1. Perform a risk assessment
2. Develop a security policy
3. Develop an implementation plan
4. create a security organization
5. perform a security audit
The Role of Laws and Public Policy
New laws have granted local and national authorities new tools and mechanisms for identifying, tracing and prosecuting cybercriminals
National Infrastructure Protection Center – unit within FBI whose mission is to identify and combat threats against U.S. technology and telecommunications infrastructure
USA Patriot Act
Homeland Security Act
Government policies and controls on encryption software
Typically, the more security measures added to an e-commerce site, the slower and more difficult it becomes to use.
A worm does not need to be activated by a user in order for it to replicate itself.
A Trojan horse appears to be benign, but then does something other than expected.
Phishing attacks rely on browser parasites.
Spoofing involves attempting to hide a true identity by using someone else's e-mail or IP address.
The easiest and least expensive way to prevent threats to system integrity is to install anti-virus software.
Credit cards are the dominant form of online payment throughout the world.
In the United States, the primary form of online payment is: A) PayPal.
B) credit cards.
C) debit cards.
D) Google Wallet.
________ refers to the ability to ensure that e-commerce participants do not deny their online actions.
________ refers to the ability to identify the person or entity with whom you are dealing on the Internet.
Which of the following is an example of an integrity violation of e-commerce security?
A) A Web site is not actually operated by the entity the customer believes it to be.
B) A merchant uses customer information in a manner not intended by the customer.
C) A customer denies that he or she is the person who placed the order.
D) An unauthorized person intercepts an online communication and changes its contents.
An example of a privacy violation of e-commerce security is:
A) your e-mail being read by a hacker.
B) your online purchasing history being sold to other merchants without your consent.
C) your computer being used as part of a botnet.
D) your e-mail being altered by a hacker.
________ refers to the ability to ensure that messages and data are only available to those authorized to view them.
Which of the following is not a key point of vulnerability when dealing with e-commerce?
A) the client computer
B) the server
C) the communications pipeline
D) the credit card companies
Accessing data without authorization on Dropbox is an example of which of the following?
A) social network security issue
B) cloud security issue
C) mobile platform security issue
Most of the world's malware is delivered via which of the following?
B) Trojan horses
Which of the following is the leading cause of data breaches?
A) theft of a computer
B) accidental disclosures
D) DDoS attacks
All of the following are examples of malicious code except:
All of the following statements about public key encryption are true except
A) public key encryption uses two mathematically related digital keys.
B) public key encryption ensures authentication of the sender.
C) public key encryption does not ensure message integrity.
D) public key encryption is based on the idea of irreversible mathematical functions.
Which of the following is the current standard used to protect Wi-Fi networks?
Which of the following dimensions of e-commerce security is not provided for by encryption?
C) message integrity
A ________ is hardware or software that acts as a filter to prevent unwanted packets from entering a network.
B) virtual private network
C) proxy server
What is the first step in developing an e-commerce security plan?
A) Create a security organization.
B) Develop a security policy.
C) Perform a risk assessment.
D) Perform a security audit.
Paypal is an example of what type of payment system?
A) digital checking system
B) accumulating balance system
C) online stored value payment system
D) digital credit card system
________ relies on human curiosity, greed, and gullibility to trick people into taking action that will result in the downloading of malware.
A fingerprint or retina (eye) scan is an example of ________.
A(n) ________ is a feature of viruses, worms, and Trojans that allows an attacker to remotely access a compromised computer.
Malicious code is sometimes also referred to as ________.
20th Jul 2017
List of all black spots on Kenyan roads Below is a list of the black spots in the country to watch out for while traveling: Black spots in Nairobi
2nd Feb 2018
Tom Mboya Labour College Kisumu 2017/2018 September KUCCPS Admission letter INSTRUCTIONS to download Kuccps a
3rd Jan 2018
Official Kenya School of Revenue Administration Contacts P.O Box 95707-80106 Mombasa firstname.lastname@example.org Courses offered at Kenya School of Revenue Administr
1st Dec 2019
KCSE Results 2019: How to check kcse results via sms and online: The Kenya Certificate of Secondary Education (KCSE) is a certificate a