Deck 10: Ethics, Privacy, and Security

A)It deals with provisions that protect the privacy and security of individually identifiable health information.
B)It refers to technologies that intellectual property owners use to control access to their digital content.
C)It prohibits businesses from sending misleading or deceptive commercial emails, but denies recipients any legal digital recourse on their own.
D)It establishes privacy rights over educational records.

A)Shadowing
B)Plagiarism
C)Incitement
D)Embezzlement

A)preventing loss of critical organization data
B)collaborating online to create open source products
C)adding visual appeal to their digital products
D)offering technological protection for their products

A)protects whistleblowers and oppressive governments
B)increases inhibitions in online communication
C)increases accountability of users
D)protects spammers and imposters

A)First, do no harm
B)Thou shalt not kill
C)The greatest good for the greatest number
D)The needs of the many outweigh the needs of the few

A)DRM systems prevent legitimate duplication of digital content in the event of hardware failure.
B)DRM systems do not function efficiently across geographical borders.
C)DRM systems often violate intellectual property rights of creators of IP.
D)DRM systems do not consistently manage the different formats of digital content.

A)Utilitarianism
B)Legal positivism
C)Natural laws and rights
D)Rationalism

A)online identity theft
B)embezzlement
C)shadowing
D)plagiarism

A)Structuralism
B)Individualism
C)Utilitarianism
D)Libertarianism

A)Natural laws and rights does not consider the actual consequences of an action when judging its morality.
B)Natural laws and rights is an ethical framework that takes into account the effects of an action, weighing its good effects against its harmful ones.
C)Natural laws and rights involves judging what action would create the greatest good for the greatest number of people.
D)Natural laws and rights is a framework based on the central tenet that states, "The needs of the many outweigh the needs of the few."

A)Religion
B)Ethics
C)Creativity
D)Theology

A)when information is stored on highly interconnected systems
B)when information is mainly on paper
C)when information is maintained on isolated systems
D)when information is converted to code form using mathematical equations

A)It increases individuals' accountability and makes them feel responsible for their own actions.
B)It helps in the prosecution of spammers, astroturfers, and other cyber criminals.
C)It helps people participate in face-to-face meetings where they reveal personal details without fear of disclosure.
D)It protects corporate whistleblowers and political activists in oppressive regimes.

A)First, do no harm
B)Thou shalt not kill
C)Protect free speech
D)Liberté, égalité, fraternité

A)It is most easily achieved online and is impossible to maintain on paper.
B)It is governed by laws that are universal in all countries.
C)It refers to the protection of data about individuals.
D)It emphasizes the importance of sharing data over protecting personally identifiable information.

A)it is used for commercial purposes
B)the protection of intellectual property involves immovable assets
C)it is digitized
D)it comprises tangible assets

A)Immovable property
B)Freehold property
C)Intellectual property
D)Public property

A)software code
B)real estate
C)office stationery
D)legal documents

A)online identity management
B)digital rights management
C)Internet resource management
D)inventory management

A)the right to be left alone
B)the right to view, correct, and edit private, protected information
C)the right to withhold taxes
D)the right to demand information

A)Proxy servers
B)Surveillance technologies
C)Trojan horses
D)Subnetworks

A)captive portal
B)proxy
C)firewall
D)keylogger

A)to increase employee productivity
B)to enable efficient data mining
C)to prevent data redundancy
D)to facilitate faster communication

A)honeypot
B)worm
C)Trojan horse
D)cookie

A)They deny the entry or exit of specific IP addresses, products, Internet domains, and enforce other communication restrictions.
B)They are highly restrictive programs that permit communication only with approved entities and/or in an approved manner.
C)They traverse available web links in an attempt to discover documents for indexing and retrieval.
D)They have specific vulnerabilities that attract different varieties of malware in the wild, study their properties, and find out who started them.

A)expert systems
B)web crawlers
C)honeypots
D)server farms

A)honeypot
B)Trojan horse
C)firewall
D)black swan

A)understanding which information assets need protection
B)evaluating controls and filling in security gaps
C)predicting future risks and devising strategies to prevent them
D)recovering existing assets from damage

A)honeypot
B)browser
C)black swan
D)spyware

A)honeypot
B)botnet
C)Trojan horse
D)black swan

A)when it becomes immune to botnets
B)when it enters a secure site
C)when it is infected by malware
D)when it is hidden behind a firewall

A)malware
B)middleware
C)application software
D)firmware

A)the parasitic and unauthorized use of hundreds of computer systems owned by individuals for masking online identity
B)the lack of uniform and binding legislation across different countries that determines the legality of using proxy servers
C)the need to rely on the promise of the company that operates the proxy to protect its customers' identities
D)the inability to consistently ensure online anonymity, especially when government agencies are among the parties involved

A)capturing Internet users' sensitive information
B)attracting different types of malware to track their origins
C)encrypting critical information to protect it from loss or corruption
D)tracking and eliminating computer worms and viruses

A)spyware
B)web crawler
C)black swan
D)firewall

A)It is a software program that can damage files or other programs.
B)It is a software program that attracts potentially malicious attacks to study their origin.
C)It is a software program that masks the browsing history and preferences of Internet users.
D)It is a software program that inspects incoming or outgoing traffic to a computer network.

A)lowered productivity of employees
B)compromised company security
C)increased levels of confidentiality
D)increased pressure on corporate email systems

A)a process which helps a user increase productivity by deleting spam emails before they reach him
B)a monitoring software that records a user's keystrokes
C)software that prevents fraudsters from hacking into email accounts
D)a program that controls permissions for web traffic into and out of a computer network

A)software for end-user applications such as word processors and ERP software
B)software used to test a hardware or software package
C)software used to track and prevent malicious attacks on systems
D)software designed to attack computer systems

A)determining the cause of damage
B)evaluating controls and filling in security gaps
C)understanding what information assets need protection
D)recovering the system from damage

A)determination of the source of threats
B)assessment of threats
C)evaluation of controls that fill in security gaps
D)finalization of broadly defined goals

A)the process of assessing authentication of reports and manuals to prevent duplication
B)the process of combining two or more authentication strategies
C)the process of assessing authentication of multiple groups using a single strategy
D)the process of assigning unique authentication information to copyrighted content in order to prevent resale

A)risk matrix
B)incidence response plan
C)vulnerability assessment scheme
D)total quality management program

A)managing discussion forums efficiently
B)responding to customers' feedback
C)avoiding chaos and missteps
D)improving communication modes

A)preserve evidence of damage done
B)reevaluate risk matrix
C)restrict system access
D)investigate system logs for evidence

A)intelligent character recognition
B)optical mark recognition
C)voice pattern recognition
D)blood group recognition

A)posting harmless videos on websites
B)monitoring a user's keystrokes
C)soliciting personal information through emails
D)infecting computers with self-replicating programs that slow down the systems

A)risk matrix
B)incidence response plan
C)public key encryption scheme
D)social engineering plan

A)prohibiting downloading data to USB drives
B)restricting employee access to official mails
C)prohibiting public access to the company's website
D)prohibiting entry of employees into shared workspaces

A)Distributed denial of service
B)Social engineering
C)Keylogging
D)Phishing

A)prosecute the offender for security risk
B)improve system efficiency
C)communicate with a crisis management team
D)preserve evidence of security breach

A)Reevaluating the risk matrix
B)Investigating system logs
C)Taking systems offline
D)Restricting system access

A)It is the process of stealing personal data from a victim by convincing him to disclose information.
B)It is useful in monitoring the web traffic into and out of an unsecured computer network.
C)It involves the use of several thousand computers to launch malicious attacks that can cripple websites.
D)It uses small pieces of code inserted into a browser that track an Internet user's activity and transmit the data to third parties.

A)password
B)RFID chip
C)fingerprint scanner
D)credit card

A)iris configuration
B)reliance on user knowledge
C)fingerprint analysis
D)voice pattern recognition

A)Whitelisting
B)Keylogging
C)Egress filtering
D)Phishing

A)distributed denial of service
B)keylogging
C)phishing
D)cache poisoning

A)iris configuration
B)RFID chip
C)credit card
D)user ID-password combination

A)email program created not for communication but to lure spam
B)software program that attracts malicious attacks in order to study their properties and origins
C)self-replicating program that sends copies to other nodes on a computer network
D)software tool used to inspect incoming and outgoing traffic to a computer network

A)Prosecuting the offender for security risk
B)Reevaluating the risk matrix
C)Restricting system access
D)Restoring from media known to be good