{[ promptMessage ]}

Bookmark it

{[ promptMessage ]}

UsingMisChapter12 - Exam Name TRUE/FALSE Write'T if the...

Info icon This preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
Exam Name___________________________________ TRUE/FALSE. Write 'T' if the statement is true and 'F' if the statement is false. 1) As problems caused by human errors are not malicious, they are not security threats. 1) 2) An example of malicious human activity could include an employee who inadvertently installs an old database on top of the current one. 2) 3) Unauthorized data disclosures can occur from malicious human activity. 3) 4) Phishing is a technique for intercepting computer communications. 4) 5) Pretexting occurs when a person receives a confidential SMS by mistake. 5) 6) Sniffing occurs when an intruder uses another site's IP address as if it were that other site. 6) 7) Email spoofing is a synonym for phishing. 7) 8) Drive - by spoofers take computers with wireless connections through an area and search for unprotected wireless networks. 8) 9) Drive - by sniffers can access wireless computer networks. 9) 10) People who intentionally gain unauthorized access to computer systems are called hackers. 10) 11) Faulty service includes incorrectly billing customers or sending the wrong information to employees, but not incorrect data modification. 11) 12) When a hacker floods a Web server with millions of bogus service requests so that it cannot service legitimate requests, this is called a denial - of - service attack. 12) 13) A denial - of - service situation is always the result of a malicious attack. 13) 14) According to the NIST Handbook, responsibility for information security in a particular department. rests with the manager of that department. 14) 15) According to the NIST Handbook, defining a security policy and managing computer - security risk are the responsibilities of a company's IT department. 15) 16) According to the elements of company security outlined in the NIST Handbook, computer security cannot be constrained by societal factors. 16) 17) Uncertainty is the likelihood of an adverse occurrence. 17) 18) Uncertainty is different from risk. 18) 1
Image of page 1

Info icon This preview has intentionally blurred sections. Sign up to view the full version.

View Full Document Right Arrow Icon
19) Risk management can only be approximated because of uncertainty. 19) 20) According to the NIST Handbook, there is always a residual risk that the safeguard will not protect the assets in all circumstances. 20) 21) Intangible consequences are those whose financial impact can be measured. 21) 22) Tangible consequences when an asset is compromised include such things as loss of customer goodwill. 22) 23) Probable loss is the probability that a given asset will be compromised by a given threat, despite the safeguards. 23) 24) Probable loss is concerned only with tangible consequences; it does not include intangible consequences. 24) 25) The Privacy Act of 1974 gives individuals the right to access health data. 25) 26) HIPAA sets limits on who can receive your health information. 26) 27) The Gramm - Leach - Bliley Act set limits on how health care providers use your medical information.
Image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

{[ snackBarMessage ]}

What students are saying

  • Left Quote Icon

    As a current student on this bumpy collegiate pathway, I stumbled upon Course Hero, where I can find study resources for nearly all my courses, get online help from tutors 24/7, and even share my old projects, papers, and lecture notes with other students.

    Student Picture

    Kiran Temple University Fox School of Business ‘17, Course Hero Intern

  • Left Quote Icon

    I cannot even describe how much Course Hero helped me this summer. It’s truly become something I can always rely on and help me. In the end, I was not only able to survive summer classes, but I was able to thrive thanks to Course Hero.

    Student Picture

    Dana University of Pennsylvania ‘17, Course Hero Intern

  • Left Quote Icon

    The ability to access any university’s resources through Course Hero proved invaluable in my case. I was behind on Tulane coursework and actually used UCLA’s materials to help me move forward and get everything together on time.

    Student Picture

    Jill Tulane University ‘16, Course Hero Intern