Question 1

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Accepted Answer

A) True 
 B)False  True

Question 2

Discuss the issue of security challenges on the Internet as that issue applies to a global enterprise.List at least five Internet security challenges.

Accepted Answer

Large public networks,including the Internet,are more vulnerable because they are virtually open to anyone and because they are so huge that when abuses do occur,they can have an enormously widespread impact.When the Internet becomes part of the corporate network,the organization's information systems can be vulnerable to actions from outsiders.Computers that are constantly connected to the Internet via cable modem or DSL line are more open to penetration by outsiders because they use a fixed Internet address where they can be more easily identified.The fixed Internet address creates the target for hackers.To benefit from electronic commerce,supply chain management,and other digital business processes,companies need to be open to outsiders such as customers,suppliers,and trading partners.Corporate systems must be extended outside the organization so that employees working with wireless and other mobile computing devices can access them.This requires a new security culture and infrastructure,allowing corporations to extend their security policies to include procedures for suppliers and other business partners.

Question 3

The term "cybervandalism" is the intentional disruption,defacement,or even destruction of a Web site or corporate information system.

Accepted Answer

A) True 
 B)False  True

Question 4

Smaller firms can outsource security functions to

Accepted Answer

A) MISs 
B) CSOs 
C) MSSPs 
D) CAs 
A) MISs 
B) CSOs 
C) MSSPs 
D) CAs

Question 5

Application controls are specific controls unique to each computerized application,such as payroll or order processing.

Accepted Answer

A) True 
 B)False

Question 6

We are looking at putting antivirus software on all of our business computers.One employee stated that he thought it was a bad idea because he felt that antivirus software is the virus.Does this employee have a point?

Accepted Answer

Yes,he has a point.McAfee is a prominent

Question 7

The potential for unauthorized access is usually limited to the communications lines of a network.

Accepted Answer

A) True 
 B)False

Question 8

________ uses systems that read and interpret individual human traits,such as fingerprints,irises,and voices,in order to grant or deny access.

Accepted Answer

Biometric

Question 9

Biometric authentication

Accepted Answer

A) is inexpensive. 
B) is used widely in Europe for security applications. 
C) can use a person's face as a unique,measurable trait. 
D) only uses physical traits as a measurement. 
A) is inexpensive. 
B) is used widely in Europe for security applications. 
C) can use a person's face as a unique,measurable trait. 
D) only uses physical traits as a measurement.

Question 10

Identity theft is a crime in which an imposter obtains key pieces of personal information,such as social insurance numbers,driver's licence numbers,or credit card numbers,to impersonate someone else.

Accepted Answer

A) True 
 B)False

Question 11

Bart Black walks into a local bank.He does not work there but he has a tag on his shirt that reads "IT Department." He goes up to a loans officer and tells him he needs to check the security on the loan officer's computer.Bart sits in front of the keyboard and asks the officer for his username and password.The loan officer gives him the information.Bart then thanks him and leaves the bank.Outside in his car Bart Black gets into the bank system using the information.This loan officer is a victim of ________.

Accepted Answer

A) a hacker 
B) a cracker 
C) dumpster diving 
D) social engineering 
A) a hacker 
B) a cracker 
C) dumpster diving 
D) social engineering

Question 12

________ controls are specific controls unique to each computerized application,such as payroll or order processing.

Accepted Answer

The answer of ________ controls are specific controls unique to...

Question 13

Sniffers enable hackers to steal proprietary information from anywhere on a network,including e-mail messages,company files,and confidential reports.

Accepted Answer

A) True 
 B)False

Question 14

________ refers to the policies,procedures,and technical measures used to prevent unauthorized access,alteration,theft,or physical damage to information systems.

Accepted Answer

The answer of ________ refers to the policies,procedures,and technical measures...

Question 15

________ involves setting up fake Web sites or sending e-mail messages that look like those of legitimate businesses to ask users for confidential personal data.

Accepted Answer

The answer of ________ involves setting up fake Web sites...

Question 16

Hackers and their companion viruses are an increasing problem,especially on the Internet.What are the most important measurers for a firm to take to protect itself from this? Is full protection feasible? Why or why not?

Accepted Answer

For protection,a company must institute

Question 17

The term "cracker" is typically used to denote a hacker with criminal intent.

Accepted Answer

A) True 
 B)False

Question 18

A ________ is a type of eavesdropping program that monitors information travelling over a network.

Accepted Answer

A) sniffer 
B) keyloggers 
C) a Trojan horse 
D) worms 
A) sniffer 
B) keyloggers 
C) a Trojan horse 
D) worms

Question 19

What is a digital certificate? How does it work?

Accepted Answer

Digital certificates are data files used

Question 20

An analysis of the firm's most critical systems and the impact a system's outage would have on the business is included in a(n)

Accepted Answer

A) security policy. 
B) AUP. 
C) risk assessment. 
D) business impact analysis. 
A) security policy. 
B) AUP. 
C) risk assessment. 
D) business impact analysis.

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Discuss the issue of security challenges on the Internet as that issue applies to a global enterprise.List at least five Internet security challenges.

The term "cybervandalism" is the intentional disruption,defacement,or even destruction of a Web site or corporate information system.

Smaller firms can outsource security functions to

Application controls are specific controls unique to each computerized application,such as payroll or order processing.

We are looking at putting antivirus software on all of our business computers.One employee stated that he thought it was a bad idea because he felt that antivirus software is the virus.Does this employee have a point?

The potential for unauthorized access is usually limited to the communications lines of a network.

________ uses systems that read and interpret individual human traits,such as fingerprints,irises,and voices,in order to grant or deny access.

Biometric authentication

Identity theft is a crime in which an imposter obtains key pieces of personal information,such as social insurance numbers,driver's licence numbers,or credit card numbers,to impersonate someone else.

________ controls are specific controls unique to each computerized application,such as payroll or order processing.

Sniffers enable hackers to steal proprietary information from anywhere on a network,including e-mail messages,company files,and confidential reports.

________ refers to the policies,procedures,and technical measures used to prevent unauthorized access,alteration,theft,or physical damage to information systems.

________ involves setting up fake Web sites or sending e-mail messages that look like those of legitimate businesses to ask users for confidential personal data.

Hackers and their companion viruses are an increasing problem,especially on the Internet.What are the most important measurers for a firm to take to protect itself from this? Is full protection feasible? Why or why not?

The term "cracker" is typically used to denote a hacker with criminal intent.

A ________ is a type of eavesdropping program that monitors information travelling over a network.

What is a digital certificate? How does it work?

An analysis of the firm's most critical systems and the impact a system's outage would have on the business is included in a(n)

Information Systems in Global Business Today

How Businesses Use Information Systems

Information Systems, organizations, and Strategy

Social, ethical, and Legal Issues in Information Systems

It Infrastructure and Emerging Technologies

Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Enterprise Applications to Manage Supply Chains and Respond to Customers

E-Commerce: Digital Markets and Digital Goods

Managing Knowledge

Enhancing Decision Making

Developing Information Systems

Project Management, business Value, and Managing Change

Managing Global Systems

Filters

Exam 8: Securing Information Systems

One form of spoofing involves forging the return address on an e-mail so that the e-mail message appears to come from someone other than the sender.

Discuss the issue of security challenges on the Internet as that issue applies to a global enterprise.List at least five Internet security challenges.

The term "cybervandalism" is the intentional disruption,defacement,or even destruction of a Web site or corporate information system.

Smaller firms can outsource security functions to

Application controls are specific controls unique to each computerized application,such as payroll or order processing.

We are looking at putting antivirus software on all of our business computers.One employee stated that he thought it was a bad idea because he felt that antivirus software is the virus.Does this employee have a point?

The potential for unauthorized access is usually limited to the communications lines of a network.

________ uses systems that read and interpret individual human traits,such as fingerprints,irises,and voices,in order to grant or deny access.

Biometric authentication

Identity theft is a crime in which an imposter obtains key pieces of personal information,such as social insurance numbers,driver's licence numbers,or credit card numbers,to impersonate someone else.

________ controls are specific controls unique to each computerized application,such as payroll or order processing.

Sniffers enable hackers to steal proprietary information from anywhere on a network,including e-mail messages,company files,and confidential reports.

________ refers to the policies,procedures,and technical measures used to prevent unauthorized access,alteration,theft,or physical damage to information systems.

________ involves setting up fake Web sites or sending e-mail messages that look like those of legitimate businesses to ask users for confidential personal data.

Hackers and their companion viruses are an increasing problem,especially on the Internet.What are the most important measurers for a firm to take to protect itself from this? Is full protection feasible? Why or why not?

The term "cracker" is typically used to denote a hacker with criminal intent.

A ________ is a type of eavesdropping program that monitors information travelling over a network.

What is a digital certificate? How does it work?

An analysis of the firm's most critical systems and the impact a system's outage would have on the business is included in a(n)

Information Systems in Global Business Today

How Businesses Use Information Systems

Information Systems, organizations, and Strategy

Social, ethical, and Legal Issues in Information Systems

It Infrastructure and Emerging Technologies

Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Enterprise Applications to Manage Supply Chains and Respond to Customers

E-Commerce: Digital Markets and Digital Goods

Managing Knowledge

Enhancing Decision Making

Developing Information Systems

Project Management, business Value, and Managing Change

Managing Global Systems

Filters