answer all questions
• Chapter 15
• Chapter 16
Chapter 15
1. Describe threats that specifically target confidentiality on a data system. Do not limit yourself to the textbook for answers, and use external resources to support your conclusion.
2. Describe the differences between roles and access in a database environment. Why is it important to establish these in an organization’s environment?
3. Describe and explain the process of authentication in a data system.
4. What are the components of two-factor authentication? Provide examples to support your answer.
5. Why are database views important and how are they beneficial in a DBMS?
Chapter 16
1. What is a zero-day attack? Why do these represent a significant threat to information systems?
2. How are insider threats and zero-day attacks similar in terms of security planning?
3. What is the importance of a business continuity plan? What are four essential items that should be included in this plan for any business or organization?
4. Explain the overall importance of security planning in any organizational environ-ment where software systems are created or deployed.
5. Do you feel that the set of potential zero-day attacks for a particular system is infi-nite or is it finite but unknown? Justify your position. How does this affect planning for these attacks?