In auditing a web server, an IS auditor should be concerned about the risk of individuals gaining

unauthorized access to confidential information through:

An IS auditor reviewing access controls for a client-server environment should FIRST:

To prevent IP spoofing attacks, a firewall should be configured to drop a packet if:

An IS auditor reviewing the implementation of an intrusion detection system (IDS) should be
MOST concerned if:

Which of the following BEST describes the role of a directory server in a public key infrastructure
(PKI)?

An organization is using symmetric encryption. Which of the following would be a valid reason for
moving to asymmetric encryption? Symmetric encryption:

Which of the following would provide the BEST protection against the hacking of a computer
connected to the Internet?

When installing an intrusion detection system (IDS), which of the following is MOST important?

In a public key infrastructure (PKI), which of the following may be relied upon to prove that an
online transaction was authorized by a specific customer?

Which of the following ensures confidentiality of information sent over the internet?