,TEST BANK FOR MANAGEMENT OF INFORMATION SECURITY 6 TH EDITION
BY MICHAEL E. WHITMAN ||HERBERT J. MATTORD LATEST UPDATE
2025/26 A+
CHAPTER 1
1. Corruption Of Information Can Occur Only While Information Is Being Stored.
a. True
ANSWER: BFalse
2. The Authorization Process Takes Place Before The Authentication Process.
a. True
ANSWER: BFalse
3. A Worm May Be Able To Deposit Copies Of Itself Onto All Web Servers That The Infected System Can
Reach, So That Users Who Subsequently Visit Those Sites Become Infected.
ANSWER: A True
B. False
4. Dos Attacks Cannot Be Launched Against Routers.
a. True
ANSWER: BFalse
5. The First Step In Solving Problems Is To Gather Facts And Make Assumptions.
a. True
ANSWER: BFalse
6. A Device (Or A Software Program On A Computer) That Can Monitor Data Traveling On A Network Is
Known As A Socket Sniffer.
a. True
ANSWER: BFalse
7. One Form Of E-Mail Attack That Is Also A Dos Attack Is Called A Mail Spoof, In Which An Attacker
Overwhelms The Receiver With Excessive Quantities Of E-Mail.
a. True
ANSWER: BFalse
,8. When Voltage Levels Lag (Experience A Momentary Increase), The Extra Voltage Can Severely Damage Or
Destroy Equipment.
a. True
ANSWER: BFalse
9. "Shoulder Spying" Is Used In Public Or Semi-Public Settings When Individuals Gather Information
They Are Not Authorized To Have By Looking Over Another Individual’s Shoulder Or Viewing The
Information From A Distance.
a. True
ANSWER: BFalse
10. The Term Phreaker Is Now Commonly Associated With An Individual Who Cracks Or Removes Software
Protection That Is Designed To Prevent Unauthorized Duplication.
a. True
ANSWER: BFalse
11. The Application Of Computing And Network Resources To Try Every Possible Combination Of
Options Of A Password Is Called
A Dictionary Attack.
a. True
ANSWER: BFalse
12. The Macro Virus Infects The Key Operating System Files Located In A Computer’s Start-Up Sector.
a. True
ANSWER: BFalse
13. The Malicious Code Attack Includes The Execution Of Viruses, Worms, Trojan Horses, And Active Web
Scripts With The Intent To Destroy Or Steal Information.
ANSWER: A True
b. False
14. A(N) Polymorphic Threat Is One That Over Time Changes The Way It Appears To Antivirus Software
Programs, Making It Undetectable By Techniques That Look For Pre-Configured Signatures.
ANSWER: A True
B. False
, 15. Communications Security Involves The Protection Of Which Of The Following?
a. Radio Handsets
b. People, Physical Assets
c. The IT Department
ANSWER: Media, Technology, And Content
16. The Protection Of Voice And Data Components, Connections, And Content Is Known As
Security.
ANSWER: A Network
b. National
c. Cyber
d. Operational
17. The Protection Of Confidentiality, Integrity, And Availability Of Data Regardless Of Its
Location Is Known As Security.
ANSWER: A Information
b. Network
c. Cyber
d. Operational
18. A Model Of Infosec That Offers A Comprehensive View Of Security For Data While Being
Stored, Processed, Or Transmitted Is The Security Model.
ANSWER: A CNSS
b. USMC
c. USNA
d. NPC
19. Which Of The Following Is A C.I.A. Triad Characteristic That Addresses The Threat
From Corruption, Damage, Destruction, Or Other Disruption Of Its Authentic State?
ANSWER: A Integrity
b. Availability
c. Authentication
d. Accountability
20. According To The C.I.A. Triad, Which Of The Following Is The Most Desirable Characteristic For
Privacy?
ANSWER: A Confidentiality
BY MICHAEL E. WHITMAN ||HERBERT J. MATTORD LATEST UPDATE
2025/26 A+
CHAPTER 1
1. Corruption Of Information Can Occur Only While Information Is Being Stored.
a. True
ANSWER: BFalse
2. The Authorization Process Takes Place Before The Authentication Process.
a. True
ANSWER: BFalse
3. A Worm May Be Able To Deposit Copies Of Itself Onto All Web Servers That The Infected System Can
Reach, So That Users Who Subsequently Visit Those Sites Become Infected.
ANSWER: A True
B. False
4. Dos Attacks Cannot Be Launched Against Routers.
a. True
ANSWER: BFalse
5. The First Step In Solving Problems Is To Gather Facts And Make Assumptions.
a. True
ANSWER: BFalse
6. A Device (Or A Software Program On A Computer) That Can Monitor Data Traveling On A Network Is
Known As A Socket Sniffer.
a. True
ANSWER: BFalse
7. One Form Of E-Mail Attack That Is Also A Dos Attack Is Called A Mail Spoof, In Which An Attacker
Overwhelms The Receiver With Excessive Quantities Of E-Mail.
a. True
ANSWER: BFalse
,8. When Voltage Levels Lag (Experience A Momentary Increase), The Extra Voltage Can Severely Damage Or
Destroy Equipment.
a. True
ANSWER: BFalse
9. "Shoulder Spying" Is Used In Public Or Semi-Public Settings When Individuals Gather Information
They Are Not Authorized To Have By Looking Over Another Individual’s Shoulder Or Viewing The
Information From A Distance.
a. True
ANSWER: BFalse
10. The Term Phreaker Is Now Commonly Associated With An Individual Who Cracks Or Removes Software
Protection That Is Designed To Prevent Unauthorized Duplication.
a. True
ANSWER: BFalse
11. The Application Of Computing And Network Resources To Try Every Possible Combination Of
Options Of A Password Is Called
A Dictionary Attack.
a. True
ANSWER: BFalse
12. The Macro Virus Infects The Key Operating System Files Located In A Computer’s Start-Up Sector.
a. True
ANSWER: BFalse
13. The Malicious Code Attack Includes The Execution Of Viruses, Worms, Trojan Horses, And Active Web
Scripts With The Intent To Destroy Or Steal Information.
ANSWER: A True
b. False
14. A(N) Polymorphic Threat Is One That Over Time Changes The Way It Appears To Antivirus Software
Programs, Making It Undetectable By Techniques That Look For Pre-Configured Signatures.
ANSWER: A True
B. False
, 15. Communications Security Involves The Protection Of Which Of The Following?
a. Radio Handsets
b. People, Physical Assets
c. The IT Department
ANSWER: Media, Technology, And Content
16. The Protection Of Voice And Data Components, Connections, And Content Is Known As
Security.
ANSWER: A Network
b. National
c. Cyber
d. Operational
17. The Protection Of Confidentiality, Integrity, And Availability Of Data Regardless Of Its
Location Is Known As Security.
ANSWER: A Information
b. Network
c. Cyber
d. Operational
18. A Model Of Infosec That Offers A Comprehensive View Of Security For Data While Being
Stored, Processed, Or Transmitted Is The Security Model.
ANSWER: A CNSS
b. USMC
c. USNA
d. NPC
19. Which Of The Following Is A C.I.A. Triad Characteristic That Addresses The Threat
From Corruption, Damage, Destruction, Or Other Disruption Of Its Authentic State?
ANSWER: A Integrity
b. Availability
c. Authentication
d. Accountability
20. According To The C.I.A. Triad, Which Of The Following Is The Most Desirable Characteristic For
Privacy?
ANSWER: A Confidentiality