Another example of Computer Incident Response Team (CIR…
Another example of Computer Incident Response Team (CIRT) activities is:
At a more generic level, evidence should have some prob…
The exact requirements for the admissibility of evidence vary across legal systems and between different cases
(e.g., criminal versus tort). At a more generic level, evidence should have some probative value, be relevant to
the case at hand, and meet the following criteria which are often called the five rules of evidence:
Which of the following questions is LESS likely to help…
Which of the following questions is LESS likely to help in assessing controls over hardware and software
maintenance?
Which of the following is NOT a preventive operational …
Which of the following is NOT a preventive operational control?
Which element must computer evidence have to be admissi…
Which element must computer evidence have to be admissible in court?
which security level is the first to require a system t…
According to the Orange Book, which security level is the first to require a system to support separate operator
and system administrator roles?
In Operations Security trusted paths provide:
In Operations Security trusted paths provide:
The deliberate planting of apparent flaws in a system f…
The deliberate planting of apparent flaws in a system for the purpose of detecting attempted penetrations or
confusing an intruder about which flaws to exploit is called:
Under the principle of culpable negligence, executives …
Under the principle of culpable negligence, executives can be held liable for losses that result from computer
system breaches if:
Which TCSEC (Orange Book) rating or level requires the …
Which TCSEC (Orange Book) rating or level requires the system to clearly identify functions of the security
administrator to perform security-related functions?