6e Need for Data Confidentiality

Question 1

Describe how data entered onto the system can be kept confidential. (4 marks)

Answer 1

 access controls (1) login groups/usernames/access
rights used to control access to parts of the system
(1)
 restrict program usage (1) impose levels of access
within programs (1)
 firewalls (1) to protect the system from hacking and
viruses (1) ensures users can only access the parts
of the system they are authorised to (1)
 audit logs (1) provide evidence of system activity (1)
can be used to restrict users to particular hours (1)
used to track misuse (1)
 data encryption (1) translates data/scrambles data
into an unintelligible form (1) secures data by
[4]
making it unreadable without a key (1)
 passwords (1) to prevent unauthorised access to a
workstation (1)