General Certificate of Education Ordinary Level Computer Security System/ Social Effects of Information System

Transcription

1 General Certificate of Education Ordinary Level Computer Security System/ Social Effects of Information System STUDENT NAME BATCH # COMPUTER SCIENCE Paper /01 Prepared By: TANVIR IQBAL KHAN This document consist of 11 printed pages

2 1. In a simple symmetric encryption system, each letter of the alphabet is substituted with another. The plain text message: The quick brown fox jumps over the lazy dog. becomes the cypher text message: Zag towns jumpy dmh coilp mngu zag bfke qmx. (a) (i) Decode this cypher text message. Agbbm Pmubq [2] (ii) Convert these words to cypher text. Computer Science [2] (b) Both the person who sends the message and the person who receives it need to know what the substitution key is, and they need to keep this secret. A copy of the substitution key has been sent using SSL transmission. Explain why this keeps the copy of the key secret during transmission [2] Page 1 of 11

3 2. Five security or data loss issues are shown on the left-hand side. Five possible methods of data recovery or protection are shown on the right. Draw a line to match each definition/description of Issues to the most appropriate Methods of Data Recovery. [4] Page 2 of 11

4 3. The following five statements about Internet security are incomplete: (i) Illegal access to a computer system is known as < (a) >. (ii) < (b) > are programs that self-replicate (copy themselves) and are designed to disrupt computer systems. (iii) < (c) > is where a user is sent legitimate-looking s; as soon as the is opened and the recipient clicks on the embedded link, they are sent to a fake website. (iv) Software that monitors key presses on a user s keyboard, and relays the information back to the person who sent the software, is known as < (d) >. (v) < (e) > is malicious code or software installed on the hard drive of a user s computer or on a web server; the code or software will re-direct the user to a fake website without their knowledge. Complete the five statements using words from the following list: cookies hacking pharming phishing spam spyware viruses web browsers (a)...[1] (b)...[1] (c)...[1] (d)...[1] (e)...[1] Page 3 of 11

5 4. A worker at a company has to go through a logon procedure to gain access to her computer system. (a) The first thing she has to do is type in a user name and a password. Why is this done?...[1] (b) The password is typed in twice. Why is this done?...[1] A menu then appears on her screen. She chooses to connect to the Internet. (c) Describe two ways her computer system is protected against loss or corruption of files once the computer system is connected to the Internet [2] Page 4 of 11

6 5. (a) Name three features of a typical data protection act [3] (b) Data being held is often referred to as Personal or Sensitive Personal data. Give two examples of each type of data. Personal Data 1 2 Sensitive Personal Data [4] Page 5 of 11

7 6. Internet security is a major issue for many people. The following is a list of five typical security issues: hacking pharming phishing spyware viruses Choose three of these security issues. For each one, describe the security issue and suggest a way of protecting against it. Security issue Description of issue... Method of protection Security issue 2... Description of issue Method of protection Security issue 3... Description of issue Method of protection [6] Page 6 of 11

8 7. A company has bought some computers which can be used as stand-alone or networked. (a) When used as stand-alone, there is a risk of information being stolen. Give two ways this risk could be removed or minimised [2] (b) There are additional, different security risks when using the computers on a network. Describe two of these risks and how the system can be protected against them. Risk 1... Protection... Risk 2... Protection......[4] Page 7 of 11

9 8. Credit card fraud in many countries is now reducing. (a) What changes to credit card technology have helped this reduction?...[1] However, there has been a large increase in online fraud. This has resulted in fraudulent use of bank accounts. (b) Name and describe three ways bank account information (such as passwords) can be accessed illegally. 1 Description... 2 Description... 3 Description [6] Page 8 of 11

10 9. A computer system is to have access to the Internet. Name and describe three potential security issues. Security issue 1... Description Security issue 2... Description Security issue 3... Description [6] 10. A computer system is to have wireless access (Wi-Fi) to the Internet. State five potential security issues [5] Page 9 of 11

11 11, Describe ways to guard against each of the following Internet security issues. (A different method should be given in each case.) Viruses..... Hacking... Spyware Phishing.... Tapping into wireless networks [5] Page 10 of 11

12 12. Page 11 of 11