business mid term

1.

1 point

authentication and authorization, prevention and resistance, and detection and response are the 3 primary _______ _________ security areas.

2.

1 point

phishing

a method for confirming users’ identities

reroutes requests for legitimate websites to false websites

the forging of someone’s identity for the purpose of fraud

the process of giving someone permission to do or have something

a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent email

3.

1 point

privacy

the principles and standards that guide our behavior toward other people

the right to be left alone when you want to be, to have control over your own personal possessions, and not to be observed without your consent

govern the ethical and moral issues arising from the development and use of information technologies, as well as the creation, collection, duplication, distribution, and processing of information itself

the assurance that messages and information are available only to those who are authorized to view them

4.

1 point

organizations cannot be held financially responsible for their employees’ actions

True

False

5.

1 point

tokens

features full-time monitoring tools that search for patterns in network traffic to identify intruders

the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting

a device that is around the same size as a credit card, containing embedded technologies that can store information and small amounts of software to perform some limited processing

prevents emails containing sensitive information from transmitting and stops spam and viruses from spreading

hardware and/or software that guards a private network by analyzing the information leaving and entering the network

small electronic devices that change user passwords automatically

6.

1 point

the best and most effective way to manage authentication is:

something the user knows

something that is part of the user

something the user has

7.

1 point

identity theft

the forging of someone’s identity for the purpose of fraud

a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent email

reroutes requests for legitimate websites to false websites

the process of giving someone permission to do or have something

a method for confirming users’ identities

8.

1 point

key logger or key trapper software, hardware key logger, cookie, adware, spyware, web log, and clickstream are examples of what?

common monitoring technologies

identity theft

9.

1 point

the most secure type of authentication involves
something the user ____, something the user ____, and something that is part of the user.
answer is separated by 'and'

10.

1 point

social media policy

unsolicited email

details the extent to which email messages may be read by others

outlines the corporate guidelines or principles governing employee online communications

simply states that email users will not send unsolicited emails (or spam)

11.

1 point

internet use policy

requires a user to agree to follow it to be provided access to corporate email, information systems, and the internet

contains general principles to guide the proper use of the internet

a contractual stipulation to ensure that ebusiness participants do not deny their online actions

12.

1 point

employee monitoring policy

tracks people’s activities by such measures as number of keystrokes, error rate, and number of transactions processed

explicitly state how, when, and where the company monitors its employees

13.

1 point

organizations strive to build a corporate culture based on ethical principles that employees can understand and implement

True

False

14.

1 point

content filtering

small electronic devices that change user passwords automatically

hardware and/or software that guards a private network by analyzing the information leaving and entering the network

a device that is around the same size as a credit card, containing embedded technologies that can store information and small amounts of software to perform some limited processing

the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting

prevents emails containing sensitive information from transmitting and stops spam and viruses from spreading

features full-time monitoring tools that search for patterns in network traffic to identify intruders

15.

1 point

acting ethically and legally are always the same

True

False

16.

1 point

acceptable use policy (aup)

contains general principles to guide the proper use of the internet

a contractual stipulation to ensure that ebusiness participants do not deny their online actions

requires a user to agree to follow it to be provided access to corporate email, information systems, and the internet

17.

1 point

one of the most common defenses for preventing a security breach is content filtering

True

False

18.

1 point

confidentiality

the principles and standards that guide our behavior toward other people

the right to be left alone when you want to be, to have control over your own personal possessions, and not to be observed without your consent

govern the ethical and moral issues arising from the development and use of information technologies, as well as the creation, collection, duplication, distribution, and processing of information itself

the assurance that messages and information are available only to those who are authorized to view them

19.

1 point

smart card

hardware and/or software that guards a private network by analyzing the information leaving and entering the network

prevents emails containing sensitive information from transmitting and stops spam and viruses from spreading

small electronic devices that change user passwords automatically

features full-time monitoring tools that search for patterns in network traffic to identify intruders

the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting

a device that is around the same size as a credit card, containing embedded technologies that can store information and small amounts of software to perform some limited processing

20.

1 point

information privacy policy

contains general principles to guide computer user behavior

contains general principles regarding information privacy

21.

1 point

information technology monitoring

tracks people’s activities by such measures as number of keystrokes, error rate, and number of transactions processed

explicitly state how, when, and where the company monitors its employees

22.

1 point

there are five primary information technology security areas

True

False

23.

1 point

insiders, social engineering, dumpster diving are a threat to ______ security.

24.

1 point

if there is an information security breach and the information was encrypted, the person stealing the information would be unable to read it

True

False

25.

1 point

authenticatior

the process of giving someone permission to do or have something

a method for confirming users’ identities

a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent email

the forging of someone’s identity for the purpose of fraud

reroutes requests for legitimate websites to false websites

26.

1 point

information ethics

the right to be left alone when you want to be, to have control over your own personal possessions, and not to be observed without your consent

the principles and standards that guide our behavior toward other people

the assurance that messages and information are available only to those who are authorized to view them

govern the ethical and moral issues arising from the development and use of information technologies, as well as the creation, collection, duplication, distribution, and processing of information itself

27.

1 point

nonrepudiation

requires a user to agree to follow it to be provided access to corporate email, information systems, and the internet

contains general principles to guide the proper use of the internet

a contractual stipulation to ensure that ebusiness participants do not deny their online actions

28.

1 point

information management, information governance, information compliance, and ediscovery are tools to help:

develop a security system

construct additional pylons

prevent information misuse

29.

1 point

ethical computer use policy

contains general principles to guide computer user behavior

contains general principles regarding information privacy

30.

1 point

one of the most common defenses for preventing a security breach is content filtering

True

False

31.

1 point

spam spam spam

outlines the corporate guidelines or principles governing employee online communications

details the extent to which email messages may be read by others

simply states that email users will not send unsolicited emails (or spam)

unsolicited email

32.

1 point

anti-spam policy

unsolicited email

details the extent to which email messages may be read by others

simply states that email users will not send unsolicited emails (or spam)

outlines the corporate guidelines or principles governing employee online communications

33.

1 point

authorization

the forging of someone’s identity for the purpose of fraud

a method for confirming users’ identities

reroutes requests for legitimate websites to false websites

a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent email

the process of giving someone permission to do or have something

34.

1 point

firewall

hardware and/or software that guards a private network by analyzing the information leaving and entering the network

prevents emails containing sensitive information from transmitting and stops spam and viruses from spreading

features full-time monitoring tools that search for patterns in network traffic to identify intruders

small electronic devices that change user passwords automatically

a device that is around the same size as a credit card, containing embedded technologies that can store information and small amounts of software to perform some limited processing

the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting

35.

1 point

pharming

the process of giving someone permission to do or have something

reroutes requests for legitimate websites to false websites

a technique to gain personal information for the purpose of identity theft, usually by means of fraudulent email

a method for confirming users’ identities

the forging of someone’s identity for the purpose of fraud

36.

1 point

biometrics

features full-time monitoring tools that search for patterns in network traffic to identify intruders

small electronic devices that change user passwords automatically

the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting

prevents emails containing sensitive information from transmitting and stops spam and viruses from spreading

a device that is around the same size as a credit card, containing embedded technologies that can store information and small amounts of software to perform some limited processing

hardware and/or software that guards a private network by analyzing the information leaving and entering the network

37.

1 point

email privacy policy

outlines the corporate guidelines or principles governing employee online communications

simply states that email users will not send unsolicited emails (or spam)

unsolicited email

details the extent to which email messages may be read by others

38.

1 point

intrusion detection software

prevents emails containing sensitive information from transmitting and stops spam and viruses from spreading

features full-time monitoring tools that search for patterns in network traffic to identify intruders

the identification of a user based on a physical characteristic, such as a fingerprint, iris, face, voice, or handwriting

small electronic devices that change user passwords automatically

hardware and/or software that guards a private network by analyzing the information leaving and entering the network

a device that is around the same size as a credit card, containing embedded technologies that can store information and small amounts of software to perform some limited processing

39.

1 point

ethics

the principles and standards that guide our behavior toward other people

the right to be left alone when you want to be, to have control over your own personal possessions, and not to be observed without your consent

the assurance that messages and information are available only to those who are authorized to view them

govern the ethical and moral issues arising from the development and use of information technologies, as well as the creation, collection, duplication, distribution, and processing of information itself