Test 2

Question 1

Describe what is meant by an enterprise architecture

Answer 1

Specifies the connections between the IT systems of an organisation - applications, data and infrastructure

Question 2

What is EA used for?

Answer 2

Ensure technology investment is aligned with business goals; ensure technology environment is integrated, secure, robust and flexible; help prioritise IT initiatives; help procure value-for-money and reusable solutions; avoid problems associated with reactive IT decisions

Question 3

What are the average life spans of a business strategy vs IT infrastructure?

Answer 3

BS - 12 months or less, IT infrastructure = 5-7 years, often more than 10

Question 4

Describe the EA corporate view

Answer 4

Group-wide rather than divisional view of IT investment

Question 5

Describe the EA Long view

Answer 5

Long-term view of investment in IT, rather than implement short-term point solutions

Question 6

Describe the EA end-to-end

Answer 6

Includes all elements of technology in the design (applications, data, infrastructure, connections)

Question 7

Describe the EA standards based

Answer 7

Standards based components and common products/services where possible

Question 8

What are the benefits of a business with EA

Answer 8

Reduced cost (standard components < customised solutions); faster, increased flexibility and time to market; better availability, security, performance and reliability; connected systems sharing functions & data

Question 9

Whats are the cons of no EA

Answer 9

Expensive, point solutions; Isolated data; hard to connect internally and externally; difficult to maintain

Question 10

Architecture principles: business focused

Answer 10

Align the architecture with business needs and make it comprehensible

Question 11

Architecture principles: independent

Answer 11

Make the architecture independent of the organisational structure

Question 12

Architecture principles: Standards based

Answer 12

Use industry based, web - enabled standard components

Question 13

Architecture principles: State of the market

Answer 13

Use proven solutions as opposed to leading edge solutions

Question 14

Architecture principles: Robust, reliable and supported

Answer 14

Adopt solutions with a well-defined owner, product map and maintenance commitment (limit use of free-ware and open source)

Question 15

Architecture principles: Flexible

Answer 15

Allows business to accommodate change

Question 16

Architecture principles: Reuse technology

Answer 16

Exploit value of existing IT investment where possible

Question 17

Architecture principles: buy service first

Answer 17

Select ‘on-demand’ services (SaaS) as first choice, then off-the-shelf (COTS) products; custom solutions are last resort

Question 18

List the limitations of IT systems and networks

Answer 18

Costly, unreliable (many elements - difficult to fix when they fails), most are inflexible and slow, limited connectivity to external parties, some systems are legacy, poor quality data, data can be replicated (different “version of the truth” in different systems), many systems/data sources so difficult to ensure security, unstructured - IT for a while was unprioritised, reactive - prone to responding to requests as opposed to planning long term, under-resourced (manpower), limited IT skills wrt. supporting future business requirements

Question 19

What is meant by migration scenario

Answer 19

Planning to guide the business to the ‘target’ environment (basis for planning short term and medium term investment) - normally over a 5 year period. Complements normal business and IT planning cycles

Question 20

List the migration principles

Answer 20

Evolutionary approach - gradual replacement of technology; business driven prioritisation - scale and timing determined by business (thus each investment justified by its own business case), IT infrastructure investment; shared components introduced; migration towards standard environment - moves the environment towards use of industry standards

Question 21

Why use a TA?

Answer 21

Helps the designer make informed decisions about solutions (understand how software and hardware components fit together, determine which application component run on which hardware platform, assess what standards are appropriate, determine where cost trade offs can be made, deploy adequate control points and interfaces, identify where systems integration is required)

Question 22

List some TA components

Answer 22

Software (data storage, data access logic, application logic, presentation logic), hardware (clients eg computers, tablets, phones etc, servers eg mainframes, networks eg LAN, WAN)

Question 23

What is client based architecture?

Answer 23

Client performs most of the processing activity, server stores data

Question 24

What is server based architecture?

Answer 24

Server performs all four application functions (DS, DA, AL, PL), client captures keystrokes

Question 25

Pros/cons of client based

Answer 25

Simple to develop, but quickly overloaded

Question 26

Describe client server architecture

Answer 26

Balanced processing between client/server. Highly scalable at incremental cost. Application must be written for both client and server. Thin clients do only PL. Thick clients do AL and PL

Question 27

What is a 2 tier CSA?

Answer 27

One server for DS and DA, client does AL and PL

Question 28

What is a 3 tier CSA?

Answer 28

DS and AL on one server, AL on another, client does PL

Question 29

What is n tier CSA?

Answer 29

AL split between 2 servers, DL on another

Question 30

Why use n tier CSA?

Answer 30

(Common in e-commerce applications) Better load balancing, more scalable than 2 or 3 tier systems. Places higher demands on the network

Question 31

What is a service?

Answer 31

Discrete unit of functionality that can be accessed remotely and acted upon, updated independently

Question 32

Service oriented architecture

Answer 32

Style of software design where services are provided by application components over a network

Question 33

Infrastructure as a service IaaS

Answer 33

Virtualized computing resources (hardware, software, servers, storage) over the internet

Question 34

Platform as a service PaaS

Answer 34

Resources and tools over the internet allowing customers to develop, run and manage applications

Question 35

SaaS

Answer 35

Software applications over the internet

Question 36

Business as a service BaaS

Answer 36

Complete business processes over the internet

Question 37

What is involved in infrastructure design?

Answer 37

Components - network, hardware, OS, storage, resilience (redundancy, business continuity, disaster recovery), security

Question 38

What is involved in network design?

Answer 38

Network design contains major components (routers, switches, nodes, geographical routes, firewalls etc). Purpose is to illustrate how system's software components will fit together

Question 39

What is involved in storage design?

Answer 39

Cables, host bus adapters, and switches. Includes storage devices - purpose is to provide fast, efficient, secure and resilient shared storage

Question 40

What are the three phases of implementation?

Answer 40

Construct, install, support

Question 41

What does the construction phase of implementation entail?

Answer 41

Development of all parts of the system: software, hardware, network configuration, documentation, procedures

Question 42

What is usually the cause of project failure?

Answer 42

Poor analysis, design, testing

Question 43

What is the most important activity in Construction?

Answer 43

Project management

Question 44

What does this Project management entail?

Answer 44

Plan activities and resources, plan and manage the schedule, plan and manage budget, track Actions, Risks, Issues (ARI), report on progress, manage people

Question 45

What is the purpose of testing?

Answer 45

Uncover as many errors as feasible (differences between what the system does and what it should do. Not about proving that the system is error free)

Question 46

What does the test plan include?

Answer 46

Tests to be conducted and expected results of tests

Question 47

What types of testing are there?

Answer 47

Unit, integration, system and user acceptance tests

Question 48

Describe each type of testing

Answer 48

Unit - focuses on single component or class. Integration - tests whether system components/classes work together properly. System - tests operation of system end to end: functional and non-functional. User acceptance (UAT) - tests conducted by users to determine that system does what it was meant to do

Question 49

Describe black box testing

Answer 49

Specification bases - tests the functionality of an application

Question 50

Describe white box testing

Answer 50

Tests internal workings of an application - tests that the code does what it is supposed to do

Question 51

What is meant by regression testing?

Answer 51

Verification that software which has been changed/integrated still works correctly (no new faults introduced/new software does not break old software)

Question 52

How does UAT take place?

Answer 52

Goal is to confirm that the system meets the business needs/is acceptance to users. Involves alpha testing (data is artificial) and beta testing (data is real but monitored for errors)

Question 53

What takes place during the Post-Implementation Review (PIR)

Answer 53

Determine what was successful/unsuccessful. Project team list what worked and what produced mistakes were made (repeat the good, eliminate the bad in future). Systems review - assess to what extent costs & estimated benefits actually accrue, determine whether or not the system provides the expected value (informs baseline costs for future projects)

Question 54

Why use automated software testing?

Answer 54

Allows for testing of large numbers of test conditions. Helps eliminate human error

Question 55

TCO stands for

Answer 55

Total cost of ownership

Question 56

What is meant by agile implementation?

Answer 56

Discovery -> alpha -> beta -> live -> discovery ->…... : live phase used to improve service based on user feedback, analytics, ongoing user research

Question 57

What is a contract?

Answer 57

Voluntary agreement between two or more parties enforceable by law (IS examples - build bespoke software, software licence, consulting contracts, outsourcing contracts)

Question 58

Name three versions of IS contracts, naming the predominant 'risk-taker' in each one

Answer 58

Fixed price - supplier (lump sum for work), Time and materials - shared risk (hourly rate), Usage based - Consumer (payment based on number of users/resources)

Question 59

How are contracts made flexible wrt. requirements?

Answer 59

Contracts often contain a 'change control mechanism' to account for change in requirements (this deals with a change in process/terms)

Question 60

What does a contract with a consultant in IT often provide, what does it deliver, and how is it payed?

Answer 60

Assignment of a specialist/team of specialists to complete a specific engagement such as developing an IT strategy. Deliverable can be a report or presentation - sometimes can be undefined. Payment basis is usually time and materials

Question 61

What is involved with an IT outsourcing contract?

Answer 61

Provision of IT services (possibly including people) to a client by a third party - development, operations, maintenance. Can be 3-5 years - exit conditions are difficult to define and implement

Question 62

What is involved with a packaged software contract

Answer 62

Buying a licence to use the software (not own it) - restrictions on number of users, server or desktop deployment, site usage

Question 63

What does the consumer rights act 2015 ensure?

Answer 63

Repair or replacement of digital products if faulty (includes digital content such as online films, games, music etc.)

Question 64

What is a business plan used for?

Answer 64

Management and planning, raising funds from investors, benchmarking progress

Question 65

Describe a limited company

Answer 65

Shareholder risk ('liability') limited to invested capital

Question 66

Describe a private limited company (ltd.)

Answer 66

Shares not available for public trading; must provide company details to Companies House a file annual report and accounts

Question 67

Describe a public limited company (plc)

Answer 67

Company that trades on a stock exchange; publicly traded shares; governed by strict regulations; must publish true financial position regularly

Question 68

What is meant by an Initial Public Offering IPO

Answer 68

Allows private company to sell its shares to the public - used to raise funds for expansion efforts of pay back debt, provide exit for investors, raise company profile or reward employees. Time consuming, and incurs ongoing compliance and governance costs

Question 69

What are the advantages of IT (for example) being a profession?

Answer 69

Ensures a standard of training is met, allows job title and/or function to be reserved

Question 70

What is a cookie?

Answer 70

Small file (letters/numbers) download to a device when user accesses certain websites - allows website to recognize user's device

Question 71

What caused computer misuse to escalate?

Answer 71

Remote access - allowed misuse of internet networks and internet-connected computers

Question 72

What types of cybercrime are there?

Answer 72

Cyber-enabled crime ('traditional' crimes conducted online), advanced cybercrime (attacks against computer hardware and software), attack sources (formally individuals/small groups, now large interconnected cybercriminal networks), cyber defence (law enforcement agencies - no physical/virtual borders)

Question 73

What is malware?

Answer 73

Program inserted covertly inside another program with intent to destroy data, run intrusive or destructive programs, or otherwise compromise confidentiality, integrity, or availability of victims data, applications or OS

Question 74

What are APTs?

Answer 74

Advanced Persistent Threats - well-resourced, persistent application of intrusion technology and malware to selected targets

Question 75

Copyright

Answer 75

Protects literary and creative works including software

Question 76

Patent

Answer 76

Protects inventions

Question 77

Trade mark

Answer 77

Protects product names, logos, corporate symbols

Question 78

Confidence

Answer 78

Protects confidential information such as an idea for a film, or secret list of customer prospects

Question 79

Design rights

Answer 79

Protects new and original designs, such as a distinctive keyboard shape

Question 80

How does a piece of work qualify for copyright

Answer 80

Regarded as original, and exhibit a degree of labour, skill or judgement

Question 81

How does one apply for copyright

Answer 81

Don't have to - comes into existence automatically

Question 82

When did software first come under copyright law

Answer 82

1992 amendment to cover computer programs; 1997 databases regulations, 2003

Question 83

What are the rights of a copyright owner

Answer 83

Give copies of you work to the public (free or not); give permission for someone to make copies; give permission to adapt a work (eg. Translation); make variations or derivatives of a work; sell or licence rights

Question 84

Databases were added to copyright law in 1997 - how long do database rights last for

Answer 84

15 years - database must be original/'substantial investment in obtaining, verifying or presenting the contents'.

Question 85

What is the difference between primary and secondary infringement

Answer 85

Primary - breach of exclusive rights of the owner (owner claims damages or injunction to refrain), Secondary - breach of rights in commercial/business context (eg. Pirated software for commercial purposes) (results in fine, imprisonment, confiscation of material)

Question 86

How can copyright material fall under 'fair dealing'

Answer 86

Decided case by case eg. Research, criticism, review, quotation, reporting, parody, teaching (as long as not commercial), libraries, archives, museum, galleries (can make copies of all types of works in their collections)

Question 87

Define DMCA and OSP

Answer 87

Digital millennium copyright act; online service providers

Question 88

OSP is safe from DMCA as long as they do what?

Answer 88

Must immediately block access to or removed alleged infringing material should a notification be received of infringement

Question 89

Are ISPs liable for copyright infringement

Answer 89

Only if they are aware of the infringement and have not acted expeditiously to remove or disable access to said infringing information

Question 90

Digital single market copyright directive forces internet platforms that host large amounts of user-generated content to do what?

Answer 90

Platforms such as google or facebook are responsible themselves for policing and enforcing copyright and taking down any infringing content

Question 91

What is the difference between package software and tailor-made software copyright

Answer 91

Package - customer buys a licence to use software, not the actual software; Tailor made - creator of content is first legal owner of copyright, customer gets copyright as well but creator may retain overall copyright on certain parts/may be open source elements/may be third party products build in

Question 92

Describe what is meant by 'creative commons'

Answer 92

CC licences allow copyright owners to share their work while keeping copyright

Question 93

What types of CC licences are there

Answer 93

Attribution (copied, modified, distributed, displayed and performed if owner credited), non-commercial (all but no profit allowed to be made), no derivative works (all bar modification), share-alike (can be modified and distributed but must be covered by an identical licence)

Question 94

What is meant by copyleft?

Answer 94

Method for making a program and all derivatives of it free

Question 95

What does a patent apply to, and how long does it last?

Answer 95

Inventions, around 20 years

Question 96

How can one patent software

Answer 96

In US - if it part of a patentable device, controls a process that has some physical effects, or processing data arising from the physical world

Question 97

What qualifies something as a trademark

Answer 97

Graphical sign - cannot describe goods/services, must be distinctive, cannot be 3d, cannot have function or add value to goods, cannot be specially protected emblems (eg flag), cannot be deceptive

Question 98

Why was the freedom of information act brought in

Answer 98

To make public organisations more open and accountable

Question 99

Who does the freedom of information act apply to

Answer 99

Central and local government departments; NHS; education authorities; military services etc

Question 100

Why might certain information by exempt from the freedom of information act?

Answer 100

E.g. BBC is journalistic - protect sources of information

Question 101

Difference between absolute exemption and qualified exemptions

Answer 101

Qualified may under certain conditions by overruled, absolute may never be released

Question 102

2000 Protection of freedoms act did what?

Answer 102

Required public authorities to publish any requested data sets as part of their publication scheme

Question 103

Give examples of absolute exemptions

Answer 103

Information that is - accessible by other means, relates to or deals with security matters, release could breach data protections principles, confidential

Question 104

Describe the purpose of the environmental information regulations 2004

Answer 104

Right of access to environmental information held by uk authorities (info about air, water soil, emissions as well as decisions, policies, activities that affect the environment)

Question 105

What is a publication scheme

Answer 105

Public commitment to make certain information available; a guide to how that information can be obtained

Question 106

How long does a body have to provide requested information

Answer 106

Within 20 days (can delay with suitable explanation)

Question 107

What does GDPR stand for

Answer 107

General data protection regulation

Question 108

What is the purpose of GDPR

Answer 108

Give control to data subjects (people) over their personal data; govern circumstances when personal data is exported outside EU/EEA

Question 109

What does GDPR cover

Answer 109

Personal data - info that relates to an identified or identifiable individual

Question 110

GDPR - what is a controller

Answer 110

Determines the purposes and means of processing personal data

Question 111

GDPR - what is processor

Answer 111

Responsible for processing personal data on behalf of controller

Question 112

What is special category data?

Answer 112

Data that needs greater protection (eg. Information about an individuls race, ethnic origin, politics, sexual orientation etc.) - can be used to discriminate

Question 113

What are the seven principles of GDPR

Answer 113

Lawfulness, fairness and transparency; purpose limitation; data minimisation(only what you need); accuracy(not incorrect/misleading); storage limitation; integrity and confidentiality; accountability

Question 114

What rights does GDPR give an individual

Answer 114

Right to be informated, rights of access, right to rectification, right to erasure, right to restrict processing, right to data portability, right to object, rights in relation to automated decision making and profiling

Question 115

What are some of the global ethical impacts of computer networks?

Answer 115

Easy to present and spread false information - cas cause significant social and global unrest

Question 116

What are some more typical ethical issues with IT industry?

Answer 116

Gender imbalance in jobs, computer technology impact on the environment, tax avoidance by large IT corporations

Question 117

Describe the rough ethical analysis process

Answer 117

Identify all those affected (stakeholders), list all possible actions, consider the impact on each affected individual (risks, benefits, harms, costs), identify responsibilties of decision makers and rights of stakeholders, decide which choices are ethically wrong, ethically obligatory, or acceptable but not required (if several acceptable, consider the merits of each)