Question 1

Email spoofing is a synonym for phishing.

Accepted Answer

A) True 
 B)False  True

Question 2

Which of the following was passed to give individuals the right to access their own health data created by doctors and other healthcare providers?

Accepted Answer

A)  the Privacy Act of 1974 
B)  the Sarbanes-Oxley Act 
C)  the HIPAA of 1996 
D)  the Gramm-Leach-Bliley Act 
E)  the Computer Privacy Act of 2014 
A)  the Privacy Act of 1974 
B)  the Sarbanes-Oxley Act 
C)  the HIPAA of 1996 
D)  the Gramm-Leach-Bliley Act 
E)  the Computer Privacy Act of 2014 C

Question 3

Natural disasters present the largest risk for infrastructure loss.

Accepted Answer

A) True 
 B)False  True

Question 4

How will computer crime change in the coming years?

Accepted Answer

Computer crime is a game of cat and mous

Question 5

A ________ is a type of virus that self-propagates using the Internet or other computer network.

Accepted Answer

A)  worm 
B)  sniffer 
C)  Trojan horse 
D)  phisher 
E)  mole 
A)  worm 
B)  sniffer 
C)  Trojan horse 
D)  phisher 
E)  mole

Question 6

Documenting position sensitivity enables security personnel to prioritize their activities in accordance with the possible risk and loss.

Accepted Answer

A) True 
 B)False

Question 7

The process of hardening a Web site is a ________ safeguard.

Accepted Answer

A)  political 
B)  financial 
C)  technical 
D)  physical 
E)  virtual 
A)  political 
B)  financial 
C)  technical 
D)  physical 
E)  virtual

Question 8

What is meant by denial of service?

Accepted Answer

Human error in following procedures, or

Question 9

IP spoofing occurs when an intruder uses another site's IP address to masquerade as that other site.

Accepted Answer

A) True 
 B)False

Question 10

A ________ is a string of bits used to encrypt data.

Accepted Answer

A)  key 
B)  honeypot 
C)  cookie 
D)  cache 
E)  cipher 
A)  key 
B)  honeypot 
C)  cookie 
D)  cache 
E)  cipher

Question 11

In information security, which of the following is True about managing risk?

Accepted Answer

A)  All organizations except financial institutions should invest heavily in security safeguards. 
B)  Organizations should implement safeguards that balance the trade-off between risk and cost. 
C)  Passwords are classified as technical safeguards. 
D)  Physical security is classified as human safeguards. 
E)  All risks should be eliminated. 
A)  All organizations except financial institutions should invest heavily in security safeguards. 
B)  Organizations should implement safeguards that balance the trade-off between risk and cost. 
C)  Passwords are classified as technical safeguards. 
D)  Physical security is classified as human safeguards. 
E)  All risks should be eliminated.

Question 12

________ refers to an organization-wide function that is in charge of developing data policies and enforcing data standards.

Accepted Answer

A)  Data administration 
B)  Authentication 
C)  Usurpation 
D)  Data encryption 
E)  Access Control 
A)  Data administration 
B)  Authentication 
C)  Usurpation 
D)  Data encryption 
E)  Access Control

Question 13

________ protect databases and other organizational data.

Accepted Answer

A)  Cookies 
B)  Payloads 
C)  Data safeguards 
D)  Data strings 
E)  Data tunnels 
A)  Cookies 
B)  Payloads 
C)  Data safeguards 
D)  Data strings 
E)  Data tunnels

Question 14

Which of the following is a sniffing technique?

Accepted Answer

A)  IP spoofing 
B)  caches 
C)  denial of service 
D)  adware 
E)  port scanner 
A)  IP spoofing 
B)  caches 
C)  denial of service 
D)  adware 
E)  port scanner

Question 15

Phishing is a technique for obtaining unauthorized data that uses pretexting via email.

Accepted Answer

A) True 
 B)False

Question 16

Define encryption and explain symmetric and asymmetric encryption for computer systems.

Accepted Answer

Encryption is the process of transformin

Question 17

A(n) ________ has a microchip in it to hold data.

Accepted Answer

A)  ATM card 
B)  smart card 
C)  cookie 
D)  key escrow 
E)  dropper 
A)  ATM card 
B)  smart card 
C)  cookie 
D)  key escrow 
E)  dropper

Question 18

Which of the following usually happens in a malicious denial-of-service attack?

Accepted Answer

A)  A hacker monitors and intercepts wireless traffic at will. 
B)  A hacker floods a Web server with many millions of bogus service requests. 
C)  An intruder uses another site's IP address to masquerade as that other site. 
D)  A phisher pretends to be a legitimate company and requests confidential data. 
E)  A hacker identifies vulnerabilities in network hosts. 
A)  A hacker monitors and intercepts wireless traffic at will. 
B)  A hacker floods a Web server with many millions of bogus service requests. 
C)  An intruder uses another site's IP address to masquerade as that other site. 
D)  A phisher pretends to be a legitimate company and requests confidential data. 
E)  A hacker identifies vulnerabilities in network hosts.

Question 19

Which of the following is most likely to be a result of hacking?

Accepted Answer

A)  certain Web sites being censored for hurting sentiments 
B)  small amounts of spam in a user's inbox 
C)  an unauthorized transaction from a user's credit card 
D)  pop-up ads appearing frequently 
E)  slowing of network speed 
A)  certain Web sites being censored for hurting sentiments 
B)  small amounts of spam in a user's inbox 
C)  an unauthorized transaction from a user's credit card 
D)  pop-up ads appearing frequently 
E)  slowing of network speed

Question 20

Sally has been working really hard lately and asks her manager for a raise. Her manager tells her that she is already the highest paid employee on the floor. Sally doesn't believe her manager, and illegally accesses the employee database to look at salary data. Sally's act can be termed as ________.

Accepted Answer

A)  pretexting 
B)  phishing 
C)  hacking 
D)  spoofing 
E)  skimming 
A)  pretexting 
B)  phishing 
C)  hacking 
D)  spoofing 
E)  skimming

Email spoofing is a synonym for phishing.

Which of the following was passed to give individuals the right to access their own health data created by doctors and other healthcare providers?

Natural disasters present the largest risk for infrastructure loss.

How will computer crime change in the coming years?

A ________ is a type of virus that self-propagates using the Internet or other computer network.

Documenting position sensitivity enables security personnel to prioritize their activities in accordance with the possible risk and loss.

The process of hardening a Web site is a ________ safeguard.

What is meant by denial of service?

IP spoofing occurs when an intruder uses another site's IP address to masquerade as that other site.

A ________ is a string of bits used to encrypt data.

In information security, which of the following is True about managing risk?

________ refers to an organization-wide function that is in charge of developing data policies and enforcing data standards.

________ protect databases and other organizational data.

Which of the following is a sniffing technique?

Phishing is a technique for obtaining unauthorized data that uses pretexting via email.

Define encryption and explain symmetric and asymmetric encryption for computer systems.

A(n) ________ has a microchip in it to hold data.

Which of the following usually happens in a malicious denial-of-service attack?

Which of the following is most likely to be a result of hacking?

Sally has been working really hard lately and asks her manager for a raise. Her manager tells her that she is already the highest paid employee on the floor. Sally doesn't believe her manager, and illegally accesses the employee database to look at salary data. Sally's act can be termed as ________.

The Importance of Mis

Collaboration Information Systems

Strategy and Information Systems

Hardware, Software, and Mobile Systems

Database Processing

The Cloud

Processes, Organizations, and Information Systems

Social Media Information Systems

Business Intelligence Systems

Information Systems Management

Information Systems Development

Filters

Exam 10: Information Systems Security

Email spoofing is a synonym for phishing.

Which of the following was passed to give individuals the right to access their own health data created by doctors and other healthcare providers?

Natural disasters present the largest risk for infrastructure loss.

How will computer crime change in the coming years?

A ________ is a type of virus that self-propagates using the Internet or other computer network.

Documenting position sensitivity enables security personnel to prioritize their activities in accordance with the possible risk and loss.

The process of hardening a Web site is a ________ safeguard.

What is meant by denial of service?

IP spoofing occurs when an intruder uses another site's IP address to masquerade as that other site.

A ________ is a string of bits used to encrypt data.

In information security, which of the following is True about managing risk?

________ refers to an organization-wide function that is in charge of developing data policies and enforcing data standards.

________ protect databases and other organizational data.

Which of the following is a sniffing technique?

Phishing is a technique for obtaining unauthorized data that uses pretexting via email.

Define encryption and explain symmetric and asymmetric encryption for computer systems.

A(n) ________ has a microchip in it to hold data.

Which of the following usually happens in a malicious denial-of-service attack?

Which of the following is most likely to be a result of hacking?

The Importance of Mis

Collaboration Information Systems

Strategy and Information Systems

Hardware, Software, and Mobile Systems

Database Processing

The Cloud

Processes, Organizations, and Information Systems

Social Media Information Systems

Business Intelligence Systems

Information Systems Management

Information Systems Development

Filters