Question 1

All of the following have contributed to an increase in software flaws except:

Accepted Answer

A)  the growing complexity of software programs. 
B)  the growing size of software programs. 
C)  demands for timely delivery to markets. 
D)  the inability to fully test programs. 
E)  the increase in malicious intruders seeking system access. 
A)  the growing complexity of software programs. 
B)  the growing size of software programs. 
C)  demands for timely delivery to markets. 
D)  the inability to fully test programs. 
E)  the increase in malicious intruders seeking system access. E

Question 2

________ controls formalize standards, rules, procedures, and control disciplines to ensure that the organization's general and application controls are properly executed and enforced.

Accepted Answer

A)  Software 
B)  Administrative 
C)  Data security 
D)  Implementation 
E)  Input 
A)  Software 
B)  Administrative 
C)  Data security 
D)  Implementation 
E)  Input B

Question 3

A foreign country attempting to access government networks in order to disable a national power grid is an example of:

Accepted Answer

A)  phishing. 
B)  denial-of-service attacks. 
C)  cyberwarfare. 
D)  cyberterrorism. 
E)  evil twins. 
A)  phishing. 
B)  denial-of-service attacks. 
C)  cyberwarfare. 
D)  cyberterrorism. 
E)  evil twins. C

Question 4

Three major concerns of system builders and users are disaster, security, and human error. Of the three, which do you think is most difficult to deal with? Why?

Accepted Answer

Student answers will vary. Example answe

Question 5

Why is software quality important to security? What specific steps can an organization take to ensure software quality?

Accepted Answer

Software errors pose a constant threat t

Question 6

The Gramm-Leach-Bliley Act:

Accepted Answer

A)  requires financial institutions to ensure the security of customer data. 
B)  specifies best practices in information systems security and control. 
C)  imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D)  outlines medical security and privacy rules. 
E)  identifies computer abuse as a crime and defines abusive activities. 
A)  requires financial institutions to ensure the security of customer data. 
B)  specifies best practices in information systems security and control. 
C)  imposes responsibility on companies and management to safeguard the accuracy of financial information. 
D)  outlines medical security and privacy rules. 
E)  identifies computer abuse as a crime and defines abusive activities.

Question 7

Fault tolerant information systems offer 100 percent availability because they use:

Accepted Answer

A)  high-capacity storage. 
B)  a multitier server network. 
C)  redundant hardware, software, and power supplies. 
D)  dedicated phone lines. 
E)  a digital certificate system. 
A)  high-capacity storage. 
B)  a multitier server network. 
C)  redundant hardware, software, and power supplies. 
D)  dedicated phone lines. 
E)  a digital certificate system.

Question 8

WPA2 is a more effective way to secure a wireless network than WEP because it:

Accepted Answer

A)  includes an AUP. 
B)  operates on a VPN. 
C)  uses much longer encryption keys. 
D)  uses symmetric encryption methods. 
E)  is part of most vendors UTM products. 
A)  includes an AUP. 
B)  operates on a VPN. 
C)  uses much longer encryption keys. 
D)  uses symmetric encryption methods. 
E)  is part of most vendors UTM products.

Question 9

________ is malware that hijacks a user's computer and demands payment in return for giving back access.

Accepted Answer

A)  A Trojan horse 
B)  Ransomware 
C)  Spyware 
D)  A virus 
E)  An evil twin 
A)  A Trojan horse 
B)  Ransomware 
C)  Spyware 
D)  A virus 
E)  An evil twin

Question 10

Evil twins are:

Accepted Answer

A)  Trojan horses that appears to the user to be a legitimate commercial software application. 
B)  email messages that mimic the email messages of a legitimate business. 
C)  fraudulent websites that mimic a legitimate business's website. 
D)  computers that fraudulently access a website or network using the IP address and identification of an authorized computer. 
E)  bogus wireless network access points that look legitimate to users. 
A)  Trojan horses that appears to the user to be a legitimate commercial software application. 
B)  email messages that mimic the email messages of a legitimate business. 
C)  fraudulent websites that mimic a legitimate business's website. 
D)  computers that fraudulently access a website or network using the IP address and identification of an authorized computer. 
E)  bogus wireless network access points that look legitimate to users.

Question 11

How is the security of a firm's information system and data affected by its people, organization, and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Accepted Answer

There are various technological essentia

Question 12

Which of the following statements about botnets is not true?

Accepted Answer

A)  Eighty percent of the world's malware is delivered by botnets. 
B)  Botnets are often used to perpetrate DDoS attacks. 
C)  Ninety percent of the world's spam is delivered by botnets. 
D)  Botnets are often used for click fraud. 
E)  It is not possible to make a smartphone part of a botnet. 
A)  Eighty percent of the world's malware is delivered by botnets. 
B)  Botnets are often used to perpetrate DDoS attacks. 
C)  Ninety percent of the world's spam is delivered by botnets. 
D)  Botnets are often used for click fraud. 
E)  It is not possible to make a smartphone part of a botnet.

Question 13

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

Accepted Answer

A)  Sasser 
B)  Zeus 
C)  Cryptolocker 
D)  ILOVEYOU 
E)  Conficker 
A)  Sasser 
B)  Zeus 
C)  Cryptolocker 
D)  ILOVEYOU 
E)  Conficker

Question 14

In cloud computing, accountability and responsibility for protection of sensitive data is transferred to the cloud provider.

Accepted Answer

A) True 
 B)False

Question 15

Packet filtering catches most types of network attacks.

Accepted Answer

A) True 
 B)False

Question 16

Wireless networks are more difficult for hackers to gain access to because radio frequency bands are difficult to scan.

Accepted Answer

A) True 
 B)False

Question 17

Malicious software programs referred to as spyware include a variety of threats such as computer viruses, worms, and Trojan horses.

Accepted Answer

A) True 
 B)False

Question 18

Blockchain refers to a technology that:

Accepted Answer

A)  uses a distributed ledger system of transactions. 
B)  uses a centralized data store in the cloud. 
C)  relies on the Internet to provide secure transactions. 
D)  uses existing banking systems to transfer funds. 
E)  relies on peer-to-peer networks. 
A)  uses a distributed ledger system of transactions. 
B)  uses a centralized data store in the cloud. 
C)  relies on the Internet to provide secure transactions. 
D)  uses existing banking systems to transfer funds. 
E)  relies on peer-to-peer networks.

Question 19

Organizations can use existing network security software to secure mobile devices.

Accepted Answer

A) True 
 B)False

Question 20

________ is spyware that logs and transmits everything a user types.

Accepted Answer

A)  Spyware 
B)  A Trojan horse 
C)  A keylogger 
D)  A worm 
E)  A sniffer 
A)  Spyware 
B)  A Trojan horse 
C)  A keylogger 
D)  A worm 
E)  A sniffer

All of the following have contributed to an increase in software flaws except:

________ controls formalize standards, rules, procedures, and control disciplines to ensure that the organization's general and application controls are properly executed and enforced.

A foreign country attempting to access government networks in order to disable a national power grid is an example of:

Three major concerns of system builders and users are disaster, security, and human error. Of the three, which do you think is most difficult to deal with? Why?

Why is software quality important to security? What specific steps can an organization take to ensure software quality?

The Gramm-Leach-Bliley Act:

Fault tolerant information systems offer 100 percent availability because they use:

WPA2 is a more effective way to secure a wireless network than WEP because it:

________ is malware that hijacks a user's computer and demands payment in return for giving back access.

Evil twins are:

How is the security of a firm's information system and data affected by its people, organization, and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Which of the following statements about botnets is not true?

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

In cloud computing, accountability and responsibility for protection of sensitive data is transferred to the cloud provider.

Packet filtering catches most types of network attacks.

Wireless networks are more difficult for hackers to gain access to because radio frequency bands are difficult to scan.

Malicious software programs referred to as spyware include a variety of threats such as computer viruses, worms, and Trojan horses.

Blockchain refers to a technology that:

Organizations can use existing network security software to secure mobile devices.

________ is spyware that logs and transmits everything a user types.

Business Information Systems in Your Career

Global E-Business and Collaboration

Achieving Competitive Advantage With Information Systems

Ethical and Social Issues in Information Systems

It Infrastructure: Hardware and Software

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets, Digital Goods

Improving Decision Making and Managing Knowledge

Building Information Systems and Managing Projects

Filters

Exam 8: Securing Information Systems

All of the following have contributed to an increase in software flaws except:

________ controls formalize standards, rules, procedures, and control disciplines to ensure that the organization's general and application controls are properly executed and enforced.

A foreign country attempting to access government networks in order to disable a national power grid is an example of:

Three major concerns of system builders and users are disaster, security, and human error. Of the three, which do you think is most difficult to deal with? Why?

Why is software quality important to security? What specific steps can an organization take to ensure software quality?

The Gramm-Leach-Bliley Act:

Fault tolerant information systems offer 100 percent availability because they use:

WPA2 is a more effective way to secure a wireless network than WEP because it:

________ is malware that hijacks a user's computer and demands payment in return for giving back access.

Evil twins are:

How is the security of a firm's information system and data affected by its people, organization, and technology? Is the contribution of one of these dimensions any more important than the other? Why?

Which of the following statements about botnets is not true?

Which of the following is a virus that uses flaws in Windows software to take over a computer remotely?

In cloud computing, accountability and responsibility for protection of sensitive data is transferred to the cloud provider.

Packet filtering catches most types of network attacks.

Wireless networks are more difficult for hackers to gain access to because radio frequency bands are difficult to scan.

Malicious software programs referred to as spyware include a variety of threats such as computer viruses, worms, and Trojan horses.

Blockchain refers to a technology that:

Organizations can use existing network security software to secure mobile devices.

________ is spyware that logs and transmits everything a user types.

Business Information Systems in Your Career

Global E-Business and Collaboration

Achieving Competitive Advantage With Information Systems

Ethical and Social Issues in Information Systems

It Infrastructure: Hardware and Software

Foundations of Business Intelligence: Databases and Information Management

Telecommunications, the Internet, and Wireless Technology

Achieving Operational Excellence and Customer Intimacy: Enterprise Applications

E-Commerce: Digital Markets, Digital Goods

Improving Decision Making and Managing Knowledge

Building Information Systems and Managing Projects

Filters