Question 1

Which of the following critical infrastructures was NOT a focus of the Network and Information Security Directive?&#10;A) energy&#10;B) health&#10;C) finance&#10;D) education

Accepted Answer

The Network and Information Security Directive focused on critical infrastructures including energy, health, and finance. However, education was not included in its focus.

Question 2

______ has become one of the most feared threats to cybersecurity.&#10;A) Malware&#10;B) Botnet&#10;C) Ransomware&#10;D) Honeypots

Accepted Answer

Ransomware is a type of malware that encrypts user's files and demands payment in exchange for the decryption key. It has become one of the most feared threats to cybersecurity as it can cause significant financial losses for individuals and organizations, and can also damage their reputation.

Question 3

The ______ creates a cybersecurity information sharing system for public and private entities.&#10;A) Cybersecurity Workforce Act of 2014&#10;B) Comprehensive National Cybersecurity Initiative&#10;C) National Cybersecurity and Critical Infrastructure Protection Act of 2014&#10;D) Cybersecurity Information Sharing Act of 2015

Accepted Answer

The Cybersecurity Information Sharing Act (CISA) of 2015 aims to develop a cybersecurity information sharing system between public and private entities in the United States, and establish procedures for sharing cybersecurity threat information.

Question 4

Assessing critical assets that need to be protected, such as trade secrets to determine what receives the highest priority, is a component of ______.&#10;A) identifying sensitive information&#10;B) assessing vulnerabilities, cyberresiliency, and developing a security baseline&#10;C) determining who has access&#10;D) developing and disseminating ground rules and accountability A Holistic Approach to Cybersecurity steps

Accepted Answer

Assessing critical assets that need to be protected is a part of identifying sensitive information.

Question 5

The ______ proved to be symbolic legislation that assures the public that the international community is taking steps to combat cybercrime and the threat of a cyberwar.&#10;A) EU Network and Information Security Directive&#10;B) Budapest Convention on Cybersecurity&#10;C) UN Convention on the Law of the Sea&#10;D) US Freedom Act

Accepted Answer

The Budapest Convention on Cybersecurity is a binding international treaty that aims to enhance global cooperation in combating cybercrime by establishing common rules and procedures for countries to follow. Its adoption and implementation by a growing number of countries demonstrate a shared commitment to addressing cybersecurity threats on a global scale.

Question 6

The ______ provided the basis for a comprehensive cyber security strategy.&#10;A) Cybersecurity Workforce Act of 2014&#10;B) Comprehensive National Cybersecurity Initiative&#10;C) National Cybersecurity and Critical Infrastructure Protection Act of 2014&#10;D) Cybersecurity Information Sharing Act of 2015

Accepted Answer

The Comprehensive National Cybersecurity Initiative (CNCI), launched in 2008, provided the basis for a comprehensive cyber security strategy, emphasizing the importance of protecting critical infrastructure and improving information sharing between government agencies and private sector organizations. The other options listed are specific pieces of legislation related to cyber security, but only the CNCI provided the basis for a comprehensive strategy.

Question 7

A holistic approach to cybersecurity involves cooperation between all of the following except ______.&#10;A) industries, lawmakers, and cybersecurity specialists&#10;B) lawmakers, citizens, and industries&#10;C) citizens, lawmakers, and cybersecurity specialists&#10;D) cybersecurity specialists, industries, and citizens

Accepted Answer

A holistic approach to cybersecurity inherently involves cooperation among various stakeholders, including industries, lawmakers, cybersecurity specialists, and citizens. However, the question asks for the group that is not typically included in a holistic approach, which is a trick question because all mentioned groups are essential. The correct answer is based on the fact that all options except A (industries, lawmakers, and cybersecurity specialists) implicitly include citizens, who are also a crucial part of cybersecurity efforts. However, since the question's phrasing might suggest looking for a group that is excluded, none of the options should technically be excluded in a truly holistic approach. The answer provided is based on the interpretation of the question's intent rather than the factual inaccuracy of involving all groups mentioned.

Question 8

The ______ requires the secretary of homeland security to assess the work of the cybersecurity workforce of the Department of Homeland Security and develop a comprehensive strategy to improve the readiness and quality of the cybersecurity workforce.

A) Cybersecurity Workforce Act 2014
B) Comprehensive National Cybersecurity Initiative
C) National Cybersecurity and Critical Infrastructure Protection Act of 2014
D) Cybersecurity Information Sharing Act of 2015

Accepted Answer

The answer of The ______ requires the secretary of homeland...

Question 9

In 2016, the European Union passed the ______ establishing the first actual cybersecurity rules.&#10;A) Network and Information Security Directive&#10;B) Budapest Convention on Cybersecurity&#10;C) UN Convention on the Law of the Sea&#10;D) EU Freedom Act

Accepted Answer

This directive established cybersecurity rules for operators of essential services and digital service providers in the EU, including requirements for incident reporting and security measures. The Budapest Convention is a treaty focused on international cooperation against cybercrime, but does not establish specific cybersecurity rules. The UN Convention on the Law of the Sea and the EU Freedom Act are not related to cybersecurity.

Question 10

The ______ gives government the authority to collect content records related to telephonic activities.&#10;A) Cybersecurity Workforce Act&#10;B) USA PATRIOT Act&#10;C) US Freedom Act&#10;D) Cybersecurity Information Sharing Act

Accepted Answer

The USA PATRIOT Act gives government the authority to collect content records related to telephonic activities.

Question 11

Examples of proprietary information include all of the following except ______.&#10;A) trade secrets&#10;B) hardware&#10;C) company research&#10;D) public records

Accepted Answer

The answer of Examples of proprietary information include all of...

Question 12

The ______ has the responsibility to coordinate federal, state, and local governments, laboratories, critical infrastructure owners and operators, and other entities to accomplish goals pertinent to the National Cybersecurity and Critical Infrastructure Protection Act of 2014.

A) secretary of defense
B) secretary of labor
C) secretary of state
D) secretary of transportation

Accepted Answer

The answer of The ______ has the responsibility to coordinate...

Question 13

Jeopardizing the security, integrity, confidentiality, or availability of an information system or network or any information stored on, processed on, or transiting such a system is also referred to as a ______.

A) cyberincident
B) cybercall
C) cyberwarfare
D) cybercheck

Accepted Answer

The answer of Jeopardizing the security, integrity, confidentiality, or availability...

Question 14

A health tracker is an example of a device that can be used in the ______ technique.&#10;A) Man-in-the-cloud&#10;B) Man-in-the-middle&#10;C) Man-in-the-app&#10;D) Man-in-the-IoT

Accepted Answer

The answer of A health tracker is an example of...

Question 15

In 2016 a massive denial-of-service attack brought down much of the Internet in Europe and the United States. The attack used a ______.&#10;A) botnet&#10;B) phishing email&#10;C) worm&#10;D) Trojan horse

Accepted Answer

The answer of In 2016 a massive denial-of-service attack brought...

Question 16

Telephonic activities were defined much broader than most people would have expected by the ______.&#10;A) Federal Bureau of Investigation&#10;B) Central Intelligence Agency&#10;C) National Security Agency&#10;D) Defense Intelligence Agency

Accepted Answer

The answer of Telephonic activities were defined much broader than...

Question 17

The ______ enables the secretary of homeland security to conduct cybersecurity activities that will defend, mitigate, respond to, or recover from cyberincidents to critical infrastructures.&#10;A) Cybersecurity Workforce Act 2014&#10;B) Comprehensive National Cybersecurity Initiative&#10;C) National Cybersecurity and Critical Infrastructure Protection Act of 2014&#10;D) Cybersecurity Information Sharing Act of 2015

Accepted Answer

The answer of The ______ enables the secretary of homeland...

Question 18

A holistic approach integrates all of the following factors except ______.&#10;A) environmental&#10;B) human&#10;C) technological&#10;D) physical

Accepted Answer

The answer of A holistic approach integrates all of the...

Question 19

The Cybersecurity Information Sharing Act of 2015 calls for the cooperation of all of the following except the ______.&#10;A) director of national intelligence&#10;B) secretary of homeland security&#10;C) president&#10;D) attorney general

Accepted Answer

The answer of The Cybersecurity Information Sharing Act of 2015...

Question 20

The ______ prohibited the bulk collection of digital information.&#10;A) US Freedom Act&#10;B) Cybersecurity Workforce Act&#10;C) USA PATRIOT Act&#10;D) Cybersecurity Information Sharing Act

Accepted Answer

The answer of The ______ prohibited the bulk collection of...

Question 21

The U.S. Foreign Intelligence Surveillance Court is a secret court.

Accepted Answer

The answer of The U.S. Foreign Intelligence Surveillance Court is...

Question 22

Taking a computer or device hostage until the owner pays a ransom is referred to as ransomware.

Accepted Answer

The answer of Taking a computer or device hostage until...

Question 23

Explain the holistic approach to cybersecurity. How can it help improve cybersecurity? How does it differ from other approaches currently used by law enforcement?

Accepted Answer

The answer of Explain the holistic approach to cybersecurity. How...

Question 24

The uncontrollable nature of ______ poses great challenges to coordinating effective federal and state law enforcement responses to cyberattacks and terrorist acts.&#10;A) private corporations&#10;B) social media&#10;C) public&#10;D) government

Accepted Answer

The answer of The uncontrollable nature of ______ poses great...

Question 25

Edward Snowden, who released classified information about the U.S. government, found asylum in ______, which has declined to extradite Snowden.&#10;A) Sweden&#10;B) France&#10;C) Ukraine&#10;D) Russia

Accepted Answer

The answer of Edward Snowden, who released classified information about...

Question 26

The holistic approach emphasizes that technology and policies can effectively address the myriad of cyberthreats.

Accepted Answer

The answer of The holistic approach emphasizes that technology and...

Question 27

Every nation-state is a sovereign entity; that is, only law enforcement in that nation has the right to enforce the laws.

Accepted Answer

The answer of Every nation-state is a sovereign entity; that...

Question 28

The main purpose of national cybersecurity policies is to develop a comprehensive strategy to prevent and mitigate cyberattacks.

Accepted Answer

The answer of The main purpose of national cybersecurity policies...

Question 29

Explain cyber incidents. Provide examples.

Accepted Answer

The answer of Explain cyber incidents. Provide examples....

Question 30

According to the text, it is extremely difficult to do which of the following?&#10;A) investigate cybercriminals&#10;B) punish cybercriminals&#10;C) prosecute cybercriminals&#10;D) all of these

Accepted Answer

The answer of According to the text, it is extremely...

Question 31

A cybercall is defined as an incident, or an attempt to cause an incident, that if successful would deny access to or degrade, disrupt, or destruct such a system or network.

Accepted Answer

The answer of A cybercall is defined as an incident,...

Question 32

What is the law of the sea and how can it help answer some of the questions concerning jurisdiction?

Accepted Answer

The answer of What is the law of the sea...

Question 33

Due to the simple nature of cyberspace and geopolitical relations, there is international cybersecurity law, similar to that of the criminal law in the United States.

Accepted Answer

The answer of Due to the simple nature of cyberspace...

Question 34

Cyberspace and cybersecurity are confined within national borders.

Accepted Answer

The answer of Cyberspace and cybersecurity are confined within national...

Question 35

The holistic approach emphasizes that neither technology nor policies in themselves can effectively address the myriad of cyberthreats.

Accepted Answer

The answer of The holistic approach emphasizes that neither technology...

Question 36

Discuss the implications concerning protections from unreasonable search and seizure of private communications sent via third party. What are the arguments for and against?

Accepted Answer

The answer of Discuss the implications concerning protections from unreasonable...

Question 37

Why are there no international cybersecurity policies that apply to all nations?

Accepted Answer

The answer of Why are there no international cybersecurity policies...

Question 38

Attribution is a problem that governments across the globe face when such attacks occur.

Accepted Answer

The answer of Attribution is a problem that governments across...

Question 39

Some people have suggested applying the ______ to cybercrimes, because they are similar in that there is often no clear jurisdiction.&#10;A) Law of the Sea&#10;B) Law of the Land&#10;C) Law of the Air&#10;D) Law of the Ocean

Accepted Answer

The answer of Some people have suggested applying the ______...

Question 40

This difference in ______ convictions greatly hampers the development of universal enforcement rules.&#10;A) political&#10;B) moral&#10;C) constitutional&#10;D) all of these

Accepted Answer

The answer of This difference in ______ convictions greatly hampers...

Deck 10: Cyber Security Policies and Legal Issues