Information Technology Flashcards

Question 1

Q

What is a central processing unit (CPU)?

Answer

A

The main component of computer hardware – includes (a) primary storage, (b) a control unit, and (c) an arithmetic/logic unit

Question 2

Q

What is the primary storage of a CPU?

Answer

A

The part which holds the program, data, and results during processing (and thus involves only temporary storage)

Divided between RAM (random-access memory) and ROM (read-only memory)

Question 3

Q

What is the control unit of a CPU?

Answer

A

The part which directs the computer’s operations

Question 4

Q

What is the arithmetic/logic unit of a CPU?

Answer

A

The part with special capabilities to do arithmetic calculations and logical operations

Question 5

Q

As regards computers, what is a bus?

Answer

A

A communication system for transferring data inside a computer or between computers

Question 6

Q

What is magnetic tape?

Answer

A

Thin magnetic tape on which data can be imprinted as magnetized dots (e.g. magnetic strips on credit cards)

Question 7

Q

What is a redundant array of independent disks (RAID)?

Answer

A

A collection of disks that all have the same data written on it – good for backup purposes, but often unnecessary

Question 8

Q

What is the difference between randomly accessible data and sequentially accessible data?

Answer

A

Randomly = records can be directly accessed

Sequentially = records can be accessed only by reading through previous info

Question 9

Q

How does software differ from hardware?

Answer

A

Hardware refers to the required physical devices, while software refers to the internal programming and data needed to run the technology

Question 10

Q

What are the five generations of programming languages?

Answer

A

(1) machine language – simple binary
(2) assembly language – includes short commands for repetitive tasks
(3) procedural language – closer to human language; source code in procedural language can be translated into machine-readable object code
(4) fourth-generation language (4GL) – many routine procedures are preprogrammed
(5) object-oriented programming (OOP) – has a modular approach; focused on the objective rather than the procedure

(3)-(5) are machine-independent

Question 11

Q

What are some examples of procedural language?

Answer

A

(i) FORTRAN – Formula Translation
(ii) COBOL – Common Business-Oriented Language
(iii) BASIC – Beginners All-Purpose Symbolic Instruction Code

Question 12

Q

What are some examples of object-oriented programming (OOP)?

Answer

A

(i) C++

(ii) Java

Question 13

Q

What is a graphical user interface (GUI)?

Answer

A

A display where users can interact with icons, scroll bars, etc. rather than just line-by-line commands

Question 14

Q

What is a patch?

Answer

A

An additional part added to a program, usually to update it and/or correct a problem

Question 15

Q

What is an operating system (OS)?

Answer

A

Software that coordinates various computer functions and applications/programs

Also provides a graphical user interface (GUI)

Question 16

Q

What are some examples of operating systems?

Answer

A

(1) Windows XP
(2) Unix
(3) Linux – a modified version of Unix

Question 17

Q

What is a job control language (JCL)?

Answer

A

A language used by an OS to do its work

Question 18

Q

What are multiprocessing and multiprogramming?

Answer

A

Multiprocessing – uses more than one CPU to run more than one program simultaneously

Multiprogramming – a program processes until it needs an input or delivers an output, at which point the OS switches to another program instantly

Question 19

Q

What is virtual storage?

Answer

A

Occurs when an OS subdivides programs into “pages” and only uses the needed pages to execute the instructions it’s trying to carry out – thus lowers processing costs

Question 20

Q

What are application programs?

Answer

A

Programs designed to process a particular application

Question 21

Q

As regards application programs, what is a “pass” or a “run”?

Answer

A

A full round done by the program – input, processing, and output

Question 22

Q

What are collaborative computing applications?

Answer

A

Any applications where multiple people have access and where the changes made by different people can be tracked to them

Question 23

Q

What are management information systems (MIS)?

Answer

A

Systems used in a company to provide management with the data it needs

Question 24

Q

What is enterprise resource planning (ERP)?

Answer

A

A software arrangement that addresses the enterprise’s needs (including financial reporting, inventory management, etc.), seeking to meet the organizational goals by tightly integrating all functions of an enterprise

Question 25

Q

What is a database management system (DBMS)?

Answer

A

Any set of programs which manages a database, whether by creating it, maintaining it, updating it, allowing access to it, etc.

Question 26

Q

What is a relational database model?

Answer

A

A model that seeks to relate common data (e.g. customer info) in one integrated database to meet the needs of different users accessing the data

Question 27

Q

What are utility programs and library programs?

Answer

A

(1) utility programs = programs which perform standard/routine functions, such as merging or sorting
(2) library programs = programs often utilized by other programs, being stored and then “called up” when needed (e.g. random number generation)

Can also be called utility routines or library routines

Question 28

Q

What is a network?

Answer

A

An arrangement where multiple computers and multiple users have access to common hardware, software, or data

Question 29

Q

What are an internet, an intranet, and an extranet?

Answer

A

(1) internet = a network of networks (with the internet being a public network of networks)
(2) intranet = a network closed off, usually just to employees
(3) extranet = an internet that is not entirely closed off, but password-protected

Question 30

Q

What are different kinds of networks?

Answer

A

(1) local area network (LAN) = an intranet within a relatively small physical area
(2) wide area network (WAN) = a network across a very large areas, e.g. a city or country
(3) value-added network (VAN) = a network which provides services beyond Internet capabilities (usually EDI-related)
(4) virtual private network (VPN) = a network where it appears that a remote user accesses a private network, even though it is through public lines

Question 31

Q

What is a concentrator?

Answer

A

An apparatus which concentrates several communication channels into one

Question 32

Q

What is a multiplexer?

Answer

A

An apparatus that, for communication purpsoes, converts multiple low-speed transmissions into one high-speed transmission and then back

Question 33

Q

What is a proxy server?

Answer

A

A server acting as an intermediary for requests from clients involving info from other servers

Question 34

Q

What is a router?

Answer

A

An apparatus that transfers packets of data outward using the most efficient route possible

Question 35

Q

What is a firewall?

Answer

A

Software separating segments with the aim of prohibiting anyone from gaining unwarranted access

Question 36

Q

What is a gateway?

Answer

A

Any software or hardware linking computer networks together

Question 37

Q

What is a web crawler?

Answer

A

A program that searches the internet to find files for the user

Question 38

Q

What is topology?

Answer

A

A network’s physical arrangement

Different kinds are (i) bus, (ii) ring, (iii) tree, and (iv) star arrangements

Question 39

Q

As regards topology, what is a bus arrangement?

Answer

A

Resembles the arrangement of people on a bus: there is one central line (the “bus aisle”) to which several computers are connected

Easy to add more computers with this arrangement, but communication can be cut off by a failed device in the middle

Question 40

Q

As regards topology, what is a ring arrangement?

Answer

A

Each computer is connected to one on each side, such that all effectively form a circle

Easy to add more computers with this arrangement, and a failed device does not cut off communication (failed devices on each side would), though communication can be slower

Question 41

Q

As regards topology, what is a tree arrangement?

Answer

A

A hierarchical arrangement where each device can have a number of other devices connected to it as branches

Question 42

Q

As regards topology, what is a star arrangement?

Answer

A

Each computer is connected to a central device

Generally the most expensive topology

Question 43

Q

What are data transmission protocols?

Answer

A

Sets of procedures/rules governing the transferal of data among devices

Question 44

Q

What is the difference between serial and parallel data transmission?

Answer

A

Serial = each bit (of a byte) are transmitted singularly

Parallel = all bits are transmitted simultaneously on parallel lines, one bit per line

Parallel is practicable only with short network distances

Question 45

Q

What is the difference between circuit switching and packet switching?

Answer

A

Switching mechanisms route bits to take different paths

circuit switching sends a message in its entirety through oen path
packet switching sends messages in packets, sometimes through separate paths

Question 46

Q

What is a common example of packet switching?

Answer

A

TCP/IP – transmission control protocol/internal protocol

Provides protocols for internet packing switching

Question 47

Q

What is bandwidth?

Answer

A

The degree to which a channel can handle data transmission

Narrow bandwidth signifies a low rate of transmission; broad bandwidth a high rate

Question 48

Q

What is client-server architecture?

Answer

A

An arrangement where computers on a network are either clients or servers

clients are workstations or PCs
servers are powerful machines which can manage networks, disk drives, etc.

Question 49

Q

As regards client-server architecture, what is the difference between a file server and a database server?

Answer

A

File = the server primarily stores files and processes data; used as the only server in a two-tier client-server architecture arrangement

Database = the server primarily stores software for database management; does some processing

Question 50

Q

What is a three-tier (or more) client-server architecture?

Answer

A

Any arrangement where two or more servers are needed

The other ones can be print servers, web servers, application servers, fax servers, and so on

Question 51

Q

What are some different network languages?

Answer

A

(1) hypertext markup language (HTML) – used for internet display
(2) hypertext transfer protocol (HTTP) – protocols governing the coding, transferal, and viewing of data
(3) extensible markup language (XML) – also used for internet display, but further identifies the nature of the info displayed (e.g. phone #s)
(4) extensible business reporting language (XBRL) – required by the SEC, helpful for reading financial statements

Question 52

Q

What is an internet protocol (IP) number?

Answer

A

A specific number used to identify a particular computer within a network

Question 53

Q

What does URL stand for?

Answer

A

Uniform resource locator

Question 54

Q

What are different levels of data?

Answer

A

(1) bit – binary digit, smallest unit of data
(2) byte – group of bits
(3) character – group of bytes
(4) field – group of related characters (e.g. a name)
(5) record – group of related fields (e.g. customer record with name, address, phone #)
(6) file – group of related records

Question 55

Q

What is the difference between a master file and a transaction/detail file?

Answer

A

Master = data is generally permanent

Transaction/detail = data is more current and temporary, used for updating a master file

Question 56

Q

What are the steps involved in updating a master file?

Answer

A

(i) records from both the master file and the transaction file are read into the CPU
(ii) master file records are updated in the CPU
(iii) updated records are written onto an output reel to create a new updated master file

Thus at the end, there are three files: a master file, a transaction file, and an updated master file

Question 57

Q

What is parallel processing?

Answer

A

Running a new system-to-be-implemented at the same as the old system, comparing their results

This makes the conversion smoother (providing a stepping stone) and can avoid disaster if the new system crashes

Also called parallel operating

Question 58

Q

What is volume testing?

Answer

A

Testing the ability of a new system to handle various volumes of data

Question 59

Q

What are two different transaction processing models?

Answer

A

Batch processing and online processing

Question 60

Q

What is batch processing?

Answer

A

Accumulating transactions into groups that can then be processed all at once, as one batch, rather than each being processed individually as they arose

Question 61

Q

What is a disadvantage of batch processing?

Answer

A

Since transactions are not processed immediately, errors will not be detected as quickly

Question 62

Q

What is online processing?

Answer

A

Immediately processing transactions online as they occur

Question 63

Q

What is an OLRT system?

Answer

A

An online, real-time system – it processes data quickly enough to interact with and receive responses for other data

E.g. for airline reservations, a customer’s data can be inputted, and then the available flights are returned, and then the customer can select the flight

Question 64

Q

What is an integrated system?

Answer

A

A system where a transaction affects all the relevant files at once, rather than needing separate actions

E.g. a sale can update revenues, accounts receivable, and inventory at once

Answer 65

A

(1) block time = renting the use of another entity’s computer
(2) time-sharing = having equal access with other users to one system
(3) service bureau = an outside entity which provides data service at a cost

Answer 66

A

(1) Segregating functions of users and the IT department
(2) Barring IT people from making or authorizing transactions
(3) Segregating duties within the IT department

Answer 67

A

(1) Control group
(2) Operators
(3) Programmers
(4) Analysts
(5) Librarians

Answer 68

A

It oversees internal control

Answer 69

A

They convert data into a machine-readable form

Answer 70

A

They write and debug programs

Applications programmers = deal with application programs
Systems programmers = deal with software that runs the hardware

Answer 71

A

They design the overall system, mapping it out with a flowchart

Answer 72

A

They track the access, use, and storage of programs or other files, including backups

Answer 73

A

(i) accountant or auditor – for understanding business processes and safety, e.g. fraud prevention
(ii) graphics designer
(iii) marketer
(iv) usability specialist
(v) webmaster – main programmer
(vi) writer

Answer 74

A

Objectives developed to help fulfill Section 404 of SOX, which requires their oversight of the company’s internal controls

COBIT serves as a generally accepted standard for IT to provide security and control, with three main objectives:

(i) ensuring that data systems help fulfill the company’s goals
(ii) optimizing investments in IT
(iii) managing risks and opportunities related to IT

Answer 75

A

Control procedures for IT systems often do not leave documentary evidence behind

Answer 76

A

IT systems are more difficult to change than manual systems

Answer 77

A

(i) more difficult to alter
(ii) more credible in its source (direct mailing rather than through electronic system)
(iii) often includes approvals in the documentation
(iv) easier to use

Answer 78

A

can perform large and complex calculations
increases how timely, available, and accurate info is
allows further analysis
allows further monitoring
can have stricter controls

Answer 79

A

errors can be systematic
unauthorized access can give the user great power
data can be lost
programs can be neglected/not updated

Answer 80

A

(i) sales
(ii) purchasing
(iii) payroll
(iv) general ledger

Answer 81

A

Taking large amounts of data and acquiring new info (specifically, patterns or trends) from it

Good for checking for fraud, e.g. checking employee addresses to vendor addresses, vendor records with P.O. box addresses, etc.

Answer 82

A

A set of data characteristics which would signify a higher chance of fraud, given the entity’s internal controls

Answer 83

A

Electronic Data Interchange

Business conducted electronically between customers and vendors

Answer 84

A

A medium or environment where a customer is not in contact with a specific representative of the company

Websites are connectionless environments, since many people can simultaneously utilize them

Answer 85

A

Updating and generating financial statements becomes much simpler, faster, and more accurate

Also can use data mining to find relevant financial info for management, rather than having them read the entire statements

Answer 86

A

A special report created as the circumstances arise – i.e. not one ordinarily generated by IT

Answer 87

A

Hackers = people who intentionally intrude into IT systems to violate laws, obtain information, etc.
-sometimes this term refers to general tech enthusiasts, in which case “crackers” (criminal hackers) would refer to the malicious types

Answer 88

A

(1) demon dialers = rapidly dial through phone numbers to find modems and then use usernames and passwords to break into the system
(2) port scanners = scan a network and its devices to find services that are available and unsecured
(3) scripts = search through machines to find accounts on the machine and whether password attempts to access the machine are limited
(4) sniffers = identify and report all usernames and passwords it can find
(5) Trojan horses = apparently good programs which operate unexpectedly (and usually harmfully) if a user permits the program
(6) viruses = self-replicating programs which affix themselves to other programs and cause harm

Answer 89

A

They provide assurance that data hasn’t been altered – thus they can establish the legitimacy of a file, but not other things (like privacy)

Answer 90

A

Coding data so it can’t be read by those who aren’t authorized to read it

Decryption = changing encrypted data to a readable format

Answer 91

A

The entire set of operations done on data to encrypt, and done in reverse on encrypted data to decrypt it

Often includes both an original set of random variables + a set of algorithms acting on the data

Answer 92

A

The same key (a “private key”) is used for encryption and decryption

Not useful for parties who send a few messages to a large number of correspondents, since each message would require a separate private key

Answer 93

A

Uses a public key to encrypt data and a private key to decrypt it

Both the public key and the private key are particular to the recipient, and the private key is mathematically related to the public key though not deducible from it, so as long as public keys are truly publicly available, parties can transfer messages to others without needing to agree in advance on a shared private key

Answer 94

A

(1) preventive
(2) detective
(3) compliance
(4) application
(5) general

Answer 95

A

(i) backup data

(ii) additional hardware off-site

Answer 96

A

(1) hot sites = mostly ready for continued operations
(2) cold sites = mostly unready for continued operations

There are also degrees of “warmth” between the two

Answer 97

A

(i) procedures for how parties will communicate with each other
(ii) testing the plan under different hypothetical scenarios
(3) temporary locations and procedures for continuing operations, e.g. working from home

Answer 98

A

It provides all sorts of info concerning the system’s purpose, input and output, users, controls, etc., which can be very useful to the auditor

Answer 99

A

(1) problem definition – gaining a general understanding of the reason a system was implemented
(2) systems – how to trace accounting info from input to output
(3) program – a summary of how a program works: its flowchart, controls, instructions, special features, etc.

Answer 100

A

(4) operations – provided by the computer operator on how to run/administer the system
(5) user – how to use the system (e.g. required input and expected output)
(6) operator – documentation for the jobs done on the computer by the operator

Answer 101

A

(1) segregating functions of users and the IT department
(2) barring IT people from making or authorizing transactions
(3) segregating duties within the IT department

Answer 102

A

users should be involved in the procedures for system design and the choice of software
systems testing should involve both users and IT people
there should be controls barring unauthorized changes
mgmt should require documentation for choices made regarding the system

Answer 103

A

A way to test hardware for malfunctions

Odd parity = characters are represented by some odd number of magnetized dots
Even parity = characters are represented by some even number

A parity bit tests for whether a character has the wrong number (e.g. due to dust)

Answer 104

A

Signal is sent to activate a device, which sends a signal back, and the computer “checks” this “echo”

Answer 105

A

The computer checks the hardware equipment

Answer 106

A

Separates files or programs when they are shared in a common place (e.g. in time-sharing)

Answer 107

A

(1) header label = at beginning of file
- contains name, ID #, tape reel #
(2) trailer label = at end of file
- contains # of records in file, end-of-file code

Answer 108

A

A label that is attached to some secondary storage device rather than inside the file, readable by humans rather than machines

Answer 109

A

A plastic ring placed around magnetic tape to avoid accidentally erasing information through physical writing or marking

Answer 110

A

(1) duplicate files
(2) disk reconstruction plan
(3) grandfather-father-son retention

Answer 111

A

Periodically saves a disk file, so that the file can be reconstructed at any given point in time

Answer 112

A

When a master file has a day’s transactions processed against it, the new master file will be the father and the old one the grandfather. When the father master file has the next day’s transactions processed against it, the new file will be the son.

The terms “grandfather,” “father,” and “son” are relative, referring to how far back in the chain older files are retained. For instance, when the son master file (mentioned above) has a new day’s transactions processed against it, the new master file is effectively the son, the old son file is the father, the old father is the grandfather, and the old grandfather is erased. The important point is that two older files are retained for backup purposes at any given time – the grandfather and father are the two backups for the son.

Answer 113

A

(1) temperature, humidity, dust, and other factors are not problematic/extreme
(2) the environment is prepared for physical disaster (e.g. basement flooding)
(3) other facilities are ready in case of disaster

Answer 114

A

A weakness in internal controls – since they are usually not in isolated areas, and since they can more easily be modified (including at home)

Answer 115

A

(1) transaction entries
(2) file maintenance
(3) inquiries
(4) error corrections

Answer 116

A

A type of internal control meant to double-check data inputted into the system

Can be financial totals (e.g. total $ in A/Rs), hash totals (e.g. sum of account #s), or record/document counts (# of transactions processed)

Answer 117

A

Checks performed by a computer to test data being inputted

Answer 118

A

An edit test to see whether a value is not greater than or lesser than certain amounts

Also called a reasonableness test

Answer 119

A

An edit test to see whether an input has a proper size and composition (e.g. if an input ought to always have 7 numbers)

Also called a valid field test

Answer 120

A

An edit test to ensure that a wrong number is not used (e.g. if a company has four stores, the entry should not be greater than 4)

Also called a valid number test

Answer 121

A

An edit test that ensures data is inputted in the right order

Answer 122

A

An edit test to see whether all fields contain data

Answer 123

A

An edit test that sees whether an inputted transaction is the right kind for the file (e.g. for A/R, it might be that all inputted transactions are either debits or credits to A/R)

Answer 124

A

An edit test that sees whether certain data, when combined, is reasonable (e.g. selling a large quantity of washers and dryers to a single customer – this might show that the wrong quantity was entered)

Answer 125

A

An edit test where a digit is added to some number (e.g. an order ID number) based off the number itself, and then checked for accuracy later

E.g. there might be a formula to add the sum of the 2nd and 5th digits of an order ID, so an order ID of 41853 would be changed to 418534, since 1+3=4. This can help ensure that other data is inputted correctly.

Answer 126

A

An edit test that checks whether a sign (i.e. positive or negative) is accurate for a record

Answer 127

A

A record of transactions that aren’t processed due to some error – exists to ensure that transactions skipped over (due to error) will later be corrected

Also called an error listing

Answer 128

A

(1) Reconciling control totals with inputs
(2) Prevention of processing the wrong files
(3) Limit tests built into programs

Answer 129

A

(1) Reconciling output totals with input totals
(2) Comparing scanned outputs to original documents
(3) Distributing outputs only to authorized users

Answer 130

A

between data entry and processing

- between IT and transaction authorization for users

Answer 131

A

Obtain the original software from the manufacturer and see what changes have been made

Answer 132

A

Systems with a main/central computer system and several remote computer sites

Answer 133

A

(1) transmission
(2) error correction
(3) audit trail
(4) master file changes
(5) output
(6) security

Brainscape's Knowledge GenomeTM

Information Technology Flashcards

Brainscape's Knowledge Genome^TM