Systems Design Fundamentals Quiz

Questions and Answers

What is the primary purpose of systems design in the development process?

• Fact finding and modeling
• Identifying user requirements
• Testing system functionality
• Specifying how the system will be implemented (correct)

Which of the following is NOT an activity involved in systems design?

• Designing application components
• Conducting user interviews (correct)
• Designing the database
• Designing the user interface

Which type of control focuses on ensuring data integrity within a system?

• Input controls (correct)
• Secure transactions
• Access controls
• Digital signatures

What role do security controls play in systems design?

They ensure data encryption and access management. (B)

Which of the following components is essential for user interaction in a system?

User interface design (C)

What is the primary objective of systems design?

To define, organize, and structure components (C)

How does systems design relate to systems analysis?

Design serves as the starting point for implementation (D)

Which activity is NOT part of systems design?

Testing existing systems (B)

What do systems design outputs primarily serve as?

Blueprints for system construction (A)

Which of the following best contrasts analysis and design?

Analysis precedes design, which defines implementation (C)

Which document type is an output of the systems design process?

Data flow diagrams (B)

What role does documentation play in systems design?

It coordinates design and implementation activities (D)

What is a key benefit of bridging the gap between analysis and implementation?

It helps in accurately reflecting user requirements (B)

What is required to convert a data model to a relational database?

Addressing various technical issues (B)

Which diagram is NOT typically used in the design software classes and methods phase?

Flow Chart Diagram (B)

What do integrity controls aim to ensure?

Only correct business transactions are accepted (A)

Which of the following is a component of the database schema?

Typical Table Definition (A)

What is the main goal of security controls in a database system?

To protect assets from threats (C)

What is the significance of sequence diagrams in system design?

They show interactions over time (A)

How are integrity controls integrated into a database system?

Through application programs and DBMS (C)

What is a primary objective of system security controls?

Safeguarding assets from threats (D)

What is a key reason for the importance of design in system development?

Jumping to programming without design often leads to suboptimal solutions and rework. (C)

How do design activities relate to the components of a new system?

Design activities correspond to various components like the environment and database. (A)

Which of the following is NOT a key design question associated with the design of the user interface?

What internal structure will ensure efficient application performance? (C)

In agile projects, how does the approach to building models differ from traditional methods?

Agile projects often build fewer models but still create essential ones. (B)

What is a critical component of the system that needs to be designed regarding data?

How data will be captured, structured, and stored. (B)

Which aspect of design activities specifies how the system will interact with existing technologies?

Describe the environment. (B)

Which statement accurately reflects the role of design in programming?

Design helps outline the logic before coding starts. (D)

Which of the following describes an important consideration when designing software classes and methods?

The focus should be on rapid deployment and reliable operation. (B)

What is the primary purpose of input controls?

To prevent invalid or erroneous data from entering the system (D)

Which type of control focuses on ensuring that all data has been entered?

Completeness Controls (D)

Output controls primarily ensure that data is accurate, current, and complete, and also that it arrives at the proper destination. What is one example of an output control?

Physical access to printers and display devices (D)

What is the main goal of redundancy, backup, and recovery measures?

To protect data and systems from catastrophes (A)

In the context of fraud prevention, what are the three components of the fraud triangle?

Opportunity, Motive, Rationalization (D)

Which technique can reduce fraud risk by ensuring that individuals handling assets have limited access to related records?

Separation of duties (C)

What type of controls check the range of inputs for reasonableness?

Value Limit Controls (C)

Which of the following best describes the purpose of records and audit trails in relation to fraud risk?

They record all transactions and changes in asset status. (B)

What is a key objective of designing security controls?

Protecting information during transmission (C)

What does access control primarily limit?

A person's ability to access specific resources (C)

Which method is used to identify users in a security system?

Authentication (B)

What is the purpose of maintaining an access control list?

To list valid users and their access permissions (A)

How often should security features be reviewed and tested?

Frequently and systematically (C)

What type of authentication combines multiple methods to verify a user?

Multifactor authentication (D)

What should be done periodically to ensure proper asset control?

Reconcile physical asset counts with records (B)

Who is considered a privileged user in a security framework?

Those who maintain and manage system lists (A)

Flashcards

Systems Design

The process of defining, organizing, and structuring the components of a system. It outlines how the system will be implemented.

Design Activities

The activities in systems development that bridge the gap between the requirements and the actual implementation of a system.

Design Documents and Models

The documents and models used as input to or output from system design activities. They provide the framework for design decisions and guide implementation.

System Controls and Security

Procedures and mechanisms implemented to ensure the security of a system. They aim to protect data, information, and resources from unauthorized access, use, or disclosure.

Difference between Analysis and Design

The analysis phase focuses on understanding what is required from the system, while the design phase focuses on determining how the system will be built to fulfill those requirements.

Design as a Blueprint

The outcome of systems design serves as a blueprint for system developers. It outlines the system's structure, components, and functionalities.

Key Design Activities

Design activities involve defining the system's architecture, user interfaces, data structures, and program logic.

Security Methods

Security methods include access control, encryption, and authentication. They ensure the system is protected from unauthorized access and misuse.

Detailed Design

A software development phase where the system's architecture, user interfaces, data structures, and program logic are defined.

Converting Data Model to Relational Database

The process of translating a data model into a relational database, considering technical issues like response time and security.

Database Schema

The overall structure of a database, including tables, columns, relationships, and constraints.

Sequence Diagrams

Diagrams that depict the sequence of interactions between objects in a system, showing the flow of messages and actions.

State-Machine Diagrams

Diagrams used to represent the states of an object and the transitions between those states, based on events or actions.

Security Controls

Controls that protect data, information, and resources from unauthorized access, use, or disclosure.

Integrity Controls

Controls that ensure the integrity of inputs, outputs, data, and programs, maintaining accuracy and correctness.

Objectives of Integrity Controls

Objectives of integrity controls aim to ensure only valid transactions are processed, transactions are recorded accurately, and assets like the database are protected.

What is Design?

Design is the process of creating a blueprint for a system by defining its components, functionalities, and structure.

Design as Model Building

Designing a system involves building models that represent various parts of the system and how they interact.

Model Formality in Design

The level of detail and complexity of models used in design depends on the project's formality and requirements.

Design Activities and Components

Design involves creating models for different aspects of the system, including the environment, application components, user interface, database, and software structure.

How is the System Environment Designed?

Designing the environment encompasses how the system will interact with other systems and existing technologies.

What is the Focus in Application Component Design?

The key question in application component design is how these components will interact and function when deployed.

What is the Focus of User Interface Design?

User interface design focuses on creating a user-friendly and effective way for users to interact with the system.

What is the Key Consideration in Database Design?

Database design determines how data is captured, structured, stored, and accessed by the system.

Input Controls

Techniques to stop invalid data from entering a system.

Completeness Controls

Ensure all required data is included.

Value Limit Controls

Check if values are reasonable and within acceptable ranges.

Data Validation Controls

Verify specific data values are accurate.

Field Combination Controls

Check if data relationships between fields are correct.

Output Controls

Prevent unauthorized access to data, ensure it's current and complete.

Redundancy, Backup, and Recovery

Protecting data and systems from big disasters.

Fraud Triangle

Factors that increase the risk of fraud: opportunity, motive, and rationalization.

What is Systems Design?

The process of defining, organizing, and structuring the components of a system. It outlines how the system will be implemented.

What are Design Activities?

The activities in systems development that bridge the gap between the requirements and the actual implementation of a system.

What are Integrity Controls?

Controls that ensure the integrity of inputs, outputs, data, and programs, maintaining accuracy and correctness.

What are Security Controls?

Controls that protect data, information, and resources from unauthorized access, use, or disclosure.

What is System Controls and Security?

Procedures and mechanisms implemented to ensure the security of a system. They aim to protect data, information, and resources from unauthorized access, use, or disclosure.

Access Control List

A list of authorized users and their access permissions to specific resources within a system.

Authentication

The process of verifying a user's identity before granting them access to a system or resource.

Multi-factor Authentication

A method of authentication that requires users to provide multiple forms of identification, such as a password and a code from a mobile device.

Authorization

The process of determining a user's level of access to resources after their identity has been verified.

Privileged Users

Users who have been given specific privileges to manage and maintain system resources, such as databases, files, and servers.

Monitoring

Regular and systematic procedures to examine records and logs for unusual activities, including transactions, accesses, and patterns.

Asset Control and Reconciliation

Procedures to limit access to physical assets, such as inventory or equipment, and periodically compare physical counts with records to ensure accuracy.

Study Notes

Introduction to Systems Analysis and Design

• The text outlines the seventh edition of "Systems Analysis and Design in a Changing World" by Satzinger, Jackson, and Burd.
• Chapter 6 focuses on foundational concepts for systems design.
• This chapter details Systems Analysis and Design, including major activities like modeling, environment description, and security measures.

Learning Objectives

• This chapter aims to define and contrast systems design with systems analysis.
• Identify relevant documents and models essential to systems design.
• Explain every key design activity.
• Describe various security protocols and methods.

Overview and Analysis to Design to Implementation

• Analysis determines "what" a system needs to accomplish, while design outlines the "how" of implementation.
• Chapters 2-5 cover systems analysis, leading to requirements.
• The core of the systems design process involves defining, organizing, and structuring components for the final system.
• Design facilitates translating requirements into an actionable plan for implementation.

Design Models

• Design is a model-building activity.
• Formal projects dictate complex models.
• Agile/iterative projects use fewer models, still crucial for development.
• Design ensures optimum solutions avoid rework.

Analysis Models to Design Models

• The chapter provides a graphic illustrating the flow from requirements models to design models, detailing the necessary diagrams like domain model, use case diagrams, and activity diagrams.
• Also included are deployment diagrams, design class diagrams, system sequence diagrams, interaction diagrams(sequence diagrams), design state machine diagrams, and package diagrams.

Design Activities

• The process encompasses defining components of the new system, including the environment, application components, user interface, database, and software classes and methods.
• These activities are linked with core processes of project identification, planning, detail discovery, component design, testing, and system deployment.

Design Activities and Iterations

• The process of system design involves core activities and repetitions.
• The stages include identifying the problem, system planning and monitoring, detail discovery, component designs, testing and integration, and system deployment.
• These processes are iterative, allowing revisiting and adjustments as needed throughout the project.

Key Design Questions for Each Activity

• Each design activity requires specific considerations, for example:
• Environment: Interaction with external systems and existing technologies.
• Application Components: The components' role in the information system.
• User interface: User interaction with the system.
• Database: Data storage and management aspects.
• Software Classes and Methods: Software efficiency and reliability.

Describe the Environment

• The environment is crucial, encompassing communications with external systems, message formats, networks, protocols, security measures, error handling, and adherence to technology standards, (discussed further in Chapter 7).

Design the Application Components

• Defines application component as well-defined software units.
• Discusses crucial considerations like scope, size, functions, boundaries, interfaces, programming languages, and decision of build vs. buy.

Design the User Interface

• The user interface is the system for the user.
• User interface design has a major role in user productivity, requiring substantial user involvement.
• Includes both analysis and design tasks, needing multiple interfaces for diverse devices and needs.

Design the Database

• Information systems need data, typically stored in a database.
• Current systems commonly use Relational Database Management Systems (RDBMS).
• Converting the relevant data model into a relational structure is key, requiring careful attention to technical details such as throughput, response time, and security.

Design Software Classes and Methods

• Detailed design, modeled as activities such as design class diagrams, sequence diagrams, and state diagrams to implement the design.

System Controls and Security

• Integrity controls maintain input, output, and data/program integrity.
• Security controls protect from internal and external threats.

Design Integrity Controls

• Controls are built into application programs and DBMSs.
• Focus on appropriateness of business transactions, correct and complete recordings and to safeguard assets.

Input Controls

• Value and Limit Controls check input range and validity.
• Completeness Controls ensure all input data is included.
• Validation Controls verify input accuracy.
• Combination Controls verify data consistency across multiple fields.

Output Controls

• Output controls ensure accuracy and delivery to the correct recipients.
• Examples: Correct physical access, preventing dumpster diving of data, and proper label to aid verification of output data source.

Redundancy, Backup, and Recovery

• Systems protection from catastrophic events is crucial.
• Procedures and copies for databases, hardware, software, and networks are needed.
• Distinction between on-site and off-site backup methods is important.

Fraud Prevention

• Internal fraud prevention is essential.
• Fraud-prevention efforts may target opportunities, motives, and rationalizations.
• The fraud triangle model explains this.

Fraud Risk—Factors and Techniques

• Separation of duties, records and audit trails, monitoring, asset control and reconciliation, and security measures are important factors and techniques to prevent fraud.

Designing Security Controls

• Designing security controls include: protecting assets from external threats, maintaining a stable operating environment, protecting information during transfer across various networks.

Types of Users

• Registered users: includes employees, suppliers, developers, and others with authorized access.
• Unauthorized users: excludes those without the permission to access a system.
• Privileged users: Users with essential access to systems.

Data Encryption

• Techniques are for storing data in transmittal, altering data, decryption, and mathematical transformation to secure data.
• The encryption key is crucial for producing unique encryptions.

Symmetric and Asymmetric Encryption

• Symmetric encryption uses the same key for encryption and decryption.
• Asymmetric encryption uses different keys for encryption and decryption, and public and private keys are important.

Digital Signatures and Certificates

• The process of digitally signing documents using encryption.
• A digital certificate includes organization name and public key encrypted and validated by an authorized third party.
• A certifying authority authenticates the digital certificates.

Secure Transactions

• Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols provide authorization and authentication.
• IP Security is designed for low-level transmissions.
• Hypertext Transfer Protocol Secure (HTTPS) facilitates secure transmission of web pages.

Summary

• Chapter 6 introduces systems design emphasizing its crucial link between analysis and implementation.
• Detailed activities of systems design, environmental description, application component and user interface design, database design, and the design of software classes and methods are examined.
• Chapter 6 also examines the controls for security and integrity including output, error detection, redundancy, fraud prevention, access, data encryption, and secure transactions.