Chap 5

Question 1

Netiquette

Answer 1

includes the code of acceptable behaviors
users should follow while on the Internet; that is, it is the conduct expected of individuals while online.

Question 2

set of legal and moral guidelines that
govern the use of technology, including computers,
mobile devices, information systems, and databases

Answer 2

Digital ethics

Question 3

Cyberbullying

Answer 3

a form of bullying that involves digital
devices and platforms such as social media sites, online forums, messaging apps, and email.

Question 4

one state that has attempted to define and
enact punishment for cyberbullying. Missouri statute
defines cyberbullying as bullying “through the
transmission of a communication, including but not limited to, a message, text, sound, or image by means of an electronic device.”

Answer 4

Missouri

Question 5

Distracted driving

Answer 5

driving a vehicle while
focusing on other activities, typically involving an
electronic device such as a cell phone.

Question 6

a document that lists guidelines and repercussions
of using the Internet and other digital company resources, including network storage and email servers

distributed in part to reduce an organization’s
liability and to clarify what is and is not a fireable offense

Answer 6

AUP or Acceptable Use Policies (AUPs)

Question 7

How to discourage plagarism

Answer 7

To help discourage plagiarism of other people’s work,
teachers often require students to submit papers using a service, such as Turnitin, that automatically checks for plagiarized passages; Turnitin can also help students check for uncited passages and more before submitting

Question 8

Your green computing efforts should include:

Answer 8

• Purchasing and using products with an ENERGY STAR label
• Shutting down your computers and devices overnight or when not in use.
• Donating computer equipment
• Using paperless communication
• Recycling paper, toner and ink cartridges, computers, mobile devices, and printers
• Telecommuting and using videoconferencing for meetings

Question 9

risk

Answer 9

any possibility that something might occur resulting
in an injury or a loss

Question 10

digital security risk

Answer 10

any event or action that could cause
a loss of or damage to a computer or mobile device
hardware, software, data, information, or processing
capability

Question 11

Types of digital security risks

Answer 11

threats to our information, physical health, mental health, and the environment.

Question 12

Any illegal act involving the use of a computer or related devices

Answer 12

computer crime

Question 13

an online or Internet-based illegal act

Answer 13

cybercrime

Question 14

Software used by cybercriminals

Answer 14

crimeware

Question 15

the practice of protection against digital
threats, including unauthorized or illegal access to data.

Answer 15

Cybersecurity

Question 16

discovery, collection, and analysis of evidence found on computers and networks.

Answer 16

Digital forensics, or cyber forensics

Question 17

knowledge of the law, technical experience with many types of hardware and software products, superior communication skills, familiarity with corporate structures and policies, a willingness to learn and update skills, and a knack for problem-solving

Answer 17

A digital forensics examiner

Question 18

attackers who are strongly motivated by
principles or beliefs

Answer 18

Hacktivists

Question 19

a part of the web that is accessed using
specialized software, where users and website operators can remain anonymous while performing illegal actions

Answer 19

dark web

Question 20

more general and common term used to
describe individuals who launch attacks against other
users and their computers

Answer 20

Threat actor

Question 21

a period of time during which an
individual refrains from using technology

Answer 21

digital detox

Question 22

malicious software, consists of
programs that act without a user’s knowledge and
deliberately alter the operations of computers and mobile devices

Answer 22

Malware

Question 23

A program that displays an online advertisement in a banner, pop-up window, or pop under window on webpages, email messages, or other Internet services

Answer 23

Adware

Question 24

A program that hides in a computer or mobile device and allows someone from a remote
location to take full control of the computer or device

Answer 24

Rootkit

Question 25

A program placed on a computer or mobile device without the user’s knowledge that secretly collects information about the user and then communicates the information it collects to some outside source while the user is online

Answer 25

Spyware

Question 26

A program that hides within or looks like a legitimate program. Unlike a virus or worm, a trojan horse does not replicate itself to other computers or devices

Answer 26

Trojan horse

Question 27

A potentially damaging program that affects, or infects, a computer or mobile device negatively by altering the way the computer or device works without the user’s knowledge or permission

Answer 27

Virus

Question 28

A program that copies itself repeatedly, for example in memory or on a network, using up resources and possibly shutting down the computer, device, or network

Answer 28

Worm

Question 29

a program that performs a repetitive task on a network

Answer 29

bot

Question 30

a group of compromised computers or mobile devices connected to a network

Answer 30

botnet

Question 31

disrupts computer access to an Internet service (usually on a server- overload the server with network traffic)

Answer 31

A denial of service attack (DoS attack)

Question 32

Spoofing

Answer 32

a technique intruders use to make their network or Internet transmission appear legitimate to a victim’s computer or network.

Question 33

common types of spoofing

Answer 33

IP and address spoofing

Question 34

occurs when an intruder computer tricks a network into believing its IP address is associated with a trusted source.

Answer 34

IP spoofing

Question 35

occurs when the sender’s email address or other components of an email header are altered

Answer 35

Address spoofing

Question 36

a program or set of instructions in a program that allows users to bypass security controls when accessing a program, computer, or network -rookit can also be a back door

Answer 36

Back Doors

Question 37

the process of ensuring that the person requesting access to a computer or other resources is authentic and not an imposter

Answer 37

Authentication

Question 38

A username

Answer 38

—a user ID (identification), log-on name, or sign-in name—is a unique combination of characters, numbers, or alphabets that identifies one specific use

Question 39

password

Answer 39

a secret combination of letters, numbers, and/or characters that only the user should know

Question 40

uses the unique characteristics of your face, hands, or eyes to authenticate you

Answer 40

Biometric security

Question 41

Examples of Biometric

Answer 41

Fingerprint reader Gesture Swipe Passcode Hand geometry system Iris recognition Voice verification Signature Verification

Question 42

Two-Factor Authentication

Answer 42

multiple types of authentication.

Question 43

a program developed at Carnegie Mellon University that displays an image containing a series of distorted characters to identify and enter to verify that user input is from humans

Answer 43

CAPTCHA

Question 44

the process of scrambling information in such a way that it cannot be read unless the user possesses the key to unlock it so that it is returned to a readable format (decryption).

Answer 44

Encryption

Question 45

an electronic, encrypted, and secure stamp of authentication on a document issued by a CA organization.

Answer 45

digital signature

Question 46

Cookies, scripting, plug-ins, pop-ups, and clear browsing data

Answer 46

Browser Security

Question 47

Protecting Your Online Profile

Answer 47

Several general defenses can be used for any social networking site. * First and foremost, you should be cautious about what information you post. * Second, you should be cautious regarding who can view your information. * Finally, you should pay close attention to information about new or updated security settings

Question 48

Privacy Laws

Answer 48

Information collected and stored about individuals should be limited. * Once collected, provisions should be made to protect the data. * Personal information should be released outside the organization collecting the data only when the person has agreed to its disclosure. * The individual should know that the data is being collected and have the opportunity to determine the accuracy of the data.

Question 49

Software theft

Answer 49

occurs when someone: – Steals software media – Intentionally erases programs – Illegally registers and/or activates a program – Illegally copies a program

Question 50

Information theft

Answer 50

occurs when someone steals personal or confidential information

Question 51

Encryption

Answer 51

a process of converting data that is readable by humans into encoded characters to prevent unauthorized access

Question 52

a notice that guarantees a user or a website is legitimate

Answer 52

digital certificate

Question 53

secure site

Answer 53

A website that uses encryption techniques to secure its data

Question 54

Hardware theft

Answer 54

act of stealing digital equipment

Question 55

Hardware vandalism

Answer 55

defacing or destroying digital equipment

Question 56

Hardware Theft and Vandalism Safeguards

Answer 56

– Physical access controls (i.e., locked doors and windows) – Alarm system – Physical security devices (i.e., cables and locks) – Devices-tracking app

Question 57

Hardware Failure Safeguards

Answer 57

– Surge protector – Uninterruptible power supply (UPS) – Duplicate components or duplicate computers – Fault-tolerant computer

Question 58

backup

Answer 58

a duplicate of a file, program, or media that can be used if the original is lost, damaged, or destroyed

Question 59

Categories of backups

Answer 59

– Full – Differential – Incremental – Selective – Continuous data protection – Cloud

Question 60

Technology ethics

Answer 60

the moral guidelines that govern the use of computers, mobile devices, information systems, and related technologies

Question 61

code of conduct

Answer 61

written guideline that helps determine whether a specification is ethical/unethical or allowed/not allowed

Question 62

Sample IT Code of Conduct

Answer 62

1. Technology may not be used to harm other people. 2. Employees may not meddle in others’ files 3. Employees may use technology only for purpose in which they have been authorized. 4. Technology may not be used to steal. 5. Technology may not be used to bear false witness.

Question 63

the movement to ensure that all users, regardless of economic or geographic constraints, have access to the devices, data, and infrastructure required to receive high-speed, accurate, reliable information

Answer 63

Digital inclusion

Question 64

Some barriers to digital inclusion include:

Answer 64

* Geographic areas that lack the infrastructure necessary to provide reliable Internet access * Government restrictions or censorship * Affordable devices or connections * Lack of education * Lack of understanding of the value of technology

Question 65

Information privacy

Answer 65

refers to the right of individuals and companies to deny or restrict the collection, use, and dissemination of information about them

Question 66

How to Safeguard Personal Information

Answer 66

1. Fill in only necessary information on rebate, warranty, and registration forms. 2. Do not preprint your phone number or Social Security number on personal checks. 3. Have an unlisted or unpublished phone number. 4. If you have Caller ID, nd out how to block your number from displaying on the receiver’s system. 5. Do not write your phone number on charge or credit receipts. 6. Ask merchants not to write credit card numbers, phone numbers, Social Security numbers, and driver’s license numbers on the back of your personal checks. 7. Purchase goods with cash, rather than credit or checks. 8. Avoid shopping club and buyer cards 9. View or download a copy of the information associated with your Google, Facebook, Microsoft, or other online accounts you access frequently. Disable search history, location history, and usage information sent to these websites. 10.Inform merchants that you do not want them to distribute your personal information. 11.Request, in writing, to be removed from mailing lists 12.Obtain your credit report once a year from each of the three major credit reporting agencies (Equifax, Experian, and TransUnion) and correct any errors. 13.Request a free copy of your medical records once a year from the Medical Information Bureau. 14. Limit the amount of information you provide to websites. Fill in only required information. 15. Install a cookie manager to filter cookies. 16. Clear your browsing history when you are finished browsing

Question 66

How to Safeguard Personal Information

Answer 66

1. Fill in only necessary information on rebate, warranty, and registration forms. 2. Do not preprint your phone number or Social Security number on personal checks. 3. Have an unlisted or unpublished phone number. 4. If you have Caller ID, nd out how to block your number from displaying on the receiver’s system. 5. Do not write your phone number on charge or credit receipts. 6. Ask merchants not to write credit card numbers, phone numbers, Social Security numbers, and driver’s license numbers on the back of your personal checks. 7. Purchase goods with cash, rather than credit or checks. 8. Avoid shopping club and buyer cards 9. View or download a copy of the information associated with your Google, Facebook, Microsoft, or other online accounts you access frequently. Disable search history, location history, and usage information sent to these websites. 10.Inform merchants that you do not want them to distribute your personal information. 11.Request, in writing, to be removed from mailing lists 12.Obtain your credit report once a year from each of the three major credit reporting agencies (Equifax, Experian, and TransUnion) and correct any errors. 13.Request a free copy of your medical records once a year from the Medical Information Bureau. 14. Limit the amount of information you provide to websites. Fill in only required information. 15. Install a cookie manager to filter cookies. 16. Clear your browsing history when you are finished browsing 17. Set up a free email account. Use this email address for merchant forms. 18. Turn off le and printer sharing on your Internet connection. 19. Install a personal firewall. 20. Sign up for email filtering through your ISP or use an anti-spam program. 21. Do not reply to spam for any reason. 22. Surf the web anonymously using private browsing

Question 67

Information about you can be stored in a database when you:

Answer 67

– Fill out a printed or online form – Create a profile on an online social network – Register a product warranty

Question 68

a small text file that a web server stores on your computer

Answer 68

cookie

Question 69

Websites use cookies for a variety of purposes:

Answer 69

– Allow for personalization – Store user names and/or passwords – Assist with online shopping – Track how often users visit a site – Target advertisements

Question 70

Phishing

Answer 70

a scam in which a perpetrator sends an official looking message that attempts to obtain your personal and/or financial information

Question 71

an object that can be tapped or clicked on a website contains a malicious program

Answer 71

clickjacking

Question 72

defined as gaining unauthorized access to or obtaining confidential information by taking advantage of the trusting human nature of some victims and the naivety of others

Answer 72

Social engineering

Question 73

the process of restricting access to certain material

Answer 73

Content filtering

Question 74

restricts access to specified websites

Answer 74

Web filtering software

Question 75

Employee monitoring

Answer 75

involves the use of computers, mobile devices, or cameras to observe, record, and review an employee’s use of a technology, including communications such as email messages, keyboard activity (used to measure productivity), and websites visited