CS Ethics

The term morals refers to the personal principles upon which an individual bases his or her decisions about what is right and what is wrong.

True

The goodwill that is created by which of the following can make it easier for corporations to conduct their business?

CSR Activities

What term is used to describe a habit of unacceptable behavior?

Vice

A set of beliefs about right and wrong behavior within a society is known as which of the following?

Ethics

Which of the following helps ensure that employees abide by the law, follow necessary regulations, and behave in an ethical manner?

Code of ethics

During which step of the decision-making process should one be extremely careful not to make assumptions about the situation?

Develop problem statement

A well-implemented ethics and compliance program and a strong ethical culture can lead to:

Less pressure on employees to misbehave

Fairness and generosity are examples of virtues.

True

Which of the following activities describes when an organization reviews how well it is meeting its ethical and social responsibility goals, and communicates its new goals for the upcoming year?

Social Audit

The term ethics describes standards or codes of behavior expected of an individual by a group to which the individual belongs.

True

The greater reliance of information systems in all aspects of life has decreased the risk that information technology will be used unethically.

False

Setting corporate social responsibility (CSR) goals encourages an organization to achieve higher moral and ethical standards.

True

In which step of the decision-making process should the decision makers consider laws, guidelines, policies, and principles that might apply to the decision?

Choose Alternative

A rapid increase in the appointment of corporate ethics officers typically follows:

The revelation of a major business scandal

Lawrence Kohlberg found that the most crucial factor that stimulates a person's moral development is monetary reward for good behavior.

False

Multinational and global organizations must not present a consistent face to their shareholders, customers, and suppliers but instead must operate with a different value system in each country they do business in.

False

A mission statement is a clear, concise description of the issue that needs to be addressed.

False

In the decision-making process of implementing the decision, what plan must be defined to explain to people how they will move from the old way of doing things to the new way?

Transition

The countries with the highest software piracy rate in the world include Luxembourg, Japan, and New Zealand.

False

In the business world, important decisions are too often left to the technical experts; general business managers must assume greater responsibility for these decisions.

True

The posting of thousands of State Department documents on the WikiLeaks Web site is an example of which of the following?

inappropriate sharing of information

The crime of obtaining goods, services, or property through deception or trickery is known as which of the following?

Fraud

Which of the following is defined as not doing something that a reasonable person would do or doing something that a reasonable person would not do?

negligence

A bribe is a crime even if the payment was lawful under the laws of the foreign country in which it was paid.

False

A trade secret is information, generally unknown to the public, that a company has taken strong measures to keep confidential.

True

The Business Software Alliance (BSA) has a few dozen lawyers and investigators who prosecute only the 100 or so most egregious cases of software piracy each year.

False

While no policy can stop wrongdoers, it can establish boundaries for acceptable and unacceptable behavior and enable management to punish violators.

True

To qualify legally as a bribe, the gift or payment must be made directly from donor to recipient.

False

To prove fraud in a court of law, prosecutors must demonstrate that:

the wrongdoer made a false representation of material fact.

Currently no one IT professional organization has emerged as preeminent, so there is no universal code of ethics for IT workers.

True

Laws provide a complete guide to ethical behavior.

False

There are many industry association certifications in a variety of IT-related subject areas.

True

What term refers to the obligation to protect people against any unreasonable harm or risk?

Duty of Care

Which of the following states the principles and core values that are essential to the work of a particular occupational group?

Professional code of ethics

A vendor certification:

may focus too narrowly on the technical details of the vendor's technology.

A survey by the Fawcett Society on the use of computing resources at work found that:

20 percent of men admit to viewing porn while at work

Which entity is a computing society founded in 1947 with more than 97,000 student and professional members in more than 100 countries, and it publishes over 50 journals and 30 newsletters?

Association for Computing Machinery

Which of the following is true about certification?

It can be applied to products.

Government licensing is generally administered at the federal level in the United States.

False

Professionals who breach the duty of care are liable for injuries that their negligence causes. This liability is commonly referred to as which of the following?

professional malpractice

Trojan horse has become an umbrella term for many types of malicious code.

False

Discussing security attacks through public trials and the associated publicity has not only enormous potential costs in public relations but real monetary costs as well.

True

Which of the following concepts recognizes that managers must use their judgment to ensure that the cost of control does not exceed the system's benefits or the risks involved?

reasonable assurance

Before the IT security group can begin an eradication effort, it must:

collect and log all possible criminal evidence from the system

After virus eradication, you can use a previous backup to restore an infected computer.

False

Malware that stops you from using your computer or accessing your data until you meet certain demands is known as which of the following?

ransomware

The most common computer security precaution taken by businesses is the installation of which of the following?

firewall

Cyberterrorism involves the deployment of malware that secretly steals data in the computer systems of organizations, such as government agencies, military contractors, political organizations, and manufacturing firms.

False

A network attack in which an intruder gains access to a network and stays there, undetected, with the intention of stealing data over a long period of time is known as which of the following?

APT

A router is a hardware- or software-based network security system that is able to detect and block sophisticated attacks by filtering network traffic dependent on the packet contents.

False

Employees and contract workers must be educated about the importance of security so that they will be motivated to understand and follow the security policies.

True

A business policy that permits employees to use their own mobile devices to access company computing resources and applications is known as which of the following?

Bring your own device (BYOD)

Computer viruses differ from worms in that viruses can propagate without human intervention, often sending copies of themselves to other computers by email.

False

The Fifth Amendment regulates the collection of the content of wire and electronic communications.

False

What exploit is characterized as the abuse of email systems to send unsolicited email to large numbers of people?

Spam

A piece of programming code, usually disguised as something else, that causes a computer to behave in an unexpected and usually undesirable manner is known as which of the following?

virus

The act of fraudulently using email to try to get the recipient to reveal personal data is known as which of the following?

Phishing

Whenever possible, automated system rules should mirror an organization's written policies.

True

Ransomware is malware that stops you from using your computer or accessing your data until you meet certain demands, such as paying a ransom or sending photos to the attacker.

True

Which term is defined as an exploit that takes place before the security community or software developer knows about the vulnerability or has been able to repair it?

zero-day attack

Electronically stored information includes any form of digital information stored on any form of electronic storage device.

True

Established in 1980, The Organisation for Economic Co-operation and Development's created which of the following, which are often held up as the model of ethical treatment of consumer data?

fair information practices

A vehicle event data recorder (EDR) is a device that records vehicle and occupant data for a few seconds before, during, and after any vehicle crash that is severe enough to deploy the vehicle's air bags.

True

Which of the following rules requires each financial institution to document a data security plan describing the company's preparation and plans for the ongoing protection of clients' personal data?

Safeguards Rule

Online marketers can capture personal information, such as names, addresses, and Social Security numbers without requiring consent.

False

In the context of tenets of the European Union Data Protection Directive, which of the following terms refers to an individual's right to challenge the accuracy of the data and provide the corrected data?

correction

0.5 / 0.5 pts
In 2008, which act granted expanded authority to collect, without court-approved warrants, international communications as they flow through U.S. telecom network equipment and facilities?

Foreign Intelligence Surveillance Act Amendments Act

The Privacy Act of 1974 extends to the actions of the CIA, U.S. law enforcement agencies, and the private industry.

False

A pen register is a device that records the originating number of incoming calls for a particular phone number.

False

Discovery is part of the pretrial phase of a lawsuit in which each party can obtain which of the following from the other party by various means?

Evidence

The Health Insurance Portability and Accountability Act requires healthcare providers to obtain which of the following from patients prior to disclosing any information in their medical records?

written consent

Which act included strong privacy provisions for electronic health records and bans the sale of health information, promotes the use of audit trails and encryption, and provides rights of access for patients?

American Recovery and Reinvestment Act

Under the USA PATRIOT Act, the FBI can issue a National Security Letter to compel banks, Internet service providers, and credit reporting companies to turn over information about their customers without a court order simply on the basis that the information is needed for an ongoing investigation.

True

The Health Insurance Portability and Accountability Act requires healthcare organizations to employ standardized electronic transactions, codes, and identifiers to enable them to fully digitize medical records thus making it possible to exchange medical records over the Internet.

True

The U.S. has a single, overarching national data privacy policy.

False

The USA PATRIOT Act grants citizens the right to access certain information and records of federal, state, and local governments upon request.

False

The Gramm-Leach-Bliley Act includes three key rules that affect personal privacy: financial privacy rule, safeguards rule, and pretexting rule.

True

Which act enables the public to gain access to certain government records?

Freedom of Information Act

Which act requires that financial institutions must provide a privacy notice to each consumer that explains what data about the consumer is gathered, with whom that data is shared, how the data is used, and how the data is protected?

Gramm-Leach-Bliley Act

The use of cookies and tracking software is controversial because companies can collect information about consumers without their explicit permission.

True

Each violation of the provisions of the Controlling the Assault of Non-Solicited Pornography and Marketing (CAN-SPAM) Act can result in a fine of up to $250 for each unsolicited email, and fines can be tripled in certain cases.

True

Proponents of the Children's Internet Protection Act (CIPA) contended that shielding children from drugs, hate, pornography, and other topics is a sufficient reason to justify which of the following?

Internet filters

A U.S. citizen who posts material on the Web that is illegal in a foreign country cannot be prosecuted in that country.

False

Which of the following involves the examination of Internet records in an attempt to reveal the identity of an anonymous poster?

Doxing

Which country has the largest online population in the world and also perhaps the most rigorous Internet censorship?

China

Section 230 of which act provides immunity to an Internet service provider (ISP) that publishes user-generated content, as long as its actions do not rise to the level of a content provider?

Communications Decency Act

Which of the following is considered an absolute defense against a charge of defamation?

Truth

Despite the importance of which of the following in early America, it took nearly 200 years for the Supreme Court to render rulings that addressed it as an aspect of the Bill of Rights?

anonymity

Over the years, a number of federal, state, and local laws have been found unconstitutional because they violated one of the tenets of the First amendment.

True

The plaintiff in a strategic lawsuit against public participation (SLAPP) can present themselves to the court admitting that their intent is to censor their critics.

False

Proponents of the Children's Internet Protection Act (CIPA) argued that:

Internet filters are highly flexible and customizable.

Anti-SLAPP laws are designed to protect children from pornography.

False

Violation of which of the following acts can cause a school or public library to lose funding to help pay for its Internet connections?

Children's Internet Protection Act (CIPA)

In general, the closer an Internet service provider (ISP) is to a pure service provider than to a content provider, the more likely that the Section 230 immunity of the Communications Decency Act (CDA) will apply.

True

Which of the following statements is true of Children's Internet Protection Act (CIPA)?

CIPA requires federally financed schools to use some form of technological protection to block computer access to obscene material.

In the United States, speech that is merely annoying, critical, demeaning, or offensive enjoys protection under which Amendment?

First

With dynamic content filtering, each Web site's content is evaluated immediately before it is displayed, using techniques such as object analysis and image recognition.

True

The Children's Internet Protection Act (CIPA) was an attempt to protect children from accessing pornography and other explicit material online.

True

The California State Court in Pre-Paid Legal v. Sturtz et al. set a legal precedent that refined the criteria courts apply to which of the following?

subpoenas requesting the identity of anonymous Web posters

The Supreme Court has held that obscene speech and which of the following are not protected by the First Amendment and may be forbidden by the government?

Defamation