MIS-5

Question 1

Spyware

Answer 1

1. Software that secretly gathers information about users while they browse the Web
2. Prevented by installing antivirus or antispyware software

Question 2

Adware

Answer 2

1. Type of spyware that collects information about the user to determine which advertisements to display in the user’s Web browser
2. Prevented by installing an ad-blocking feature in the Web browser

Question 3

Phishing

Answer 3

1. Sending fraudulent e-mails that seem to come from legitimate sources
2. E-mails direct recipients to false Web sites to capture private information

Question 4

Pharming

Answer 4

1. Hijacking and altering the IP address of an official Web site
2. Users who enter the correct Web address are directed to the pharmer’s fraudulent Web site

Question 5

Baiting

Answer 5

What distinguishes it from phishing is the promise that the baiter gives to the recipient

Question 6

Quid pro quo

Answer 6

Involves a hacker requesting the exchange of critical data or login information in exchange for a service or prize

Question 7

Keystroke Loggers

Answer 7

1. Monitor and record keystrokes
2. Can be software or hardware devices
3. Used by companies to track employees’ use of e-mail and the Internet, which is legal
4. Used for malicious purposes
5. Prevented by some antivirus and antispyware programs

Question 8

Sniffing

Answer 8

Capturing and recording network traffic

Used by hackers to intercept information

Question 9

Spoofing

Answer 9

Attempting to gain access to a network by posing as an authorized user in order to find sensitive information
Also happens when an illegitimate program poses as a legitimate one

Question 10

Computer Fraud

Answer 10

Unauthorized use of computer data for personal gain

Question 11

Computer crimes include:

Answer 11

1. Denial-of-service attacks
2. Identity theft and software piracy
3. Distributing child pornography
4. E-mail spamming
5. Writing or spreading malicious codes
6. Stealing files for industrial espionage
7. Changing computer records illegally
8. Virus hoaxes
9. Sabotage
10. Holding a firm’s critical data for ransom
    Example: Ransomware

Question 12

Confidentiality from the CIA Triangle

Answer 12

System must prevent disclosing information to anyone who is not authorized to access it

Question 13

Integrity from the CIA Triangle

Answer 13

Accuracy of information resources within an organization

Question 14

Availability from the CIA Triangle

Answer 14

Ensuring that computers and networks are operational, and authorized users can access the information they need
Quick recovery in the event of a system failure or disaster

Question 15

McCumber Cube

Answer 15

Framework for evaluating information security
Represented as a three-dimensional cube
Defines nine characteristics of information security
Includes different states in which information can exist in a system
Transaction, storage, and processing

Question 16

Levels of Network Security

Answer 16

Level 1 - Front-end servers
Level 2 - Back-end systems
Level 3 - Corporate network

Question 17

Level 1 - Front-end servers

Answer 17

Available to both internal and external users and must be protected against unauthorized access

Question 18

Level 2 - Back-end systems

Answer 18

Must be protected to ensure confidentiality, accuracy, and integrity of data

Question 19

Level 3 - Corporate network

Answer 19

Must be protected against intrusion, denial-of-service attacks, and unauthorized access

Question 20

Fault-tolerant systems

Answer 20

Ensure availability in the event of a system failure by using a combination of hardware and software

Question 21

Commonly used methods of Fault-tolerant systems

Answer 21

Uninterruptible power supply (UPS)
Redundant array of independent disks (RAID)
Mirror disks

Question 22

Intentional Threat: Virus

Answer 22

Consists of self-propagating program code that is triggered by a specified time or event:

a. Attaches itself to other files, and the cycle continues when the program or operating system containing the virus is used
b. Transmitted through a network, e-mail attachments, or message boards
c. Prevented by installing and updating an antivirus program

Question 23

Intentional Threat: Worms

Answer 23

1. Independent programs that can spread themselves without having to be attached to a host program
2. Replicate into a full-blown version that could end up eating computing resources

Examples
Code Red, Melissa, and Sasser

Question 24

Trojan programs

Answer 24

1. Contain code intended to disrupt a computer, network, or Web site
2. Hidden inside a popular program

Question 25

Logic bombs

Answer 25

1. Type of Trojan program used to release a virus, worm, or other destructive code 2. Triggered at a certain time or by a specific event

Question 26

Backdoor

Answer 26

Programming routine built into a system by its designer | Enables the designer to bypass security and sneak back into the system later to access programs or files

Question 27

Blended threat

Answer 27

Combines the characteristics of computer viruses, worms, and other malicious codes with vulnerabilities on public and private networks

Question 28

Intentional Threat: Denial-of-Service (DoS) Attacks

Answer 28

Flood a network or server with service requests to prevent legitimate users’ access to the system

Question 29

Distributed denial-of-service (DDoS) attack

Answer 29

Thousands of computers work together to bombard a Web site with thousands of requests in a short period, causing it to grind to a halt

Question 30

Botnet - Network of computers and IoT devices:

Answer 30

Infected with malicious software | Controlled as a group without owners’ knowledge

Question 31

TDoS (telephony denial of service) attacks

Answer 31

Use high volumes of automated calls to tie up a target phone system, halting incoming and outgoing calls

Question 32

Intentional Threats: Social Engineering

Answer 32

1. Using "people skills" to trick others into revealing private information 2. Commonly used social-engineering techniques: Dumpster diving Shoulder surfing Tailgating Scareware Pretexting

Question 33

Constituents of a Comprehensive Security System:

Answer 33

1. Biometric and non-biometric security measures 2. Physical security measures 3. Access controls 4. VPNs 5. Data encryption 6. E-commerce transaction security measures 7. Computer Emergency Response Team (CERT)

Question 34

Biometric Security Measures

Answer 34

Use a physiological element unique to a person that cannot be stolen, lost, copied, or passed on to others

Question 35

Nonbiometric Security Measure: Callback Modems

Answer 35

1. Verify whether a user’s access is valid a. Done by logging the user off and then calling the user back at a predetermined number 2. Useful in firms with many employees who work off-site and need to connect to the network from remote locations

Question 36

Nonbiometric Security Measure: Firewall

Answer 36

1. Combinations of hardware and software that acts as a filter between a private network and external networks 2. Network administrator defines rules for access, and all other data transmissions are blocked

Question 37

Types of Firewalls

Answer 37

Packet-filtering firewalls, application-filtering firewalls, and proxy servers

Question 38

Nonbiometric Security Measure: Intrusion Detection System (IDS)

Answer 38

1. Protects against external and internal access 2. Placed in front of a firewall 3. Identifies attack signatures, traces patterns, and generates alarms for the network administrator 4. Causes routers to terminate connections with suspicious sources 5. Prevents DoS attacks

Question 39

Physical Security Measures

Answer 39

1. Control access to computers and networks 2. Include devices for securing computers and peripherals from theft a. Cable shielding and room shielding b. Corner bolts and steel encasements c. Electronic trackers, identification (ID) badges, and proximity-release door openers

Question 40

Access Controls

Answer 40

1. Designed to protect systems from unauthorized access in order to preserve data integrity 2. Types a. Terminal resource security: Erases the screen and signs the user off automatically after a specified length of inactivity b. Passwords: Combination of numbers, characters, and symbols that is entered to allow access to a system

Question 41

Virtual Private Network (VPN)

Answer 41

1. Provides a secure tunnel through the Internet for transmitting messages and data via a private network 2. Used so that remote users have a secure connection to the organization’s network 3. Used to provide security for extranets 4. Data is encrypted before it is sent with a protocol, such as: a. Layer Two Tunneling Protocol (L2TP) b. Internet Protocol Security (IPSec) 5. Set-up costs are low

Question 42

Disadvantages of VPNs

Answer 42

1. Slow transmission speed | 2. Lack of standardization

Question 43

Data Encryption

Answer 43

Transforms data, called plaintext or cleartext, into a scrambled form called ciphertext that cannot be read by others. The Receiver unscrambles data using a decryption key

Question 44

Rules for Encryption

Answer 44

1. Known as the encryption algorithm | 2. Determine how simple or complex the transformation process should be

Question 45

Commonly used Encryption Protocols

Answer 45

1. Secure Sockets Layer (SSL) Manages transmission security on the Internet 2. Transport Layer Security (TLS) Cryptographic protocol that ensures data security and integrity over public networks, such as the Internet

Question 46

Asymmetric Encryption

Answer 46

Uses two keys a. Public key known to everyone - Encrypted message can be decrypted only with the same algorithm used by the public key and requires the recipient’s private key b. Private or secret key known only to the recipient

Question 47

Drawback of Asymmetric Encryption

Answer 47

Slow and requires a large amount of processing power

Question 48

Symmetric (Secret Key) Encryption

Answer 48

Same key is used to encrypt and decrypt the message - Sender and receiver must agree on the key and keep it secret - Can be used to create digital signatures

Question 49

Drawback of Symmetric (Secret Key) Encryption

Answer 49

Sharing the key over the Internet is difficult

Question 50

E-Commerce Transaction Security Measures are concerned with the issues such as:

Answer 50

``` Confidentiality Authentication Integrity Nonrepudiation of origin Nonrepudiation of receipt ```

Question 51

Computer Emergency Response Team (CERT)

Answer 51

1, Developed by the Defense Advanced Research Projects Agency 2. Focuses on security breaches and DoS attacks 3. Offers guidelines on handling and preventing attacks 4. Conducts public awareness campaigns and researches Internet security vulnerabilities

Question 52

Before establishing a security program, organizations should:

Answer 52

1. Understand the principles of the Sarbanes-Oxley Act of 2002 2. Conduct a basic risk analysis, which makes use of financial and budgeting techniques a. Information obtained helps organizations weigh the cost of a security system

Question 53

Guidelines of a Comprehensive Security Plan:

Answer 53

1. Set up a security committee 2. Post security policy in a visible place 3. Raise employee awareness 4. Use strong passwords 5. Install software patches and updates 6. Revoke terminated employees’ passwords and ID badges immediately 7. Keep sensitive data and information locked in secured location 8. Exit programs and systems promptly Limit computer access to authorized personnel only 9. Compare communication logs with communication billings periodically 10. Install antivirus programs, firewalls, and intrusion detection systems 11. Use only licensed software 12. Ensure fire protection systems and alarms are up to date, and test them regularly 13. Check environmental factors a. Temperature and humidity levels 14. Use physical security measures 15. Corner bolts on workstations, ID badges, and door locks

Question 54

Business Continuity Planning

Answer 54

Outlines procedures for keeping a firm operational in the event of a natural disaster or network attack

Question 55

Disaster recovery plan

Answer 55

Lists the tasks that must be performed to restore damaged data and equipment and steps to prepare for disaster

Question 56

Steps to Follow When Disaster Strikes

Answer 56

1. Put together a management crisis team 2. Contact the insurance company 3. Restore phone communication systems 4. Notify all affected people that recovery is underway 5. Set up a help desk to assist affected people 6. Document all actions taken

Question 57

Risks associated with information technologies can be minimized by:

Answer 57

Installing operating system updates regularly Using antivirus and antispyware software Using e-mail security features

Question 58

Comprehensive security system protects:

Answer 58

an organization’s resources, including information, computer, and network equipment

Question 59

Network security threats can be categorized by whether they are:

Answer 59

Unintential or Intentional

Question 60

Unintentional Network Security Threats:

Answer 60

Natural disasters, accidental deletion of data, and structural failures

Question 61

Intentional Network Security Threats:

Answer 61

Hacker attacks and attacks by disgruntled employees