Question 1

What are the responsibilities of a data custodian?

Accepted Answer

Data custodians work directly with data

Question 2

To achieve the maximum confidentiality and integrity found in a completely secure information system would require that the system not allow access (or availability) to anyone.

Accepted Answer

A) True 
 B)False

Question 3

Provide an example of a social engineering attack.

Accepted Answer

An example of a social engineering attac

Question 4

In a(n) ____________________ attack, the attacker monitors (or sniffs) packets from the network, modifies them using Internet Protocol spoofing techniques, and then inserts them back into the network.

Accepted Answer

The answer of In a(n) ____________________ attack, the attacker monitors...

Question 5

____ is a technique used to gain unauthorized access to computers, wherein the attacker assumes or simulates an address that indicate to the victim that the messages are coming from the address of a trusted host.

Accepted Answer

A)  Sniffing 
B)  Spoofing 
C)  Spamming 
D)  DDoS 
A)  Sniffing 
B)  Spoofing 
C)  Spamming 
D)  DDoS

Question 6

Match each item with a statement below.
-Malicious program that replicates itself constantly.

Accepted Answer

A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality 
A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality

Question 7

Describe a dictionary attack.

Accepted Answer

The dictionary attack, which is a variat

Question 8

What important organizational functions are performed by Information Security?

Accepted Answer

Information security performs these four

Question 9

A prolonged increase in power is called a ____.

Accepted Answer

A)  spike 
B)  surge 
C)  sag 
D)  fault 
A)  spike 
B)  surge 
C)  sag 
D)  fault

Question 10

The threat of ____ involves a malicious individual observing another's password by watching the victim while they are performing system login activities.

Accepted Answer

A)  packet monkeys 
B)  intellectual property 
C)  shoulder surfing 
D)  script kiddies 
A)  packet monkeys 
B)  intellectual property 
C)  shoulder surfing 
D)  script kiddies

Question 11

A majority of organizations use information systems primarily to support their strategic planning.

Accepted Answer

A) True 
 B)False

Question 12

Match each item with a statement below.
-Software programs that reveals its designed behavior only when activated.

Accepted Answer

A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality 
A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality

Question 13

An individual who hacks the public telephone network to make free calls or disrupt services is called a ____.

Accepted Answer

A)  phreaker 
B)  hactivist 
C)  packet monkey 
D)  cyberterrorist 
A)  phreaker 
B)  hactivist 
C)  packet monkey 
D)  cyberterrorist

Question 14

Match each item with a statement below.
-Information is free from mistakes or errors.

Accepted Answer

A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality 
A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality

Question 15

Describe the difference between direct and indirect attacks.

Accepted Answer

A direct attack is when a hacker uses a

Question 16

-According the to CSI/FBI Computer Crime and Security Survey, the most dominant type of attack for the last decade was ____.

Accepted Answer

A)  insider abuse 
B)  denial of service 
C)  physical loss (theft) 
D)  malware infection 
A)  insider abuse 
B)  denial of service 
C)  physical loss (theft) 
D)  malware infection

Question 17

Match each item with a statement below.
-Responsible for the security and use of a particular set of information.

Accepted Answer

A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality 
A) data custodian 
B) Trojan horse 
C) integrity 
D) back door 
E) balance
F)worm
G)accuracy
H)data owner
I)confidentiality

Question 18

Describe the balance between information security and access.

Accepted Answer

Information security must balance protec

Question 19

What is defense in depth?

Accepted Answer

One of the basic tenets of security arch

Question 20

A(n) ____________________ is an application error that occurs when more data is sent to a buffer than it can handle.

Accepted Answer

The answer of A(n) ____________________ is an application error that...

What are the responsibilities of a data custodian?

To achieve the maximum confidentiality and integrity found in a completely secure information system would require that the system not allow access (or availability) to anyone.

Provide an example of a social engineering attack.

In a(n) ____________________ attack, the attacker monitors (or sniffs) packets from the network, modifies them using Internet Protocol spoofing techniques, and then inserts them back into the network.

____ is a technique used to gain unauthorized access to computers, wherein the attacker assumes or simulates an address that indicate to the victim that the messages are coming from the address of a trusted host.

Match each item with a statement below. -Malicious program that replicates itself constantly.

Describe a dictionary attack.

What important organizational functions are performed by Information Security?

A prolonged increase in power is called a ____.

The threat of ____ involves a malicious individual observing another's password by watching the victim while they are performing system login activities.

A majority of organizations use information systems primarily to support their strategic planning.

Match each item with a statement below. -Software programs that reveals its designed behavior only when activated.

An individual who hacks the public telephone network to make free calls or disrupt services is called a ____.

Match each item with a statement below. -Information is free from mistakes or errors.

Describe the difference between direct and indirect attacks.

-According the to CSI/FBI Computer Crime and Security Survey, the most dominant type of attack for the last decade was ____.

Match each item with a statement below. -Responsible for the security and use of a particular set of information.

Describe the balance between information security and access.

What is defense in depth?

A(n) ____________________ is an application error that occurs when more data is sent to a buffer than it can handle.

Security Policies and Standards

Authenticating Users

Introduction to Firewalls

Packet Filtering

Firewall Configuration and Administration

Working With Proxy Servers and Application-Level Firewalls

Implementing the Bastion Host

Encryption - The Foundation for the Virtual Private Network

Setting up a Virtual Private Network

Filters

Exam 1: Introduction to Information Security

What are the responsibilities of a data custodian?

To achieve the maximum confidentiality and integrity found in a completely secure information system would require that the system not allow access (or availability) to anyone.

Provide an example of a social engineering attack.

In a(n) ____________________ attack, the attacker monitors (or sniffs) packets from the network, modifies them using Internet Protocol spoofing techniques, and then inserts them back into the network.

____ is a technique used to gain unauthorized access to computers, wherein the attacker assumes or simulates an address that indicate to the victim that the messages are coming from the address of a trusted host.

Match each item with a statement below. -Malicious program that replicates itself constantly.

Describe a dictionary attack.

What important organizational functions are performed by Information Security?

A prolonged increase in power is called a ____.

The threat of ____ involves a malicious individual observing another's password by watching the victim while they are performing system login activities.

A majority of organizations use information systems primarily to support their strategic planning.

Match each item with a statement below. -Software programs that reveals its designed behavior only when activated.

An individual who hacks the public telephone network to make free calls or disrupt services is called a ____.

Match each item with a statement below. -Information is free from mistakes or errors.

Describe the difference between direct and indirect attacks.

-According the to CSI/FBI Computer Crime and Security Survey, the most dominant type of attack for the last decade was ____.

Match each item with a statement below. -Responsible for the security and use of a particular set of information.

Describe the balance between information security and access.

What is defense in depth?

A(n) ____________________ is an application error that occurs when more data is sent to a buffer than it can handle.

Security Policies and Standards

Authenticating Users

Introduction to Firewalls

Packet Filtering

Firewall Configuration and Administration

Working With Proxy Servers and Application-Level Firewalls

Implementing the Bastion Host

Encryption - The Foundation for the Virtual Private Network

Setting up a Virtual Private Network

Filters