- 20 Marks
Question
As a valuable resource of an organisation, information should be controlled, secured, and protected from unauthorized disclosure and destruction.
In the light of the above statement, you are required to explain briefly each of the following:
a. Information System Controls
b. Data Encryption
c. Biometric Identification Devices
d. Firewall
Answer
a. Information System Controls
Information system controls are procedures and mechanisms that ensure the accuracy, integrity, and security of data processed by an information system. They include preventive, detective, and corrective controls that safeguard the system against threats such as data breaches, unauthorized access, and data loss.
b. Data Encryption
Data encryption is the process of converting readable data into an unreadable format to protect it from unauthorized access. Encrypted data can only be decrypted and read by someone who has the correct encryption key, ensuring the confidentiality and security of sensitive information during transmission or storage.
c. Biometric Identification Devices
Biometric identification devices use unique biological characteristics such as fingerprints, retinal scans, or facial recognition to authenticate individuals and grant them access to a system or facility. This method of identification enhances security by making it more difficult for unauthorized users to gain access.
d. Firewall
A firewall is a network security device that monitors and controls incoming and outgoing network traffic based on predetermined security rules. It acts as a barrier between a trusted internal network and untrusted external networks, such as the internet, protecting the organization’s network from external attacks and unauthorized access.
- Topic: Information Systems Development and Security
- Series: MAY 2015
- Uploader: Joseph