Unit 8

Question 1

Online threats:

Answer 1

1) Cyberbullying.
2) Inappropriate content.
3) Emotional abuse.
4) Data theft.
5) Exploiting others.
6) Catfishing.
7) False comments about others.

Question 2

eSafety using email:

Answer 2

1) Don’t open unknown emails.
2) Always check the sender of email.
3) Using the browser to go to a website instead of using the link in the mail.
4) Never send payment information via email.
5)Be careful with sending personal information.

Question 3

Authentication factors:

Answer 3

1) Knowledge factor: Consisting information that the user possesses.
2) Possession factor: Items the user has with them.
3) Inheritance factor: Fingerprints or iris.

Question 4

Methods that use two-factor authentication:

Answer 4

1) Withdrawing money from ATM.
2) USB devices with authentication codes.
3) Using knowledge factor to bypass.

Question 5

Identifying phishing email:

Answer 5

1) Urgency: wanting you to respond quickly without thinking.
2) Careless use of language: Spelling mistakes and careless ways of typing.
3) Impersonal: Being referred to as “dear customer” or general phrases.
4) False links: website controlled by criminals.
5) Attachments: may have spyware.

Question 6

Types of biometric data:

Answer 6

1) Physical: fingerprints, eye retinas, voice, facial patterns etc.
2) Behavioral: Signature, handwriting analysis, voice pattern.

Question 7

digital certificate consists of:

Answer 7

1) Person’s name.
2) An email address.
3) A serial number.
4) Public key.
5) Expiration date.
6) Digital signature.

Question 8

Electrical overload:

Answer 8

When too many electrical items are plugged into one socket causing more current to be put across an electrical wire.

Question 9

International data protection legislation:

Answer 9

Laws to maintain privacy of private data.

Question 10

Data subject:

Answer 10

The person whose data is being stored.

Question 11

Personal data:

Answer 11

Data relating to the information about a living individual.

Question 12

eSafety:

Answer 12

Being safe on the internet.

Question 13

Malware:

Answer 13

Software designed to get unauthorized access to one’s device.

Question 14

Social networking sites:

Answer 14

Websites where you can connect with people from your friends and family and all over the world.

Question 15

Information assets:

Answer 15

Valuable data that you wouldn’t want to be stolen.

Question 16

Identity theft:

Answer 16

Fraud where personal information is stolen to impersonate the person online

Question 17

Spam:

Answer 17

Junk mail that involves nearly identical message being sent to multiple people.

Question 18

Hacking:

Answer 18

Gaining unauthorized access to someone’s device.

Question 19

Phishing:

Answer 19

A criminal activity trying to find sensitive information such as passwords or banking details with fraud.

Question 20

Spyware:

Answer 20

Malware designed to be installed secretly on a computer and record private information.

Question 21

Pharming:

Answer 21

Malicious program in computer or on server that causes any clicks to take you to another website.

Question 22

Vishing:

Answer 22

Using telephone as a means of obtaining a person’s details.

Question 23

Smishing:

Answer 23

Uses a device to lure people into going into a website.

Question 24

Credit card fraud:

Answer 24

Fraud done using a credit or debit card.

Question 25

Shoulder surfing:

Answer 25

Finding login names, passwords and credit card pins visually by standing next to a person.

Question 26

Cloning:

Answer 26

Making an exact copy of something.

Question 27

Key logger:

Answer 27

A malware that records individual key strokes.

Question 28

Biometrics:

Answer 28

Using personal characteristics as a way of identification.

Question 29

Encrypted:

Answer 29

Scrambled data that cannot be understood.

Question 30

Encryption:

Answer 30

Process of turning into a form that it only can be read by the receiver.

Question 31

Cipher:

Answer 31

A method of encrypting data.

Question 32

Key:

Answer 32

A piece of information that is used for encrypting and decrypting data.

Question 33

Ciphertext:

Answer 33

Encrypted plaintext.

Question 34

Decrypt:

Answer 34

Changing the ciphertext back to plain text.

Question 35

Symmetric encryption:

Answer 35

Same key used for encryption and decryption.

Question 36

Asymmetric encryption:

Answer 36

A method of encryption that used two different keys.

Question 37

Public key:

Answer 37

Using a freely available key to encrypt a message.

Question 38

Private key:

Answer 38

A key known only to the person who will decrypt the message.

Question 39

Digital certificate:

Answer 39

A method of guaranteeing that a website is genuine and the communication between the system and the server is secure.

Question 40

Certificate authorities:

Answer 40

A trusted entity that uses digital certificates.

Question 41

Firewall:

Answer 41

Software or hardware devices that protect against unauthorized access to a network.

Question 42

Multi-factor authentication:

Answer 42

User has to produce several pieces of evidence in a test.

Question 43

Challenge-response check:

Answer 43

Authentication method used to identify a user who has to produce a piece of evidence.

Question 44

Credentials:

Answer 44

Pieces of information.

Question 45

Knowledge factor:

Answer 45

Something a person knows for authentication.

Question 46

Possession factor:

Answer 46

Something that a person owns and can be used for authentication.

Question 47

Inheritance factor:

Answer 47

A physical characteristic that can be used for authentication.

Question 48

Two factor authentication:

Answer 48

User has to produce two pieces of evidence in a test.

Question 49

What are the legal rights of data subjects?

Answer 49

(1) Be informed about collection of use.
(2) Access own personal data free of charge.
(3) Have inaccurate data corrected.
(4) Have data deleted after it has met its purpose.
(5) Obtain and reuse own data.
(6) Object to processing of their data.

Question 50

What are the legal responsibilities of data holders?

Answer 50

(1) Ensure data is accurate and up to date.
(2) Ensure subjects give consent.
(3) Collect data for specified purpose.
(4) Hold as much data as necessary.
(5) Not to keep data longer than necessary.
(6) Process data in a transparent, fair and lawful way.
(7) Keep data secure.

Question 51

Blank

Answer 51

Blank