MIS 395 Chapter 5
Which of the following statements about Bitcoin is NOT true?
Bitcoins are completely secure.
Beebone is an example of which of the following?
Botnet
According to Ponemon Institute's 2017 survey, which of the following was NOT among the causes of the most costly cybercrimes?
Botnets
The Data Encryption Standard uses a(n) ________-bit key.
56
Which of the following dimensions of e-commerce security is NOT provided for by encryption?
availability
Which of the following dimensions of e-commerce security is not provided for by encryption?
availability
An intrusion detection system can perform all of the following functions except:
blocking suspicious activity.
All of the following are limitations of the existing online credit card payment system except:
cost to consumers.
Which of the following is not a key factor for establishing e-commerce security?
data integrity
Which of the following is NOT an example of an access control?
digital signatures
Which of the following is not an example of an access control?
digital signatures
Which of the following is not an example of a potentially unwanted program (PUP)?
drive-by download
Proxy servers are also known as:
dual home systems.
Which dimension(s) of security is spoofing a threat to?
integrity and authenticity
All of the following are features of WPA3 except:
it enables the creation of a VPN.
The overall rate of online credit card fraud is ________ of all online card transactions.
less than 1%
Today, online bill payment accounts for ________ of all bill payments, while paper checks account for ________.
more than 55%; less than 20%
All the following statements about symmetric key cryptography are true except:
symmetric key cryptography is computationally slower
The attack on Dyn Inc. in 2016 is an example of which of the following?
DDoS attack
Bluetooth is the primary enabling technology for mobile wallets.
False
Exploit kits can be purchased by users to protect their computers from malware.
False
Phishing attacks rely on browser parasites.
False
Which of the following statements is not true?
The Cybersecurity Information Sharing Act was strongly supported by most large technology companies and privacy advocates.
IoT botnets became the preferred platform for launching DDoS attacks in 2017.
True
The creation of Bitcoins consumes a significant amount of energy.
True
There is a finite number of Bitcoins that can be created.
True
Zelle is an example of a P2P mobile payment app.
True
According to the Identity Theft Resource Center, the number of data breaches in 2017 increased by ________ compared to 2016.
55%
Which of the following statements about blockchain is not true?
A blockchain system is inherently centralized.
Which of the following statements about data breaches in 2017 is not true?
According to the Identity Theft Resource Center, employee error was the leading cause of data breaches.
Which of the following did the Internet Advertising Bureau urge advertisers to abandon?
Adobe Flash
All of the following statements about Apple Pay are true except which of the following?
Apple Pay is the most popular alternative payment method in the United States.
Which of the following statements is NOT true?
Apple's Touch ID stores a digital replica of a user's actual fingerprint in Apple's iCloud.
Accessing data without authorization on Dropbox is an example of a:
Cloud Security Issue
________ is the ability to ensure that messages and data are only available to those authorized to view them.
Confidentiality
Software that is used to obtain private user information such as a user's keystrokes or copies of e-mail is referred to as:
Spyware
Which of the following was designed to cripple Iranian nuclear centrifuges?
Stuxnet
Malware that comes with a downloaded file that a user requests is called a:
drive-by download.
Which of the following is an example of an online privacy violation?
your online purchasing history being sold to other merchants without your consent
Which of the following is an example of an integrity violation of e-commerce security?
An unauthorized person intercepts an online communication and changes its contents.
To allow lower-level employees access to the corporate network while preventing them from accessing private human resources documents, you would use:
an authorization management system.
PayPal is an example of what type of payment system?
online stored value payment system.
All of the following are used for authentication except:
packet filters.
Automatically redirecting a web link to a different address is an example of which of the following?
pharming
Asymmetric key cryptography is also known as:
public key cryptography.
Which of the following is not an example of malicious code?
sniffer
A digital certificate contains all of the following except the:
subject's private key.
What is the most frequent cause of stolen credit cards and card information today?
the hacking and looting of corporate servers storing credit card information
Conficker is an example of a:
worm.
What is the first step in developing an e-commerce security plan?
Preform a risk assessment
Which of the following is the leading cause of data breaches?
Hackers
Which of the following is a set of short-range wireless technologies used to share information among devices within about two inches of each other?
NFC
According to Symantec, almost half of the e-mail addresses involved in business e-mail compromise (BEC) phishing that it analyzed had an IP address originating in:
Nigeria.
________ is the ability to ensure that e-commerce participants do not deny their online actions.
Nonrepudiation
All of the following statements about PKI are true EXCEPT:
PKI guarantees that the verifying computer of the merchant is secure.
A Trojan horse appears to be benign, but then does something other than expected.
True
SSL/TLS cannot provide irrefutability.
True
Spoofing is the attempt to hide a hacker's true identity by using someone else's e-mail or IP address.
True
Typically, the more security measures added to an e-commerce site, the slower and more difficult it becomes to use.
True
