An administrator is assessing the potential risk impact on an accounting system and categorizes it as follows: Administrative Files = {(Confidentiality, Moderate), (Integrity, Moderate), (Availability, Low)} Customer and Vendor Information = {(Confidentiality, High), (Integrity, Low), (Availability, Low)} Payroll Data = {(Confidentiality, High), (Integrity, Moderate), (Availability, Low)} Which
of the following is the aggregate risk impact on the accounting system?
A. {(Confidentiality, Moderate), (Integrity, Moderate), (Availability, Low)}
B. {(Confidentiality, High), (Integrity, Moderate), (Availability, Low)}
C. {(Confidentiality, High), (Integrity, Low), (Availability, Low)}
D. {(Confidentiality, Moderate), (Integrity, Moderate), (Availability, Moderate)}
B
Explanation: The aggregate risk impact on the accounting is the highest risk level for each category for all of the systems components. For this example, the aggregate risk impact is:
{(Confidentiality, High), (Integrity, Moderate), (Availability, Low)}
You might also like to view...
Which JFileChooser method returns the file the user selected?
a. getSelectedFile. b. getFile. c. getOpenDialog. d. showOpenDialog.
Which of the following is true of stingray?
a. It supports operations that require aerial surveillance. b. It is a national security agency surveillance program that collects Internet data including search histories. c. It impersonates a cell tower and forces all mobile phones within range to connect to it. d. It is an airline passenger prescreening program that checks travelers’ personal information.