Question 1

Most antivirus software is effective against

Accepted Answer

A)  only those viruses active on the Internet and through e-mail. 
B)  any virus. 
C)  any virus except those in wireless communications applications. 
D)  only those viruses already known when the software is written. 
A)  only those viruses active on the Internet and through e-mail. 
B)  any virus. 
C)  any virus except those in wireless communications applications. 
D)  only those viruses already known when the software is written.

Question 2

Electronic evidence on computer storage media that is not visible to the average user is called ________ data.

Accepted Answer

A)  defragmented 
B)  ambient 
C)  forensic 
D)  fragmented 
A)  defragmented 
B)  ambient 
C)  forensic 
D)  fragmented

Question 3

A(n) ________ system is used to identify and authorize different categories of system users and specify which portions of the organization's systems each user can access.

Accepted Answer

A)  identity management 
B)  AUP 
C)  authentication 
D)  firewall 
A)  identity management 
B)  AUP 
C)  authentication 
D)  firewall

Question 4

Unauthorized access is a security challenge that is most likely to occur in which of the following points of a corporate network?

Accepted Answer

A)  client computer 
B)  communications lines 
C)  corporate server 
D)  internal corporate back-end system 
A)  client computer 
B)  communications lines 
C)  corporate server 
D)  internal corporate back-end system

Question 5

Wireless networks are vulnerable to penetration because radio frequency bands are easy to scan.

Accepted Answer

A) True 
 B)False

Question 6

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Accepted Answer

A) True 
 B)False

Question 7

Application controls

Accepted Answer

A)  can be classified as input controls, processing controls, and output controls. 
B)  govern the design, security, and use of computer programs and the security of data files in general throughout the organization. 
C)  apply to all computerized applications and consist of a combination of hardware, software, and manual procedures that create an overall control environment. 
D)  include software controls, computer operations controls, and implementation controls. 
A)  can be classified as input controls, processing controls, and output controls. 
B)  govern the design, security, and use of computer programs and the security of data files in general throughout the organization. 
C)  apply to all computerized applications and consist of a combination of hardware, software, and manual procedures that create an overall control environment. 
D)  include software controls, computer operations controls, and implementation controls.

Question 8

What are the security challenges faced by wireless networks?

Accepted Answer

Wireless networks are vulnerable because

Question 9

Which of the following is not an example of a computer used as a target of crime?

Accepted Answer

A)  knowingly accessing a protected computer to commit fraud 
B)  accessing a computer system without authority 
C)  illegally accessing stored electronic communication 
D)  threatening to cause damage to a protected computer 
A)  knowingly accessing a protected computer to commit fraud 
B)  accessing a computer system without authority 
C)  illegally accessing stored electronic communication 
D)  threatening to cause damage to a protected computer

Question 10

Rigorous password systems

Accepted Answer

A)  are one of the most effective security tools. 
B)  may hinder employee productivity. 
C)  are costly to implement. 
D)  are often disregarded by employees. 
A)  are one of the most effective security tools. 
B)  may hinder employee productivity. 
C)  are costly to implement. 
D)  are often disregarded by employees.

Question 11

A firewall allows the organization to

Accepted Answer

A)  prevent unauthorized communication both into and out of the network. 
B)  monitor network hot spots for signs of intruders. 
C)  prevent known spyware and malware from entering the system. 
D)  all of the above. 
A)  prevent unauthorized communication both into and out of the network. 
B)  monitor network hot spots for signs of intruders. 
C)  prevent known spyware and malware from entering the system. 
D)  all of the above.

Question 12

Electronic data are more susceptible to destruction, fraud, error, and misuse because information systems concentrate data in computer files that

Accepted Answer

A)  are usually bound up in legacy systems that are difficult to access and difficult to correct in case of error. 
B)  are not secure because the technology to secure them did not exist at the time the files were created. 
C)  have the potential to be accessed by large numbers of people and by groups outside of the organization. 
D)  are frequently available on the Internet. 
A)  are usually bound up in legacy systems that are difficult to access and difficult to correct in case of error. 
B)  are not secure because the technology to secure them did not exist at the time the files were created. 
C)  have the potential to be accessed by large numbers of people and by groups outside of the organization. 
D)  are frequently available on the Internet.

Question 13

What is a digital certificate? How does it work?

Accepted Answer

Digital certificates are data files used

Question 14

For 100% availability, online transaction processing requires

Accepted Answer

A)  high-capacity storage. 
B)  a multi-tier server network. 
C)  fault-tolerant computer systems. 
D)  dedicated phone lines. 
A)  high-capacity storage. 
B)  a multi-tier server network. 
C)  fault-tolerant computer systems. 
D)  dedicated phone lines.

Question 15

A keylogger is a type of

Accepted Answer

A)  worm. 
B)  Trojan horse. 
C)  virus. 
D)  spyware. 
A)  worm. 
B)  Trojan horse. 
C)  virus. 
D)  spyware.

Question 16

An authentication token is a(n)

Accepted Answer

A)  device the size of a credit card that contains access permission data. 
B)  type of smart card. 
C)  gadget that displays passcodes. 
D)  electronic marker attached to a digital authorization file. 
A)  device the size of a credit card that contains access permission data. 
B)  type of smart card. 
C)  gadget that displays passcodes. 
D)  electronic marker attached to a digital authorization file.

Question 17

Currently, the protocols used for secure information transfer over the Internet are

Accepted Answer

A)  TCP/IP and SSL. 
B)  S-HTTP and CA. 
C)  HTTP and TCP/IP. 
D)  SSL, TLS, and S-HTTP. 
A)  TCP/IP and SSL. 
B)  S-HTTP and CA. 
C)  HTTP and TCP/IP. 
D)  SSL, TLS, and S-HTTP.

Question 18

Using numerous computers to inundate and overwhelm the network from numerous launch points is called a ________ attack.

Accepted Answer

A)  DDoS 
B)  DoS 
C)  SQL injection 
D)  phishing 
A)  DDoS 
B)  DoS 
C)  SQL injection 
D)  phishing

Question 19

Downtime refers to periods of time in which a

Accepted Answer

A)  computer system is malfunctioning. 
B)  computer system is not operational. 
C)  company or organization is not operational. 
D)  computer is not online. 
A)  computer system is malfunctioning. 
B)  computer system is not operational. 
C)  company or organization is not operational. 
D)  computer is not online.

Question 20

Which of the following is not an example of a computer used as an instrument of crime?

Accepted Answer

A)  theft of trade secrets 
B)  intentionally attempting to intercept electronic communication 
C)  unauthorized copying of software 
D)  breaching the confidentiality of protected computerized data 
A)  theft of trade secrets 
B)  intentionally attempting to intercept electronic communication 
C)  unauthorized copying of software 
D)  breaching the confidentiality of protected computerized data

Most antivirus software is effective against

Electronic evidence on computer storage media that is not visible to the average user is called ________ data.

A(n) ________ system is used to identify and authorize different categories of system users and specify which portions of the organization's systems each user can access.

Unauthorized access is a security challenge that is most likely to occur in which of the following points of a corporate network?

Wireless networks are vulnerable to penetration because radio frequency bands are easy to scan.

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Application controls

What are the security challenges faced by wireless networks?

Which of the following is not an example of a computer used as a target of crime?

Rigorous password systems

A firewall allows the organization to

Electronic data are more susceptible to destruction, fraud, error, and misuse because information systems concentrate data in computer files that

What is a digital certificate? How does it work?

For 100% availability, online transaction processing requires

A keylogger is a type of

An authentication token is a(n)

Currently, the protocols used for secure information transfer over the Internet are

Using numerous computers to inundate and overwhelm the network from numerous launch points is called a ________ attack.

Downtime refers to periods of time in which a

Which of the following is not an example of a computer used as an instrument of crime?

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems, Organizations, and Strategy

Ethical and Social Issues in Information Systems

It Infrastructure and Emerging Technologies

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy:

E-Commerce: Digital Markets, Digital Goods

Managing Knowledge

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters

Exam 8: Securing Information Systems

Most antivirus software is effective against

Electronic evidence on computer storage media that is not visible to the average user is called ________ data.

A(n) ________ system is used to identify and authorize different categories of system users and specify which portions of the organization's systems each user can access.

Unauthorized access is a security challenge that is most likely to occur in which of the following points of a corporate network?

Wireless networks are vulnerable to penetration because radio frequency bands are easy to scan.

DoS attacks are used to destroy information and access restricted areas of a company's information system.

Application controls

What are the security challenges faced by wireless networks?

Which of the following is not an example of a computer used as a target of crime?

Rigorous password systems

A firewall allows the organization to

Electronic data are more susceptible to destruction, fraud, error, and misuse because information systems concentrate data in computer files that

What is a digital certificate? How does it work?

For 100% availability, online transaction processing requires

A keylogger is a type of

An authentication token is a(n)

Currently, the protocols used for secure information transfer over the Internet are

Using numerous computers to inundate and overwhelm the network from numerous launch points is called a ________ attack.

Downtime refers to periods of time in which a

Which of the following is not an example of a computer used as an instrument of crime?

Information Systems in Global Business Today

Global E-Business and Collaboration

Information Systems, Organizations, and Strategy

Ethical and Social Issues in Information Systems

It Infrastructure and Emerging Technologies

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy:

E-Commerce: Digital Markets, Digital Goods

Managing Knowledge

Enhancing Decision Making

Building Information Systems

Managing Projects

Managing Global Systems

Filters