Deck 12: Information Systems Development

A) target
B) vulnerability
C) threat
D) key escrow

A) an employee inadvertently installs an old database on top of the current one
B) an employee intentionally destroys data and system components
C) a virus and worm writer infects computer systems
D) a hacker breaks into a system to steal for financial gain

A) hacker
B) phisher
C) safeguard
D) sniffer

A) deletion of records by an employee who is unaware of operating procedures
B) poorly written programs resulting in data losses
C) loss of data as a result of flooding
D) hacking of information systems

A) IP spoofing
B) caches
C) denial of service
D) adware

A) unauthorized data disclosure
B) incorrect data modification
C) faulty services
D) loss of infrastructure

A) Keyloggers
B) Pretexters
C) Drive-by sniffers
D) Phishers

A) Hacking
B) Usurping
C) Sniffing
D) Pretexting

A) Spoofing
B) Phishing
C) Sniffing
D) Pretexting

A) hacking
B) phishing
C) usurping
D) sniffing

A) Pretexting
B) Phishing
C) Hacking
D) Spoofing

A) ATM card
B) smart card
C) cookie
D) key escrow

A) It involves the use of a PIN for authentication.
B) It provides weak authentication.
C) It is a relatively inexpensive mode of authentication.
D) It often faces resistance from users for its invasive nature.

A) Unauthorized data disclosure
B) Incorrect data modification
C) Denial of service
D) Loss of infrastructure

A) Cookies
B) Botnets
C) Payloads
D) Public keys

A) intrusion detection system
B) keylogger
C) botnet
D) access control system

A) All organizations except financial institutions should invest heavily in security safeguards.
B) Organizations should implement safeguards that balance the trade-off between risk and cost.
C) Passwords are classified under the technical safeguards category.
D) Physical security is classified under the human safeguards category.

A) Social Security number
B) public key
C) personal identification number
D) private key

A) sharing the private key with all systems connected to the network
B) creating IS security software programs
C) establishing the security policy
D) avoiding the use of perimeter firewalls

A) the Privacy Act of 1974
B) the Sarbanes-Oxley Act
C) the HIPAA of 1996
D) the Gramm-Leach-Bliley Act

A) Encryption
B) Spoofing
C) Phishing
D) Usurpation

A) certain Web sites being censored for hurting sentiments
B) small amounts of spam in a user's inbox
C) an unauthorized transaction from a user's credit card
D) pop-up ads appearing frequently

A) denial-of-service
B) sniffing
C) brute force
D) phishing

A) Surveys on computer crimes provide accurate results since they use standard parameters to measure and tally computer crime costs.
B) Some organizations don't report all their computer crime losses, and some won't report such losses at all.
C) Losses due to natural disasters can be measured accurately.
D) Losses due to human error are insignificant.

A) cookies
B) firewalls
C) key escrow
D) passwords

A) Employees
B) Natural disasters
C) Hackers
D) Competitors

A) smart cards
B) facial features
C) passwords
D) personal identification numbers

A) a hacker monitors and intercepts wireless traffic at will
B) a hacker floods a Web server with millions of bogus service requests
C) an intruder uses another site's IP address to masquerade as that other site
D) a phisher pretends to be a legitimate company and requests confidential data

A) key
B) honeypot
C) cookie
D) cache

A) bookmarks
B) pop-ups
C) cookies
D) toolbars