Chapter 5 Computer Security and Privacy

Question 1

What is hardware theft?

Answer 1

The theft of computer hardware

Question 2

What is Hardware loss?

Answer 2

When a personal computer, USB flash drive, mobile device, or other pice of hardware is stolen or is lost by owner

Question 3

What is System failure?

Answer 3

The complete malfunction of a computer system

Question 4

What are some ways to proven against Hardware loss?

Answer 4

• secure computers with cable locks and cable anchors
• secure with laptop alarm software if the unit is unplugged it emits a very loud alarm or us USB devices are removed or if computer is shutdown

Question 5

What are some ways to prevent information from being accessed from hard drives if the computer is stolen or broken into?

Answer 5

• Full disk encryption

self encrypting hard drives

Question 6

What is full disk encryption (FDE)?

Answer 6

A technology that encrypts everything on a storage medium, with out any user interaction

Question 7

What is a self encrypting hard drive?

Answer 7

A hard drive that uses full disk encryption.

Question 8

What is stealth tracking software used for?

Answer 8

A software program that runs on the computer that tracks the computers whereabouts…this can run without the thief know that it is present.

Question 9

What is a kill switch

Answer 9

A technology software that causes the computer to “self-destruct” if it it stolen.

Question 10

What are asset tags and how do they work?

Answer 10

These are permanently attached to hardware and other expensive assets. The labels usually identify the owner.
Some tags are indestructible and others have labels on the surface but etching underneath the label which is exposed when the label is removed

Question 11

What are some additional software precautions that are for mobile users?

Answer 11

• Mobile device management software (MDM software)
• Mobile tracking software
• Wireless tether system

Question 12

How does Mobile device management software work?

Answer 12

Controls what apps can be installed or disables the camera etc if cameras are not allowed

Question 13

How does mobile tracking software work?

Answer 13

Software that remotely locks down or wipes a device if it is stolen.

Question 14

How does a wireless tether work?

Answer 14

This ties your phone to a key fob in order to sound and alarm if you go further than the allowable distance.

Question 15

What are some general mobile computing precautions for the end user?

Answer 15

• install and use encryption, antivirus etc.
• secure computers with boot passwords,
• set your mobile phone etc to auto lock after a short period and require a password to unlock
• use only secure Wi-Fi connections and disable Wi-Fi and bluetooth when they are not in use
• never leave usernames, passwords oath other data attached to your computer or inside its carrying case
• use a plain carrying case to make it less conspicuous
• kepp and ey on your devices esp when going through airport security systems
• avoid setting devices on floor or leaving them in your hotel room; use cable lock to secure the dive to a desk when it is unavoidable
• back up the data stored on the device regularly
• consider installing tracking or kill switch software

Question 16

What is a ruggedized device?

Answer 16

A device such as a portable computer or mobile phone that is designed to withstand much more physical abuse than its conventional counterpart

Question 17

What is a surge suppressor?

Answer 17

A device that protects a computer system from damage due to electrical fluctuations

Question 18

What is an uninterruptible power supply? (UPS)

Answer 18

A device containing a built-in battery that provides continuous power to a computer and the other connected components should the electricity goes out.

Question 19

What is Software piracy?

Answer 19

the unauthorized copying of a computer program

Question 20

What is digital counterfeiting?

Answer 20

The use of computers or other types of digital equipment to make illegal copies of currency, cheques, collectibles, and other items

Question 21

What does EULA mean

Answer 21

End user license agreement
computer retailers installing unlicensed copies of software on computers sold to consumers and large scale operations in which the software and packaging are illegally duplicated and then sold as supposedly legitimate products

Question 22

What is a product registration code or product key?

Answer 22

An antipiracy tool that requires a unique activation code before the software can be installed

Question 23

What is SIIA?

Answer 23

Software and Information Industry Association

A trade association that helps fight against piracy.

Question 24

What does V.i Labs CodeArmor Intelligence software do?

Answer 24

It is designed to detect and report products that have been tampered with such as products whose licensing feature has been disabled then resold

Question 25

What are some steps that the USTreasury dept use to prevent counterfeiting of U.S. Currency?

Answer 25

1. Release new currency designs every 7 to 10 years
2. New designs contain such features as microprinting, watermarks, and security threads
3. They also have colours and watermarks

Question 26

What are some prevention techniques for other types of documents such as cheques and ID cards?

Answer 26

Watermarks

RFID tags

Question 27

What is privacy?

Answer 27

The state of being concealed or free from unauthorized intrusions

Question 28

What is information privacy?

Answer 28

The rights of an individuals and companies to control how information about them is collected and used.

Question 29

What is a marketing database?

Answer 29

A collection of data about people that is stored in a large database for marketing purposes

Question 30

What is a government database?

Answer 30

A collection of data about people and maintained by the government?
It contains such information as: SIN, earning history etc

Question 31

What is electronic profiling?

Answer 31

Using electronic means to collect a variety of in depth info about an individual such as names buying habits, address, income.

Question 32

What is a privacy policy?

Answer 32

A policy posted on a company’s website that explains how personal info provided to that company will be used.

Question 33

What is spam?

Answer 33

Unsolicited email

Question 34

What is the CAN-SPAM Act of 2003?

Answer 34

Must use truthful subject lines and honouring removal requests for commercial emailers

Question 35

What is a throw away email address and why should you have one?

Answer 35

An email address used only for nonessential purposes and activities that may result in spam, the address can be disposed of and replaced if spam becomes a problem.

Question 36

What are some precautions one can take to protect one’s own privacy?

Answer 36

• read web sites privacy policy
• use throw away email addresses
• avoid putting too much information on your website or on social networking sites
• when signing up for trials use throw away email address
• consider using privacy software such as Anonymized Universal or Privacy Guardian or Google Dashboard privacy settings
• if you are using public computers be sure to clear stored information when you end your session or use private browsing function of some browsers
• use filters to block out any spam

Question 37

What is an email filter?

Answer 37

A tool that automatically sorts your incoming email messages based on your incoming email messages based on specific criterial

Question 38

What is a spam filter?

Answer 38

An email filter used to redirect spam from a users in box.

Question 39

What is to “opt out”

Answer 39

to request that you be removed from marketing activities or that your information not be shared with other companies

Question 40

What is “opt in?”

Answer 40

to request that you be included in marketing activities or that your information be shared with other companies.

Question 41

What is computer monitoring software?

Answer 41

Software that can be used to monitor an individuals usage, such as capturing images of the screen, recording the actual keystrokes used or creating a summary of websites and programs accessed.`

Question 42

What is video surveillance?

Answer 42

The use of video cameras to monitor activities of individuals, such as employees or individuals in public locations for work related or crime prevention purposes.

Question 43

What is employee monitoring?

Answer 43

Observing or reviewing employees actions while they are on the job

Question 44

What are some types of employee monitoring used?

Answer 44

Video surveillance
RFID proximity cards can be used to enter and exit, log on and log off equipment as well as physically show where you are
screening/recording phone calls
reviewing emails
tracking computer and internet usage

Question 45

What is presence technology?

Answer 45

Technology that enables one computing device such as a computer or mobile phone to locate and identify the current status of another device on the same network.

Question 46

What is the American recover and reinvestment act?

Answer 46

2009 Requires HIPAA covered entities to notify patients and or customers when protected health information has been compromised

Question 47

What is the US SAFE WEB Act of 2006?

Answer 47

2006 Grants additional authority to the FTC to help protect consumers from spam, spyware, and internet fraud and deception.

Question 48

What is the REAL ID Act?

Answer 48

2005 Establishes national standards for state issued drivers’ licenses and ID cards

Question 49

What is the Junk Fax Prevention Act?

Answer 49

2005 Requires unsolicited faxes to have a highly visible opt out notice.

Question 50

What is the Do Not Call Implementation Act?

Answer 50

2003 Amendas the Telephone Consumers Protection Act to implement the National Do Not Call Registry

Question 51

What is the CAN-SPAM Act?

Answer 51

2003 Implements regulations for unsolicited email messages and lays the ground work for a federal Do Not E-Mail Registry

Question 52

What is the Health Insurance Portability and Accountability Act? (HIPAA)

Answer 52

2003 Includes a Security Rule that sets minimum security standards to protect health information stored electronically

Question 53

What is the Sarbanes-Oxley Act?

Answer 53

2002 Requires archiving a variety of electronic records and protecting the integrity of corporate financial data

Question 54

What is the US PATRIOT Act?

Answer 54

2001 Grants federal authorities expanded surveillance and intelligence-gathering powers, such as broadening the ability of the ability of federal agents to obtain the real ID of internet users and to intercept email and other types of internet communications

Question 55

What is the Financial Modernization (Gramm-Leach-Bliley) Act?

Answer 55

1999 Extends the ability of banks, securities firms, and insurance companies to share consumers’ non-public personal information, but requires them to notify consumers and give them the opportunity to opt out before disclosing any information

Question 56

What is the Child Online Protection Act? (COPA)

Answer 56

1998 Prohibits online pornography and other content deemed harmful to minors; has been blocked by the supreme court.

Question 57

What is the Children’s Online Privacy Protection Act? (COPPA)

Answer 57

1998 Regulates how web sites can collect information from minors and communicate with them

Question 58

What is the Telephone consumer Protection Act

Answer 58

1991 Requires telemarketing companies to respect the rights of people who do not want to be called

Question 59

What is the Computer Matching and Privacy Protection Act?

Answer 59

1988 Limits the use of government data in determining federal benefit recipients

Question 60

What is the Video Privacy Protection Act?

Answer 60

1988 Limits disclosure of customer information by video-rental companies

Question 61

What is the Electronic Communications Privacy Act?

Answer 61

1986 Extends traditional privacy protections governing postal delivery and telephone services to include email, cellular phones, and voice mail.

Question 62

What is the Cable Communications Policy Act?

Answer 62

1984 Limits disclosure of customer records by cable TV companies, extended in 1992 to include companies that seek wireless services

Question 63

What is the Education Privacy Act?

Answer 63

1974 Stipulates that in both public and private schools that receive any federal funding, individuals have the right to keep the schools from releasing information such as grades and evaluations of behaviour.

Question 64

What is the Privacy Act?

Answer 64

1974 Stipulates that the collection of data by federal agencies must have a legitimate purpose

Question 65

What is the Fair Credit Reporting Act?

Answer 65

1970 Prevents private organizations from unfairly denying credit and provides individuals the right to inspect their credit records

Question 66

What is the Freedom of Information Act?

Answer 66

Gives individuals the right to inspect data concerning them that is stored by the federal government.