Question 1

A formal log-on procedure is the operating system's last line of defense against unauthorized access.

Accepted Answer

A) True 
 B)False

Question 2

What is deep packet inspection?

Accepted Answer

DPI is a technique that search

Question 3

What is a virus?

Accepted Answer

A virus is a program that atta

Question 4

All of the following techniques are used to validate electronic data interchange transactions except

Accepted Answer

A)  value added networks can compare passwords to a valid customer file before message transmission 
B)  prior to converting the message,the translation software of the receiving company can compare the password against a validation file in the firm's database 
C)  the recipient's application software can validate the password prior to processing 
D)  the recipient's application software can validate the password after the transaction has been processed 
A)  value added networks can compare passwords to a valid customer file before message transmission 
B)  prior to converting the message,the translation software of the receiving company can compare the password against a validation file in the firm's database 
C)  the recipient's application software can validate the password prior to processing 
D)  the recipient's application software can validate the password after the transaction has been processed

Question 5

The operating system performs all of the following tasks except

Accepted Answer

A)  translates third-generation languages into machine language 
B)  assigns memory to applications 
C)  authorizes user access 
D)  schedules job processing 
A)  translates third-generation languages into machine language 
B)  assigns memory to applications 
C)  authorizes user access 
D)  schedules job processing

Question 6

Which of the following is considered an unintentional threat to the integrity of the operating system?

Accepted Answer

A)  a hacker gaining access to the system because of a security flaw 
B)  a hardware flaw that causes the system to crash 
C)  a virus that formats the hard drive 
D)  the systems programmer accessing individual user files 
A)  a hacker gaining access to the system because of a security flaw 
B)  a hardware flaw that causes the system to crash 
C)  a virus that formats the hard drive 
D)  the systems programmer accessing individual user files

Question 7

Audit trails cannot be used to

Accepted Answer

A)  detect unauthorized access to systems 
B)  facilitate reconstruction of events 
C)  reduce the need for other forms of security 
D)  promote personal accountability 
A)  detect unauthorized access to systems 
B)  facilitate reconstruction of events 
C)  reduce the need for other forms of security 
D)  promote personal accountability

Question 8

Which control will not reduce the likelihood of data loss due to a line error?

Accepted Answer

A)  echo check 
B)  encryption 
C)  vertical parity bit 
D)  horizontal parity bit 
A)  echo check 
B)  encryption 
C)  vertical parity bit 
D)  horizontal parity bit

Question 9

Which method will render useless data captured by unauthorized receivers?

Accepted Answer

A)  echo check 
B)  parity bit 
C)  public key encryption 
D)  message sequencing 
A)  echo check 
B)  parity bit 
C)  public key encryption 
D)  message sequencing

Question 10

The audit trail for electronic data interchange transactions is stored on magnetic media.

Accepted Answer

A) True 
 B)False

Question 11

When creating and controlling backups for a sequential batch system,

Accepted Answer

A)  the number of backup versions retained depends on the amount of data in the file 
B)  off-site backups are not required 
C)  backup files can never be used for scratch files 
D)  the more significant the data,the greater the number of backup versions 
A)  the number of backup versions retained depends on the amount of data in the file 
B)  off-site backups are not required 
C)  backup files can never be used for scratch files 
D)  the more significant the data,the greater the number of backup versions

Question 12

Describe one benefit of using a call-back device.

Accepted Answer

Access to the system is achieved when th

Question 13

In a telecommunications environment,line errors can be detected by using an echo check.

Accepted Answer

A) True 
 B)False

Question 14

Contrast the Private Encryption Standard approach with the Public Key Encryption approach to controlling access to telecommunication messages.

Accepted Answer

In the Private Encryption Standard appro

Question 15

Which of the following is not an access control in a database system?

Accepted Answer

A)  antivirus software 
B)  database authorization table 
C)  passwords 
D)  voice prints 
A)  antivirus software 
B)  database authorization table 
C)  passwords 
D)  voice prints

Question 16

Discuss three techniques for breaching operating system controls.

Accepted Answer

Browsing involves searching through area

Question 17

Audit objectives for the database management system include all of the following except

Accepted Answer

A)  verifying that the security group monitors and reports on fault tolerance violations 
B)  confirming that backup procedures are adequate 
C)  ensuring that authorized users access only those files they need to perform their duties 
D)  verifying that unauthorized users cannot access data files 
A)  verifying that the security group monitors and reports on fault tolerance violations 
B)  confirming that backup procedures are adequate 
C)  ensuring that authorized users access only those files they need to perform their duties 
D)  verifying that unauthorized users cannot access data files

Question 18

In determining whether a system is adequately protected from attacks by computer viruses,all of the following policies are relevant except

Accepted Answer

A)  the policy on the purchase of software only from reputable vendors 
B)  the policy that all software upgrades are checked for viruses before they are implemented 
C)  the policy that current versions of antivirus software should be available to all users 
D)  the policy that permits users to take files home to work on them 
A)  the policy on the purchase of software only from reputable vendors 
B)  the policy that all software upgrades are checked for viruses before they are implemented 
C)  the policy that current versions of antivirus software should be available to all users 
D)  the policy that permits users to take files home to work on them

Question 19

Access controls protect databases against destruction,loss or misuse through unauthorized access.

Accepted Answer

A) True 
 B)False

Question 20

A value added network can detect and reject transactions by unauthorized trading partners.

Accepted Answer

A) True 
 B)False

A formal log-on procedure is the operating system's last line of defense against unauthorized access.

What is deep packet inspection?

What is a virus?

All of the following techniques are used to validate electronic data interchange transactions except

The operating system performs all of the following tasks except

Which of the following is considered an unintentional threat to the integrity of the operating system?

Audit trails cannot be used to

Which control will not reduce the likelihood of data loss due to a line error?

Which method will render useless data captured by unauthorized receivers?

The audit trail for electronic data interchange transactions is stored on magnetic media.

When creating and controlling backups for a sequential batch system,

Describe one benefit of using a call-back device.

In a telecommunications environment,line errors can be detected by using an echo check.

Contrast the Private Encryption Standard approach with the Public Key Encryption approach to controlling access to telecommunication messages.

Which of the following is not an access control in a database system?

Discuss three techniques for breaching operating system controls.

Audit objectives for the database management system include all of the following except

In determining whether a system is adequately protected from attacks by computer viruses,all of the following policies are relevant except

Access controls protect databases against destruction,loss or misuse through unauthorized access.

A value added network can detect and reject transactions by unauthorized trading partners.

The Information System: an Accountants Perspective

Introduction to Transaction Processing

Ethics,fraud,and Internal Control

The Revenue Cycle

The Expenditure Cycle Part I: Purchases and Cash Disbursements Procedures

The Expenditure Cycle Part Ii: Payroll Processing and Fixed Asset Procedures

The Conversion Cycle

General Ledger,financial Reporting,and Management Reporting Systems

Database Management Systems

The Rea Approach to Business Process Modeling

Enterprise Resource Planning Systems

Electronic Commerce Systems

Managing the Systems Development Life Cycle

Construct,deliver,and Maintain Systems Projects

IT Controls Part I: Sarbanes-Oxley and It Governance

IT Controls Part III: Systems Development, program Changes, and Application Controls

Filters

Exam 16: IT Controls Part II: Security and Access

A formal log-on procedure is the operating system's last line of defense against unauthorized access.

What is deep packet inspection?

What is a virus?

All of the following techniques are used to validate electronic data interchange transactions except

The operating system performs all of the following tasks except

Which of the following is considered an unintentional threat to the integrity of the operating system?

Audit trails cannot be used to

Which control will not reduce the likelihood of data loss due to a line error?

Which method will render useless data captured by unauthorized receivers?

The audit trail for electronic data interchange transactions is stored on magnetic media.

When creating and controlling backups for a sequential batch system,

Describe one benefit of using a call-back device.

In a telecommunications environment,line errors can be detected by using an echo check.

Contrast the Private Encryption Standard approach with the Public Key Encryption approach to controlling access to telecommunication messages.

Which of the following is not an access control in a database system?

Discuss three techniques for breaching operating system controls.

Audit objectives for the database management system include all of the following except

In determining whether a system is adequately protected from attacks by computer viruses,all of the following policies are relevant except

Access controls protect databases against destruction,loss or misuse through unauthorized access.

A value added network can detect and reject transactions by unauthorized trading partners.

The Information System: an Accountants Perspective

Introduction to Transaction Processing

Ethics,fraud,and Internal Control

The Revenue Cycle

The Expenditure Cycle Part I: Purchases and Cash Disbursements Procedures

The Expenditure Cycle Part Ii: Payroll Processing and Fixed Asset Procedures

The Conversion Cycle

General Ledger,financial Reporting,and Management Reporting Systems

Database Management Systems

The Rea Approach to Business Process Modeling

Enterprise Resource Planning Systems

Electronic Commerce Systems

Managing the Systems Development Life Cycle

Construct,deliver,and Maintain Systems Projects

IT Controls Part I: Sarbanes-Oxley and It Governance

IT Controls Part III: Systems Development, program Changes, and Application Controls

Filters