Auditing and Accountability in Information Security

Questions and Answers

What is one of the tools necessary for ensuring accountability?

• Firewalls and antivirus software
• Identification, authentication, and access control (correct)
• Data storage and retrieval systems
• Encryption and decryption

What is the primary purpose of auditing in information security?

• To optimize network performance
• To keep track of activities and ensure compliance with security rules (correct)
• To encrypt sensitive data
• To detect and remove viruses and malware

What aspect is essential for implementing accountability from a security perspective?

• Proper monitoring and logging (correct)
• Physical access control only
• Encryption of all data
• Biometric authentication only

What does accountability depend on in the context of information security?

Identification, authentication, and access control (D)

What is one of the security benefits of implementing accountability?

Bringing useful features from a security perspective (B)

Accountability depends on identification, authentication, and access control being present

True (A)

Auditing is not necessary for ensuring accountability in information security

False (B)

Logging and penetration testing are examples of auditing activities

True (A)

Implementing accountability often brings with it a number of useful features from a security perspective

True (A)

Proper monitoring and logging can help determine the details of a security situation in question

True (A)

Flashcards are hidden until you start studying