Info & Comm: Types of Info Systems and technology

Question 1

Risk Event Identification

Risk types

Answer 1

A) Strategic Risk-risk of choosing inappr. technology
B) Operating Risk-risk of doing the right things the wrong way
C) Financial Risk- financial resources lost wanted or stolen
D) Informational Risk - data integrity, incomplete transactions, or hackers

Question 2

Virus

Answer 2

piece of computer program that inserts itself into some other program

Question 3

Worm

Answer 3

Runs independently and normally propogates itself over a network, it cannot attach itself to other programs

Question 4

Trojan Horse

Answer 4

program that appears to have a useful function but contains a hidden and unintended function that presents a security risk

Question 5

Denial of Service Attack

Answer 5

one computer or group of computers bombards another computer with a flood of network traffic

Question 6

Phishing

Answer 6

sending of phony emails to try to lure people to phony websites

Question 7

Risk Assessment and Control Activities

Answer 7

1) Risk
2) Threat
3) Vulnerability
4) Safeguards & Controls

Question 8

Access Controls

Answer 8

Physical Access-Keyacrd etc
Electronic Access -Built into hardware who can get in and who can’t.
User ID’s and Passwords

Question 9

Firewall

Answer 9

Hardware or software of user identification and authentication that prevents unauthorized users from gaining access to network. Acts as a gatekeeper

Question 10

Application Firewall

Answer 10

designed to protect specific application services from attack