WGU C725: Questions & Proper Answers
SOX (Sarbanes-Oxley Act) Right Ans - Requires corporate executives to
review and modernize their company's financial reporting systems.
GLBA (Gramm-Leach-Bliley Act) Right Ans - Known as the Financial
Modernization Act of 1999. It is a United States federal law that requires
financial institutions to explain how they share and protect their customers'
private information. To be GLBA compliant, financial institutions must
communicate to their customers how they share the customers' sensitive data,
inform customers of their right to opt-out if they prefer that their personal
data not be shared with third parties.
What are the three methods of sanitization? Right Ans - Overwriting
Deguassing
Destruction
Mandatory Access Control (MAC) Right Ans - Uses security labels for access
control. Highly restrictive, usually used within government agencies. E.g. TS,
SCI, etc.
Discretionary Access Control (DAC) Right Ans - A means of restricting
access to objects based on the identity of subjects and/or groups to which
they belong.
What are the problems with passwords? Right Ans - Passwords can be
insecure, and easily broken. Dictionary words are not advised. Passwords are
inconvenient, and repudiable.
RADIUS Right Ans - Remote Access Dial-In User Service; client/server
protocol and software that enables remote access users to communicate with
a central server to authenticate dial-in users and authorize their access to the
requested system or service.
Cryptosystem Right Ans - is the hardware or software implementation that
transforms plaintext into ciphertext (encrypting it) and back into plaintext
(decrypting it).
SOX (Sarbanes-Oxley Act) Right Ans - Requires corporate executives to
review and modernize their company's financial reporting systems.
GLBA (Gramm-Leach-Bliley Act) Right Ans - Known as the Financial
Modernization Act of 1999. It is a United States federal law that requires
financial institutions to explain how they share and protect their customers'
private information. To be GLBA compliant, financial institutions must
communicate to their customers how they share the customers' sensitive data,
inform customers of their right to opt-out if they prefer that their personal
data not be shared with third parties.
What are the three methods of sanitization? Right Ans - Overwriting
Deguassing
Destruction
Mandatory Access Control (MAC) Right Ans - Uses security labels for access
control. Highly restrictive, usually used within government agencies. E.g. TS,
SCI, etc.
Discretionary Access Control (DAC) Right Ans - A means of restricting
access to objects based on the identity of subjects and/or groups to which
they belong.
What are the problems with passwords? Right Ans - Passwords can be
insecure, and easily broken. Dictionary words are not advised. Passwords are
inconvenient, and repudiable.
RADIUS Right Ans - Remote Access Dial-In User Service; client/server
protocol and software that enables remote access users to communicate with
a central server to authenticate dial-in users and authorize their access to the
requested system or service.
Cryptosystem Right Ans - is the hardware or software implementation that
transforms plaintext into ciphertext (encrypting it) and back into plaintext
(decrypting it).
