WGU D333 Ethics in Technology – WGU
UPDATED ACTUAL Exam Questions and
CORRECT Answers
A document that stipulates restrictions and practices that a user must agree in order to use
organizational computing and network resources. - CORRECT ANSWER - acceptable use
policy (AUP)
A network attack in which an intruder gains access to a network and stays there—undetected—
with the intention of stealing data over a long period of time (weeks or even months). -
CORRECT ANSWER - advanced persistent threat (APT)
An agreement of the World Trade Organization that requires member governments to ensure that
intellectual property rights can be enforced under their laws and that penalties for infringement
are tough enough to deter further violations. - CORRECT ANSWER - Agreement on Trade-
Related Aspects of Intellectual Property Rights (TRIPS)
A wide-ranging act that authorized $787 billion in spending and tax cuts over a 10-year period
and included strong privacy provisions for electronic health records, such as banning the sale of
health information, promoting the use of audit trails and encryption, and providing rights of
access for patients. - CORRECT ANSWER - American Recovery and Reinvestment Act
The estimated loss from a potential risk event over the course of a year. The following equation
is used to calculate the annual loss expectancy: ARO × SLE = ALE. Where ARO is the
annualized rate of occurrence, an estimate of the probability that this event will occur over the
course of a year and SLE is the single loss expectancy, the estimated loss that would be incurred
if the event happens. - CORRECT ANSWER - annualized loss expectancy (ALE)
An estimate of the probability that a risk event will occur over the course of a year. - CORRECT
ANSWER - annualized rate of occurrence (ARO)
,A service that allows anonymity on the Internet by using a computer program that strips the
originating header and/or IP address from the message and then forwards the message to its
intended recipient. - CORRECT ANSWER - anonymous remailer service
Laws designed to reduce frivolous SLAPPs (strategic lawsuit against public participation
(SLAPP), which is a lawsuit filed by corporations, government officials, and others against
citizens and community groups who oppose them on matters of concern). - CORRECT
ANSWER - anti-SLAPP laws
A group that provides assistance to the board of directors in fulfilling its responsibilities with
respect to the oversight of the quality and integrity of the organization's accounting and reporting
practices and controls, including financial statements and reports; the organization's compliance
with legal and regulatory requirements; the qualifications, independence, and performance of the
company's independent auditor; and the performance of the company's internal audit team. -
CORRECT ANSWER - audit committee
The moral corruption of people in power, which is often facilitated by a tendency for people to
look the other way when their leaders act inappropriately. - CORRECT ANSWER -
Bathsheba syndrome
The first 10 amendments to the United States Constitution that spell out additional rights of
individuals. - CORRECT ANSWER - Bill of Rights
A type of dynamic testing that involves viewing the software unit as a device that has expected
input and output behaviors but whose internal workings are unknown (a black box). - CORRECT
ANSWER - black-box testing
A sophisticated threat that combines the features of a virus, worm, Trojan horse, and other
malicious code into a single payload. - CORRECT ANSWER - blended threat
An agreed-upon sets of skills and abilities that all licensed professionals must possess. -
CORRECT ANSWER - body of knowledge
, A large group of computers, which are controlled from one or more remote locations by hackers,
without the knowledge or consent of their owners. - CORRECT ANSWER - botnet
The failure to act as a reasonable person would act. - CORRECT ANSWER - breach of the
duty of care
A trade group that represent the world's largest software and hardware manufacturers. -
CORRECT ANSWER - BSA | The Software Alliance
A risk-based strategy that includes an occupant emergency evacuation plan, a continuity of
operations plan, and an incident management plan with an active governance process to
minimize the potential impact of any security incident and to ensure business continuity in the
event of a cyberattack or some form of disaster. - CORRECT ANSWER - business continuity
plan
A set of interrelated components—including hardware, software, databases, networks, people,
and procedures—that collects and processes data and disseminates the output. - CORRECT
ANSWER - business information system
Collection of best practices that help organizations improve their processes. - CORRECT
ANSWER - Capability Maturity Model Integration (CMMI) models
Software that generates and grades tests that humans can pass and all but the most sophisticated
computer programs cannot. - CORRECT ANSWER - CAPTCHA (Completely Automated
Public Turing Test to Tell Computers and Humans Apart)
An act signed into law in 1998 with the aim of prohibiting the making of harmful material
available to minors via the Internet; the law was ultimately ruled largely unconstitutional. -
CORRECT ANSWER - Child Online Protection Act (COPA)
An act passed in 2000; it required federally financed schools and libraries to use some form of
technological protection (such as an Internet filter) to block computer access to obscene material,
UPDATED ACTUAL Exam Questions and
CORRECT Answers
A document that stipulates restrictions and practices that a user must agree in order to use
organizational computing and network resources. - CORRECT ANSWER - acceptable use
policy (AUP)
A network attack in which an intruder gains access to a network and stays there—undetected—
with the intention of stealing data over a long period of time (weeks or even months). -
CORRECT ANSWER - advanced persistent threat (APT)
An agreement of the World Trade Organization that requires member governments to ensure that
intellectual property rights can be enforced under their laws and that penalties for infringement
are tough enough to deter further violations. - CORRECT ANSWER - Agreement on Trade-
Related Aspects of Intellectual Property Rights (TRIPS)
A wide-ranging act that authorized $787 billion in spending and tax cuts over a 10-year period
and included strong privacy provisions for electronic health records, such as banning the sale of
health information, promoting the use of audit trails and encryption, and providing rights of
access for patients. - CORRECT ANSWER - American Recovery and Reinvestment Act
The estimated loss from a potential risk event over the course of a year. The following equation
is used to calculate the annual loss expectancy: ARO × SLE = ALE. Where ARO is the
annualized rate of occurrence, an estimate of the probability that this event will occur over the
course of a year and SLE is the single loss expectancy, the estimated loss that would be incurred
if the event happens. - CORRECT ANSWER - annualized loss expectancy (ALE)
An estimate of the probability that a risk event will occur over the course of a year. - CORRECT
ANSWER - annualized rate of occurrence (ARO)
,A service that allows anonymity on the Internet by using a computer program that strips the
originating header and/or IP address from the message and then forwards the message to its
intended recipient. - CORRECT ANSWER - anonymous remailer service
Laws designed to reduce frivolous SLAPPs (strategic lawsuit against public participation
(SLAPP), which is a lawsuit filed by corporations, government officials, and others against
citizens and community groups who oppose them on matters of concern). - CORRECT
ANSWER - anti-SLAPP laws
A group that provides assistance to the board of directors in fulfilling its responsibilities with
respect to the oversight of the quality and integrity of the organization's accounting and reporting
practices and controls, including financial statements and reports; the organization's compliance
with legal and regulatory requirements; the qualifications, independence, and performance of the
company's independent auditor; and the performance of the company's internal audit team. -
CORRECT ANSWER - audit committee
The moral corruption of people in power, which is often facilitated by a tendency for people to
look the other way when their leaders act inappropriately. - CORRECT ANSWER -
Bathsheba syndrome
The first 10 amendments to the United States Constitution that spell out additional rights of
individuals. - CORRECT ANSWER - Bill of Rights
A type of dynamic testing that involves viewing the software unit as a device that has expected
input and output behaviors but whose internal workings are unknown (a black box). - CORRECT
ANSWER - black-box testing
A sophisticated threat that combines the features of a virus, worm, Trojan horse, and other
malicious code into a single payload. - CORRECT ANSWER - blended threat
An agreed-upon sets of skills and abilities that all licensed professionals must possess. -
CORRECT ANSWER - body of knowledge
, A large group of computers, which are controlled from one or more remote locations by hackers,
without the knowledge or consent of their owners. - CORRECT ANSWER - botnet
The failure to act as a reasonable person would act. - CORRECT ANSWER - breach of the
duty of care
A trade group that represent the world's largest software and hardware manufacturers. -
CORRECT ANSWER - BSA | The Software Alliance
A risk-based strategy that includes an occupant emergency evacuation plan, a continuity of
operations plan, and an incident management plan with an active governance process to
minimize the potential impact of any security incident and to ensure business continuity in the
event of a cyberattack or some form of disaster. - CORRECT ANSWER - business continuity
plan
A set of interrelated components—including hardware, software, databases, networks, people,
and procedures—that collects and processes data and disseminates the output. - CORRECT
ANSWER - business information system
Collection of best practices that help organizations improve their processes. - CORRECT
ANSWER - Capability Maturity Model Integration (CMMI) models
Software that generates and grades tests that humans can pass and all but the most sophisticated
computer programs cannot. - CORRECT ANSWER - CAPTCHA (Completely Automated
Public Turing Test to Tell Computers and Humans Apart)
An act signed into law in 1998 with the aim of prohibiting the making of harmful material
available to minors via the Internet; the law was ultimately ruled largely unconstitutional. -
CORRECT ANSWER - Child Online Protection Act (COPA)
An act passed in 2000; it required federally financed schools and libraries to use some form of
technological protection (such as an Internet filter) to block computer access to obscene material,
