2.4 Securing Data & Systems

Question 1

Document Creation Software

Answer 1

Used for letter writing like word

Question 2

Collaboration of Documents

Answer 2

Allow users to work together on documents by discussing changes on the screen all the time

Question 3

Support Workflow

Answer 3

Allows managers to set tasks for individuals with completion times and can track which tasks have been completed within a wider project

Question 4

Electronic Signatures

Answer 4

Simply as it states including scanned signatures and tick boxes with statements
Enhanced electronic signatures are uniquely linked to the signatory and the signature is created with a private key which is only available to the signatory

Question 5

Sharing Documents via Email

Answer 5

Documents can simply be sent as email attachments rather than sending them by conventional mail

Question 6

Enterprise Content Management

Answer 6

System designed to manage an organisation’s documents. Unstructured information - including word processing documents, spreadsheets, PDF documents and scanned images

Question 7

Digital Systems to manage stock

Answer 7

1) product is scanned
2) price is displayed on the screen
3) deduct one form the stock level
4) re-stock level reached
5) automatically reorder of stock

Question 8

Managements Information System

Answer 8

This system is a collection of hardware and software acting as the backbone of an organisations operations. MIS collects data from multiple online systems, analyses the information reports on data to help make management decisions

Question 9

Smart Devices

Answer 9

Smart light bulbs, smart thermostat, smart doorbell & smart locks

Question 10

Home Streaming

Answer 10

Video streaming - Amazon & audio streaming like Spotify

Question 11

Pilot Method

Answer 11

A small scale implementation of a digital system perhaps in one part of the office with a set of users, one department or one branch, main benefit of pilot method is risk reduced
- Advantages:
All features of the new system can be used fully & staff from the pilot can help train other staff
- Disadvantage:
Slower than other methods & no back up system for the department taking part if anything goes wrong

Question 12

Parallel Method

Answer 12

Introducing the new system and it runs alongside the old system at the same time but people can revert back to old system if needed
- Advantage:
If a problem arises, users can return to use the old system & new system is available immediately
- Disadvantage
Having two systems can cause confusion & it’s expensive

Question 13

Big Bang

Answer 13

Digital system implementation is where a company starts using the new system immediately
- Advantages
Cost effective and has shorter implementation time
- Disadvantage
Full testing is difficult before implementation & no fall back system if the new system has problems

Question 14

Passive Digital Footprint

Answer 14

Data collected without the users knowledge, a data trail unintentionally left online so people can see your IP address and more

Question 15

Active Digital Footprint

Answer 15

Data intentionally submitted online like posting on social media, sharing locations on apps and agreeing to install or accept cookies when browsing

Question 16

Employers monitoring their Employees

Answer 16

• monitoring online access and what they post on social media
• see if they have written anything inappropriate or rude
• access to their search history
• see what potential employees do
• also see number of hours someone works

Question 17

Changing Working Practices

Answer 17

• increased amount of new jobs such as social media manager, computer game programmer and cyber text analysis
• job losses due to technology such as cashier jobs and travel agents

Question 18

Collaborative Working

Answer 18

You can work at the same time online remotely on the same document as other members of staff like Google meets

Question 19

Teleworking

Answer 19

Working online, you can use VOIP (voice over internet protocol) to make voice calls over the internet (rather than a telephone company’s wiring)

Question 20

Video Conference

Answer 20

Skype/Zoom/Google Meets (remember online lessons) lets you see and speak to everyone at the same time

Question 21

Digital Divide

Answer 21

The gap between those who have broadband and those who don’t

Question 22

Those with Broadband

Answer 22

• educated
• urban
• rich
• higher speed phones/computers
• higher speed connections

Question 23

Those without Broadband

Answer 23

• uneducated
• rural
• poor
• lower speed on phones/computer
• lower speed connections

Question 24

Retraining and Upskilling

Answer 24

The best people are those with an understanding of the traditional roles being replaced by technology, in such a scenario, retraining and upskilling can offer new roles

Question 25

B2B (business to business)

Answer 25

Businesses exchange products, services and information with another business

Question 26

EDI (electronic data interchange)

Answer 26

The paperless electronic interchange of business documents between companies in a standard format

Question 27

Advantages of B2B & EDI

Answer 27

- orders processed quicker - staff are released to undertake higher value tasks like customer service - costs are reduced due to spending less time filming/searching - using less paper is better for environment

Question 28

B2C (business to customer)

Answer 28

Business selling services and products to consumers

Question 29

C2C

Answer 29

Consumer to consumer

Question 30

Online Marketing

Answer 30

Platform business use to sell, rather than creating your own website, a number of companies offer use of their sales platform to sell products - Etsy or Amazon

Question 31

Advantages of Online Marketing

Answer 31

- creating shop is a quick process - no need to pay for design or website costs - reduces market cost - no need to install or maintain payment methods

Question 32

Disadvantage of Online Marketing

Answer 32

- bad/fakers views cause an impact - company does not have much control over website design/branding - subscription costs can be high £1000+ per month

Question 33

Online Shopping Advantages & Disadvantages to customer

Answer 33

- can purchase products 24/7 - you can track package - save travel and transport costs - don’t know quality of what your buying - customers receive spam emails after creating account - shopping experience lost

Question 34

Online Shopping Advantages & Disadvantages to business

Answer 34

- sell goods 24/7 - customers from all around the world - don’t need to pay for physical shops - keeping bank details secure - bad/fake reviews affect sales - issues with delivering goods

Question 35

Blanket Emails

Answer 35

Sent to all the customers on the database

Question 36

Targeted Emails

Answer 36

Promoting specific products that have been targeting using mining methods and new customers are buying + using emails lists

Question 37

Social Media Marketing

Answer 37

Posting on social media promotes a product or service

Question 38

Influencer Marketing

Answer 38

Giving a positive opinion on a product

Question 39

Data Mining

Answer 39

Companies analyse the data they hold about customers, to target people the correct ads and products to predict trends

Question 40

Search Engine Optimisation

Answer 40

When customers search for a product, companies want their products to be one of the first results and achieved through website design

Question 41

Accidental Damage

Answer 41

When you accidentally delete a file or overwriting of a file, leaving a laptop on a train would lead to loss of hardware and potentially loss of data

Question 42

Malicious and Deliberate Damage

Answer 42

A disruptive employee deleting data on purpose

Question 43

Viruses

Answer 43

Programs that can replicate themselves and spread from one system to another by attaching to a host file - used to alter or pollute information on a targeted computer system Worms are self replicating programs and can remotely infect the device

Question 44

Malware

Answer 44

Short for malicious software, malware is term used to describe software used t disrupt computer operation. Viruses, worms, key-logger and trojans all count

Question 45

Phishing

Answer 45

Deception by using a kind of social engineering where a network user is deceived to reveal personal or secret information

Question 46

Social Engineering

Answer 46

Psychological manipulation of people into revealing personal or confidential information. One common method is to use social media to get people to reveal their personal details

Question 47

Brute Force Attacks

Answer 47

Attempting a combination of usernames and passwords repeatedly to gain access to a computer system

Question 48

Denial of Service Attacks (DoS)

Answer 48

Prevention of access to system by regularly sending huge amounts of messages, usually emails, asking a network or server to authenticate a request that has no valid return address. This can be from one computer or a network of computers, with or without the user’s knowledge

Question 49

Data Interception/Hacking

Answer 49

Once a hacker has accessed a system using any or all of the methods above, they can operate in several ways - preventing access and claiming a ransom to provide access to the computer system - data theft (stealing data from user)

Question 50

Security Measures

Answer 50

Such as encryption and encoding data either symmetrically (weak) or asymmetrically (strong) in order to prevent access to information

Question 51

Symmetric Encryption

Answer 51

Key for encryption and decryption is the same (Caesar’s cypher), simple and fast but is weak as it’s possible to figure out the pattern

Question 52

Asymmetric Encryption

Answer 52

Everyone has a public key so if you send an encrypted message you use the public key. A secure system because you don’t need to send the key - more complicated = slower to decrypt

Question 53

Firewalls

Answer 53

A network security system that monitors incoming and outgoing traffic based on predetermined rules

Question 54

Anti-virus Software

Answer 54

A program that can be loaded into the memory when the computer is running. It monitors activity on a computer system, looking for signs of virus infection

Question 55

Hierarchical Access Levels

Answer 55

Assigning different levels of system access to users depending on their role. User access levels are one method used to grant certain users access and/or write access to data on a computer system

Question 56

Cyber Resilience

Answer 56

A company’s ability to prepare, survive, respond to and recover from a cyber attack - Consequences • permanent of temporary loss of data and information • damaged or corrupt software • websites going offline with need of repair • loss of reputation that has been built • loss of comparative advantage • financial loss

Question 57

Boundary Firewall & Internet Gateway

Answer 57

Firewall helps to block external threats or attacks from accessing the system in the first place, monitoring all network traffic and can identify and block unwanted traffic that could damage your computer, system and networks

Question 58

Secure System Configuration

Answer 58

Admin accounts, adult trails, account management and backups

Question 59

Restricted Access to Valuable Data

Answer 59

Only limited number of staffs with high bevel access will be able to edit, delete, add or access data

Question 60

Malware Protection

Answer 60

Ensuring that there is a robust firewall with antivirus programs installed on every machine which is regularly updated, web filters can be installed to block inappropriate websites and intrusion detection systems, informing staff of an issue

Question 61

Patch Management

Answer 61

Companies will publish a patch to ensure the latest updates are applied to all machines

Question 62

Ensuring known Vulnerabilities are Dealt with

Answer 62

Technical staff need to keep the system updated and install updates as they are published

Question 63

Implementing Staff Training

Answer 63

To ensure staff are not putting data at risk so they are fully informed

Question 64

Good Disaster Plan

Answer 64

- exploring what if situations? - regular backups - having arrangements for use of alternative premises, communication methods and facilities

Question 65

GDPR

Answer 65

Personal data must be - processed lawfully and fairly - collected for specified, explicit and legitimate purposes - adequate, relevant and limited to what is necessary for purposes for which it is processed - accurate and kept up to date - kept for no longer than necessary - held securely; protected against unlawful processing, loss, destruction

Question 66

Computer Misuse Act 1990

Answer 66

- access data without permission and looking at someone else’s files - access computer systems without permission like hacking - alter data stored on a computer system without permission like writing a virus with erases data intentionally

Question 67

Investigatory Power Act 2016

Answer 67

Prevent or detect crime, prevent public disorder, ensure national security and public safety, investigate or detect any abnormal or unlawful use of telecommunication systems