Module 3: L3

Question 1

A completely “secure” system example: write info on paper, read it, burn paper, and scatter the ashes. What’s the problem here?

Answer 1

This is secure but useless. Protected info must remain available to legitimate users.

Question 2

The role of preventing and recovering data leads to…(2pts)…which leads to…(2pts)

Answer 2

• Enhanced monitoring and more security controls
• Interference with work and delays of info usage

Question 3

What is the acronym CIA?

Answer 3

Confidentiality
Integrity
Availability

Question 4

Security involves adaptability. Conditions can change such as (3pts)…?

Answer 4

1. Evolving external threats
2. Changes in technology
3. Internal changes of the organization

Question 5

Security implementation has costs. What are 3x mentioned in the lecture?

Answer 5

1. Takes time
2. Requires human and financial resources
3. Little to none short term contribution to output

Question 6

Changes in user tasks…(3 words)

Answer 6

challenge security parameters

Question 7

User perception of security effectiveness is based on (4pts)…?

Answer 7

1. Worker skill level
2. General IS support
3. Degree of interference w/ work
4. Detection of organizational fraud

Question 8

What are some examples of security hindrances? (4x mentioned)

Answer 8

1. Lost pws
2. Inability to access info
3. Additional steps to perform tasks
4. System slowdowns

Question 9

What are the two MAIN types of security hindrances?

Answer 9

1. Interference with work processes
2. System slowdowns

Question 10

“Smart” use of IT applies to productivity as well as ________ ___________.

Answer 10

information security

Question 11

Security effectiveness is greater if…(2pts)?

Answer 11

1. Fraud has been detected and reported
2. More security notices are circulated

Question 12

Security hindrances are more or less likely if…(3pts)?

Answer 12

1. Less likely for more experienced workers
2. More likely if fraud detected
3. More likely if more security notices are circulated