Question 1

A firewall is a hardware partition designed to protect networks from power surges.

Accepted Answer

A) True 
 B)False

Question 2

Explain how the one-time password approach works.

Accepted Answer

Under this approach,the user's password

Question 3

Electronic data interchange translation software interfaces with the sending firm and the value added network.

Accepted Answer

A) True 
 B)False

Question 4

All of the following techniques are used to validate electronic data interchange transactions except

Accepted Answer

A)  value added networks can compare passwords to a valid customer file before message transmission 
B)  prior to converting the message, the translation software of the receiving company can compare the password against a validation file in the firm's database 
C)  the recipient's application software can validate the password prior to processing 
D)  the recipient's application software can validate the password after the transaction has been processed 
A)  value added networks can compare passwords to a valid customer file before message transmission 
B)  prior to converting the message, the translation software of the receiving company can compare the password against a validation file in the firm's database 
C)  the recipient's application software can validate the password prior to processing 
D)  the recipient's application software can validate the password after the transaction has been processed

Question 5

In a computerized environment,the audit trail log must be printed onto paper documents.

Accepted Answer

A) True 
 B)False

Question 6

The message authentication code is calculated by the sender and the receiver of a data transmission.

Accepted Answer

A) True 
 B)False

Question 7

A formal log-on procedure is the operating system's last line of defense against unauthorized access.

Accepted Answer

A) True 
 B)False

Question 8

Audit objectives for the database management system include all of the following except

Accepted Answer

A)  verifying that the security group monitors and reports on fault tolerance violations 
B)  confirming that backup procedures are adequate 
C)  ensuring that authorized users access only those files they need to perform their duties 
D)  verifying that unauthorized users cannot access data files 
A)  verifying that the security group monitors and reports on fault tolerance violations 
B)  confirming that backup procedures are adequate 
C)  ensuring that authorized users access only those files they need to perform their duties 
D)  verifying that unauthorized users cannot access data files

Question 9

All of the following are designed to control exposures from subversive threats except

Accepted Answer

A)  firewalls 
B)  one-time passwords 
C)  field interrogation 
D)  data encryption 
A)  firewalls 
B)  one-time passwords 
C)  field interrogation 
D)  data encryption

Question 10

Discuss three sources of exposure (threats)to the operating system.

Accepted Answer

1.Privileged personnel who abuse their a

Question 11

In a telecommunications environment,line errors can be detected by using an echo check.

Accepted Answer

A) True 
 B)False

Question 12

Subschemas are used to authorize user access privileges to specific data elements.

Accepted Answer

A) True 
 B)False

Question 13

Audit trails cannot be used to

Accepted Answer

A)  detect unauthorized access to systems 
B)  facilitate reconstruction of events 
C)  reduce the need for other forms of security 
D)  promote personal accountability 
A)  detect unauthorized access to systems 
B)  facilitate reconstruction of events 
C)  reduce the need for other forms of security 
D)  promote personal accountability

Question 14

Explain how SYN Flood attacks can be controlled.

Accepted Answer

Two things can be done:
First,Internet h

Question 15

Advance encryption standard (AES)is

Accepted Answer

A)  a 64 -bit private key encryption technique 
B)  a 128-bit private key encryption technique 
C)  a 128-bit public key encryption technique 
D)  a 256-bit public encryption technique that has become a U.S. government standard 
A)  a 64 -bit private key encryption technique 
B)  a 128-bit private key encryption technique 
C)  a 128-bit public key encryption technique 
D)  a 256-bit public encryption technique that has become a U.S. government standard

Question 16

The most frequent victims of program viruses are microcomputers.

Accepted Answer

A) True 
 B)False

Question 17

Contrast the Private Encryption Standard approach with the Public Key Encryption approach to controlling access to telecommunication messages.

Accepted Answer

In the Private Encryption Standard appro

Question 18

A worm is software program that replicates itself in areas of idle memory until the system fails.

Accepted Answer

A) True 
 B)False

Question 19

The request-response technique should detect if a data communication transmission has been diverted.

Accepted Answer

A) True 
 B)False

Question 20

The database attributes that individual users have permission to access are defined in

Accepted Answer

A)  operating system. 
B)  user manual. 
C)  database schema. 
D)  user view. 
E)  application listing. 
A)  operating system. 
B)  user manual. 
C)  database schema. 
D)  user view. 
E)  application listing.

A firewall is a hardware partition designed to protect networks from power surges.

Explain how the one-time password approach works.

Electronic data interchange translation software interfaces with the sending firm and the value added network.

All of the following techniques are used to validate electronic data interchange transactions except

In a computerized environment,the audit trail log must be printed onto paper documents.

The message authentication code is calculated by the sender and the receiver of a data transmission.

A formal log-on procedure is the operating system's last line of defense against unauthorized access.

Audit objectives for the database management system include all of the following except

All of the following are designed to control exposures from subversive threats except

Discuss three sources of exposure (threats)to the operating system.

In a telecommunications environment,line errors can be detected by using an echo check.

Subschemas are used to authorize user access privileges to specific data elements.

Audit trails cannot be used to

Explain how SYN Flood attacks can be controlled.

Advance encryption standard (AES)is

The most frequent victims of program viruses are microcomputers.

Contrast the Private Encryption Standard approach with the Public Key Encryption approach to controlling access to telecommunication messages.

A worm is software program that replicates itself in areas of idle memory until the system fails.

The request-response technique should detect if a data communication transmission has been diverted.

The database attributes that individual users have permission to access are defined in

The Information System: An Accountant’s Perspective

Introduction to Transaction Processing

Ethics, Fraud, and Internal Control

The Revenue Cycle

The Expenditure Cycle Part I: Purchases and Cash Disbursements Procedures

The Expenditure Cycle Part II: Payroll Processing and Fixed Asset Procedures

The Conversion Cycle

General Ledger, Financial Reporting, and Management Reporting Systems

Database Management Systems

The REA Approach to Business Process Modeling

Enterprise Resource Planning Systems

Electronic Commerce Systems

Managing the Systems Development Life Cycle

Construct, Deliver, and Maintain Systems Projects

IT Controls : Sarbanes-Oxley and IT Governance

IT Controls : Systems Development Program Changes and Application Controls

Filters

Exam 16: IT Controls : Security and Access

A firewall is a hardware partition designed to protect networks from power surges.

Explain how the one-time password approach works.

Electronic data interchange translation software interfaces with the sending firm and the value added network.

All of the following techniques are used to validate electronic data interchange transactions except

In a computerized environment,the audit trail log must be printed onto paper documents.

The message authentication code is calculated by the sender and the receiver of a data transmission.

A formal log-on procedure is the operating system's last line of defense against unauthorized access.

Audit objectives for the database management system include all of the following except

All of the following are designed to control exposures from subversive threats except

Discuss three sources of exposure (threats)to the operating system.

In a telecommunications environment,line errors can be detected by using an echo check.

Subschemas are used to authorize user access privileges to specific data elements.

Audit trails cannot be used to

Explain how SYN Flood attacks can be controlled.

Advance encryption standard (AES)is

The most frequent victims of program viruses are microcomputers.

Contrast the Private Encryption Standard approach with the Public Key Encryption approach to controlling access to telecommunication messages.

A worm is software program that replicates itself in areas of idle memory until the system fails.

The request-response technique should detect if a data communication transmission has been diverted.

The database attributes that individual users have permission to access are defined in

The Information System: An Accountant’s Perspective

Introduction to Transaction Processing

Ethics, Fraud, and Internal Control

The Revenue Cycle

The Expenditure Cycle Part I: Purchases and Cash Disbursements Procedures

The Expenditure Cycle Part II: Payroll Processing and Fixed Asset Procedures

The Conversion Cycle

General Ledger, Financial Reporting, and Management Reporting Systems

Database Management Systems

The REA Approach to Business Process Modeling

Enterprise Resource Planning Systems

Electronic Commerce Systems

Managing the Systems Development Life Cycle

Construct, Deliver, and Maintain Systems Projects

IT Controls : Sarbanes-Oxley and IT Governance

IT Controls : Systems Development Program Changes and Application Controls

Filters