CISSP Lesson 11 PreTest

Question 2

Which statement is true regarding civil law?
A) Law enforcement is used to settle disputes between individuals and organizations
B) Most laws are civil laws
C) The most often used penalty for civil offenses is community service

Answer 2

Most laws are civil laws

Question 3

In order for evidence to be admissible in court, it must comply with all laws and regulations governing collection and maintenance.
A) TRUE
B) FALSE

Answer 3

TRUE

Question 4

Which was introduced in the Computer Security Act of 1987?
A) Security plans are required for all federal systems that contain sensitive data
B) Legal authority for victims to pursue civil action
C) Broadened authority to cover systems used in international commerce

Answer 4

Security plans are required for all federal systems that contain sensitive data

Question 5

Which privacy act set forth strict regulations for organizations that process or store personal medical information?
A) HIPAA
B) ECPA
C) Federal Privacy Act of 1974

Answer 5

HIPAA

Question 6

Credit card fraud is a type of financial attack.
A) TRUE
B) FALSE

Answer 6

TRUE

Question 7

Which constitute crimes in the original Computer Fraud and Abuse Act of 1986? Choose all that apply.
A) Modifying medical records or traffic passwords stored on a federal system
B) Unauthorized access to a federal system
C) Any use of a federal system to perpetrate fraud
D) Causing malicious damage to a federal system that exceeds $1,000

Answer 7

Modifying medical records or traffic passwords stored on a federal system
Unauthorized access to a federal system
Any use of a federal system to perpetrate fraud
Causing malicious damage to a federal system that exceeds $1,000

Question 8

What is the purpose of a military attack in terms of computer crimes?
A) Acquire secret information
B) Destroy sensitive information
C) Sabotage systems

Answer 8

Acquire secret information

Question 9

Which is an example of intellectual property?
A) Software used by a company to develop a product
B) Goods produced by a company
C) Brand name and image of a company

Answer 9

Brand name and image of a company

Question 10

Which is an example of best evidence?
A) The original copy of a document
B) Witness testimony
C) Expert testimony

Answer 10

The original copy of a document

Question 11

The first step in incident response is to call local authorities.
A) TRUE
B) FALSE

Answer 11

FALSE

Question 12

What should be contained in an incident report? Choose all that apply.
A) Nature of the incident
B) How the incident originated
C) What tools were used to launch the incident
D) Known damage
E) Location of the incident
F) Witness accounts of the incident

Answer 12

Nature of the incident
How the incident originated
What tools were used to launch the incident
Known damage
Location of the incident

Question 13

Which are criteria for warranting a patent? Choose all that apply.
A) Product must be new
B) Product must be universal
C) Product must be useful
D) Product must be high quality
E) Product must be nonobvious

Answer 13

Product must be new
Product must be useful
Product must be nonobvious

Question 14

Which type of incident is an attack that renders a system unavailable to authorized users?
A) Scanning incident
B) Denial of service incident
C) Compromise incident
D) Malicious code incident

Answer 14

Denial of service incident

Question 15

Which is a type of scanning incident?
A) Eavesdropping
B) Network intrusion
C) Dumpster diving

Answer 15

Dumpster diving