Please note: In order to obtain your CPE certificate for having passed the quiz, you must turn off your pop-up blocker.
Shue Article
Koorn, van Walsem and Lundin Article
Blanco Article
Wakefield Article
ISACA Standards Board Article
CPE Quiz #
86
Based on Information Systems Control Journal Volume 5, 2002
A passing score of 75 percent qualifies for one (1) hour of CISA/CISM/CGEIT Continuing Professional Education (CPE) Credit
Your results will appear in a new window.
Enter your name below so it displays on the quiz results page:
Name:
Shue Article1. In 1999 the European Union (EU) Commission adopted the EU Electronic Signature Directive. This directive defines explicit technologies and oversight processes for electronic commerce at a European level to create the right conditions for online transactions.
2. The United Nations Commission on International Trade Law (UNCITRAL) adopted legislation to the European Union for electronic signature. The UN's legislation prescribes technologies for authenticating and authorizing electronic signatures for all member countries.
3. As of October 2001, all US states, except New Jersey and Massachusetts, have enacted electronic signature laws.
4. In a survey conducted by ISACF, a majority of countries in each region, except Africa and Asia, have already enacted electronic signature or digital signature legislation.
5. The majority of countries surveyed by ISACF have country laws that have provisions for preserving relevant electronic records with stipulated requirements.
Koorn, van Walsem and Lundin Article6. PKI is a combination of technology, process and legal components that binds the identity of the holder of two related keys using symmetric key cryptography.
7. Initial identification and authentication for a PKI is performed by a registration authority (RA). An RA establishes the link between the identity of the requesting person or organization and the public key.
8. PKI requirements are normally specified in a certificate policy (CP) and certificate practice statements (CPS). These documents are normally made public via the Internet.
9. The International Organization for Standards (ISO) has adopted and published PKI standards for CP and CPS via standard number 21188.
Blanco Article10. Purposes of audit trails include permitting recovery when it is found that a user incorrectly updates or deletes a record, and assisting in recovery from massive file destruction.
11. E-banking transaction systems are required by international law to have clear audit trails to assist in dispute resolution.
12. Audit strategy in an e-commerce audit should be set by evaluating events in audit logs, performing CAATs tests of ACLs, and by attempting to change elements and records of restricted data.
Wakefield Article13. Within the US, the Federal Electronic Signature in Global and National Commerce Act of 2000 (E-Sign) and Uniform Electronic Transaction Act (UETA) establish the legal validity and enforceability of electronic records and electronic signatures.
14. UETA and E-Sign have been approved and ratified by all 50 states.
15. UETA requires that electronic records remain accessible for later reference. Similarly, E-Sign requires that electronic records remain accessible to all persons entitled to access for the time specified.
ISACA Standards Board Article16. Continuous monitoring and continuous auditing differ in that continuous monitoring is a management control function, and auditors performing management control functions would be a violation of independence.
|
Your results will appear in a new window.
|
Please note: This quiz requires a JavaScript-enabled browser.
If the quiz is not displayed above, you either do not have a browser which
supports JavaScript or JavaScript support has been disabled.
|
|
|