Question 1

Describe the 5 stage methodology an organization should follow in an investigation.

Accepted Answer

In digital forensics,all investigations follow the same basic methodology:
 1.Identify relevant items of evidentiary value (EM)
 2.Acquire (seize)the evidence without alteration or damage
 3.Take steps to assure that the evidence is at every step verifiably authentic at every step and is unchanged from the time it was seized
 4.Analyze the data without risking modification or unauthorized access
 5.Report the findings to the proper authority

Question 2

Which of the following organizations does not promote a particular code of ethics?

Accepted Answer

A)  SANS 
B)  ISACA 
C)  (IS
C) ² 
D)  CSI 
A)  SANS 
B)  ISACA 
C)  (IS
C) ² 
D)  CSI D

Question 3

Evidentiary ____________________,also known as items of potential evidentiary value,is any information that could potentially support the organization's legal- or policy-based case against a suspect.

Accepted Answer

material

Question 4

In 1996,HIPAA was enacted to protect the confidentiality and security of business data.

Accepted Answer

A) True 
 B)False

Question 5

The ____ is a professional organization that was established in 1947 as the world's first educational and scientific computing society.

Accepted Answer

A)  SANS 
B)  ACM 
C)  (IS
C) ² 
D)  CSI 
A)  SANS 
B)  ACM 
C)  (IS
C) ² 
D)  CSI

Question 6

Laws are largely drawn from the ____ of a culture,which in turn are based on ____ - fixed moral attitudes of a societal group.

Accepted Answer

A)  sanctions; attitudes 
B)  morals; perspectives 
C)  codes; values 
D)  ethics; cultural mores 
A)  sanctions; attitudes 
B)  morals; perspectives 
C)  codes; values 
D)  ethics; cultural mores

Question 7

____ is not absolute freedom from observation,but rather the state of being free from unsanctioned intrusion.

Accepted Answer

A)  Deterrence 
B)  Privacy 
C)  Protection 
D)  Deontological 
A)  Deterrence 
B)  Privacy 
C)  Protection 
D)  Deontological

Question 8

U.S.copyright law extends protection to _________________________ which includes words published in electronic formats.

Accepted Answer

intellectu

Question 9

Due diligence requires that an organization make a valid and ongoing effort to protect others._________________________

Accepted Answer

A) True 
 B)False

Question 10

Founded in 1989,____ has a membership of over 156,000 security professionals,auditors,system administrators,and network administrators.

Accepted Answer

A)  (IS
C) ² 
B)  ISACA 
C)  ISSA 
D)  SANS 
A)  (IS
C) ² 
B)  ISACA 
C)  ISSA 
D)  SANS

Question 11

Historically,the United Kingdom has led the development and implementation of information security legislation to prevent misuse and exploitation of information and information technology.

Accepted Answer

A) True 
 B)False

Question 12

____ requires that an organization make a valid and ongoing effort to protect others.

Accepted Answer

A)  Liability 
B)  International law 
C)  Due diligence 
D)  Jurisdiction 
A)  Liability 
B)  International law 
C)  Due diligence 
D)  Jurisdiction

Question 13

The origins of ____________________ rights can be traced back to a 1772 document titled The Rights of the Colonists and a List of Infringements and Violations of Rights written by Samuel Adams.

Accepted Answer

The answer of The origins of ____________________ rights can be...

Question 14

In digital forensics,all investigations follow the same basic methodology.Which of the following should be performed FIRST in a digital forensics investigation?

Accepted Answer

A)  Report the findings to the proper authority 
B)  Acquire (seize) the evidence without alteration or damage 
C)  Identify relevant items of evidentiary value (EM) 
D)  Analyze the data without risking modification or unauthorized access 
A)  Report the findings to the proper authority 
B)  Acquire (seize) the evidence without alteration or damage 
C)  Identify relevant items of evidentiary value (EM) 
D)  Analyze the data without risking modification or unauthorized access

Question 15

____ is the best method for preventing an illegal or unethical activity.Examples include laws,policies and technical controls.

Accepted Answer

A)  Remediation 
B)  Deterrence 
C)  Prosecution 
D)  Regulation 
A)  Remediation 
B)  Deterrence 
C)  Prosecution 
D)  Regulation

Question 16

____________________ law covers a wide variety of laws pertaining to relationships between and among individuals and organizations.

Accepted Answer

The answer of ____________________ law covers a wide variety of...

Question 17

The privacy standards of HIPAA severely restrict the dissemination and distribution of private health information without written consent.

Accepted Answer

A) True 
 B)False

Question 18

____ is the cornerstone of many computer-related federal laws and enforcement efforts.

Accepted Answer

A)  Computer Security Act 
B)  Computer Fraud and Abuse Act 
C)  U.S.A. Patriot Act 
D)  Fourth Amendment of the U.S. Constitution 
A)  Computer Security Act 
B)  Computer Fraud and Abuse Act 
C)  U.S.A. Patriot Act 
D)  Fourth Amendment of the U.S. Constitution

Question 19

____ law embodies a wide variety of laws pertaining to relationships between and among individuals and organizations.

Accepted Answer

A)  Civil 
B)  Criminal 
C)  Ethical 
D)  Tort 
A)  Civil 
B)  Criminal 
C)  Ethical 
D)  Tort

Question 20

The ACM requires its members to perform their duties in a manner befitting an ethical computing professional._________________________

Accepted Answer

A) True 
 B)False

Describe the 5 stage methodology an organization should follow in an investigation.

Which of the following organizations does not promote a particular code of ethics?

Evidentiary ____________________,also known as items of potential evidentiary value,is any information that could potentially support the organization's legal- or policy-based case against a suspect.

In 1996,HIPAA was enacted to protect the confidentiality and security of business data.

The ____ is a professional organization that was established in 1947 as the world's first educational and scientific computing society.

Laws are largely drawn from the of a culture,which in turn are based on - fixed moral attitudes of a societal group.

____ is not absolute freedom from observation,but rather the state of being free from unsanctioned intrusion.

U.S.copyright law extends protection to _________________________ which includes words published in electronic formats.

Due diligence requires that an organization make a valid and ongoing effort to protect others._________________________

Founded in 1989,____ has a membership of over 156,000 security professionals,auditors,system administrators,and network administrators.

Historically,the United Kingdom has led the development and implementation of information security legislation to prevent misuse and exploitation of information and information technology.

____ requires that an organization make a valid and ongoing effort to protect others.

The origins of ____________________ rights can be traced back to a 1772 document titled The Rights of the Colonists and a List of Infringements and Violations of Rights written by Samuel Adams.

In digital forensics,all investigations follow the same basic methodology.Which of the following should be performed FIRST in a digital forensics investigation?

____ is the best method for preventing an illegal or unethical activity.Examples include laws,policies and technical controls.

____________________ law covers a wide variety of laws pertaining to relationships between and among individuals and organizations.

The privacy standards of HIPAA severely restrict the dissemination and distribution of private health information without written consent.

____ is the cornerstone of many computer-related federal laws and enforcement efforts.

____ law embodies a wide variety of laws pertaining to relationships between and among individuals and organizations.

The ACM requires its members to perform their duties in a manner befitting an ethical computing professional._________________________

Introduction to the Management of Information Security

Planning for Security

Planning for Contingencies

Information Security Policy

Developing the Security Program

Security Management Models

Security Management Practices

Risk Management: Identifying and Assessing Risk

Risk Management: Controlling Risk

Protection Mechanisms

Personnel and Security

Filters

Exam 12: Law and Ethics

Describe the 5 stage methodology an organization should follow in an investigation.

Which of the following organizations does not promote a particular code of ethics?

Evidentiary ____________________,also known as items of potential evidentiary value,is any information that could potentially support the organization's legal- or policy-based case against a suspect.

In 1996,HIPAA was enacted to protect the confidentiality and security of business data.

The ____ is a professional organization that was established in 1947 as the world's first educational and scientific computing society.

Laws are largely drawn from the ____ of a culture,which in turn are based on ____ - fixed moral attitudes of a societal group.

____ is not absolute freedom from observation,but rather the state of being free from unsanctioned intrusion.

U.S.copyright law extends protection to _________________________ which includes words published in electronic formats.

Due diligence requires that an organization make a valid and ongoing effort to protect others._________________________

Founded in 1989,____ has a membership of over 156,000 security professionals,auditors,system administrators,and network administrators.

Historically,the United Kingdom has led the development and implementation of information security legislation to prevent misuse and exploitation of information and information technology.

____ requires that an organization make a valid and ongoing effort to protect others.

The origins of ____________________ rights can be traced back to a 1772 document titled The Rights of the Colonists and a List of Infringements and Violations of Rights written by Samuel Adams.

In digital forensics,all investigations follow the same basic methodology.Which of the following should be performed FIRST in a digital forensics investigation?

____ is the best method for preventing an illegal or unethical activity.Examples include laws,policies and technical controls.

____________________ law covers a wide variety of laws pertaining to relationships between and among individuals and organizations.

The privacy standards of HIPAA severely restrict the dissemination and distribution of private health information without written consent.

____ is the cornerstone of many computer-related federal laws and enforcement efforts.

____ law embodies a wide variety of laws pertaining to relationships between and among individuals and organizations.

The ACM requires its members to perform their duties in a manner befitting an ethical computing professional._________________________

Introduction to the Management of Information Security

Planning for Security

Planning for Contingencies

Information Security Policy

Developing the Security Program

Security Management Models

Security Management Practices

Risk Management: Identifying and Assessing Risk

Risk Management: Controlling Risk

Protection Mechanisms

Personnel and Security

Filters

Laws are largely drawn from the of a culture,which in turn are based on - fixed moral attitudes of a societal group.