Question 1

Which of the following intentional computer and network threats is a type of Trojan program used to release a virus, worm, or other destructive code?

Accepted Answer

A) A logic bomb 
B) Dumpster diving 
C) A blended threat 
D) Shoulder surfing 
A) A logic bomb 
B) Dumpster diving 
C) A blended threat 
D) Shoulder surfing

Question 2

_____ primarily control access to computers and networks and include devices for securing computers and peripherals from theft.

Accepted Answer

A) Nonbiometric security measures 
B) Virtual security measures 
C) Biometric security measures 
D) Physical security measures 
A) Nonbiometric security measures 
B) Virtual security measures 
C) Biometric security measures 
D) Physical security measures

Question 3

Briefly discuss the process of data encryption.

Accepted Answer

Answers will vary. Data encryption trans

Question 4

_____  is a form of spyware that collects information about a user (without the user's consent)to determine which commercials to display in the user's Web browser.

Accepted Answer

A) Firmware 
B) Silverware 
C) Freeware 
D) Adware 
A) Firmware 
B) Silverware 
C) Freeware 
D) Adware

Question 5

Terminal resource security is a software feature that erases the screen and signs a user off automatically after a specified length of inactivity.

Accepted Answer

A) True 
 B)False

Question 6

The main drawback of an intrusion detection system (IDS)is its inability to prevent denial-of-service (DoS)attacks.

Accepted Answer

A) True 
 B)False

Question 7

According to a 2019 study, which of the following is not an accurate statistic about ransomware attacks?

Accepted Answer

A) Ransomware generates over $25 million in revenue for hackers each year. 
B) 34% of businesses hit with malware took a week or more to regain access to their data. 
C) 97% of targeted US companies paid a ransom. 
D) A new organization will fall victim to ransomware every 11 seconds by 2021. 
A) Ransomware generates over $25 million in revenue for hackers each year. 
B) 34% of businesses hit with malware took a week or more to regain access to their data. 
C) 97% of targeted US companies paid a ransom. 
D) A new organization will fall victim to ransomware every 11 seconds by 2021.

Question 8

An intrusion detection system (IDS)can protect networks against both external and internal access.

Accepted Answer

A) True 
 B)False

Question 9

Which form of text needs to be unscrambled using a decryption key?

Accepted Answer

A) Plaintext 
B) Cleartext 
C) Teletext 
D) Ciphertext 
A) Plaintext 
B) Cleartext 
C) Teletext 
D) Ciphertext

Question 10

_____ are usually placed in front of a firewall and can identify attack signatures, trace patterns, generate alarms for a network administrator, and cause routers to terminate connections with suspicious sources.

Accepted Answer

A) Intrusion detection systems 
B) Proxy servers 
C) Identification badges 
D) Virtual private networks 
A) Intrusion detection systems 
B) Proxy servers 
C) Identification badges 
D) Virtual private networks

Question 11

In the context of computer and network security, _____ means that a system must not allow the disclosing of information by anyone who is not authorized to access it.

Accepted Answer

A) reliability 
B) confidentiality 
C) integrity 
D) availability 
A) reliability 
B) confidentiality 
C) integrity 
D) availability

Question 12

In the context of business continuity planning, list at least five of the procedures for keeping an organization operational in the event of a disaster.

Accepted Answer

Answers will vary. 
Business continuity

Question 13

Briefly explain the McCumber cube.

Accepted Answer

Answers will vary. The Committee on Nati

Question 14

In the context of computer and network security, _____ means that computers and networks are operating and authorized users can access the information they need.

Accepted Answer

A) validity 
B) confidentiality 
C) integrity 
D) availability 
A) validity 
B) confidentiality 
C) integrity 
D) availability

Question 15

_____ , a biometric security measure, translates words into digital patterns, which are recorded and examined for tone and pitch.

Accepted Answer

A) Voice recognition 
B) Audio manipulation 
C) Word exhibition 
D) Keyword identification 
A) Voice recognition 
B) Audio manipulation 
C) Word exhibition 
D) Keyword identification

Question 16

Which statement is true of application-filtering firewalls?

Accepted Answer

A) They are less secure than packet-filtering firewalls. 
B) They filter viruses less effectively than packet-filtering firewalls. 
C) They filter faster than packet-filtering firewalls. 
D) They are more expensive than packet-filtering firewalls. 
A) They are less secure than packet-filtering firewalls. 
B) They filter viruses less effectively than packet-filtering firewalls. 
C) They filter faster than packet-filtering firewalls. 
D) They are more expensive than packet-filtering firewalls.

Question 17

In the context of access controls, briefly explain the guidelines that need to be followed to increase the effectiveness of passwords.

Accepted Answer

Answers will vary. To increase the effec

Question 18

Briefly discuss dumpster diving and shoulder surfing, two commonly used social-engineering techniques.

Accepted Answer

Answers will vary. Two commonly used soc

Question 19

In the event of a network attack or intrusion, a _____ lists the tasks that must be performed by the organization to restore damaged data and equipment.

Accepted Answer

A) risk assessment plan 
B) systems engineering plan 
C) disaster recovery plan 
D) security compliance plan 
A) risk assessment plan 
B) systems engineering plan 
C) disaster recovery plan 
D) security compliance plan

Question 20

_____  is an example of antispyware software.

Accepted Answer

A) STOPzilla 
B) AndroZip 
C) Tumblr 
D) Dogpile 
A) STOPzilla 
B) AndroZip 
C) Tumblr 
D) Dogpile

Which of the following intentional computer and network threats is a type of Trojan program used to release a virus, worm, or other destructive code?

_____ primarily control access to computers and networks and include devices for securing computers and peripherals from theft.

Briefly discuss the process of data encryption.

_____ is a form of spyware that collects information about a user (without the user's consent)to determine which commercials to display in the user's Web browser.

Terminal resource security is a software feature that erases the screen and signs a user off automatically after a specified length of inactivity.

The main drawback of an intrusion detection system (IDS)is its inability to prevent denial-of-service (DoS)attacks.

According to a 2019 study, which of the following is not an accurate statistic about ransomware attacks?

An intrusion detection system (IDS)can protect networks against both external and internal access.

Which form of text needs to be unscrambled using a decryption key?

_____ are usually placed in front of a firewall and can identify attack signatures, trace patterns, generate alarms for a network administrator, and cause routers to terminate connections with suspicious sources.

In the context of computer and network security, _____ means that a system must not allow the disclosing of information by anyone who is not authorized to access it.

In the context of business continuity planning, list at least five of the procedures for keeping an organization operational in the event of a disaster.

Briefly explain the McCumber cube.

In the context of computer and network security, _____ means that computers and networks are operating and authorized users can access the information they need.

_____ , a biometric security measure, translates words into digital patterns, which are recorded and examined for tone and pitch.

Which statement is true of application-filtering firewalls?

In the context of access controls, briefly explain the guidelines that need to be followed to increase the effectiveness of passwords.

Briefly discuss dumpster diving and shoulder surfing, two commonly used social-engineering techniques.

In the event of a network attack or intrusion, a _____ lists the tasks that must be performed by the organization to restore damaged data and equipment.

_____ is an example of antispyware software.

Information Systems in Business

Computers and Their Business Applications

Data and Business Intelligence

Personal, Legal, Ethical, and Organizational Issues

Data Communication: Delivering Information Anywhere and Anytime

A Connected World

E-Commerce

Global Information Systems

Building Successful Information Systems

Enterprise Systems

Supporting Decisions and Processes

Artificial Intelligence and Automation

Emerging Trends, Technologies, and Applications

Filters

Exam 5: Protecting Information Resources

Which of the following intentional computer and network threats is a type of Trojan program used to release a virus, worm, or other destructive code?

_____ primarily control access to computers and networks and include devices for securing computers and peripherals from theft.

Briefly discuss the process of data encryption.

_____ is a form of spyware that collects information about a user (without the user's consent)to determine which commercials to display in the user's Web browser.

Terminal resource security is a software feature that erases the screen and signs a user off automatically after a specified length of inactivity.

The main drawback of an intrusion detection system (IDS)is its inability to prevent denial-of-service (DoS)attacks.

According to a 2019 study, which of the following is not an accurate statistic about ransomware attacks?

An intrusion detection system (IDS)can protect networks against both external and internal access.

Which form of text needs to be unscrambled using a decryption key?

_____ are usually placed in front of a firewall and can identify attack signatures, trace patterns, generate alarms for a network administrator, and cause routers to terminate connections with suspicious sources.

In the context of computer and network security, _____ means that a system must not allow the disclosing of information by anyone who is not authorized to access it.

In the context of business continuity planning, list at least five of the procedures for keeping an organization operational in the event of a disaster.

Briefly explain the McCumber cube.

In the context of computer and network security, _____ means that computers and networks are operating and authorized users can access the information they need.

_____ , a biometric security measure, translates words into digital patterns, which are recorded and examined for tone and pitch.

Which statement is true of application-filtering firewalls?

In the context of access controls, briefly explain the guidelines that need to be followed to increase the effectiveness of passwords.

Briefly discuss dumpster diving and shoulder surfing, two commonly used social-engineering techniques.

In the event of a network attack or intrusion, a _____ lists the tasks that must be performed by the organization to restore damaged data and equipment.

_____ is an example of antispyware software.

Information Systems in Business

Computers and Their Business Applications

Data and Business Intelligence

Personal, Legal, Ethical, and Organizational Issues

Data Communication: Delivering Information Anywhere and Anytime

A Connected World

E-Commerce

Global Information Systems

Building Successful Information Systems

Enterprise Systems

Supporting Decisions and Processes

Artificial Intelligence and Automation

Emerging Trends, Technologies, and Applications

Filters