Question 1

According to the United States ________, critical information includes all forms and types of financial, business, scientific, economic, or engineering information.&#10;A) Economic Security Directive 298&#10;B) Economic Security National Statute&#10;C) Economic Security Act of 1986&#10;D) Economic Security Act of 1996&#10;E) All of the above.

Accepted Answer

Economic Security Act of 1996&#10;

Question 2

________ property is defined as virtually any information belonging to an individual or organization.&#10;A) Real&#10;B) Proprietary&#10;C) Intellectual&#10;D) Private&#10;E) All of the above.

Accepted Answer

Proprietary information refers to virtually any information belonging to an individual or organization that is not public knowledge, encompassing a wide range of data, including trade secrets, processes, and other confidential information.

Question 3

________ property is defined as information created through research and development.&#10;A) Real&#10;B) Proprietary&#10;C) Intellectual&#10;D) Private&#10;E) All of the above.

Accepted Answer

Intellectual property refers to creations of the mind, such as inventions; literary and artistic works; designs; and symbols, names, and images used in commerce, which can be protected through patents, copyrights, trademarks, etc. It is often created through research and development.

Question 4

Threats to critical information include:&#10;A) Environmental and natural disasters.&#10;B) Fire and accidents.&#10;C) Unintentional human actions.&#10;D) Intentional human actions.&#10;E) All of the above.

Accepted Answer

All of the options listed (A through D) represent various threats to critical information. Environmental and natural disasters, fire and accidents, unintentional human actions, and intentional human actions can all pose significant risks to the security and integrity of critical information.

Question 5

The purpose of ________ is to protect information assets and systems against any internal or external threat that might endanger them.&#10;A) INTERTEL&#10;B) INFOTEL&#10;C) COMSEC&#10;D) INFOSEC&#10;E) COMSAC

Accepted Answer

INFOSEC, short for Information Security, is the practice designed to protect information assets and systems from threats, whether they are internal or external.

Question 6

In the United States government's hierarchical information security structure, the ________ classification is assigned to information which, if disclosed, could be prejudicial to the interests of the United States.

A) Top secret
B) Secret
C) Confidential
D) Unclassified but sensitive
E) Caveats

Accepted Answer

The answer of In the United States government's hierarchical information...

Question 7

________ involves information risk assessment and intelligence activities in a process whereby operations are analyzed to identify vulnerabilities.&#10;A) OPSEC&#10;B) COMPSEC&#10;C) INFOTEL&#10;D) INTELSEC&#10;E) OPSEEK

Accepted Answer

OPSEC, or Operations Security, involves assessing information risks and conducting intelligence activities to analyze operations and identify vulnerabilities.

Question 8

The ________ involves collaboration among several organizations and provides operations security training to agencies and businesses.&#10;A) National Operations Security Initiative&#10;B) National Infrastructure Network&#10;C) Interagency OPSEC Services Administration&#10;D) Interagency OPSEC Support Staff&#10;E) Interagency OPSEC Services Group

Accepted Answer

The Interagency OPSEC Support Staff (IOSS) is responsible for providing operations security training and support to various agencies and businesses, facilitating collaboration among different organizations.

Question 9

According to the protocol for classification of business information, ________ is assigned to the business equivalent of top secret information.&#10;A) Company confidential, special control&#10;B) Company confidential&#10;C) Private confidential&#10;D) Internal use only&#10;E) Restricted

Accepted Answer

Company confidential, special control is assigned to the business equivalent of top secret information, indicating the highest level of confidentiality within a company.

Question 10

________ information policies remind staff of special agreements created to maintain confidentiality and rights to privacy.&#10;A) Minimum protection&#10;B) Authorization&#10;C) Special audit assignment&#10;D) Legal protection&#10;E) All of the above.

Accepted Answer

Legal protection policies are designed to ensure that staff are aware of and comply with agreements that safeguard confidentiality and privacy rights. These policies typically encompass the legal aspects of information handling and privacy.

Question 11

________ should be utilized to secure computer systems and data.&#10;A) Passwords&#10;B) Firewalls&#10;C) Physical security&#10;D) Administrative controls&#10;E) All of the above.

Accepted Answer

The answer of ________ should be utilized to secure computer...

Question 12

________ agreements are used to prevent release of information by those who inadvertently come into contact with classified or critical data.&#10;A) Non-disclosure&#10;B) Secrecy&#10;C) Non-compete&#10;D) Classification&#10;E) All of the above.

Accepted Answer

The answer of ________ agreements are used to prevent release...

Question 13

________ includes all efforts to protect information transmitted by voice, wire, satellite, and other systems from unauthorized interception.&#10;A) OPSEC&#10;B) COMSEC&#10;C) INFOTEL&#10;D) INTELSEC&#10;E) OPSEEK

Accepted Answer

The answer of ________ includes all efforts to protect information...

Question 14

Communications ________ security involves prevention of adverse surveillance by devices such as microphones.&#10;A) Line&#10;B) Transmission&#10;C) Cryptographic&#10;D) Emanations&#10;E) Technical

Accepted Answer

The answer of Communications ________ security involves prevention of adverse...

Question 15

_______ security involves the use of non-exclusive codes and ciphers to transform transmitted data to render it unintelligible.&#10;A) Line&#10;B) Transmission&#10;C) Cryptographic&#10;D) Emanations&#10;E) Technical

Accepted Answer

The answer of _______ security involves the use of non-exclusive...

Question 16

Security for computer systems must include strategies to protect:&#10;A) Computer equipment.&#10;B) Computer software.&#10;C) Information contained in a computer database.&#10;D) Computer databases.&#10;E) All of the above.

Accepted Answer

The answer of Security for computer systems must include strategies...

Question 17

Computer security strategies in the form of ________ can be implemented to maintain accountability for those who have legitimate access to a computer system or database.&#10;A) Logical controls&#10;B) Administrative controls&#10;C) Data encryption&#10;D) Firewalls&#10;E) All of the above.

Accepted Answer

The answer of Computer security strategies in the form of...

Question 18

The ________ is an FBI-maintained computer security resource available to security professionals and computer systems administrators.&#10;A) CERT&#10;B) SCANS&#10;C) SWAT&#10;D) NIPC&#10;E) All of the above.

Accepted Answer

The answer of The ________ is an FBI-maintained computer security...

Question 19

At the United States government level, enforcement of laws relative to the theft of trade secrets or harassment on the Internet falls under the jurisdiction of the:&#10;A) U.S. Secret Service&#10;B) ATF&#10;C) FBI&#10;D) U. S. Customs Service&#10;E) All of the above.

Accepted Answer

The answer of At the United States government level, enforcement...

Question 20

The ________ regulates private industry's access to classified government information.&#10;A) National Industrial Security Program&#10;B) OPSEC Support Staff&#10;C) Fair Credit Reporting Agency&#10;D) COMSEC Working Group&#10;E) All of the above.

Accepted Answer

The answer of The ________ regulates private industry's access to...

Question 21

________ pose(s) security risks and challenges for individuals as well as organizations.&#10;A) Social networking media&#10;B) Facebook use&#10;C) Cyberstalking&#10;D) Smart phones&#10;E) All of the above are correct.

Accepted Answer

The answer of ________ pose(s) security risks and challenges for...

Question 22

Digitized information is not distance- or time-dependent.

Accepted Answer

The answer of Digitized information is not distance- or time-dependent....

Question 23

According to some experts, theft of money and securities of government represent the greatest threat to governments and businesses today.

Accepted Answer

The answer of According to some experts, theft of money...

Question 24

Information's worth can only be determined by calculating the political and financial impact of its loss.

Accepted Answer

The answer of Information's worth can only be determined by...

Question 25

With discretionary information access control, access is allowed on a need-to-know basis.

Accepted Answer

The answer of With discretionary information access control, access is...

Question 26

Mandatory access control strategies trace their origins to restrictive legislation.

Accepted Answer

The answer of Mandatory access control strategies trace their origins...

Question 27

INFOSEC views operations from an adversary's perspective in an effort to seek out an organization's vulnerabilities and protect its critical information.

Accepted Answer

The answer of INFOSEC views operations from an adversary's perspective...

Question 28

Unlike business information, all government information must be released upon request.

Accepted Answer

The answer of Unlike business information, all government information must...

Question 29

Converting plain text to crypto text is referred to as decryption.

Accepted Answer

The answer of Converting plain text to crypto text is...

Question 30

Acoustical emanations are produced through the interplay of electrical and mechanical parts contained in communications equipment.

Accepted Answer

The answer of Acoustical emanations are produced through the interplay...

Question 31

Cryptographic security should not be viewed as a substitute for physical, personnel, and information security.

Accepted Answer

The answer of Cryptographic security should not be viewed as...

Question 32

Interception of emanations can be prevented if computer rooms are constructed with acoustical materials and non-radiating electronic equipment is used.

Accepted Answer

The answer of Interception of emanations can be prevented if...

Question 33

Computer crime is generally defined as any crime committed with computer technology.

Accepted Answer

The answer of Computer crime is generally defined as any...

Question 34

Anti-virus software is used to screen electronic traffic before allowing access to computer networks.

Accepted Answer

The answer of Anti-virus software is used to screen electronic...

Question 35

According to John Carroll's &#34;simple security principle&#34;&#10;for safeguarding sensitive computer information, no person should view information that has a classification that exceeds the viewer's security clearance.

Accepted Answer

The answer of According to John Carroll's &#34;simple security principle&#34;&#10;for...

Question 36

Phishing is not a form of identity theft.

Accepted Answer

The answer of Phishing is not a form of identity...

Question 37

What is the purpose of information security (INFOSEC)?

Accepted Answer

The answer of What is the purpose of information security...

Question 38

Define and contrast critical information, proprietary information, and intellectual property.

Accepted Answer

The answer of Define and contrast critical information, proprietary information,...

Deck 6: Information, Communications, and Computer Security