Day 11

Question 1

Restricting entry of AP to only authorized users represents what type of control?

Answer 1

User Control

MCQ-07116

Question 2

How is asymmetric encryption used?

Answer 2

Uses a public key to encrypt the message and a private key is used to decrypt the message at the other end

MCQ-06446

Question 3

Define: Multimodal Authentication

Answer 3

Uses multiple biometrics such as, fingerprints, facial scanning, eye scanning, etc..

MCQ-09006

Question 4

A digital signature is primarily used to:

Answer 4

Determine that the message was sent by an Authentic Sender

MCQ-04814

Question 5

What does Public Key Infrastructure (PKI) represent?

Answer 5

Refers to a system and processes used to issue and manage asymmetric keys and digital certificates

MCQ-06453

Question 6

What pair of techniques provide the same level of assurance about the enforceability of a digitally signed transaction as a written signature provides for a paper based transaction?

Answer 6

Hashing and Asymmetric Encryption

MCQ-15783

Question 7

What is the disadvantage of Symmetric Encryption?

Answer 7

Both sender and receiver must have the private key for this encryption method to work

MCQ-04821

Question 8

To maintain effective segregation of duties in IT, an Application Programmer should have what responsibility?

Answer 8

Code approved changes to a payroll program

Note: An Application Programmer should NEVER be assigned the responsibility to correct data entry errors

MCQ-05777

Question 9

What best describes the Segregation of Duties?

Answer 9

Good internal control requires that no single employee be given too much responsibility over business transactions or processes. An employee should not be in a position to commit or conceal fraud

MCQ-06445

Question 10

What is the roll of a Systems Analyst in an IT environment?

Answer 10

Designing systems, preparing specifications for programmers, and serving as an intermediary between users and programmers

MCQ-07117

Question 11

An uninterrupted power supply is what type of control?

Answer 11

Physical Control

MCQ-13036

Question 12

When implementing or developing a new software system, the first job roll to start the process is most likely?

Answer 12

System Analyst

• The design of the systems should be done by a different employee from the one writing the software
• An employee granting access to the system should be different from the one designing and writing

MCQ-14591

Question 13

What is the primary objective of Data Security Controls?

Answer 13

To ensure that storage media are subject to authorization prior to access, change, or destruction

MCQ-06984

Question 14

Define: Incremental Backup

Answer 14

Involves copying only the data items that have changed since the last backup

MCQ-13033

Question 15

Define: Differential Backup

Answer 15

Copies all changes made since the last full backup

Each new Differential Backup contains the cumulative effects of all activity since the last full backup

MCQ-13033