#17 Jun 2022 Q5(b) 6 marks 1.4.2 software security methods (paired)

Question

Lead-in: A software development company wants to protect their computer systems and data from unauthorised access. (Q5(a) asked for two methods of physical security.)

(b) Identify and describe two software-based security methods that the company can use to protect their computer systems and data.

Method 1 ......................................................................
Description ........................................................................

Method 2 ......................................................................
Description ........................................................................

[6]

Why this question is tricky

Some candidates gave software-based security methods in response to this question instead of physical.— J277_01_ER_Jun2022.txt lines 300-301 (re Q5(a); same scenario)

MS complexity 8/10: "Mark method first. If method is wrong, do not read on" — wrong method costs both marks. "If second method is a repeat of the first, mark whole answer for max 3".

Full-marks model answer

Method 1: Anti-malware.

Description: Anti-malware scans for and identifies viruses, spyware and malware by comparing data on the computer to a database of known malware signatures. When it finds a match it alerts the user and quarantines or deletes the malicious file, and it stops malware from being downloaded onto the system.

Method 2: Encryption.

Description: Encryption scrambles data using an algorithm so that if the data is intercepted it cannot be understood. A key is required to decrypt the data back into its original readable form, meaning only authorised users with the key can access it.

Mark allocation (6 marks — 1 for each method + up to 2 for each description)
  • Method 1 (Anti-malware): name (1) + up to 2 description points: scans for / identifies virus/spyware; compares data to a malware database; alerts user and requests action; quarantines/deletes malware; stops download of malware.
  • Method 2 (Encryption): name (1) + up to 2 description points: scrambles data; ...using an algorithm; so if intercepted it cannot be understood; key needed to decrypt.
  • Alternative methods accepted: Firewall, User access levels, Anti-virus, Passwords/biometrics/authentication, Two-step authentication.

Watch out for...

Make sure both methods are software-based. Locks, CCTV and biometric door entry are physical — if you name one of those, you score 0 for the method and the description is not read. The two methods must be different — "password" and "two-factor authentication" are too similar; pick distinct categories (e.g. anti-malware + encryption, or anti-malware + firewall).