MIDTERM_AQUINO

Question 1

It is a set of beliefs about right and wrong behavior within a society.

Answer 1

ETHICS

Question 2

conforms to generally accepted standards, many of which are almost universal.

Answer 2

Ethical behavior

Question 3

It is a set of guidelines which are designed to set out acceptable behavior of a group, association and profession.

Answer 3

Professional Code of Ethics?

Question 4

does not provide a complete guide to ethical behavior. Just because an activity is not defined as illegal does not mean it is ethical.

Answer 4

Law

Question 5

I will promote public knowledge, understanding and appreciation of Information and Communications technology

Answer 5

Code of Ethics for the Filipino ICT Professionals

Question 6

I will consider the general welfare and public welfare and public good in the performance of my work.

Answer 6

Code of Ethics for the Filipino ICT Professionals

Question 7

I will advertise goods or professional services in a clear and truthful manner.

Answer 7

Code of Ethics for the Filipino ICT Professionals

Question 8

Code of Ethics for the Filipino ICT Professionals

Answer 8

-I will promote public knowledge, understanding and appreciation of Information and Communications technology.
-I will consider the general welfare and public welfare and public good in the performance of my work.
-I will advertise goods or professional services in a clear and truthful manner.
-I will comply and strictly abide by the intellectual property laws, patent laws and other related laws in respect of Information and Communications Technology.
-I will accept the full responsibility for the work undertaken and utilize my skills with competence and professionalism.

Question 9

I will comply and strictly abide by the intellectual property laws, patent laws and other related laws in respect of Information and Communications Technology.

Answer 9

Code of Ethics for the Filipino ICT Professionals

Question 10

I will accept the full responsibility for the work undertaken and utilize my skills with competence and professionalism.

Answer 10

Code of Ethics for the Filipino ICT Professionals

Question 11

Thou shalt not use a computer to harm other people.

Answer 11

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 12

Thou shalt not interfere with other people’s computer work.

Answer 12

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 13

Thou shalt not snoop around in other people’s computer files.

Answer 13

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 14

Thou shalt not use a computer to steal

Answer 14

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 15

Thou shalt not use a computer to bear false witness

Answer 15

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 16

Thou shalt not copy or use proprietary software for which you have not paid (without permission).

Answer 16

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 17

Thou shalt not use other people’s computer resources without authorization or proper compensation

Answer 17

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 18

Thou shalt not appropriate other people’s intellectual output.

Answer 18

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 19

Thou shalt think about the social consequences of the program you are writing or the system you are designing.

Answer 19

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 20

Thou shalt always use a computer in ways that ensure consideration and respect for your fellow humans.

Answer 20

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Question 21

Ten Commandments of Computer Ethics defined by Computer Ethics Institute:

Answer 21

1. Thou shalt not use a computer to harm other people.
2. Thou shalt not interfere with 3. other people’s computer work.
3. Thou shalt not snoop around in other people’s computer files.
4. Thou shalt not use a computer to steal.
5. Thou shalt not use a computer to bear false witness
6. Thou shalt not copy or use proprietary software for which you have not paid (without permission).
7. Thou shalt not use other people’s computer resources without authorization or proper compensation.
8. Thou shalt not appropriate other people’s intellectual output.
9. Thou shalt think about the social consequences of the program you are writing or the system you are designing.
10. Thou shalt always use a computer in ways that ensure consideration and respect for your fellow humans.

Question 22

With tools like the internet, hackers have found it very easy to hack into any computer or system as long as it is connected on internet

Answer 22

Security

Question 23

As much as Information Communication Technology has enabled us to share and find relevant information online, it has also exploited our freedom of privacy

Answer 23

Privacy Issues

Question 24

Information and Communications Technology has made it easy for users to access any information or artifact at any given time.

Answer 24

Copyright Infringement

Question 25

Since information and Communications Technology systems must run all the time, pressure is mounted on ICT experts to ensure the accuracy and availability of these systems.

Answer 25

Increased pressure on ICT experts

Question 26

Information and Communications technology has many opportunities and it has shaped many industries in developed countries

Answer 26

Digital divide

Question 27

are statements of what you believe to be rules of right conduct.

Answer 27

moral principles

Question 28

are one’s personal beliefs about right and wrong.

Answer 28

Morals

Question 29

describes standards or codes of behavior expected of an individual by a group (nation, organization, profession) to which an individual belongs.

Answer 29

ethics

Question 30

is a system of rules that tells us what we can and cannot do

Answer 30

Law

Question 31

has risen to the top of the business agenda because the risks associated with inappropriate behavior have increased, both in their likelihood and in their potential negative impact

Answer 31

Ethics

Question 32

is a statement that highlights an organization’s key ethical issues

Answer 32

code of ethics

Question 33

is frequently include a set of formal, written statements about the purpose of an organization, its values, and the principles that should guide its employees’ actions

Answer 33

Code of Ethics

Question 34

should focus employees on areas of ethical risk relating to their role in the organization

Answer 34

Code of Ethics

Question 35

Decisions about right and wrong permeate everyday life.

Answer 35

Ethical Decision Making

Question 36

Acting properly as individuals, creating responsible organizations and governments, and making our society as a whole more ethical.

Answer 36

Ethical Decision Making

Question 37

It recognizes that decisions about “right” and “wrong” can be difficult, and may be related to individual context.

Answer 37

Ethical Decision Making

Question 38

can be traced back to the school of the Ancient Greek philosopher Epicurus of Samos (341-270 BCE), who argued that the best life is one that produces the least pain and distress.

Answer 38

Utilitarianism

Question 39

states that people should maximize human pleasure.

Answer 39

Hedonism

Question 40

An approach also known as ethical egoism, or the ethics of self- interest. In this approach, an individual often uses utilitarian calculation to produce the greatest amount of good for him or herself.

Answer 40

Egoistic Approach

Question 41

is most commonly associated with the philosopher Immanuel Kant (1724-1804). Kant argued that doing what is right is not about the consequences of our actions (something over which we ultimately have no control) but about having the proper intention in performing the action

Answer 41

Deontological ethics

Question 42

This approach stipulates that the best ethical action is that which protects the ethical rights of those who are affected by the action. It emphasizes the belief that all humans have a right to dignity.

Answer 42

The Rights Approach

Question 43

this approach sees what is right as the same as what God commands, and ethical standards are the creation of God’s will.

Answer 43

The Divine Command Approach

Question 44

One long-standing ethical principle argues that ethical actions should be consistent with ideal human virtues.

Answer 44

The Virtue Approach

Question 45

CONSEQUENTIALIST THEORIES
U:
H:
E:
D:
R:
C:
V:
UHEDRCV

Answer 45

U: Utilitarianism
H: Hedonism
E: Egoistic Approach
D: Deontological Ethics
R: Rights Approach
C: Divine Command Approach
V: Virtue Approach

Question 46

, just because you can do something doesn’t mean you should do it.

Answer 46

Melissa Woo

Question 47

IT code of ethics

Answer 47

Integrity
Competence
Professional Responsibilities
Work Responsibilities
Societal responsibilities

Question 48

indicates that a professional possesses a particular set of skills, knowledge, or abilities, in the opinion of the certifying organization.

Answer 48

Certification

Question 49

applies only to people and is required by law

Answer 49

licensing

Question 50

is government-issued permission to engage in an activity or to operate a business

Answer 50

government license

Question 51

is generally administered at the state level and often requires that the recipient pass a test of some kind.

Answer 51

government license

Question 52

has been defined as not doing something that a reasonable person would do, or doing something that a reasonable person would not do.

Answer 52

Negligence

Question 53

refers to the obligation to protect people against any unreasonable harm or risk

Answer 53

Duty of care

Question 54

Those people who use PCs, tablets, cellphones and other devices to access information systems, data, and the Internet.

Answer 54

IT Users

Question 55

Almost as soon as computers began to be used commercially, people began to exploit them for illicit purposes. As the use of computer has spread, so too has computer crime.

Answer 55

IT Security Incidents

Question 56

is a crime that is executed using computers or networks of computers. It is done to damage people’s or organizations’ reputation. Some are the ways of computer crimes pose threats are as follows:

Answer 56

Computer crime

Question 57

Computer crime:

Answer 57

Threat to an individual
Threat to an organization
Threat to groups
Threat to a nation

Question 58

is a cyberattack that takes place before the security community and/or software developers become aware of and fix a security vulnerability. It takes advantage of security flaws that enable unauthorized users to gain access to a computer system or to download sensitive user data

Answer 58

zero-day exploit

Question 59

The number of possible entry points to a network expands continually as more devices are added, increasing the possibility of security breaches.

Answer 59

Increasing Complexity Increases Vulnerability

Question 60

Time means money. The earlier the active computer users can resolve a problem, the more productive they can be. As a result, computer support desks are under extreme pressure to counter very instantly to user’s questions.

Answer 60

Higher Computer User Expectations

Question 61

IT organizations prefer to use already installed software “as is” rather than implement security fixes that will either make the software harder to use or eliminate software harder to use or eliminate “nice to have” features suggested by current users or potential customers, which will help sell the software

Answer 61

Increase Reliance on Commercial Software with Known Vulnerabilities

Question 62

With expanded business needs, globalization, collaborative working, and new technological breakthroughs today, information is being shared on networks with millions of other computers.

Answer 62

Technological Advancement Introduce New Risks

Question 63

Employees access company data by using their devices such as mobiles, tablets, and personal laptops to have all-time availability and connection with the work, which generates a security threat.

Answer 63

Bringing your own device (BYOD) policy

Question 64

Most organizations do not understand the upcoming risks and delay software updates for multiple reasons such as time shortage, extra cost involved, or just negligence, making the organization’s computer vulnerable to attack.

Answer 64

Delay in software updates

Question 65

is an attack on an information system that takes advantage of a particular system vulnerability due to poor system design or implementation.

Answer 65

exploit

Question 66

is a piece of programming code, usually disguised as something else, that causes a computer to behave unexpectedly and often undesirably.

Answer 66

Viruses

Question 67

is a harmful program that resides in the active memory of the computer and duplicates itself without human intervention.

Answer 67

worm

Question 68

is a program in which malicious code is hidden inside a seemingly harmless program

Answer 68

Trojan horse

Question 69

is a large group of computers controlled from one or more remote locations by hackers, without the knowledge or consent of their owners.

Answer 69

botnet

Question 70

happens when a malicious hacker takes over computers on the Internet and cause them to flood a target site with demand for data and other small tasks.

Answer 70

Distributed Denial-of-Service (DDos) Attacks:

Question 71

is a set of programs that enables its user to gain administrator-level access to a computer without the end user’s consent or knowledge

Answer 71

Rootkits:

Question 72

is the abuse of e-mail systems to send unsolicited e-mail to large numbers of people.

Answer 72

E-mail spam

Question 73

is the act of using e-mail fraudulently to try to get the recipient to reveal personal data

Answer 73

. Phishing

Question 74

is malware that stops you from using your computer or accessing your data until you meet certain demands, such as paying a ransom or sending photos to the
attacker.

Answer 74

Ransomware

Question 75

A person who carries out a harmful, illegal, or immoral act, is called perpetrators.

Answer 75

Perpetrators

Question 76

They test the limitations of information systems out of intellectual curiosity to see whether they can gain access and how far they can go.

Answer 76

Hackers:

Question 77

They break into other people’s networks and systems to cause harm such as defacing Web pages, crashing computers, spreading harmful programs or hateful messages, and writing scripts and automated programs that let other people do the same things.

Answer 77

Crackers:

Question 78

They are extremely difficult to detect or stop because they are often authorized to access the very systems they abuse.

Answer 78

Malicious Insiders:

Question 79

They use illegal means to obtain trade secrets from competitors of their sponsor

Answer 79

Industrial Spies

Question 80

They are engaged in all forms of computer fraud: stealing and reselling credit card numbers, personal identities, and cellphone IDs.

Answer 80

Cybercriminals:

Question 81

Hacktivism is a combination of the words “hacking” and “activism.” This is done to achieve political or social goal.

Answer 81

Hacktivists and Cyberterrorists:

Question 82

A firewall stands as guard between an organization’s internal network and the Internet. It also limits network access based on the organization’s access policy.

Answer 82

Installing a corporate firewall

Question 83

These work to prevent an attack by blocking viruses, malformed packets, and other threats from getting into the protected network.

Answer 83

Intrusion prevention systems (IPSs

Question 84

scans for a specific sequence of bytes, known as a virus signature, that indicates the presence of specific viruses. If it finds a virus, the antivirus software informs the user, and it may clean, delete, or quarantine any files, directories, or disks affected by the malicious codes

Answer 84

Antivirus software

Question 85

Organizations need to define employee roles carefully and separate key responsibilities properly so that a single person is not responsible for accomplishing a task that has high security

Answer 85

Implementing safeguards against attacks by malicious insiders

Question 86

The actions required to address these issues include installing a known patch to the software and keeping applications and operating systems up to date. Those responsible for computer security must make it a priority to prevent attacks using these vulnerabilities.

Answer 86

Addressing the most critical internet security threats

Question 87

Security audit is a prevention tool that evaluates whether an organization has a well-considered security policy in place and if it is being followed (e.g., password policy, system access, and level of authority).

Answer 87

Conducting periodic IT security audits

Question 88

is a branch of forensic science which deals with the application of investigative analysis techniques on computers in order to retrieve and preserve evidence in a way that is legally admissible. This means that a major aspect of the science of computer forensics lies in the ability of the forensics expert to present findings in a way that is acceptable and usable by a court of law

Answer 88

Computer forensics

Question 89

Confidentiality safeguards are intended to prevent unauthorized information disclosure.

Answer 89

Confidentiality

Question 90

Data consistency includes safeguarding against unauthorized changes (additions, deletions, alterations, and so on). The integrity principle ensures that data is accurate and reliable, and that it is not incorrectly modified, whether accidentally or maliciously.

Answer 90

Integrity

Question 91

The information must be present when needed. The protection of a system’s ability to make software systems and data fully available when a user requires it is known as availability (or at a specified time).

Answer 91

Availability

Question 92

CIA TRIAD

Answer 92

integrity, confidentiality, availability,

Question 93

Cybercrime Prevention Act of 2012” (CPA) was approved, which is the comprehensive legislation on cybercrimes. Notably, it defined “cybersecurity” as the “application of security measures to ensure confidentiality, integrity, and availability of data.

Answer 93

Republic Act No. 10175

Question 94

It establishes the relationship of the individual to the State and defines the rights of the individual by limiting the lawful powers of the State.

Answer 94

Article III of the Philippine Constitution

Question 95

The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no Warrants shall issue, but upon probable cause, supported by Oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized.

Answer 95

The Fourth Amendment is as follows:

Question 96

the combination of communications privacy (the ability to communicate with others without those communications being monitored by other persons or organizations) and data privacy (the ability to limit access to one’s personal data by other individuals and organizations in order to exercise a substantial degree of control over that data and their use).

Answer 96

Information Privacy

Question 97

outlines a number of legislative acts that affect a person’s privacy. Note that most of these actions address invasion of privacy by the government. Legislation that protects people from data privacy abuses by corporations is almost nonexistent.

Answer 97

Privacy Laws, Applications, and Court Rulings

Question 98

Individuals must reveal much of their personal financial data in order to take advantage of the wide range of financial products and services available, including credit cards, checking and savings accounts, loans, payroll direct deposit, and brokerage accounts. The inadvertent loss or disclosure of this personal financial data carries a high risk of loss of privacy and potential financial loss.

Answer 98

Financial Data

Question 99

regulates the operations of credit-reporting bureaus, including how they collect, store, and use credit information. The act, enforced by the U.S. Federal Trade Commission, is designed to ensure the accuracy, fairness, and privacy of information gathered by the credit-reporting companies and to check those systems that gather and sell information about people

Answer 99

Fair Credit Reporting Act (1970)

Question 100

protects the records of financial institution customers from unauthorized scrutiny by the federal government.

Answer 100

Right to Financial Privacy Act (1978)

Question 101

Individuals are rightly concerned about the erosion of privacy of data concerning their health. They fear intrusions into their health data by employers, schools, insurance firms, law enforcement agencies, and even marketing firms looking to promote their products and services.

Answer 101

Health Information

Question 102

was designed to improve the portability and continuity of health insurance coverage; to reduce fraud, waste, and abuse in health insurance and healthcare delivery; and to simplify the administration of health insurance.

Answer 102

Health Insurance Portability and Accountability Act (HIPAA) (1996)

Question 103

According to the Center for Media Research, teens spend over five hours per week surfing the Web, and over 40 percent of them claim that their parents have no idea what they are looking at online. Many people feel that there is a need to protect children from being exposed to inappropriate material and online predators; becoming the target of harassment; divulging personal data; and becoming involved in gambling or other inappropriate behavior.

Answer 103

Children’s Personal Data

Question 104

is a federal law that assigns certain rights to parents regarding their children’s educational records. These rights transfer to the student once the student reaches the age of 18 or if he or she attends a school beyond the high school level.

Answer 104

Family Educational Rights and Privacy Act (1974)

Question 105

any Web site that caters to children must offer comprehensive privacy policies, notify parents or guardians about its data collection practices, and receive parental consent before collecting any personal information from children under 13 years of age.

Answer 105

Children’s Online Privacy Protection Act (1998)

Question 106

This laws address government surveillance, including various forms of electronic surveillance. New laws have been added and old laws amended in recent years in reaction to worldwide terrorist activities and the development of new communication technologies.

Answer 106

Electronic Surveillance

Question 107

The Communications Act established the Federal Communications Commission and gave it responsibility for regulating all non-federal-government use of radio and television broadcasting and all interstate telecommunications as well as all international communications

Answer 107

Communications Act (1934)

Question 108

deals with three main issues: (1) the protection of communications while in transfer from sender to receiver; (2) the protection of communications held in electronic storage; and (3) the prohibition of devices from recording dialing, routing, addressing, and signaling information without a search warrant.

Answer 108

Electronic Communications Privacy Act (1986)

Question 109

Electronic Communications Privacy Act (1986) deals with 3 issues:

Answer 109

(1) the protection of communications while in transfer from sender to receiver; (2) the protection of communications held in electronic storage; and (3) the prohibition of devices from recording dialing, routing, addressing, and signaling information without a search warrant.

Question 110

is a term for a set of guidelines that govern the collection and use of personal data. The overall goal of such guidelines is to stop the unlawful storage of personal data, eliminate the storage of inaccurate personal data, and prevent the abuse or unauthorized disclosure of such data.

Answer 110

Fair Information Practices

Question 111

The government has a great capacity to store data about each and every one of us and about the proceedings of its various organizations. The Freedom of Information Act enables the public to gain access to certain government records, and the Privacy Act prohibits the government from concealing the existence of any personal data recordkeeping systems.

Answer 111

Access to Government Records

Question 112

establishes a code of fair information practices that sets rules for the collection, maintenance, use, and dissemination of personal data that is kept in systems of records by federal agencies.

Answer 112

Privacy Act (1974)

Question 113

Companies openly collect personal information about users when they register at Websites, complete surveys, fill out forms, or enter contests online. Many companies also obtain information about Web surfers through the use of cookies—text files that can be downloaded to the hard drives of users who visit a Web site, so that the Web site is able to identify visitors on subsequent visits.

Answer 113

Consumer Profiling

Question 114

is the unintended release of sensitive data or the access of sensitive data (e.g., credit card numbers, health insurance member ids, and Social Security numbers) by unauthorized individuals.

Answer 114

data breach

Question 115

is the theft of personal information, which is then used without the owner’s permission. Often, stolen personal identification information, such as a person’s name, Social Security number, or credit card number, is used to commit fraud or other crimes. Thieves may use a consumer’s credit card number to charge items to that person’s account, use identification information to apply for a new credit card or a loan in a consumer’s name, or use a consumer’s name and Social Security number to obtain government benefits. Thieves also often sell personal identification information on the black market

Answer 115

Identity theft

Question 116

A number of advances in information technology—such as surveillance cameras and satellite-based systems that can pinpoint a person’s physical location—provide amazing new data-gathering capabilities. However, these advances can also diminish individual privacy and complicate the issue of how much information should be captured about people’s private lives.

Answer 116

Advanced Surveillance Technology

Question 117

Technology has made it easy for a person to track the whereabouts of someone else at all times, without ever having to follow the person. Cell phone spy software called a stalking app can be loaded onto someone’s cell phone or smartphone within minutes, making it possible for the user to perform location tracking, record calls, view every text message or picture sent or received, and record the URLs of any website visited on the phone. A built-in microphone can be activated remotely to use as a listening device even when the phone is turned off.

Answer 117

Stalking Apps

Question 118

is the concept of ensuring proper use of personal data by giving individuals control over how their data is accessed, used, or shared.

Answer 118

Data privacy

Question 119

keeps that data safe from unauthorized access.

Answer 119

data security

Question 120

AN ACT PROTECTING INDIVIDUAL PERSONAL INFORMATION IN INFORMATION AND COMMUNICATIONS SYSTEMS IN THE GOVERNMENT AND THE PRIVATE SECTOR, CREATING FOR THIS PURPOSE A NATIONAL PRIVACY COMMISSION, AND FOR OTHER PURPOSES

Answer 120

REPUBLIC ACT NO. 10173
This Act shall be known as the “Data Privacy Act of 2012”.