TEST BANK - Whitman and Mattord, Principles of Information Security 7th Edition, Module 1 - 12, Complete Latest Version TEST BANK For Principles of Information Security 7th Edition by Whitman and Mattord, Verified Module 1 - 12, Complete Newest Version 1. Introduction to Information Security. 2. Th...
TEST BANK
Principles of Information Security, 7th Edition
Michael E. Whitman, Herbert J. Mattord, Module 1 - 12
, Table of Contents
1. Introduction to Information Security.
2. The Need for Security.
3. Legal, Ethical, and Professional Issues in Information Security.
4. Security Management.
5. Incident Response and Contingency Planning.
6. Risk Management.
7. Security Technology: Firewalls, VPNs, and Wireless.
8. Security Technology: Intrusion Detection and Prevention Systems and Other Security Tools.
9. Cryptography.
10. Implementing Information Security.
11. Security and Personnel.
12. Information Security Maintenance.
,Module 1 Introduction to Information Security True
/ False
1. During the early years of computing, the primary threats to security were physical theft of equipment, espionage against the
products of the systems, and sabotage.
a. True
b. False
ANSWER: True
POINTS: 1
DIFFICULTY: Easy
REFERENCES: H1: Introduction to Information Security
p. 2
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.2 - Discuss the history of computer security and explain how it evolved
into Information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 3/2/2017 3:48 PM
2. Network security focuses on the protection of physical items, objects, or areas from unauthorized access and
misuse.
a. True
b. False
ANSWER: False
POINTS: 1
REFERENCES: H1: What is Security?
p. 8
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 12/4/2016 1:54 PM
3. When a computer is the subject of an attack, it is the entity being attacked.
a. True
b. False
ANSWER: False
,POINTS: 1
REFERENCES: p. 10
H1: What is Security?
H2: Key Information Security Concepts
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
4. The value of information comes from the characteristics it possesses.
a. True
b. False
ANSWER: True
POINTS: 1
REFERENCES: p. 11
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
5. E-mail spoofing involves sending an e-mail message with a harmful attachment.
a. True
b. False
ANSWER: False
POINTS: 1
REFERENCES: p. 13
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 12/4/2016 2:02 PM
6. The possession of information is the quality or state of having value for some purpose or end.
a. True
b. False
ANSWER: False
,POINTS: 1
REFERENCES: p. 13
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
7. A breach of possession may not always result in a breach of confidentiality.
a. True
b. False
ANSWER: True
POINTS: 1
REFERENCES: p. 14
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 3/8/2017 11:50 AM
8. Hardware is often the most valuable asset possessed by an organization, and it is the main target of intentional attacks.
a. True
b. False
ANSWER: False
POINTS: 1
REFERENCES: p. 16
H1: Components of An Information System H2:
Data
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 3/8/2017 11:50 AM
9. Information security can be an absolute.
a. True
b. False
ANSWER: False
,POINTS: 1
REFERENCES: p. 17
H1: Security and The Organization
H2: Balancing Information Security and Access
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
10. To achieve balance—that is, to operate an information system that satisfies the user and the security professional—the
security level must allow reasonable access, yet protect against threats.
a. True
b. False
ANSWER: True
POINTS: 1
REFERENCES: p. 17
H1: Security and The Organization
H2: Balancing Information Security and Access
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 3/8/2017 5:20 PM
11. The bottom-up approach to information security has a higher probability of success than the top-down approach.
a. True
b. False
ANSWER: False
POINTS: 1
REFERENCES: p. 18
H1: Security and The Organization
H2: Approaches to Information Security Implementation
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
12. Using a methodology will usually have no effect on the probability of success.
a. True
b. False
,ANSWER: False
POINTS: 1
REFERENCES: H1: Security and The Organization
H2: Approaches to Information Security Implementation
p. 18
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 12/4/2016 2:12 PM
13. A champion is a project manager, who may be a departmental line manager or staff unit manager, and has expertise in
project management and information security technical requirements.
a. True
b. False
ANSWER: False
POINTS: 1
REFERENCES: H1: Security and The Organization H2:
Security Professionals
p. 20
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: DENT.SING.22.01.4 - Name the individuals who had a great impact on the
profession of dentistry.
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
14. A data custodian works directly with data owners and is responsible for the storage, maintenance, and protection of the
information.
a. True
b. False
ANSWER: True
POINTS: 1
REFERENCES: p. 20
H1: Security and The Organization H2:
Data Responsibilities
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: DENT.SING.22.01.4 - Name the individuals who had a great impact on the
profession of dentistry.
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 9/14/2016 10:29 AM
15. The roles of information security professionals focus on protecting the organization’s information systems and stored
information from attacks.
, a. True
b. False
ANSWER: True
POINTS: 1
REFERENCES: p. 20
H1: Security and The Organization H2:
Communities of Interest
QUESTION TYPE: True / False
HAS VARIABLES: False
LEARNING OBJECTIVES: DENT.SING.22.01.4 - Name the individuals who had a great impact on the
profession of dentistry.
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 4/8/2021 10:44 AM
Modified True / False
16. Every organization, whether public or private and regardless of size, has information it wants to protect.
ANSWER: True
POINTS: 1
REFERENCES: H1: Introduction to Information Security
p. 2
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.1 - Define information security
DATE CREATED: 4/6/2021 8:48 AM
DATE MODIFIED: 4/8/2021 10:46 AM
17. The history of information security begins with the concept of communications security.
ANSWER: False - computer
POINTS: 1
REFERENCES: H1: Introduction to Information Security
p. 3
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.2 - Discuss the history of computer security and explain how it evolved
into Information security
DATE CREATED: 4/6/2021 8:50 AM
DATE MODIFIED: 4/8/2021 10:46 AM
18. RAND Report R-609 was the first widely recognized published document to identify the role of management and
policy issues in computer security.
ANSWER: True
POINTS: 1
,REFERENCES: p. 5
H1: Introduction to Information Security H2:
The 1970s and ’80s
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.2 - Discuss the history of computer security and explain how it evolved
into Information security
DATE CREATED: 4/6/2021 8:53 AM
DATE MODIFIED: 4/8/2021 10:46 AM
19. Much of the early research on computer security centered on a system called Management Information and
Computing Service (MULTICS).
ANSWER: False - Multiplexed
POINTS: 1
REFERENCES: p. 6
H1: Introduction to Information Security H2:
The 1970s and ’80s
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.2 - Discuss the history of computer security and explain how it evolved
into Information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 4/8/2021 10:46 AM
20. According to the CNSS, networking is ―the protection of information and its critical elements.‖
ANSWER: False - information security
POINTS: 1
REFERENCES: p. 8
H1: What is Security?
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.1 - Define information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 4/7/2021 6:36 PM
21. Indirect attacks originate from a compromised system or resource that is malfunctioning or working under the control of
a threat.
ANSWER: True
POINTS: 1
REFERENCES: p. 9
H1: What is Security?
H2: Key Information Security Concepts
QUESTION TYPE: Modified True / False
, HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 4/7/2021 6:36 PM
22. When unauthorized individuals or systems can view information, confidentiality is breached.
ANSWER: True
POINTS: 1
REFERENCES: p. 11
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 4/7/2021 6:36 PM
23. Confidentiality ensures that only those with the rights and privileges to access information are able to do so.
ANSWER: True
POINTS: 1
REFERENCES: p. 11
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
LEARNING OBJECTIVES: POIS.WHMA.22.01.3 - Define key terms and critical concepts of information security
DATE CREATED: 9/14/2016 10:29 AM
DATE MODIFIED: 4/7/2021 6:36 PM
24. Information has redundancy when it is free from mistakes or errors and it has the value that the end user expects.
ANSWER: False - accuracy
POINTS: 1
REFERENCES: p. 13
H1: What is Security?
H2: Critical Characteristics of Information
QUESTION TYPE: Modified True / False
HAS VARIABLES: False
STUDENT ENTRY MODE: Basic
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller LectJoshua. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $22.99. You're not tied to anything after your purchase.
