ACCESS CONTROLS  

Access controls

a)      Passwords

b)      Access logs

c)      Authorization tables

d)      All of the above

d = answer

Monitoring access to system

a)      ITF

b)      Log listing attempts to use system

c)      List files maintained on system

d)      None of the above

a = technique to select transactions and processing functions during normal processing cycle

b = correct answer

Control access to documents in LAN

a)      Passwords to access individual documents

b)      Passwords to access system

c)      Periodic server backup

d)      None of the above

a = answer

b = will permit staff to access all documents in the system

Control access to hardware terminal

a)      Echo check

b)      Data encryption

c)      Device authorization table

d)      None of the above

a = checks accuracy of signals sent to and from a terminal

b = makes data unusable

c = correct answer; restricts file access to particular physical devices

APPLICATION CONTROLS  

Application controls relate to

a)      Input

b)      Processing

c)      Output

d)      All of the above

d = correct answer

Application controls

a)      Provide reasonable assurance recording, processing and reporting of data properly performed

b)      Relate to non-EDP activities

c)      Relate to supervision

d)      Relate only to database environments

a = correct answer

Input controls

a)      Provide reasonable assurance data received properly authorized

b)      Control access to data file

c)      Control access to program files

d)      Ensure completeness, accuracy, and validity of data

a = correct answer

d = processing controls

Prevent input of transposed number

a)      Sequence check

b)      Record check

c)      Check digit

d)      Field size check

a = tests for logical sequences of records

b = validates fields for logical relationships

c = correct answer; establishes validity of numerical data elements

d = checks length of record

Prevent incorrect posting

a)      Range check

b)      Reasonableness check

c)      Parity check

d)      Validity check

a = limit test on numerical value

b = limit test

c = checks for odd or even number of bits

d = correct answer; compares to items, numbers known to be correct

Detect alpha character in a numeric field

a)      Logic check

b)      Limit check

c)      Field check

d)      Check digit

a = tests for relationships (employee vs. SSN, etc.)

b = detects if outside range

c = correct answer

d = establishes validity of numerical data elements

ORGANIZATIONAL CONTROLS  

Organizational controls

a)      Segregation of duties issues

b)      Hardware controls

c)      Application controls

d)      Systems development procedures

a = answer

Computer operations should be segregated from

a)      Systems development

b)      Data conversion

c)      All of the above

d)      None of the above

a = correct answer

b = computer operations may be required to covert data

Control weakness

a)      Operators have access to program source code

b)      Programmers revising computer programs

c)      Control group distributing computer reports

d)      Librarian having custody of computer programs

a = correct answer

Database Administrator should not

a)      Develop and maintain database

b)      Design content of database

c)      Control database

d)      Develop applications to access database

d = correct answer

AUDITING CONTROLS  

Auditing terminal security controls

a)      Read documentation, make observations and inquires, flow controls

b)      Observations

c)      Generalized audit software

d)      None of the above

a = correct answer

b = not enough work done

c = used for substantive tests

Auditing manual procedures

a)      Use checklists and questionnaires

b)      Review user manuals

c)      Observations and inquiries

d)      All of the above

d = correct answer

Auditing disaster recovery controls

a)      Review comprehensive recovery plan

b)      Evaluate backup routines

c)      Determine if alternate processing site selected

d)      All of the above

d = correct answer

Auditing specific portion of a program that calculates cash discounts

a)      Mapping

b)      Parallel simulation

c)      Snapshot

d)      None of the above

a = identifies statements not executed

b = compares test results to program results

c = correct answer; captures transaction as it flows through system

Generalized audit software

a)      Select and  summarize records

b)      Extract, compare, analyze data

c)      generate output

d)      All of the above

d = correct answer

HARDWARE:  

CPU

a)      …input, processing, output

b)      …control, storage, ALU

c)      …control, storage, output

b = (correct answer)

Terminal emulator

a)      …small computer doing communications tasks

b)      …combines signals into one signal

c)      …allows micro to interface with mainframe

d)      …controls trains arriving and departing at train station

a  = multiplexors and concentrators

b = multiplexor; part of microprocessor

c = (correct answer)

Translating hand written characters into machine-readable form

a)      …POS

b)      …OCR

c)      …MICR

a = point of sale

b = optical character recognition (correct ans.)

c = magnetic ink character

Component housing internal memory

a)      CPU

b)      Modem

c)      Bus

d)      Disk drive

a = correct answer

Storage place for operating system

a)      RAM

b)      ROM

c)      Modem

d)      Multiplexor

b = (correct answer)Read Only Memory; hardwired into computer; can’t write on or erase

a = not permanent storage device

Hardware controls

a)      Built into equipment by manufacturer

b)      Detect and control errors arising form using equipment

c)      Echo checks

d)      All of the above

d = answer

Parity check

a)      Built into computer

b)      Adds bits and checks sum to determine if odd or even, depending upon computer having odd or even parity

c)      Verifies data have been transferred without loss

d)      All of the above

d = answer

SOFTWARE  

Firmware

a)      RAM

b)      software wired into computer

c)      programmer can change

d)      ROM

b = correct answer

Assembler

a)      converts 3^rd or 4^th generation language into machine language

b)      interpreter

c)      converts assembly language into machine language

a = compiler

b = converts program statement into machine language to be executed

c = correct answer

Programs performing general type functions (sorting, etc.)

a)      Source programs

b)      Object programs

c)      Compiler programs

d)      Utility programs

a = not limited to utility functions; programmers write programs in source languages

b = not limited to utility functions; source languages converted into object programs so can be processed by computer

c = converts program from source language into machine language

d = correct answer; standard programs can be used in other programs

Language in English-like statements

a)      FORTRAN

b)      BASIC

c)      COBOL

a = used to solve math and engineering problems

b = used principally for microcomputers

c = correct answer

Program needed to perform an application program

a)      Assembly language program

b)      Utility program

c)      Operating system program

d)      Source program

a = written using mnemonic codes, not binary like a machine language program

b = application programs that do various activities – sort, merge, etc.

c = correct answer

d = programmers write programs in source language

SYSTEMS DEVELOPMENT LIFE CYCLE  

SDLC steps

a)      analysis, design, implementation, operation

b)      design, analysis, implementation, operation

c)      design, implementation, analysis, operation

d)      none of the above

a = correct answer

Systems design

a)      Learning how system functions

b)      Determine technical, operational and economic feasibility of system

c)      Monitoring, evaluating and modifying system

d)      Developing specifications, internal controls, security measures, etc.

a = analysis

b = feasibility study

c = maintenance

d = correct answer

Developing systems using bottom-up approach

a)      Identify crucial factors at the organization level

b)      Starting at operational level, design each functional unit then tie units together

c)      Least costly, always

d)      None of the above

a = top down approach

b = correct answer

c = may not be cheapest always

Maintenance

a)      Determining user problems

b)      Determine if proposed system is economically feasible

c)      Training system users

d)      Performed continuously throughout life of  system

a = system analysis

b = feasibility study

c = implementation phase

d = correct answer

Understanding how existing system works

a)      Feasibility study

b)      Maintenance

c)      Implementation

d)      Analysis

d = correct answer

Top down approach used for developing new systems starts with

a)      Equipment selection

b)      Controls in place for existing system

c)      Analyzing associated goals, objectives and policies

d)      None of the above

c = correct answer

Implementation phase includes

a)      Training

b)      Documentation

c)      Testing

d)      All of the above

d = correct answer

Feasibility study

a)      Includes plan for converting existing manual operations

b)      Review costs and benefits of conversion

c)      Evaluate internal controls for each planned application

d)      All of the above

a = part of system design phase

b = correct answer

c = too early in development to determine

CASE, Computer Aided Software Engineering

a)      Applies computer to software design and development

b)      Capacity to maintain library of standard program modules and system documentation

c)      Develop executable input and output screens

d)      All of the above

d = correct answer

DATA ELEMENTS  

Group of bits

a)      ASCII code

b)      Fields

c)      Bytes

d)      Files

a = ASCII is a coding convention (American Standard Code for Information Interchange)

b = group of characters representing one unit of information

c = correct answer; group related bits defining one unit of data (letter,etc.)

d = group of related records

File structure where all attributes and field lengths in a record are identical

a)      Hierarchical structure

b)      Relational structure

c)      Single/flat file structure

d)      Network structure

a = one attribute is related to many others

b = uses tables to handle many different data relationships

c = answer; each record has same type & order of data elements,storage requirements

d = many attributes related to many others

Record

a)      Group characters representing one unit

b)      Multiple records

c)      Multiple files

d)      Collection related data items (fields)

a = Field

b = File

c = Database

d = correct answer

DOCUMENTATION CONTROLS  

Program documentation includes

a)      Systems flowcharts

b)      Operating instructions

c)      Record layouts

d)      All of the above

d = correct answer (plus, program flowcharts, program listings, test data, change sheets, etc.)

Best method of documenting flow of data for a system

a)      Program flowchart

b)      Data flow diagram

c)      System flowchart

d)      None of the above

a = shows only details of single program

b = shows where data goes

c = correct answer; graphic analysis of data processing application usually prepared by systems analyst

PROCESSING  

Two or more processes executed concurrently

a)      On-line

b)      Network

c)      Batch

d)      Parallel

a = data entered via terminal

b = network of computers most likely used for online, real-time applications

c = accumulate transactions for processing on a delayed basis

d = correct answer

Sequential access

a)      Records stored in logical order; can retrieve only after reading preceding one

b)      Access each record in same amount of time

c)      None of the above

d)      All of the above

a = correct answer

Database

a)      No need to pass files between applications

b)      Data can be used concurrently by many users

c)      Data are defined independently of the needs of any one particular program

d)      All of the above

d = correct answer

Data entry possible from several locations with immediate updates

a)      Minicomputers

b)      Microcomputers

c)      Online, real time systems

d)      None of the above

c = correct answer

Most versatile database models

a)      Network model

b)      Hierarchical model

c)      Tree model

d)      Relational model

a = relationships are many to many

b = relationships one to many

c = same as b

d = correct answer; use tables of data

Coding

a)      Assigns unique number/key to each data record

b)      Primary key used to store and locate records within a file

c)      All of the above

d)      None of the above

c = correct answer

COMMUNICATION  

CPU alternately processing tasks from different terminals

a)      Parallel processing

b)      Multiprocessing

c)      Multiplexing

d)      Timesharing

a = concurrent execution of two or more processes

b = processing done by more than one CPU sharing same memory

c = switch device controlling flow of signals between many terminals and CPU

d = correct answer

Interconnections within a building

a)      WAN

b)      Baseband network

c)      LAN

d)      None of the above

a = use microwave relays and satellites to reach over long distances

b = baseband communication channel provides data transport for LAN’s

c = correct answer

Linking minicomputers separately to workstations

a)      Ring

b)      WAN

c)      Star

d)      None of the above

a = messages routed in one direction to locations connected to each other rather than a central computer

b = use microwave relays and satellites to reach over long distances

c = correct answer; link each location to central computer but not to other locations

Distributed computing

a)      Determining which parts of application should be processed by which interconnected nodes

b)      Lower communication costs

c)      Security more difficult with more sites available for processing

d)      All of the above

d = correct answer

Rules for communicating

a)      Asynchronous communication

b)      Synchronous communication

c)      Communication protocol

d)      Communication channel

a = communicating in disjointed segments, character by character with start and stop codes

b = communicating in continuous stream of characters

c = correct answer; rules and conventions to use

d = small processors that control input and output devices

Mainframe communicating with terminals via

a)      Modem

b)      Software emulator

c)      Software compiler

d)      None of the above

a = used to transmit information over telephone lines

b = correct answer; makes terminals compatible with mainframe to permit communication

c = translate source code (COBOL, etc.) to machine readable or object code

Fiber optics

a)      Use light impulses traveling through clear flexible tubing

b)      Subject to electrical interference

c)      Signal weakens over long distances

d)      None of the above

a = correct answer

b = fiber optic cables not subject to electrical interference

c = signal remains strong

Message switching

a)      Entering information in batches at location remote from central processing site

b)      Message received is stored until outgoing line is available for transmitting

c)      Sharing computer system by tow or more users

d)      None of the above

a = batch processing

b = correct answer

c = timesharing