Exam 7: Infromation System Controls for Systems Reliability

These are used to create digital signatures.

Multi-factor authentication

Using a combination of symmetric and asymmetric key encryption,Chris Kai sent a report to her home office in Syracuse,New York.She received an email acknowledgement that the document had been received and then,a few minutes later,she received a second email that indicated that the hash calculated from the report differed from that sent with the report.This most likely explanation for this result is that

This maintains a table that lists all established connections between the organization's computers and the Internet to determine whether an incoming packet is part of an ongoing communication initiated by an internal computer..

Preventive controls require two related functions,which are:

There are "white hat" hackers and "black hat" hackers.Cowboy451 was one of the latter.He had researched an exploit and determined that he could penetrate the target system,download a file containing valuable data,and cover his tracks in eight minutes.Six minutes into the attack he was locked out of the system.Using the notation of the time-based model of security,which of the following must be true?

Restricting access of users to specific portions of the system as well as specific tasks,is

On February 14,2008,students enrolled in an economics course at Swingline College received an email stating that class would be cancelled.The email claimed to be from the professor,but it wasn't.Computer forensic experts determined that the email was sent from a computer in one of the campus labs at 9:14 A.M.They were then able to uniquely identify the computer that was used by means of its network interface card's ______ address.Security cameras revealed the identity of the student responsible for spoofing the class.

Identify the four basic principles that contribute to systems reliability according to the Trust Services framework developed by the AICPA and the CICA.

Which of the following is not associated with asymmetric encryption?

An electronic document that certifies the identity of the owner of a particular public key.

This creates logs of network traffic that was permitted to pass the firewall

These are established to deal with major security breaches.

The ___________ disseminates information about fraud,errors,breaches and other improper system uses and their consequences.

Which of the following is an example of a detective control?

What are the three fundamental information security concepts?

Which of the following is not one of the three fundamental information security concepts?

Explain the value of penetration testing.

Compatibility tests utilize a(n)__________,which is a list of authorized users,programs,and data files the users are authorized to access or manipulate.

The most effective way to protect network resources,like email servers,that are outside of the network and are exposed to the internet is