Final

Question 1

5 FIP principles

Answer 1

Notice/Awareness
Choice/Consent
Access/Participation
Integrity/Security
Enforcement

Question 2

Digital divide

Answer 2

x

Question 3

Intellectual property, copyright and fair use

Answer 3

Intellectual property: Intangible property of any kind created by individuals or corporations

Copyright: Statutory grant protecting intellectual property from being copied for the life of the author, plus 70 years

Fair use:

Question 4

Cookies

Answer 4

Tiny files downloaded by Web site to visitor’s hard drive to help identify visitor’s browser and track visits to site

Allow Web sites to develop profiles on visitors

Question 5

Spam

Answer 5

unsolicited e-mail from businesses advertising goods and services

Question 6

Behavioral targeting

Answer 6

x

Question 7

Patent trolls

Answer 7

a “non-practicing entity” with no business activities or employees of its own
weaknesses in the patent system without adding value
license patents without producing goods, extract licensing fees from the real innovators
lawsuits associated with patent trolls led to half a trillion dollars of lost wealth to defendants from 1990 through 2010 (Bessen et al. 2011)*
During 2006-2010 the losses were $80 billion a year (Bessen et al.)
In 2010, 2,600 lawsuits were filed by patent trolls
The median defense cost per defendant is $3m for a mid-sized patent case, for large cases is $6m (American Intellectual Property Law Association)

Question 8

The Sarbanes-Oxley Act

Answer 8

Imposes responsibility on companies and their management to safeguard the accuracy and integrity of financial information that is used internally and released externally

Question 9

Malware (virus, worm, Trojan etc.) what they are and how they affect computer systems

Answer 9

Spyware
Trojan
Virus
Worm
Rootkit

Question 10

Phishing

Answer 10

They pretend to be financial institutions or companies and send spam or pop-up messages to get you to reveal your personal information.

Question 11

Identity theft

Answer 11

occurs when someone uses your personally identifying information, like your name, Social Security number, or credit card number, without your permission, to commit fraud or other crimes

9 million Americans have their identities stolen each year (FTC 2011)

Question 12

Website security - SET and SSL

Answer 12

Secure Electronic Transaction (SET) – a set of security protocols that ensures transactions are legitimate as well as secure

• Helps verify use of a credit card, for example, by sending the transaction to the credit issuer as well as the seller/supplier
• Endorsed by AmEx, MasterCard, Visa, Microsoft

Secure Sockets Layer (SSL) - creates a secure connection between a Web client and server, encrypts the information, and sends the information over the Internet

• Denoted by lock icon on browser or https:// (notice the “s”)
• Ensures secure transactions but does NOT secure legitimacy

Question 13

Denial of service attacks

Answer 13

x

Question 14

Three lines of defense

Answer 14

Authentication and authorization - a method for confirming users’ identities and the process of giving someone permission to do or have something
* Passwords
* Tokens
* Biometrics
Security policy and plan
Technology (antivirus, firewall, encryption, etc.)
* Anti-virus software – detects and removes or quarantines computer viruses
* Anti-spyware and anti-adware software
* Spam protection software – identifies and marks and/or deletes Spam
* Anti-phishing software – lets you know when phishing attempts are being made

Question 15

Web defacing

Answer 15

x

Question 16

Social engineering

Answer 16

Non-technical attack: A social attack that tricks people into revealing sensitive information or performing actions that compromise the security of a network

Social engineering: A type of non-technical attack that uses social pressures to trick computer users into compromising computer networks to which those individuals have access

Question 17

Third party seals (verisign etc.)

Answer 17

Verisign 
BBBOnline
TRUSTe
VIPPS
Google Checkout

Question 18

Public/private key encryption

Answer 18

Public key encryption (asymmetric encryption) – uses two keys: a public key for everyone and private key for only the recipient of the encrypted information

Question 19

NORA

Answer 19

Nonobvious relationship awareness

Combining data from multiple sources to find obscure hidden connections that might help identify criminals or terrorists

Question 20

Enterprise Systems

Answer 20

CRM, SCM, ERP
Sales force automation in CRM systems
RFID tags

Question 21

Metrics (conversion rate etc.)

Answer 21

x

Question 22

E-commerce business models

Answer 22

Portal (Google, Yahoo, Bing)
E-tailer (both online (Amazon) and click-and-mortar (Target.com)
Content Provider (both creators (wsj) and distributors (iTunes))
Transaction Broker (Travelocity)
Market Creator (eBay)
Service Provider (Google Apps, Dropbox)
Community Provider (Facebook, social sites)

Question 23

E-commerce revenue models

Answer 23

Sales Revenue Model
Advertising Revenue Model
Subscription Revenue Model
Freemium Revenue Model
Transaction Fee Model
Affiliate Revenue Model

Question 24

Viral marketing

Answer 24

x

Question 25

Sticky websites

Answer 25

x

Question 26

Major differences between B2B and B2C

Answer 26

B2B - Business sells/buys products to/from other businesses online
B2C - Business sells products to consumers/ or consumers buy from online businesses

Question 27

Vertical and horizontal marketplaces

Answer 27

Vertical - in a specific industry

Horizontal - across industries

Question 28

Mass customization

Answer 28

Mass production + individual customization
No increase in cost for the manufacturer
Better serves customer needs
Fewer returns

Question 29

M-commerce

Answer 29

Geolocation

Mobile payments

Question 30

Price discrimination

Answer 30

enabled by digital markets

Question 31

Affiliate programs

Answer 31

Referral of consumers to other websites through links

Question 32

Excel and Access (

Answer 32

Primary and foreign keys
Types of analysis: goal seek, conditional formatting (only when and why they are used)
ERD diagrams

Question 33

Outsourcing

Answer 33

Systems development; what’s cheaper to develop on your own, to purchase or outsource?