Various 2

Question 1

The time when computer systems are susceptible to compromise while the system is loading and before the security front end becomes active is called? Computer software is also vulnerable to configuration changes at this time.

Answer 1

Initial program load (IPL)

Question 2

An internationally recognized, government-mandated standard for crisis command during disaster recovery and business continuity events

Answer 2

Incident Command System (ICS)

Question 3

A short sequence of six to eight characters used in type 1 (weak) authentication

Answer 3

Password

Question 4

Creates reports that may be used only for internal purposes. These reports contain a known bias, which reduces their corresponding representations to a low or moderate value.

Answer 4

Internal audit

Question 5

A malicious hacker program designed to unsuspectingly install a backdoor without the consent of the system user. This will subvert the operating system kernel security and operate in stealth to hide its existence.

Answer 5

Root kit

Question 6

A check file of a fixed length created by a source file of any length. The purpose is to indicate whether the source file may have been changed.

Answer 6

Message hash

Question 7

Having no significant bearing on the final outcome, also known as trivial information

Answer 7

Irrelevant

Question 8

What are the names of the keys used for PKI?

Answer 8

The public key and the private (secret) key

Question 9

Criteria based on impact, anticipated duration of outage, or immediate lack of sufficient information to calculate the actual impact. It’s always better to overreact when compared to the consequences of delay.

Answer 9

Activation criteria for business continuity and disaster recovery

Question 10

The most common method of providing secure access to the network for a remote user that uses encryption

Answer 10

IPsec virtual private network (VPN)

Question 11

To grant a right to perform some type of action

Answer 11

Authorization

Question 12

The progressive development of software through a succession of multiple versions

Answer 12

Iterative development

Question 13

An organization that is responsible for issuing and maintaining certificates

Answer 13

Certificate authority (CA)

Question 14

The persons and organization being audited

Answer 14

Auditee

Question 15

The lowest level of control, usually governing system use or internal program controls. These types of controls are easily subverted if higher-level controls governing the operating environment are missing or ineffective.

Answer 15

Application controls

Question 16

The term used when an auditor has no reservations with their findings, and there are no special restrictions on the use of the audit report.

Answer 16

Unqualified opinion

Question 17

The process of streamlining existing operations in an effort to improve efficiency and reduce cost. Benefits may be derived by eliminating unnecessary steps as the organization has progressed through the learning curve, or by expanding capability for more work.

Answer 17

Business process reengineering (BPR)

Question 18

A less formal process used to determine value or relevance to the intended use. The results will be of low to moderate value. These results are used for internal purposes only.

Answer 18

Assessment

Question 19

Multiple communication channels that are multiplexed over a single cable

Answer 19

Broadband

Question 20

A historical score of business process performance. Unfortunately, the score may indicate that a failure has occurred before corrective action can be taken.

Answer 20

Key performance indicator (KPI)

Question 21

When two or more obligators (persons or organizations) bind themselves without actual partnership or corporate designation in a specific venture with the risk, liability, and potential profits shared between the parties. All parties share a communal liability for the failure of the other party.

Answer 21

Joint venture

Question 22

An engineering technique used to steal the secrets of your competitor for the purpose of developing your own product. Usually a violation of the software user license agreement.

Answer 22

Reverse engineering

Question 23

Changing the normal function of keys to execute different commands

Answer 23

Keyboard remapping

Question 24

What is the name of the protection method used when encryption keys are re-encrypted with a different algorithm using a different key to obscure the original key?

Answer 24

Key wrapping

Question 25

Electronic access to a system without being physically present

Answer 25

Logical access

Question 26

A best practice for recording the analysis of problems and improvements that worked

Answer 26

Lessons learned

Question 27

A biometrics technique that maps the unique pattern of veins in the back of the human eyeball

Answer 27

Retinal scan

Question 28

What is the purpose of a certification practice statement (CPS)?

Answer 28

The CPS is a formal document outlining the issuer’s certificate policy and enforcement policy.

Question 29

The process of copying the current data files for records retention but ignoring deleted files and temporary system data in swap space

Answer 29

Logical backup

Question 30

What are the most important actions to be taken when someone is terminated or laid off?

Answer 30

Disable user accounts, physically remove access to desktops, and collect any company property remaining in their possession

Question 31

Early hierarchical design created by IBM for connecting different computers

Answer 31

Systems Network Architecture (SNA)

Question 32

A method of transmitting data through a variety of different paths en route to its destination. The user is billed by the data packets sent and not by the route or distance traveled.

Answer 32

Packet-switched

Question 33

Connection of redundant network links

Answer 33

Meshed network

Question 34

A potential danger that, if realized, will have a negative effect on assets

Answer 34

Threat

Question 35

A computer system or network device to be evaluated under the Common Criteria standard (ISO 15408)

Answer 35

Target of evaluation (TOE)

Question 36

A term for utility software that operates on the program interfaces and is invisible to both the user and the database server. Performs an intermediary service between two programs.

Answer 36

Middleware

Question 37

Lower-level controls placed on specific procedures

Answer 37

Detailed controls

Question 38

The ability for hardware and software systems from different manufacturers to communicate with each other

Answer 38

Interoperability

Question 39

To conserve processing, space occupied by these files is simply marked as eligible for overwriting. The contents remain on the disk.

Answer 39

Deleted files

Question 40

A programmed procedure inside a computer software application designed to cause damage on the occurrence of a particular event, date, or time. Extremely difficult to locate.

Answer 40

Logic bomb

Question 41

A secret point of entry into a system. Usually a hidden access technique left in the software by the developer for future use by their technical support staff.

Answer 41

Trapdoor

Question 42

A technical system designed to alert personnel to activity that may indicate the presence of a hacker. Provides a type of network hacker alarm.

Answer 42

Intrusion detection and prevention system (IDPS)

Question 43

A unique process, tool, formula, pattern, or knowledge possessed by its creator and hidden from everyone else for the purpose of obtaining an advantage in the market

Answer 43

Trade secret

Question 44

A standardized reference listing of all the programmer’s data descriptions and files used in a computer program

Answer 44

Data dictionary

Question 45

The probability of error. A rating of 95 percent is considered a ________ in IS auditing.

Answer 45

Confidence coefficient

Question 46

Which method will provide faster restoration of data files: an incremental backup or a differential backup?

Answer 46

A differential backup

Question 47

Evaluates the management of a system, including its configuration. The purpose is to determine how well the system is managed by collecting evidence indicating the computer’s specific configuration settings.

Answer 47

System audit

Question 48

A program applet designed by Microsoft with access throughout the entire system. More dangerous than Java applets because it can circumvent or defeat the security of Microsoft Windows.

Answer 48

ActiveX

Question 49

The risk that errors may be introduced or may not be identified and corrected in a timely manner

Answer 49

Control risk

Question 50

A program designed to send system event logs to a remote system. Log files are protected from the attacker, and the extra copy of log files will enforce separation of duties.

Answer 50

Syslog

Question 51

A special area on the hard disk designated as a temporary location for data to be offloaded from RAM. This improves system performance by moving selected tasks out of the way while other data is processed.

Answer 51

Swap space

Question 52

What type of internal control protects your assets and information from physical access by unauthorized personnel?

Answer 52

Preventive control implemented by using physical methods

Question 53

A small group of computers and devices sharing the same broadcast domain

Answer 53

A subnet, also known as a subnetwork

Question 54

A systematic process of collecting evidence to test or confirm a statement or to confirm a record of transaction

Answer 54

Audit

Question 55

To sharpen the details of an average population by using a stratified mean (such as demographics) to further define the data into small units

Answer 55

Defuzzification

Question 56

What are the advantages of using fiber optics instead of unshielded twisted-pair cabling (UTP)?

Answer 56

Fiber optics are immune to interference and difficult to tap, and can be used on longer runs.

Question 57

The address of a router used to communicate with systems located on a different subnet or a different network

Answer 57

Default gateway

Question 58

Refers to evidence that specifically proves or disproves a particular point

Answer 58

Best evidence

Question 59

What is the principal difference between the DoS and DDoS attacks?

Answer 59

The distributed DoS (DDoS) attack uses multiple computers focused on attacking one target.

Question 60

A set of related data files

Answer 60

Data set

Question 61

The implementation of a computer program using a cryptographic algorithm and keys to encrypt and decrypt messages

Answer 61

Cryptographic system

Question 62

Another name for records management

Answer 62

Data retention

Question 63

The system sensor that acquires a biometric image and converts it into biometric minutiae for digital storage or comparison

Answer 63

Biometric template generator

Question 64

Used in disaster recovery testing to simulate the basic recovery process in order to clean any errors from the procedure

Answer 64

Functional testing

Question 65

What is the purpose of a mantrap?

Answer 65

Mantraps are designed to prevent an unauthorized person from gaining access by piggybacking behind an authorized user.

Question 66

A special bit-by-bit backup of physical media that records all the contents, including deleted files and current contents of swap space or slack space

Answer 66

Bitstream imaging

Question 67

A collection of persistence data items that are maintained in a grouping

Answer 67

Database

Question 68

Name of the procedure and formula used to direct communications across the available path

Answer 68

Routing protocol

Question 69

An access control system based on rules that require the user to have an explicit level of access that matches the appropriate security label. The only way to increase access is by a formal promotion of the user ID to the next security level.

Answer 69

Mandatory access control (MAC)

Question 70

Compares a biometric image template just acquired by the sensor to the biometric minutiae already stored inside the biometrics database

Answer 70

Biometric template matcher

Question 71

A committee or reporting hierarchy to convey questionable situations involving management to the highest level of authority, often the board of directors

Answer 71

Management oversight

Question 72

A networking topology that creates two paths between the senders and receivers. The most common implementation is IBM for a local area network. The public telephone company uses a similar topology for redundant connections between central offices.

Answer 72

Ring topology

Question 73

A formal policy concerning the intended use of biometric data, including a supporting operating standard of how the data is collected, stored, protected, transmitted, used, and disposed of

Answer 73

Biometric management

Question 74

What is S/MIME used to encrypt?

Answer 74

Secure/Multipurpose Internet Mail Extensions (S/MIME) is used to encrypt email. S/MIME is the replacement for the older Privacy Enhanced Mail (PEM).

Question 75

Formal approval by management to accept all the responsibilities and consequences for a system to be used in production for a period of 90 days, 180 days, or 365 days (annual)

Answer 75

Accreditation

Question 76

What is a table of user login IDs specifying their individual level of access to computer resources?

Answer 76

Access control list (ACL)

Question 77

Changes to data in the database are held in a temporary file. This transaction can be reversed (discarded) until the program writes the change into the master file. What is this temporary log file called?

Answer 77

After-image

Question 78

A type of exercise used in planning to uncover previous assumptions and interesting quirks used in the decision process. Assumptions may no longer be valid. You may discover additional defects in the decision criteria.

Answer 78

Scenario approach

Question 79

The process of verifying a user’s identity. The user’s claim will be tested against a known reference. If a match occurs, the user claim is verified as true and allowed to proceed. A mismatch will deny the request.

Answer 79

Authentication

Question 80

A temporary record of work in progress. This database journal file contains the original data before a new transaction is written.

Answer 80

Before-image

Question 81

Intentionally hiding malicious software inside a normal program

Answer 81

Trojan horse

Question 82

The principle that says if the database transaction fails, the change is discarded and the original data is kept.

Answer 82

ACID principle. A = atomicity (all or nothing), C = consistency, I = isolation, D = durability (data written to disk).

Question 83

Terminology referring to the agreed-upon reference point

Answer 83

Baseline

Question 84

The lowest layer of the OSI model that deals with cabling and electrical signals

Answer 84

Physical layer

Question 85

Microsoft’s technique for software developers to digitally sign downloadable ActiveX applets. It does not protect the user from malicious software or poorly written programs.

Answer 85

Authenticode

Question 86

A formal process of verifying that the system meets the user’s requirements during the SDLC Implementation phase

Answer 86

User acceptance testing

Question 87

A formal statement of policy signed by management and acknowledged by the user with their signature. Normally this policy is enforced by the HR department. This policy should state that computer use is for company business only and that noncompany activities, including those related to religion or topics of questionable use, are prohibited.

Answer 87

Acceptable use policy (AUP)

Question 88

The process of reviewing risks, threats, and vulnerabilities to determine appropriate controls

Answer 88

Risk assessment

Question 89

A type of test designed to gauge possible penetration through the system security mechanisms by exploiting a known weakness or security flaw

Answer 89

Penetration testing

Question 90

A micromanagement methodology to force development within a series of short time boxes. Primarily used for the development of prototypes.

Answer 90

Agile development

Question 91

The possibility that material errors may exist that the auditor is unable to detect

Answer 91

Audit risk

Question 92

The family of automated test software using a computerized audit procedure with specialized utilities

Answer 92

Computer-assisted audit tools (CAAT)

Question 93

A temporary memory location used to stage data before or after processing

Answer 93

Buffer

Question 94

Group of additional internal controls that reduce the potential for loss by error or omission. Used when the primary control choice is not possible.

Answer 94

Compensating control

Question 95

A nickname for individuals who execute scripted programs or utilities without comprehensive knowledge of the internal mechanisms being executed

Answer 95

Script kiddies

Question 96

A physical location that may be used for disaster recovery of noncritical processes. The entire computing environment must be shipped in and then assembled.

Answer 96

Cold site

Question 97

Name of the chosen acceptable performance objective in the Common Criteria standard for systems under evaluation. Failing this target would result in a lower assurance rating.

Answer 97

Security target (ST)

Question 98

An encrypted message displayed in unreadable text that appears as gibberish

Answer 98

Ciphertext

Question 99

Which communications method charges for transmissions based on distance?

Answer 99

Circuit-switched, also known as leased line

Question 100

Name of the web-based program that runs on the server, also known as server-side includes

Answer 100

Servlet