Mobile Payment Systems Quiz

Questions and Answers

What are online stored value systems based on?

Cryptocurrency balances held in wallets

Digital currencies that are automatically generated

Value stored in a consumer’s bank or credit account (correct)

Assets stored in physical payment cards

Which of the following is an example of a Buy Now Pay Later (BNPL) service?

Google Pay

SPayLater (correct)

Apple Pay

Venmo

What technology is commonly used in mobile payment systems for transactions?

Multi-Factor Authentication (MFA)

Blockchain technology

Augmented Reality (AR)

Near Field Communication (NFC) (correct)

Which mobile wallet app is classified as a universal proximity application?

Samsung Pay

What type of malware is primarily targeting Android devices among mobile platforms?

Rogue apps

In which regions is the use of mobile payment systems predominantly established?

Europe and Asia

Which of the following is NOT one of the threats faced by mobile platforms?

DDoS attacks

Which feature of encryption provides assurance that a message has not been altered during transit?

Message integrity

What is a characteristic of branded store proximity wallet apps?

Exclusive to a single brand or store

What factor is contributing to the expansion of mobile payment systems in the United States?

Growing acceptance by retailers and consumers

What common security issue arises from sharing files that link to malicious sites?

Manual sharing scams

Which statement is true regarding online stored value systems?

They typically utilize consumer bank accounts for stored value.

In cloud security, what is a major concern regarding the management of data?

Responsibility for data security

What is the primary function of a firewall?

To filter packets based on security policy

Which of the following describes the term 'nonrepudiation' in the context of encryption?

Ensuring sender cannot deny sending the message

Which type of attack is characterized by overwhelming a target to disrupt service?

DDoS

Which component is responsible for handling all communications from the Internet?

Proxy server

What aspect of e-commerce security ensures data can only be read by authorized parties?

Confidentiality

What is NOT a typical aspect of a security plan's implementation?

Network performance monitoring

What are the primary online payment methods used in e-commerce?

Credit and debit cards

Which of the following poses a limitation of online credit card payments for consumers?

Social equity

What is the primary method involved in spoofing?

Using someone else's email or IP address

Which element is NOT part of the e-commerce security plan?

Content delivery optimization

What roles do merchants, clearinghouses, and card-issuing banks play in an online credit card transaction?

They facilitate the transaction process between consumers and banks

How does pharming benefit a hacker?

By redirecting a URL to a different address

Which of the following best describes an intrusion prevention system?

A system that detects and prevents unauthorized access

What is a common characteristic of spam websites?

They may harbor malicious code

What distinguishes a Distributed Denial of Service (DDoS) attack from a standard Denial of Service (DoS) attack?

DDoS uses multiple computers to overwhelm the target

Which approach can be used by sniffers to identify problems in networks?

By monitoring network traffic

What is often the biggest financial threat to businesses from insider attacks?

Employee embezzlement

Insider threats are more likely to stem from which factor?

Poor security procedures

What is one of the potential uses of a DDoS attack aside from overwhelming a network?

To insert malware or steal data

How many keys are used in symmetric key cryptography?

A unique key for each transaction

What is the main characteristic of public key cryptography regarding key usage?

Two mathematically related keys are used

What does the sender use to ensure the authenticity of a message in public key cryptography?

Sender's private key to create a digital signature

Which method cannot be used to decrypt a message that has been encrypted with a public key?

Sender's private key

What is the purpose of using a hash function in public key cryptography?

To verify message integrity

What is a characteristic of the keys used in public key cryptography?

One key is secret and one is public

In which method is the encryption performed by the sender using the recipient's key?

Asymmetric key cryptography

What aspect of symmetric key cryptography influences its encryption strength?

Length of the binary key

What is the primary purpose of phishing tactics?

To obtain confidential information for financial gain

Which of the following is NOT a tactic related to phishing?

Malware distribution

What are the key goals associated with hacking?

Cybervandalism and data breaches

What was the leading cause of data breaches in 2021?

Malicious code and human errors

Which method is commonly used to establish customer identity for preventing credit card fraud?

E-signatures and multi-factor authentication

Identity fraud primarily involves unauthorized use of which type of data?

Personal data for illegal financial benefit

Which statement correctly describes cybervandalism?

It involves disrupting or destroying websites.

What percentage increase in data breaches was noted in 2021 compared to 2020?

68%

Study Notes

E-commerce Security and Payment Systems

• E-commerce security involves multiple layers, considering technology, policies, and regulations.
• Key security issues in e-commerce include client, server, and communication pipeline vulnerabilities.
• Malicious code, including exploits, drive-by downloads, and malware, poses significant threats.
• Phishing, hacking, cybervandalism, and hacktivism are common e-commerce crimes.
• Data breaches, often caused by malicious code or human error, are major security concerns.
• Credit card fraud and theft remain serious issues.
• Identity theft involves unauthorized use of personal data for financial gain.
• Spoofing, pharming, and spam tactics target websites.
• Denial-of-service (DoS) and distributed denial-of-service (DDoS) attacks overwhelm systems.
• Insider attacks pose a significant threat due to privileged insider access.
• Social networks, mobile platforms, and cloud environments present unique security challenges.
• Security is not only about technology but also encompasses organizational policies and procedures.
• Encryption techniques, like symmetric and public key cryptography, play crucial roles in securing data.
• Digital certificates and public key infrastructure are components of secure communication systems.
• Firewalls and proxy servers protect networks.
• Essential security policies for businesses include risk assessment, security policies, implementation strategies, security organizations, access controls, and security policies.

Good E-commerce Security

• Implementing new technologies, organizational policies, industry standards, and government regulations are crucial for high security.
• The cost of security should be balanced against potential losses.
• Security often fails at the weakest link in the system.

The Tension Between Security and Other Values

• Security is not the only consideration; it must be balanced with ease of use and profitability.
• Adding more security measures can negatively impact usability and slow down systems.

Description

Test your knowledge on mobile payment systems and online stored value systems. This quiz covers various topics such as Buy Now Pay Later services, mobile wallet apps, and security concerns related to mobile platforms. Challenge yourself with these questions and learn more about the evolving landscape of digital payments.