

(1)Establish what data and processes are

Question 7

A firewall allows the organization to

Accepted Answer

A) enforce a security policy on data exchanged between its network and the Internet. 
B) check the accuracy of all transactions between its network and the Internet. 
C) create an enterprise system on the Internet. 
D) check the content of all incoming and outgoing e-mail messages. 
E) create access rules for a network. 
A) enforce a security policy on data exchanged between its network and the Internet. 
B) check the accuracy of all transactions between its network and the Internet. 
C) create an enterprise system on the Internet. 
D) check the content of all incoming and outgoing e-mail messages. 
E) create access rules for a network.

Question 8

How is the security of a firm's information system and data affected by its people,organization,and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Accepted Answer

There are various technological essentia

Question 9

The Internet poses specific security problems because

Accepted Answer

A) it was designed to be easily accessible. 
B) Internet data is not run over secure lines. 
C) Internet standards are universal. 
D) it changes so rapidly. 
E) there is no formal controlling body. 
A) it was designed to be easily accessible. 
B) Internet data is not run over secure lines. 
C) Internet standards are universal. 
D) it changes so rapidly. 
E) there is no formal controlling body.

Question 10

________ identify the access points in a Wi-Fi network.

Accepted Answer

A) NICs 
B) Mac addresses 
C) URLs 
D) UTMs 
E) SSIDs 
A) NICs 
B) Mac addresses 
C) URLs 
D) UTMs 
E) SSIDs

Question 11

Using numerous computers to inundate and overwhelm the network from numerous launch points is called a(n)________ attack.

Accepted Answer

A) DDoS 
B) DoS 
C) SQL injection 
D) phishing 
E) botnet 
A) DDoS 
B) DoS 
C) SQL injection 
D) phishing 
E) botnet

Question 12

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Accepted Answer

A) True 
 B)False

Question 13

Is the cloud a safer and more secure computing environment than an in-house network? Why or why not?

Accepted Answer

Student evaluations will vary,but should

Question 14

A computer virus replicates more quickly than a computer worm.

Accepted Answer

A) True 
 B)False

Question 15

The Sarbanes-Oxley Act

Accepted Answer

A) requires financial institutions to ensure the security of customer data. 
B) specifies best practices in information systems security and control. 
C) imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D) outlines medical security and privacy rules. 
E) identifies computer abuse as a crime and defines abusive activities. 
A) requires financial institutions to ensure the security of customer data. 
B) specifies best practices in information systems security and control. 
C) imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D) outlines medical security and privacy rules. 
E) identifies computer abuse as a crime and defines abusive activities.

Question 16

In which method of encryption is a single encryption key sent to the receiver so both sender and receiver share the same key?

Accepted Answer

A) SSL/TLS 
B) symmetric key encryption 
C) public key encryption 
D) private key encryption 
E) distributed encryption 
A) SSL/TLS 
B) symmetric key encryption 
C) public key encryption 
D) private key encryption 
E) distributed encryption

Question 17

Comprehensive security management products,with tools for firewalls,VPNs,intrusion detection systems,and more,are called ________ systems.

Accepted Answer

A) DPI 
B) MSSP 
C) NSP 
D) PKI 
E) UTM 
A) DPI 
B) MSSP 
C) NSP 
D) PKI 
E) UTM

Question 18

A practice in which eavesdroppers drive by buildings or park outside and try to intercept wireless network traffic is referred to as

Accepted Answer

A) war driving. 
B) sniffing. 
C) cybervandalism. 
D) drive-by tapping. 
E) snooping. 
A) war driving. 
B) sniffing. 
C) cybervandalism. 
D) drive-by tapping. 
E) snooping.

Question 19

An acceptable use policy defines the acceptable level of access to information assets for different users.

Accepted Answer

A) True 
 B)False

Question 20

A digital certificate system

Accepted Answer

A) uses third-party CAs to validate a user's identity. 
B) uses digital signatures to validate a user's identity. 
C) uses tokens to validate a user's identity. 
D) is used primarily by individuals for personal correspondence. 
E) protects a user's identity by substituting a certificate in place of identifiable traits. 
A) uses third-party CAs to validate a user's identity. 
B) uses digital signatures to validate a user's identity. 
C) uses tokens to validate a user's identity. 
D) is used primarily by individuals for personal correspondence. 
E) protects a user's identity by substituting a certificate in place of identifiable traits.

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Which of the following specifications replaces WEP with a stronger security standard that features changing encryption keys?

Wireless networks are more difficult for hackers to gain access too because radio frequency bands are difficult to scan.

Evil twins are

Smartphones typically feature state-of-the-art encryption and security features,making them highly secure tools for businesses.

You have just been hired as a security consultant by MegaMalls Inc.,a national chain of retail malls,to make sure that the security of their information systems is up to par.Outline the steps you will take to achieve this.

A firewall allows the organization to

How is the security of a firm's information system and data affected by its people,organization,and technology? Is the contribution of one of these dimensions any more important than the other? Why?

The Internet poses specific security problems because

________ identify the access points in a Wi-Fi network.

Using numerous computers to inundate and overwhelm the network from numerous launch points is called a(n)________ attack.

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Is the cloud a safer and more secure computing environment than an in-house network? Why or why not?

A computer virus replicates more quickly than a computer worm.

The Sarbanes-Oxley Act

In which method of encryption is a single encryption key sent to the receiver so both sender and receiver share the same key?

Comprehensive security management products,with tools for firewalls,VPNs,intrusion detection systems,and more,are called ________ systems.

A practice in which eavesdroppers drive by buildings or park outside and try to intercept wireless network traffic is referred to as

An acceptable use policy defines the acceptable level of access to information assets for different users.

A digital certificate system

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems, Organizations, and Strategy

Ethical and Social Issues in Information Systems

IT Infrastructure and Emerging Technologies

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets, Digital Goods

Managing Knowledge

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters

Exam 8: Securing Information Systems

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Which of the following specifications replaces WEP with a stronger security standard that features changing encryption keys?

Wireless networks are more difficult for hackers to gain access too because radio frequency bands are difficult to scan.

Evil twins are

Smartphones typically feature state-of-the-art encryption and security features,making them highly secure tools for businesses.

You have just been hired as a security consultant by MegaMalls Inc.,a national chain of retail malls,to make sure that the security of their information systems is up to par.Outline the steps you will take to achieve this.

A firewall allows the organization to

How is the security of a firm's information system and data affected by its people,organization,and technology? Is the contribution of one of these dimensions any more important than the other? Why?

The Internet poses specific security problems because

________ identify the access points in a Wi-Fi network.

Using numerous computers to inundate and overwhelm the network from numerous launch points is called a(n)________ attack.

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Is the cloud a safer and more secure computing environment than an in-house network? Why or why not?

A computer virus replicates more quickly than a computer worm.

The Sarbanes-Oxley Act

In which method of encryption is a single encryption key sent to the receiver so both sender and receiver share the same key?

Comprehensive security management products,with tools for firewalls,VPNs,intrusion detection systems,and more,are called ________ systems.

A practice in which eavesdroppers drive by buildings or park outside and try to intercept wireless network traffic is referred to as

An acceptable use policy defines the acceptable level of access to information assets for different users.

A digital certificate system

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems, Organizations, and Strategy

Ethical and Social Issues in Information Systems

IT Infrastructure and Emerging Technologies

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets, Digital Goods

Managing Knowledge

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters