Question 1

Authorization refers to the ability to know that a person is who he or she claims to be.

Accepted Answer

A) True 
 B)False

Question 2

In 2004,ICQ users were enticed by a sales message from a supposed anti-virus vendor.On the vendor's site,a small program called Mitglieder was downloaded to the user's machine.The program enabled outsiders to infiltrate the user's machine.What type of malware is this an example of?

Accepted Answer

A) Trojan horse 
B) Virus 
C) Worm 
D) Spyware 
A) Trojan horse 
B) Virus 
C) Worm 
D) Spyware

Question 3

Packet filtering catches most types of network attacks.

Accepted Answer

A) True 
 B)False

Question 4

A firewall allows the organization to:

Accepted Answer

A) enforce a security policy on data exchanged between its network and the Internet. 
B) check the accuracy of all transactions between its network and the Internet. 
C) create an enterprise system on the Internet. 
D) check the content of all incoming and outgoing e-mail messages. 
A) enforce a security policy on data exchanged between its network and the Internet. 
B) check the accuracy of all transactions between its network and the Internet. 
C) create an enterprise system on the Internet. 
D) check the content of all incoming and outgoing e-mail messages.

Question 5

________ identify the access points in a Wi-Fi network.

Accepted Answer

A) NICs 
B) Mac addresses 
C) URLs 
D) SSIDs 
A) NICs 
B) Mac addresses 
C) URLs 
D) SSIDs

Question 6

For 100% availability,online transaction processing requires:

Accepted Answer

A) high-capacity storage. 
B) a multi-tier server network. 
C) fault-tolerant computer systems. 
D) dedicated phone lines. 
A) high-capacity storage. 
B) a multi-tier server network. 
C) fault-tolerant computer systems. 
D) dedicated phone lines.

Question 7

Statements ranking information risks and identifying security goals are included in a(n):

Accepted Answer

A) security policy. 
B) AUP. 
C) risk assessment. 
D) business impact analysis. 
A) security policy. 
B) AUP. 
C) risk assessment. 
D) business impact analysis.

Question 8

A walkthrough is a type of software testing used before software is even written.

Accepted Answer

A) True 
 B)False

Question 9

Specific security challenges that threaten corporate servers in a client/server environment include:

Accepted Answer

A) tapping;sniffing;message alteration;radiation. 
B) hacking;vandalism;denial of service attacks. 
C) theft,copying,alteration of data;hardware or software failure. 
D) unauthorized access;errors;spyware. 
A) tapping;sniffing;message alteration;radiation. 
B) hacking;vandalism;denial of service attacks. 
C) theft,copying,alteration of data;hardware or software failure. 
D) unauthorized access;errors;spyware.

Question 10

An authentication token is a(n):

Accepted Answer

A) device the size of a credit card that contains access permission data. 
B) type of smart card. 
C) gadget that displays passcodes. 
D) electronic marker attached to a digital authorization file. 
A) device the size of a credit card that contains access permission data. 
B) type of smart card. 
C) gadget that displays passcodes. 
D) electronic marker attached to a digital authorization file.

Question 11

Specific security challenges that threaten the communications lines in a client/server environment include:

Accepted Answer

A) tapping;sniffing;message alteration;radiation. 
B) hacking;vandalism;denial of service attacks. 
C) theft,copying,alteration of data;hardware or software failure. 
D) unauthorized access;errors;spyware. 
A) tapping;sniffing;message alteration;radiation. 
B) hacking;vandalism;denial of service attacks. 
C) theft,copying,alteration of data;hardware or software failure. 
D) unauthorized access;errors;spyware.

Question 12

A firewall identifies all of the following characteristics of incoming traffic,except:

Accepted Answer

A) user names. 
B) biometric authentication. 
C) IP addresses. 
D) applications. 
A) user names. 
B) biometric authentication. 
C) IP addresses. 
D) applications.

Question 13

Zero defects cannot be achieved in larger software programs because fully testing programs that contain thousands of choices and millions of paths would require thousands of years.

Accepted Answer

A) True 
 B)False

Question 14

Hackers create a botnet by:

Accepted Answer

A) infecting Web search bots with malware. 
B) using Web search bots to infect other computers. 
C) causing other people's computers to become "zombie" PCs following a master computer. 
D) infecting corporate servers with "zombie" Trojan horses that allow undetected access through a back door. 
A) infecting Web search bots with malware. 
B) using Web search bots to infect other computers. 
C) causing other people's computers to become "zombie" PCs following a master computer. 
D) infecting corporate servers with "zombie" Trojan horses that allow undetected access through a back door.

Question 15

The distributed nature of cloud computing makes it somewhat easier to track unauthorized access.

Accepted Answer

A) True 
 B)False

Question 16

________ use scanning software to look for known problems such as bad passwords,the removal of important files,security attacks in progress,and system administration errors.

Accepted Answer

A) Stateful inspections 
B) Intrusion detection systems 
C) Application proxy filtering technologies 
D) Packet filtering technologies 
A) Stateful inspections 
B) Intrusion detection systems 
C) Application proxy filtering technologies 
D) Packet filtering technologies

Question 17

Smaller firms may outsource some or many security functions to:

Accepted Answer

A) ISPs. 
B) MISs. 
C) MSSPs. 
D) CAs. 
A) ISPs. 
B) MISs. 
C) MSSPs. 
D) CAs.

Question 18

Computer forensics tasks include all of the following except:

Accepted Answer

A) presenting collected evidence in a court of law. 
B) securely storing recovered electronic data. 
C) collecting physical evidence on the computer. 
D) finding significant information in a large volume of electronic data. 
A) presenting collected evidence in a court of law. 
B) securely storing recovered electronic data. 
C) collecting physical evidence on the computer. 
D) finding significant information in a large volume of electronic data.

Question 19

Analysis of an information system that rates the likelihood of a security incident occurring and its cost is included in a(n):

Accepted Answer

A) security policy. 
B) AUP. 
C) risk assessment. 
D) business impact analysis. 
A) security policy. 
B) AUP. 
C) risk assessment. 
D) business impact analysis.

Question 20

Computers using cable modems to connect to the Internet are more open to penetration than those connecting via dial-up.

Accepted Answer

A) True 
 B)False

Authorization refers to the ability to know that a person is who he or she claims to be.

In 2004,ICQ users were enticed by a sales message from a supposed anti-virus vendor.On the vendor's site,a small program called Mitglieder was downloaded to the user's machine.The program enabled outsiders to infiltrate the user's machine.What type of malware is this an example of?

Packet filtering catches most types of network attacks.

A firewall allows the organization to:

________ identify the access points in a Wi-Fi network.

For 100% availability,online transaction processing requires:

Statements ranking information risks and identifying security goals are included in a(n):

A walkthrough is a type of software testing used before software is even written.

Specific security challenges that threaten corporate servers in a client/server environment include:

An authentication token is a(n):

Specific security challenges that threaten the communications lines in a client/server environment include:

A firewall identifies all of the following characteristics of incoming traffic,except:

Zero defects cannot be achieved in larger software programs because fully testing programs that contain thousands of choices and millions of paths would require thousands of years.

Hackers create a botnet by:

The distributed nature of cloud computing makes it somewhat easier to track unauthorized access.

________ use scanning software to look for known problems such as bad passwords,the removal of important files,security attacks in progress,and system administration errors.

Smaller firms may outsource some or many security functions to:

Computer forensics tasks include all of the following except:

Analysis of an information system that rates the likelihood of a security incident occurring and its cost is included in a(n):

Computers using cable modems to connect to the Internet are more open to penetration than those connecting via dial-up.

Business Information Systems in Your Career

Global E-Business and Collaboration

Achieving Competitive Advantage With Information Systems

IT Infrastructure: Hardware and Software

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets,digital Goods

Improving Decision Making and Managing Knowledge

Building Information Systems and Managing Projects

Ethical and Social Issues in Information Systems

Filters

Exam 7: Securing Information Systems

Authorization refers to the ability to know that a person is who he or she claims to be.

In 2004,ICQ users were enticed by a sales message from a supposed anti-virus vendor.On the vendor's site,a small program called Mitglieder was downloaded to the user's machine.The program enabled outsiders to infiltrate the user's machine.What type of malware is this an example of?

Packet filtering catches most types of network attacks.

A firewall allows the organization to:

________ identify the access points in a Wi-Fi network.

For 100% availability,online transaction processing requires:

Statements ranking information risks and identifying security goals are included in a(n):

A walkthrough is a type of software testing used before software is even written.

Specific security challenges that threaten corporate servers in a client/server environment include:

An authentication token is a(n):

Specific security challenges that threaten the communications lines in a client/server environment include:

A firewall identifies all of the following characteristics of incoming traffic,except:

Zero defects cannot be achieved in larger software programs because fully testing programs that contain thousands of choices and millions of paths would require thousands of years.

Hackers create a botnet by:

The distributed nature of cloud computing makes it somewhat easier to track unauthorized access.

________ use scanning software to look for known problems such as bad passwords,the removal of important files,security attacks in progress,and system administration errors.

Smaller firms may outsource some or many security functions to:

Computer forensics tasks include all of the following except:

Analysis of an information system that rates the likelihood of a security incident occurring and its cost is included in a(n):

Computers using cable modems to connect to the Internet are more open to penetration than those connecting via dial-up.

Business Information Systems in Your Career

Global E-Business and Collaboration

Achieving Competitive Advantage With Information Systems

IT Infrastructure: Hardware and Software

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets,digital Goods

Improving Decision Making and Managing Knowledge

Building Information Systems and Managing Projects

Ethical and Social Issues in Information Systems

Filters