Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

IS > Chapter 2 - Law and Ethics > Flashcards

Chapter 2 - Law and Ethics Flashcards

1
Q

Deterrence: the act of attempting to prevent by threatening punishment if action takes place.

using policy, training and technology, infosec personnel deter unethical and illegal acts.

best method to prevent unethical behaviour. example of deterrence is laws, policies and associated penalties.

A

Penalties only deter when:

  1. dear of penalty
  2. probability of being caught
  3. probability of penalty being administered
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Professional Organisations:

Association of Computing Machinery (ACM): worlds first educational and scientific computing society.

ISC2: non profit organisation that focuses on the development and implementation of InfoSec certification and credentials.

SANS: professional research and education cooperative organisation.

ISACA: professional organisation with a focus on auditing, control, and security.

A

ISSA: nonprofit society of Infosec professionals. bringing professionals together for information exchange and educational development.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

The key difference between policy and law

A

ignorance of law is not an excuse, ignorance of policy is a viable defense.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

due care
due diligence

liability
restitution
long arm jurisdiction

A

due care: to make sure that every employee knows what is acceptable and what is not

due diligence: requires that an organisation make a valid and ongoing effort to protect others.

restitution: make compensation or payment resulting from loss. tazminat..

long arm jurisdiction: that a court of can judge a defendant across the country or worldwide. there are limitations..

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

e-discovery: collecting, identifying,… electronic evidence for a lawsuit or investigation.

A

forensic allows investigators to determine what happened but don’t do to figure out why happened.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Digital forensic methodology:

A
  1. Identify relevant items of evidentiary value (EM)
  2. Acquire the evidence without altering it. usually is done by imaging the evidence. Chain of evidence should be recorded in detail.
  3. Authenticate the evidence at every step taken
  4. Analyse the data without making changes. First step of analysis is indexing the data.
  5. Report the findings to the proper authority
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

IS (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions