Exam 3

Question 1

Which type, view-driven or event-driven, is described as a traditional accounting system that may incorporate some forms of IT (information technology), but its defining characteristic is its focus on the general purpose financial statements?

Answer 1

View-Driven

Question 2

Which type, view-driven or event-driven, is described as being more complex and defined by its focus on business processes?

Answer 2

Event-Driven

Question 3

What are 5 key problems with view-driven systems?

Answer 3

Focus on a very small group of important, recordable in AIS with DR and CR, business events; Periodic, outdated; Only captures limited data from transactions; Limit decision making information; Internal Controls often protective and expensive.

Question 4

What do Event-driven systems do that view-driven do not?

Answer 4

Capture more data from individual transactions, Organize data to be accessible and understood by variety of people; Can answer questions about inventory transactions

Question 5

What is the name of the documentation technique designed to facilitate the design and implementation of event-driven AIS?

Answer 5

REA Modeling

Question 6

What does the REA in REA Modeling stand for?

Answer 6

Resources, Events, and Agents

Question 7

Name the 3 categories of “events”

Answer 7

Operating, Information and Decision/Management Events

Question 8

Which type of “events” focus on activities involved with providing goods and services to customers?

Answer 8

Operating Events

Question 9

Which type of “events” deal with preparing financial statements or updating accounting records?

Answer 9

Information Events

Question 10

Which type of “events” involve human decision making?

Answer 10

Decision/Management Events

Question 11

What types of events are captured in the REA Model?

Answer 11

Operating and Information Events

Question 12

Which of the 3 elements of an REA model have people involved in the information system and where are they located on an REA Model?

Answer 12

Agents, Right

Question 13

What type of agent includes employees in all departments?

Answer 13

Internal Agent

Question 14

What type of agent includes customers, vendors, and other stakeholders?

Answer 14

External Agent

Question 15

Which of the 3 elements of an REA model include things agents need to complete the events and where are they located on an REA Model?

Answer 15

Resources, Left

Question 16

Which of the 3 elements of an REA model appear in the middle?

Answer 16

Events

Question 17

In an REA Model, what tells an accounting professional about the relationship between its elements?

Answer 17

Cardinalities

Question 18

When Establishing cardinalities, what ?’s must be asked?

Answer 18

For each inventory item, what is the minimum/maximum number of Order events involved? For each Order event, what is the minimum/maximum number of inventory items involved?

Question 19

Which normal form eliminate repeating groups; each field contains single value, and no dupes exist

Answer 19

1st Normal Form - 1NF

Question 20

Which normal form eliminates redundant data; accomplished by creating junction tables to establish data relationships

Answer 20

2nd Normal Form - 2NF

Question 21

Which normal form eliminates columns not dependant on primary key

Answer 21

3rd Normal Form - 3NF

Question 22

What is Referential Integrity?

Answer 22

ensures relationships are maintained; any value in a foreign key column must be present in a primary key column of related table

Question 23

For REA modeling, when the maximum cardinalities between two elements are one and many, what must we include?

Answer 23

the primary key from the “one side” in the table on the “many side.”

Question 24

When the maximum cardinalities are many and many, what do we need to do?

Answer 24

we need a separate table (junction) to store the relationship

Question 25

What Documentation model is used to describe a database and is very similar to REA models?

Answer 25

Entity-Relationship Diagram - ERD

Question 26

What similarities do REA Models and ERD’s have in common?

Answer 26

Cardinalities and Entities

Question 27

What term means “things” about which data is stored

Answer 27

Entities

Question 28

What elements in REA modeling are considered entities?

Answer 28

resources and agents

Question 29

What are the differences between REA Models and ERD’s (Entity-Relationship Diagram)?

Answer 29

Include junction tables and does not explicitly include “events,” verbiage uses only nouns

Question 30

TERMS: Language can be expanded without limit

Answer 30

Extensible

Question 31

TERMS: A spec (or “part”) of XML; focused on business reporting information

Answer 31

Specification

Question 32

TERMS: Basic organizational unit of the XBRL language; sets of tags

Answer 32

Taxonomy

Question 33

TERMS: – Internet address where the taxonomy is stored; must be declared at the beginning of XBRL docs so the system knows where to find the meaning of each tag

Answer 33

Namespace

Question 34

TERMS: Specific example, like a company’s income statement or balance sheet, of properly tagged XBRL information

Answer 34

Instance Document

Question 35

How can XBRL benefit organizations?

Answer 35

More efficient data collection and reporting: Reduce Cost, Faster, more reliable consolidations, simplify regulatory reporting, Free comp from proprietary reporting systems. Facilitates data consumption and analysis: more time for value-added tasks, improves accuracy and reliability of financial data, faster, more efficient decision-making, and better communication with external stakeholders.

Question 36

TERMS: Taxonomy that has to conform to a specific version of XBRL

Answer 36

Acknowledged Taxonomy

Question 37

TERMS: Must conform to a specific version and to guidelines for specific taxonomy type (i.e. financial reporting)

Answer 37

Approved Taxonomy

Question 38

Name 3 tagging software often built-in to business apps:

Answer 38

Peachtree, Quickbooks and Excel

Question 39

Name 3 stand-alone tagging tools:

Answer 39

EZ-XBRL, Crossfire, UB Matrix

Question 40

What are the risks associated with using XBRL?

Answer 40

Compromised data (theft, loss, manipulation), Tagging errors, Hardware/Software Failure, Inappropriate/missing authorizations and inappropriate taxonomy selection

Question 41

Each tag in XBRL includes:

Answer 41

Taxonomy used, Element Name, Time Data, Currency Data and Number of Decimals. EX: 100000

Question 42

What do the elements of tags in XBRL include with labels?

Answer 42

Capital letters EX:“AssetsHeldSale”

Question 43

What are tags enclosed in?

Answer 43

Brackets < >

Question 44

What do XBRL tags and HTML have in common?

Answer 44

Similar “look” and feel of beginning and endings of tag

Question 45

Many XBRL taxonomies are _________-_______?

Answer 45

Country-based

Question 46

IFRS & Global Ledger taxonomies are ______-______?

Answer 46

Country-Independent

Question 47

Nearly all Tagging is _________.

Answer 47

Automated

Question 48

What is the purpose of XBRL?

Answer 48

Tool for labeling financial data, providing context for those data, enabling faster/more efficient (and universal) interpretation.

Question 49

XBRL is ____ ______, and is part of _____.

Answer 49

Open Source; XML (extensible markup)

Question 50

XBRL is software and hardware ________.

Answer 50

Independent

Question 51

What entity requires XBRL tagging for filing?

Answer 51

SEC, but not GAAP

Question 52

What is the not-for-profit consortium of over 600 organizations that build XBRL language and promote its use/adoption?

Answer 52

XBRL International (XBRL.org)

Question 53

TERMS: Any business transacted over the internet or other computer networks

Answer 53

E-Business

Question 54

What are the benefits of E-Business compared to traditional brick-and-mortar organizations?

Answer 54

Expanded marketing, reduced operating costs, streamlined operations, and faster/more efficient delivery of products/services.

Question 55

What are the drawbacks/costs of E-Business in comparison to traditional brick-and-mortar organizations?

Answer 55

Network setup cost, Consequences of technology breakdowns/service interruptions, customer distrust, and the need for different, better internal controls.

Question 56

What type of E-business includes any purchase made from a company online?

Answer 56

B2C

Question 57

What type of E-business includes sales directly to companies?

Answer 57

B2B

Question 58

What type of E-business includes IRS, NC DMV?

Answer 58

G2C

Question 59

What type of E-business includes SEC’s EDGAR, IRS?

Answer 59

G2B

Question 60

What type of E-business includes eBay and Craigslist?

Answer 60

C2C

Question 61

TERMS: Modular relational database designed to provide comprehensive, integrated information for decision making

Answer 61

ERP System

Question 62

What does ERP system stand for?

Answer 62

Enterprise Resource Planning Systems

Question 63

In an ERP system, what module captures customer info, transaction history, preferences, contacts, referrals, etc.

Answer 63

Customer Relationship Management

Question 64

In an ERP system, what module captures employee info, from basic to performance & development plans

Answer 64

HR

Question 65

In an ERP system, what module captures vendor info, transaction history

Answer 65

Supply Chain

Question 66

In an ERP system, what module captures AIS, budget/forecast, etc.

Answer 66

Financial Management

Question 67

What are the common causes of an ERP system failure?

Answer 67

Poor leadership, Poor underlying business processes , Unrealistic expectations , Bad project management, Lack of training, Mismatch between ERP system and org structure/processes, Bad data, ERP implementation seen as just an IT project, and Technical difficulties/insufficient hardware

Question 68

What are the conditions for success of an ERP system?

Answer 68

Organizational Commitment (starting at the top of org), Clear Communication (Everyone needs to understand the goals of ERP implementation), View ERP as an enterprise-wide venture (Involvement from everyone, not just technology functions), Compatible ERP System, Resolve Multisite Issues (multiple sites make implementing more complicated), and Accurate data (fix before implementation)

Question 69

Name the benefits of using an Application Service Provider with respect to E-Business.

Answer 69

Lower cost, Increased flexibility, Potential customer service improvement, Disaster recovery/continuity

Question 70

Name the risks of using an Application Service Provider with respect to E-Business.

Answer 70

Psychological factors, Service interruptions, Compromised data and Contracts for service

Question 71

What is and what do Application Service Providers do?

Answer 71

Third party vendor, Deploys, hosts, and manages access to packaged application, and is a Software-based service provided over network

Question 72

TERMS: According to Carters taxonomy; criminal is targeting the system or its data, impacting confidentiality, availability, and/or integrity

Answer 72

Target

Question 73

TERMS: According to Carters taxonomy; Uses computer to further a criminal end, i.e. to commit the crime

Answer 73

Instrumentality

Question 74

TERMS: According to Carters taxonomy;computer is not required but simplifies the criminal actions and may decrease traceability

Answer 74

Incidental

Question 75

TERMS: According to Carters taxonomy; new versions of old crimes

Answer 75

Associated

Question 76

TERMS: Risks and Threats to Info System; data diddling, theft of info

Answer 76

Fraud

Question 77

TERMS: Risks and Threats to Info System; ranges from single entry error to programmatic error

Answer 77

Error

Question 78

TERMS: Risks and Threats to Info System; lead to lost business, missed deadlines; can be accidental, willful neglect, or malicious behavior

Answer 78

Service interruption/Delays

Question 79

TERMS: Risks and Threats to Info System; adhere to privacy laws and protect sensitive data, otherwise lose trust of customers, etc.

Answer 79

Disclosure of confidential information

Question 80

TERMS: Risks and Threats to Info System; For profit or for fun

Answer 80

Intrusions

Question 81

TERMS: Risks and Threats to Info System; trade secrets, R&D, customer info

Answer 81

Information Theft

Question 82

TERMS: Risks and Threats to Info System; hard to detect and “easy” to commit; risk at every stage of processing

Answer 82

Information Manipulation

Question 83

TERMS: Risks and Threats to Info System; malware – virus, worm, trojan horse, logic bomb

Answer 83

Malicious Software

Question 84

TERMS: Risks and Threats to Info System; attack seeks to prevent proper operation of system and access by users/customers

Answer 84

Denial-of-Service

Question 85

TERMS: Risks and Threats to Info System; digital graffiti, hacktivism

Answer 85

Web site defacements

Question 86

TERMS: Risks and Threats to Info System; criminal threatens to release sensitive info, bring down site, etc. if demands are not met

Answer 86

Extortion

Question 87

TERMS: Type of computer criminal; inexperienced hacker using others’ malicious code

Answer 87

Script Kiddies

Question 88

TERMS: Type of computer criminal; anyone who invades an IS for malicious purpose

Answer 88

Hackers

Question 89

TERMS: Type of computer criminal; hackers driven by financial gain

Answer 89

Cyber-criminals

Question 90

TERMS: Type of computer criminal; spam, phishing, extortion

Answer 90

Organized Crime

Question 91

TERMS: Type of computer criminal; trade secrets, customer lists, etc.

Answer 91

Corporate Spies

Question 92

TERMS: Type of computer criminal; typically target financial systems, infrastructure, etc.

Answer 92

Terrorists

Question 93

TERMS: Type of computer criminal; IT employees often have the keys to everything…
Internal Control Issues

Answer 93

Insiders

Question 94

TERMS: Internal Control issue of protection of data against unauthorized disclosure, modification, or destruction, and protection of system itself against unauthorized use, modification, or denial of service

Answer 94

Information Security

Question 95

What 3 things are controls implemented to achieve in respect to information security?

Answer 95

Confidentiality, Data Integrity, and Availability

Question 96

Which of the 3 things controls are implemented to achieve; provide protection from unauthorized disclosure?

Answer 96

Confidentiality

Question 97

Which of the 3 things controls are implemented to achieve; free from accidental or malicious modification or destruction?

Answer 97

Data Integrity

Question 98

Which of the 3 things controls are implemented to achieve; data can be obtained in required timeframe?

Answer 98

Availability

Question 99

Terms: Type of information security; protect physical aspects of the IS from malicious or accidental damage

Answer 99

Physical Controls

Question 100

Terms: Type of information security; safeguards built into computer/telecom systems to protect electronic aspects

Answer 100

Technical Controls

Question 101

Terms: Type of information security; management constraints, operational and accountability procedures

Answer 101

Administrative Controls

Question 102

What is CoBIT?

Answer 102

Accountability framework; Control Objectives for Information and Related Technology framework