Testbanks 3.1 in Computer Information System PDF

Preview

Summary

Chapter 3—Security Part I: Auditing Operating Systems and NetworksTRUE/FALSE In a computerized environment, the audit trail log must be printed onto paper documents. ANS: F PTS: 1 Disguising message packets to look as if they came from another user and to gain access to the host’s network is called ...

Description

Chapter 3—Security Part I: Auditing Operating Systems and Networks TRUE/FALSE 1. documents. ANS: F

In a computerized environment, the audit trail log must be printed onto paper PTS: 1

2. Disguising message packets to look as if they came from another user and to gain access to the host’s network is called spooling. ANS: F

PTS: 1

A formal log-on procedure is the operating system’s last line of defense against unauthorized access. 3.

ANS: F 4. ANS: T 5. system fails. ANS: T 6. ANS: F

PTS: 1 Computer viruses usually spread throughout the system before being detected. PTS: 1 A worm is software program that replicates itself in areas of idle memory until the PTS: 1 Viruses rarely attach themselves to executable files. PTS: 1

10. Operating system controls are of interest to system professionals but should not concern accountants and auditors. ANS: F 11. ANS: T

PTS: 1 The most frequent victims of program viruses are microcomputers. PTS: 1

13. Operating system integrity is not of concern to accountants because only hardware risks are involved. ANS: F

PTS: 1

14. Audit trails in computerized systems are comprised of two types of audit logs: detailed logs of individual keystrokes and event-oriented logs. ANS: T 15.

PTS: 1 In a telecommunications environment, line errors can be detected by using an echo

check. ANS: T 16. ANS: F 17. transmission. ANS: T

PTS: 1 Firewalls are special materials used to insulate computer facilities PTS: 1 The message authentication code is calculated by the sender and the receiver of a data PTS: 1

18. The request-response technique should detect if a data communication transmission has been diverted. ANS: T

PTS: 1

19. Electronic data interchange translation software interfaces with the sending firm and the value added network. ANS: F 20. partners. ANS: T 21. ANS: T 22.

PTS: 1 A value added network can detect and reject transactions by unauthorized trading PTS: 1 Electronic data interchange customers may be given access to the vendor's data files. PTS: 1 The audit trail for electronic data interchange transactions is stored on magnetic

media. ANS: T 23. ANS: F

PTS: 1 A firewall is a hardware partition designed to protect networks from power surges. PTS: 1

24. To preserve audit trails in a computerized environment, transaction logs are permanent records of transactions. ANS: T

PTS: 1

25. Examining programmer authority tables for information about who has access to Data Definition Language commands will provide evidence about who is responsible for creating subschemas. ANS: T 26. ANS: F

PTS: 1 The standard format for an e-mail address is DOMAIN NAME@USER NAME. PTS: 1

27. The network paradox is that networks exist to provide user access to shared resources while one of its most important objectives is to control access. ANS: T 28. ANS: T 29. protocols. ANS: T

PTS: 1 IP spoofing is a form of masquerading to gain unauthorized access to a Web server. PTS: 1 The rules that make it possible for users of networks to communicate are called PTS: 1

30. A factor that contributes to computer crime is the reluctance of many organizations to prosecute criminals for fear of negative publicity. ANS: T 31. ANS: F

PTS: 1 Cookies are files created by user computers and stored on Web servers. PTS: 1

32. Because of network protocols, users of networks built by different manufacturers are able to communicate and share data. ANS: T 33. ANS: F

PTS: 1 The client-server model can only be applied to ring and star topologies. PTS: 1

34. Only two types of motivation drive DoS attacks: 1) to punish an organization with which the perpetrator had a grievance; and 2) to gain bragging rights for being able to do it. ANS: F

PTS: 1

35. A distributed denial of service (DDoS) attack may take the form of a SYN flood but not a smurf attack. ANS: F 36. ANS: T 37. ANS: T 38.

PTS: 1 The bus topology connects the nodes in parallel. PTS: 1 A network topology is the physical arrangement of the components of the network. PTS: 1 A digital signature is a digital copy of the sender’s actual signature that cannot be

forged. ANS: F

PTS: 1

39. ANS: T 40. ANS: F

A bus topology is less costly to install than a ring topology. PTS: 1 A smurf attack involves three participants: a zombie, an intermediary, and the victim. PTS: 1

41. In a hierarchical topology, network nodes communicate with each other via a central host computer. ANS: T

PTS: 1

42. ANS: T

PTS: 1

43. The more individuals that need to exchange encrypted data, the greater the chance that the key will become known to an intruder. To overcome this problem, private key encryption was devised. ANS: F 44. ANS: T

PTS: 1 The intermediary in a smurf attack is also a victim. PTS: 1

45. A ping is used to test the state of network congestion and determine whether a particular host computer is connected and available on the network. ANS: T

PTS: 1

46. HTML tags are customized to delimit attributes, the content of which can be read and processed by computer applications. ANS: F

PTS: 1

47. A ping is an Internet maintenance tool that is used to test the state of network congestion and determine whether a particular host computer is connected and available on the network. ANS: T

PTS: 1

MULTIPLE CHOICE

a. b. c. d.

1. The operating system performs all of the following tasks except translates third-generation languages into machine language assigns memory to applications authorizes user access schedules job processing

ANS: C

PTS: 1

2. Which of the following is considered an unintentional threat to the integrity of the operating system? a. a hacker gaining access to the system because of a security flaw b. a hardware flaw that causes the system to crash c. a virus that formats the hard drive d. the systems programmer accessing individual user files ANS: B

PTS: 1

3. A software program that replicates itself in areas of idle memory until the system fails is called a a. Trojan horse b. worm c. logic bomb d. none of the above ANS: B

PTS: 1

4. A software program that allows access to a system without going through the normal logon procedures is called a a. logic bomb b. Trojan horse c. worm d. back door ANS: D a. b. c. d.

PTS: 1

5. All of the following will reduce the exposure to computer viruses except install antivirus software install factory-sealed application software assign and control user passwords install public-domain software from reputable bulletin boards

ANS: D

PTS: 1

6. Hackers can disguise their message packets to look as if they came from an authorized user and gain access to the host’s network using a technique called a. spoofing. b. spooling. c. dual-homed. d. screening. ANS: A

a. b. c. d.

PTS: 1

7. Which is not a biometric device? password retina prints voice prints signature characteristics

ANS: A

a. b. c. d.

PTS: 1

8. All of the following are objectives of operating system control except protecting the OS from users protesting users from each other protecting users from themselves protecting the environment from users

ANS: D

PTS: 1

9. Passwords are secret codes that users enter to gain access to systems. Security can be compromised by all of the following except a. failure to change passwords on a regular basis b. using obscure passwords unknown to others c. recording passwords in obvious places d. selecting passwords that can be easily detected by computer criminals ANS: B a. b. c. d.

10. Audit trails cannot be used to detect unauthorized access to systems facilitate reconstruction of events reduce the need for other forms of security promote personal accountability

ANS: C a. b. c. d.

PTS: 1

12. Which method will render useless data captured by unauthorized receivers? echo check parity bit public key encryption message sequencing

ANS: C a. b. c. d.

PTS: 1

11. Which control will not reduce the likelihood of data loss due to a line error? echo check encryption vertical parity bit horizontal parity bit

ANS: B

a. b. c. d.

PTS: 1

PTS: 1

13. Which method is most likely to detect unauthorized access to the system? message transaction log data encryption standard vertical parity check request-response technique

ANS: A

PTS: 1

14. All of the following techniques are used to validate electronic data interchange transactions except

a. b. c. d.

value added networks can compare passwords to a valid customer file before message transmission prior to converting the message, the translation software of the receiving company can compare the password against a validation file in the firm's database the recipient's application software can validate the password prior to processing the recipient's application software can validate the password after the transaction has been processed

ANS: D a. b. c. d.

PTS: 1

15. In an electronic data interchange environment, customers routinely access the vendor's price list file the vendor's accounts payable file the vendor's open purchase order file none of the above

ANS: A

PTS: 1

16. All of the following tests of controls will provide evidence that adequate computer virus control techniques are in place and functioning except a. verifying that only authorized software is used on company computers b. reviewing system maintenance records c. confirming that antivirus software is in use d. examining the password policy including a review of the authority table ANS: B

a. b. c. d.

PTS: 1

17. Audit objectives for communications controls include all of the following except detection and correction of message loss due to equipment failure prevention and detection of illegal access to communication channels procedures that render intercepted messages useless all of the above

ANS: D

PTS: 1

18. When auditors examine and test the call-back feature, they are testing which audit objective? a. incompatible functions have been segregated b. application programs are protected from unauthorized access c. physical security measures are adequate to protect the organization from natural disaster d. illegal access to the system is prevented and detected ANS: D

PTS: 1

19. In an electronic data interchange (EDI) environment, when the auditor compares the terms of the trading partner agreement against the access privileges stated in the database authority table, the auditor is testing which audit objective? a. all EDI transactions are authorized b. unauthorized trading partners cannot gain access to database records c. authorized trading partners have access only to approved data d. a complete audit trail is maintained ANS: C

PTS: 1

20. Audit objectives in the electronic data interchange (EDI) environment include all of the following except

a. b. c. d.

all EDI transactions are authorized unauthorized trading partners cannot gain access to database records a complete audit trail of EDI transactions is maintained backup procedures are in place and functioning properly

ANS: D

PTS: 1

21. In determining whether a system is adequately protected from attacks by computer viruses, all of the following policies are relevant except a. the policy on the purchase of software only from reputable vendors b. the policy that all software upgrades are checked for viruses before they are implemented c. the policy that current versions of antivirus software should be available to all users d. the policy that permits users to take files home to work on them ANS: D a. b. c. d.

22. Which of the following is not a test of access controls? biometric controls encryption controls backup controls inference controls

ANS: C a. b. c. d.

PTS: 1

24. In an electronic data interchange environment, the audit trail is a printout of all incoming and outgoing transactions is an electronic log of all transactions received, translated, and processed by the system is a computer resource authority table consists of pointers and indexes within the database

ANS: B

a. b. c. d.

PTS: 1

23. In an electronic data interchange environment, customers routinely access the vendor's accounts receivable file with read/write authority access the vendor's price list file with read/write authority access the vendor's inventory file with read-only authority access the vendor's open purchase order file with read-only authority

ANS: C a. b. c. d.

PTS: 1

PTS: 1

25. All of the following are designed to control exposures from subversive threats except firewalls one-time passwords field interrogation data encryption

ANS: C

PTS: 1

26. Many techniques exist to reduce the likelihood and effects of data communication hardware failure. One of these is a. hardware access procedures b. antivirus software c. parity checks d. data encryption ANS: C

PTS: 1

a. b. c. d.

27. Which of the following deal with transaction legitimacy? transaction authorization and validation access controls EDI audit trail all of the above

ANS: D a. b. c. d.

PTS: 1

28. Firewalls are special materials used to insulate computer facilities a system that enforces access control between two networks special software used to screen Internet access none of the above

ANS: B

PTS: 1

29. An integrated group of programs that supports the applications and facilitates their access to specified resources is called a (an) a. operating system. b. database management system. c. utility system d. facility system. e. object system. ANS: A 30.

PTS: 1

Transmitting numerous SYN packets to a targeted receiver, but NOT responding to an

ACK, is

a. b. c. d. e.

a smurf attack. IP Spoofing. an ACK echo attack a ping attack.

none of the above

ANS: E a. b. c. d.

31. Which of the following is true? Deep Packet Inspection uses a variety of analytical and statistical techniques to evaluate the contents of message packets. An Intrusion prevention system works in parallel with a firewall at the perimeter of the network to act as a filer that removes malicious packets from the flow before they can affect servers and networks. A distributed denial of service attack is so named because it is capable of attacking many victims simultaneously who are distributed across the internet. None of the above are true statements.

ANS: A a. b. c. d.

PTS: 1

PTS: 1

32. Advance encryption standard (AES) is a 64 -bit private key encryption technique a 128-bit private key encryption technique a 128-bit public key encryption technique a 256-bit public encryption technique that has become a U.S. government standard

ANS: B

PTS: 1

33. a. b. c. d.

LAN decentralized network multidrop network Intranet

ANS: D

PTS: 1

a. b. c. d.

34. Network protocols fulfill all of the following objectives except facilitate physical connection between network devices provide a basis for error checking and measuring network performance promote compatibility among network devices result in inflexible standards

ANS: D a. b. c. d.

35. To physically connect a workstation to a LAN requires a file server network interface card multiplexer bridge

ANS: B 36. a. b. c. d.

PTS: 1

37. One advantage of network technology is bridges and gateways connect one workstation with another workstation the network interface card permits different networks to share data file servers permit software and data to be shared with other network users a universal topology facilitates the transfer of data among networks

ANS: C a. b. c. d. e.

PTS: 1

Packet switching combines the messages of multiple users into one packet for transmission. At the receiving end, the packet is disassembled into the individual messages and distributed to the intended users. is a method for partitioning a database into packets for easy access where no identifiable primary user exists in the organization. is used to establish temporary connections between network devices for the duration of a communication session. is a denial of service technique that disassembles various incoming messages to targeted users into small packages and then reassembles them in random order to create a useless garbled message.

ANS: C a. b. c. d.

PTS: 1

PTS: 1

38. A virtual private network: is a password-controlled network for private users rather than the general public. is a private network within a public network. is an Internet facility that links user sites locally and around the world. defines the path to a facility or file on the web. none of the above is true.

ANS: B

PTS: 1

39. Which topology has a large central computer with direct connections to a periphery of smaller computers? Also in this topology, the central computer manages and controls data communica-

tions among the network nodes. a. star topology b. bus topology c. ring topology d. client/server topology ANS: A a. b. c. d. e.

40. A ping signal is used to initiate URL masquerading digital signature forging Internet protocol spoofing a smurf attack none of the above is true

ANS: D a. b. c. d.

b. c. d.

b.

PTS: 1

43. A star topology is appropriate for a wide area network with a mainframe for a central computer for centralized databases only for environments where network nodes routinely communicate with each other when the central database does not have to be concurrent with the nodes

ANS: A a.

PTS: 1

42. Which of the following statements is correct? The client-server model is best suited to the token-ring topology because the random-access method used by this model detects data collisions. distributes both data and processing tasks to the server’s node. is most effective used with a bus topology. is more efficient than the bus or ring topologies.

ANS: B a. b. c. d.

PTS: 1

41. In a star topology, when the central site fails individual workstations can communicate with each other individual workstations can function locally but cannot communicate with other workstations individual workstations cannot function locally and cannot communicate with other workstations the functions of the central site are taken over by a designated workstation

ANS: B a.

PTS: 1

PTS: 1

44. the network consists of a central computer which manages all communications between nodes has a host computer connected to several levels of subordinate computers

c. d.

all nodes are of equal status; responsibility for managing communications is distributed among th...