4 (a) Tick (✓) one or more boxes on each row to identify all of the methods that can help to prevent each threat.
| Threat | Anti-malware | Encryption | Firewall | Penetration testing |
|---|---|---|---|---|
| Spyware | ☐ | ☐ | ☐ | ☐ |
| Brute-force attack | ☐ | ☐ | ☐ | ☐ |
| Data interception | ☐ | ☐ | ☐ | ☐ |
| SQL injection | ☐ | ☐ | ☐ | ☐ |
[4]
A common misconception was that a firewall and penetration testing could stop data interception. Both of these methods would prevent access to a computer system, but if data is being transferred between computers (for example on the internet) then there will be no firewall to stop the interception.— J277_01_ER_Jun2023.txt lines 284-288
| Threat | Anti-malware | Encryption | Firewall | Penetration testing |
|---|---|---|---|---|
| Spyware | ✓ | (✓) | ||
| Brute-force attack | ✓ | (✓) | ||
| Data interception | ✓ | |||
| SQL injection | (✓) | ✓ |
Tick the primary cell (shown ✓). Bracketed (✓) cells are also accepted by the MS.
Data interception is prevented only by encryption. A firewall protects a system; encryption protects data in transit. The wire still carries the bits — encryption ensures they are meaningless if intercepted. Don't tick firewall or pen-test for data interception.