UNIT IV - security, control and reporting

Security, Testing, Error detection, Controls, IS Vulnerability, Disaster Management, Computer

Crimes, Securing the Web, Intranets and Wireless Networks, Software Audit, Ethics in IT, User
Interface and reporting
PART –A
Q.N
o Questions BT Level Competence
What are the security aspects of information?
1 Level 1 Remembering
2 What is meant by information system? Level 2 Understanding
3 How would you solve ERROR detection? Level 3 Applying
Can you make a difference between alpha testing and beta
4 testing Level 4 Analysing
Can you identify the threats and controls for disaster
5 management Level 5 Evaluating
6 How would you evaluate Disaster management Level 6 Creating
7 Define programming controls Level 1 Remembering
8 What is meant by testing? Level 2 Understanding
How would you use virus control policies?
9 Level 3 Applying
Can you make difference between internet, intranet, &
10 Extranet? Level 4 Analysing
11 What do you think about ethical guidelines? Level 5 Evaluating
12 How the networks are classified? Level 6 Creating
13 Define software audits Level 1 Remembering
14 Can you explain software error can be detected? Level 2 Understanding
15 What examples can you find for software audit process? Level 3 Applying
16 Can you list out the types of internet security? Level 4 Analysing
17 Define business ethics. Level 1 Remembering
18 How would you classify the types of controls Level 2 Understanding
19 What is the purpose of interface? Level 1 Remembering
20 Define dialog design Level 1 Remembering
PART- B
Q.No Questions BT Level Competence
a).What are the security threats faced in internet
1 supported information system? (7Marks) Level 1 Remembering
b). Describe any four computer crimes. (6Marks)

Discuss the way to control the performance and security

2 Level 2 Understanding
of the use of the internet by business and their end users.
a).Define networking (5Marks)
3 Level 3 Applying
b). Explain different network topologies in detail (8Marks)
a).Define security in I.S (5Marks)
4 Level 4 Analysing
b). Describe controls that promote security for computer
 hardware, network, software and computerized data
(8Marks)
Discuss the various types of attacks on networked
5 information systems. How can you protect your systems Level 5 Evaluating
from such attacks
Illustrate computer crimes and their effect on information
6 Level 6 Creating
system protection with examples
a). What example can you find for software audit?
(6Marks)
7 Level 1 Remembering
b). Discuss the types of audits and the audit process
(7Marks)
How to secure web, intranets and wireless networks?
8 Level 2 Understanding
Elaborate
a). How would you categorize various causes for system
vulnerability? (7Marks)
9 Level 3 Applying
b). Explain the threats and controls for disaster
Management (6Marks)
Evaluate the application/ information system (IS)
10 Level 4 Analysing
controls are required? Explain the types of controls
a). What is ethics? (3Marks)
11 Level 1 Remembering
b). Explain the business and technology ethics (10Marks)
Explain in detail about ERROR detection and its
12 Level 2 Understanding
techniques
a). What example can you find for testing and its
Objectives
13 (7Marks) Level 4 Analysing
b). Simplify the types of testing with example (6Marks)
What is user interface? Explain the different types of
14 Level 1 Remembering
interfaces.
PART – C
S.NO QUESTIONS
Identify an organization that has recently been in the news for some kind of IS
1
security breach. Analyze its security plan and suggest the security measures

Assume you have joined as a chief security officer for a major IT service company.
2 Formulate a strategy for the company to ensure a good security culture is developed,
implemented and maintained.

What do you meant by electronic governance as provided in the IT act? Discuss the
3
provisions regarding attribution, receipt, and dispatch of electronic records

What is digital signature? How is it used? What are the duties of certifying
4
authorities in regard to its usage?