Add to collection(s) Add to saved
  1. Business
  2. Finance

Chapter 1

advertisement 
Chapter 1 Review Questions Solutions
1. Each of the following is a reason why it is difficult to defend against today’s
attackers except _______.
A. complexity of attack tools
B. weak patch distribution
C. greater sophistication of attacks
D. delays in patching hard work software products
2. In a general sense “security” is _______.
A. protection from only direct actions
B. using reverse attack vectors (RAV) for protection
C. only available on hardened computers and systems
D. the necessary steps to protect a person or property from harm
3. _____ ensures that only authorized parties can view the information.
A. Confidentiality
B. Availability
C. Integrity
D. Authorization
4. Each of the following is a successive layer in which information security is
achieved except _______.
A. products
B. purposes
C. procedures
D. people
5. By definition a(n) _____ is a person or thing that has the power to carry out a
threat.
A. vulnerability
B. exploit
C. threat agent
D. risk
6. _____ ensures that the individual is who they claim to be.
A. Authentication
B. Accounting
C. Access control
D. Certification
7. Each of the following is a goal of information security except _______.
A. Foil cyberterrorism
B. Avoid legal consequences
C. Decrease user productivity
D. Prevent data theft
8. The _____ requires that enterprises must guard protected health information and
implement policies and procedures to safeguard it.
A. Hospital Protection and Insurance Association Agreement (HPIAA)
B. Sarbanes-Oxley Act (Sarbox)
C. Gramm-Leach-Bliley Act (GLBA)
D. Health Insurance Portability and Accountability Act (HIPAA)
9. Utility companies, telecommunications, and financial services are considered
prime targets of _____ because attackers can significantly disrupt business and
personal activities by destroying a few targets.
A. white hat hackers
B. script kiddies
C. computer spies
D. cyberterrorists
10. After an attacker probed a network for information the next step is to _______.
A. penetrate any defenses
B. paralyze networks and devices
C. circulate to other systems
D. modify security settings
11. An organization that purchased security products from different vendors is
demonstrating which security principle?
A. obscurity
B. diversity
C. limiting
D. layering
12. Each of the following can be classified as an “insider” except _______.
A. business partners
B. contractors
C. cybercriminals
D. employees
13. _____ are a network of attackers, identity thieves, and financial fraudsters.
A. Script kiddies
B. Hackers
C. Cybercriminals
D. Spies
14. Each of the following is a characteristic of cybercriminals except _______.
A. better funded
B. less risk-averse
C. low motivation
D. more tenacious
15. Each of the following is a characteristic of cybercrime except
A. targeted attacks against financial networks
B. exclusive use of worms and viruses
C. unauthorized access to information
D. theft of personal information
16. An example of a(n) _____ is a software defect in an operating system that allows
an unauthorized user to gain access to a computer without a password.
A. threat agent
B. threat
C. vulnerability
D. asset exploit (AE)
17. _____ requires banks and financial institutions to alert customers of their policies
and practices in disclosing customer information and to protect all electronic and
paper containing personally identifiable financial information.
A. California Savings and Loan Security Act (CS&LSA)
B. Gramm-Leach-Bliley Act (GLBA)
C. USA Patriot Act
D. Sarbanes-Oxley Act (Sarbox)
18. The term _____ is sometimes used to identify anyone who illegally breaks into a
computer system.
A. hacker
B. cyberterrorist
C. Internet Exploiter
D. cyberrogue
19. An example of _____is not revealing the type of computer, operating system,
software, and network connection a computer uses.
A. obscurity
B. limiting
C. diversity
D. layering
20. The _____ is primarily responsible for assessment, management, and
implementation of security
A. security manager
B. security administrator
C. Chief Information Security Officer (CISO)
D. security technician
Related documents
Review Questions
Review Questions
SetNo11
SetNo11
Stress Management - Dr. Fayose
Stress Management - Dr. Fayose
SCHOOL VIOLENCE/THREAT MANAGEMENT AND THE
SCHOOL VIOLENCE/THREAT MANAGEMENT AND THE
Imminent Threat
Imminent Threat
PIERCE Behavior Intervention Referral Form
PIERCE Behavior Intervention Referral Form
Reasons for Reporting an Incident
Reasons for Reporting an Incident
The Evolving Information Security Organization
The Evolving Information Security Organization
ITSY 2430 - Chapter Guide 01
ITSY 2430 - Chapter Guide 01
Handout 2: Types of Attackers
Handout 2: Types of Attackers
GLB-act
GLB-act
HERE - Office of the President, University of Maryland
HERE - Office of the President, University of Maryland
BLURRING BOUNDARIES Trend Micro Security Predictions for 2014 and Beyond Distributed by:
BLURRING BOUNDARIES Trend Micro Security Predictions for 2014 and Beyond Distributed by:
ten-active-directory-misconfigurations-that-lead-to-total-domain-compromise-en
ten-active-directory-misconfigurations-that-lead-to-total-domain-compromise-en
Secret Service Safe School Initiative
Secret Service Safe School Initiative
249234780-Simplifying-It-Security-for-Dummies
249234780-Simplifying-It-Security-for-Dummies
Sarbanes-Oxley in Higher Education: Bringing Corporate America`s
Sarbanes-Oxley in Higher Education: Bringing Corporate America`s
SOX TURNS 10: ANALYZING THE RELEVANCE OF THE
SOX TURNS 10: ANALYZING THE RELEVANCE OF THE
the silent massacre - Ascension Starseed military abduction mk
the silent massacre - Ascension Starseed military abduction mk
Download
advertisement