Please note: In order to obtain your CPE certificate for having passed the quiz, you must turn off your pop-up blocker.
McMunn Article
Norris Article
Powers Article
Loshin Article
SANS Article
CPE Quiz #
73
Based on Information Systems Control Journal Volume 4, 2000
A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit
Your results will appear in a new window.
Enter your name below so it displays on the quiz results page:
Name:
McMunn Article1. Kennametal tested ACL's dollar unit sampling routine for its audit department and found that Panaudit and ACL's routines yielded exactly same results.
2. Kennametal's primary control concern related to the SAP implementation was data confidentiality, since so much mission critical data was going to be stored in a single database.
3. The audit department of Kennametal used ACL to meet its B2B software development needs. Special modules in ACL related to encryption and authentication now enable them to create a more secure online atmosphere for trading partners, promoting trust in the transactions and in each other.
Norris Article4. A noteworthy characteristic of Linux is that is has open source code. A number of risks arise concerning open source code, including (but not limited to): no way to predict when features become available, many legal uncertainties and all software licenses are the same, regardless of customer size.
5. Major commercial applications such as SAS, Oracle and SAP have all been ported to Linux. Likewise, many hardware vendors are shipping an increasing number of Linux servers.
6. According to Computerworld, Linux was the third most popular PC desktop operating system in 1999, behind only Microsoft NT Server and Novell Netware.
7.The Linux software distribution system comes with two utility programs called Revision Control System (RCS) and Concurrent Version System (CVS). Both tools are useful for program change control and archiving source programs.
8. Another utility program included with Linux is Tripwire. This tool compares one or more programs to a baseline to detect if changes have been made. In the event of unauthorized changes, Tripwire can automatically revert to a previous version of programs.
Powers Article9. The author recommends using the SAP to ACL interface program in lieu of PC spreadsheets or database software applications that can process extracts, due to convenience of products like ACL.
10. The author recommends using ABAP 4 Query instead of ACL or MS-Access, because ABAP 4 Query can process nested and compound IF statements and can access data in long header text fields.
Loshin Article11. Standalone Linux calls for basic security features such as login IDs and passphrases, setting up proper backup routines, and protecting data from improper tampering.
12. Linux has three general classes of security holes: unknown holes, known holes, and application / deployment holes. An advantage of Linux is that it likely has fewer unknown holes, due to the open-source model of development, which encourages peer review.
13. Linux contains a number of built-in intrusion detection systems (IDS) that help determine whether a system has been compromised. Despite its open-source model of development, no developer has improved upon the base IDS.
14. Application / deployment security vulnerabilities occur when an otherwise secure system is misconfigured in some way or when an application is being used improperly. These are often the most harmful class of holes.
SANS Article15. Potential security flaws in SNMP cause the SANS Institute to recommend disabling SNMP unless it is absolutely required by the installation.
16. The SANS Institute recommends that you skip monitoring blocked ports for unauthorized intrusion, since by definition, they are blocked.
|
Your results will appear in a new window.
|
Please note: This quiz requires a JavaScript-enabled browser.
If the quiz is not displayed above, you either do not have a browser which
supports JavaScript or JavaScript support has been disabled.
|
|
|