An engineer in a software company has created a virus creation tool. The tool can generate
thousands of polymorphic viruses. The engineer is planning to use the tool in a controlled
environment to test the company’s next generation virus scanning software. Which would BEST
describe the behavior of the engineer and why?
A.
The behavior is ethical because the tool will be used to create a better virus scanner.
B.
The behavior is ethical because any experienced programmer could create such a tool.
C.
The behavior is not ethical because creating any kind of virus is bad.
D.
The behavior is not ethical because such a tool could be leaked on the Internet.
This contradicts what you have written for this ofher question: http://www.aiotestking.com/isc2/a-programmer-creates-a-virus-producing-tool-in-order-to-test-the-performance-of-a-new-virus-detection-product-2/
“As a CISSP, one needs to discourage unsafe practices and/or bad practices, and preserve and
strengthen the integrity of the public infrastructures.” See “All-in-One Exam Guide” Third Edition by
Shon Harris page 753 or http://www.isc2.org.
Can we have some clarification here???
0
0
this answer is correct. What you posted states that “a programmer” developed a virus creation tool to test the capabilities of a new anti virus program. This question states that “an engineer from a software company” created the virus creation tool to offline test the the capabilities of “their” companies virus detection program. This makes it ethical because it is part of his company, and “his companies” anti-virus software. The programmer created the same tool to test a new anti-virus tool. This can be unethical because all information can be leaked to the public. The company engineer will use the information to make his anti-virus program stronger.
1
0
If this kind of questions always appear in exam, it will be difficult to pass. I consider it as a trick question and test you in depth in the concept.
0
0