Deck 25: B: Extension: A Information Security

A)Technology first, customers second.
B)Technology first, people second.
C)Innovation first, technology second.
D)People first, technology second.

A)A form of social engineering in which one individual lies to obtain confidential data about another individual.
B)A hacker looking through your trash to find personal information.
C)Legitimate users purposely or accidentally misusing their access to the environment and causing some kind of business-affecting incident.
D)Malicious agents designed by spammers and other Internet attackers to farm email addresses off websites or deposit spyware on machines.

A)Authentication and authorization, prevention and resistance, prevention and response
B)Authentication and authorization, prevention and response, detection and response
C)Analyzing and authenticating, prevention and repositioning, detection and response
D)Authentication and authorization, prevention and resistance, detection and response

A)Pharming
B)Worm holes
C)Phishing
D)Insider hacking

A)Phishing is not illegal, pharming is illegal.
B)Phishing is the right of the company, where pharming is the right of the individual.
C)Phishing is a technique to gain personal information for the purpose of identity theft, and pharming reroutes requests for legitimate websites to false websites.
D)All of these.

A)Identity crisis
B)Identity theft
C)Ediscovery
D)All of these

A)Insiders to hack into the college system.
B)Dumpster diving to find usernames and passwords.
C)Viruses and worms to spread through the college system.
D)All of these.

A)People misusing organizational information.
B)Technology failures.
C)Customers misusing organizational systems.
D)Company departments missing sales goals.

A)An Insider
B)Dumpster diving
C)Social engineering
D)Phishing

A)Pharming
B)Authentication
C)Authorization
D)Programming

A)Striker bunny
B)Dumpster diving
C)Trash retrieval
D)Approved consent

A)A form of social engineering in which one individual lies to obtain confidential data about another individual.
B)A hacker looking through your trash to find personal information.
C)Legitimate users who purposely or accidentally misuse their access to the environment and cause some kind of business-affecting incident.
D)Malicious agents designed by spammers and other Internet attackers to farm email addresses off websites or deposit spyware on machines.

A)A form of social engineering in which one individual lies to obtain confidential data about another individual.
B)A hacker looks through your trash to find personal information.
C)Legitimate users who purposely or accidentally misuse their access to the environment and cause some kind of business-affecting incident.
D)Malicious agents designed by spammers and other Internet attackers to farm email addresses off websites or deposit spyware on machines.

A)Information ethics policy
B)Information security policies
C)Information technology plan
D)All of these

A)Social engineering
B)Social media
C)Social viruses
D)Social processes

A)Prevention and resistance
B)Detection and authorizing
C)Detection and response
D)Authentication and authorization

A)Dumpster texting
B)Dumpster diving
C)Trash retrieval
D)Pretexting

A)A form of social engineering in which one individual lies to obtain confidential data about another individual.
B)Hackers looking through your trash to find personal information.
C)Legitimate users who purposely or accidentally misuses their access to the environment and cause some kind of business-affecting incident.
D)Malicious agents designed by spammers and other Internet attackers to farm email addresses off websites or deposit spyware on machines.

A)Requiring computer users to log off before leaving for lunch
B)Never sharing user or password information with anyone
C)Changing passwords every 30 to 60 days
D)All of these

A)An information security plan
B)An ethical information policy
C)An anti-virus plan
D)None of these

A)A social engineer
B)An insider
C)A spammer
D)A dumpster diver

A)Phishing
B)Authentication
C)Authorization
D)Programming

A)Digital code
B)Digital sign
C)Digital certificate
D)Digital card

A)Smart card
B)Token
C)Biometrics
D)Content filtering

A)Private key encryption
B)Policy key encryption
C)Public key encryption
D)Protective key code

A)Something the user knows such as a user ID and password
B)Something the user has such as a smart card or token
C)Something that is part of the user such as a fingerprint or voice signature
D)Combination of all of these

A)Identification instruments
B)A form of digital cash
C)A data storage device
D)All of these

A)Interconnected data software (IDS)
B)Intrusion detection software (IDS)
C)Security Information system (SIS)
D)Internet detection scanner (IDS)

A)Firewall
B)Digital certificate
C)Virus software
D)Antivirus software

A)Must never upgrade or change vendors.
B)Must download a portable button for it to activate.
C)Must frequently update it to protect against viruses.
D)All of these.

A)Antivirus software
B)Content filtering
C)Encryption
D)Firewalls

A)Firewall
B)Certificate authority
C)Online certificate
D)Digital content certificate

A)Encryption
B)Content filtering
C)Firewalls
D)Antivirus software

A)Smart technology card
B)Tokens
C)Biometrics
D)Passwords

A)Token
B)Password
C)Smart card
D)Biometrics

A)Firewall
B)Certificate authority
C)Online certificate
D)Digital certificate

A)Something the user knows, such as a user ID and password
B)Something the user has, such as a smart card or token
C)Something that is part of the user, such as a fingerprint or voice signature
D)All of these

A)It is considered illegal.
B)It is viewed as an invasion of privacy.
C)It can be costly and intrusive.
D)It requires constant monitoring and upgrading.

A)Switch the order of characters.
B)Replace characters with other characters.
C)Insert or remove characters.
D)All of these.

A)Content filtering, encryption, and firewalls
B)Calculating, locking, and firewalls
C)Content prohibiting, and cookies
D)None of these

A)Iris scan
B)Password
C)Fingerprint
D)Handwriting