Question 1

In asymmetric encryption, each site has a ________ for encoding messages.

Accepted Answer

A)  botnet 
B)  private key 
C)  public key 
D)  cookie 
A)  botnet 
B)  private key 
C)  public key 
D)  cookie

Question 2

The senior management of an organization must establish company-wide security policies.

Accepted Answer

A) True 
 B)False

Question 3

Faulty service excludes problems that result due to incorrect data modification.

Accepted Answer

A) True 
 B)False

Question 4

A computer crime is committed if an employee inadvertently installs an old database on top of the current one.

Accepted Answer

A) True 
 B)False

Question 5

What is meant by denial of service?

Accepted Answer

Human error in following procedures, or

Question 6

Phishing is a technique for intercepting computer communications.

Accepted Answer

A) True 
 B)False

Question 7

When an employee is terminated, IS administrators should receive advance notice so that they can ________.

Accepted Answer

A)  destroy the employee's records 
B)  plan the recruitment of their positions. 
C)  disseminate information 
D)  remove the user account and password 
A)  destroy the employee's records 
B)  plan the recruitment of their positions. 
C)  disseminate information 
D)  remove the user account and password

Question 8

________ involves accomplishing job tasks during failure.

Accepted Answer

A)  Authentication 
B)  Hardening 
C)  Usurpation 
D)  Recovery 
A)  Authentication 
B)  Hardening 
C)  Usurpation 
D)  Recovery

Question 9

The computers that run the DBMS and all devices that store database data should reside in locked, controlled-access facilities. This is done to ________.

Accepted Answer

A)  stop SQL injection attacks 
B)  prevent email spoofing 
C)  prevent brute force attacks 
D)  provide physical security 
A)  stop SQL injection attacks 
B)  prevent email spoofing 
C)  prevent brute force attacks 
D)  provide physical security

Question 10

In information security, which of the following is True about managing risk?

Accepted Answer

A)  All organizations except financial institutions should invest heavily in security safeguards. 
B)  Organizations should implement safeguards that balance the trade-off between risk and cost. 
C)  Passwords are classified as technical safeguards. 
D)  Physical security is classified as human safeguards. 
A)  All organizations except financial institutions should invest heavily in security safeguards. 
B)  Organizations should implement safeguards that balance the trade-off between risk and cost. 
C)  Passwords are classified as technical safeguards. 
D)  Physical security is classified as human safeguards.

Question 11

SQL injection attack occurs when users enter an SQL statement into a form in which they are supposed to enter a name or other data.

Accepted Answer

A) True 
 B)False

Question 12

A ________ is a person or an organization that seeks to obtain or alter data or other IS assets illegally, without the owner's permission and often without the owner's knowledge.

Accepted Answer

A)  target 
B)  vulnerability 
C)  threat 
D)  key escrow 
A)  target 
B)  vulnerability 
C)  threat 
D)  key escrow

Question 13

A Trojan horse is a virus that masquerades as a useful program or file.

Accepted Answer

A) True 
 B)False

Question 14

________ are the primary means of authentication for a user's computer and other networks and servers to which the user may have access.

Accepted Answer

A)  Private keys 
B)  User names 
C)  Passwords 
D)  Personal identification numbers 
A)  Private keys 
B)  User names 
C)  Passwords 
D)  Personal identification numbers

Question 15

With ________, the sender and receiver transmit a message using different keys.

Accepted Answer

A)  asymmetric encryption 
B)  a block cipher 
C)  symmetric encryption 
D)  a stream cipher 
A)  asymmetric encryption 
B)  a block cipher 
C)  symmetric encryption 
D)  a stream cipher

Question 16

Discuss some human safeguards for employees that can ensure the security of information systems.

Accepted Answer

Human safeguards involve the people and

Question 17

________ involves breaking into a network to steal data such as customer lists, product inventory data, employee data, and other proprietary and confidential data.

Accepted Answer

A)  Pretexting 
B)  Phishing 
C)  Hacking 
D)  Spoofing 
A)  Pretexting 
B)  Phishing 
C)  Hacking 
D)  Spoofing

Question 18

The specifics of a security policy should not depend on whether the organization is governmental or nongovernmental, or whether it is publicly held or private.

Accepted Answer

A) True 
 B)False

Question 19

________ protect databases and other organizational data.

Accepted Answer

A)  Cookies 
B)  Payloads 
C)  Data safeguards 
D)  Data strings 
A)  Cookies 
B)  Payloads 
C)  Data safeguards 
D)  Data strings

Question 20

Business requirements do not necessitate opening information systems to nonemployee personnel, such as temporary personnel, vendors, or partner personnel.

Accepted Answer

A) True 
 B)False

In asymmetric encryption, each site has a ________ for encoding messages.

The senior management of an organization must establish company-wide security policies.

Faulty service excludes problems that result due to incorrect data modification.

A computer crime is committed if an employee inadvertently installs an old database on top of the current one.

What is meant by denial of service?

Phishing is a technique for intercepting computer communications.

When an employee is terminated, IS administrators should receive advance notice so that they can ________.

________ involves accomplishing job tasks during failure.

The computers that run the DBMS and all devices that store database data should reside in locked, controlled-access facilities. This is done to ________.

In information security, which of the following is True about managing risk?

SQL injection attack occurs when users enter an SQL statement into a form in which they are supposed to enter a name or other data.

A ________ is a person or an organization that seeks to obtain or alter data or other IS assets illegally, without the owner's permission and often without the owner's knowledge.

A Trojan horse is a virus that masquerades as a useful program or file.

________ are the primary means of authentication for a user's computer and other networks and servers to which the user may have access.

With ________, the sender and receiver transmit a message using different keys.

Discuss some human safeguards for employees that can ensure the security of information systems.

________ involves breaking into a network to steal data such as customer lists, product inventory data, employee data, and other proprietary and confidential data.

The specifics of a security policy should not depend on whether the organization is governmental or nongovernmental, or whether it is publicly held or private.

________ protect databases and other organizational data.

Business requirements do not necessitate opening information systems to nonemployee personnel, such as temporary personnel, vendors, or partner personnel.

The Importance of MIS

Collaboration Information Systems

Strategy and Information Systems

Hardware, Software, and Mobile Systems

Database Processing

The Cloud

Processes, Organizations, and Information Systems

Social Media Information Systems

Business Intelligence Systems

Information Systems Management

Information Systems Development

Filters

Exam 10: Information Systems Security

In asymmetric encryption, each site has a ________ for encoding messages.

The senior management of an organization must establish company-wide security policies.

Faulty service excludes problems that result due to incorrect data modification.

A computer crime is committed if an employee inadvertently installs an old database on top of the current one.

What is meant by denial of service?

Phishing is a technique for intercepting computer communications.

When an employee is terminated, IS administrators should receive advance notice so that they can ________.

________ involves accomplishing job tasks during failure.

The computers that run the DBMS and all devices that store database data should reside in locked, controlled-access facilities. This is done to ________.

In information security, which of the following is True about managing risk?

SQL injection attack occurs when users enter an SQL statement into a form in which they are supposed to enter a name or other data.

A ________ is a person or an organization that seeks to obtain or alter data or other IS assets illegally, without the owner's permission and often without the owner's knowledge.

A Trojan horse is a virus that masquerades as a useful program or file.

________ are the primary means of authentication for a user's computer and other networks and servers to which the user may have access.

With ________, the sender and receiver transmit a message using different keys.

Discuss some human safeguards for employees that can ensure the security of information systems.

________ involves breaking into a network to steal data such as customer lists, product inventory data, employee data, and other proprietary and confidential data.

The specifics of a security policy should not depend on whether the organization is governmental or nongovernmental, or whether it is publicly held or private.

________ protect databases and other organizational data.

Business requirements do not necessitate opening information systems to nonemployee personnel, such as temporary personnel, vendors, or partner personnel.

The Importance of MIS

Collaboration Information Systems

Strategy and Information Systems

Hardware, Software, and Mobile Systems

Database Processing

The Cloud

Processes, Organizations, and Information Systems

Social Media Information Systems

Business Intelligence Systems

Information Systems Management

Information Systems Development

Filters