gcsecomputerscience.co.uk
🏆 Score: 0 / 26
1 [3 Marks Total]
Identify the security measure described. Tick one box per row.
Description
Anti-malware
Firewall
Pen-testing
Scans files against DB of known viruses.
Simulates a cyberattack to find vulnerabilities.
Monitors incoming/outgoing traffic.
✅ Mark Scheme
  • Scans Files: Anti-malware
  • Simulates Attack: Penetration Testing
  • Monitors Traffic: Firewall
Score yourself (Max 3):
2 [5 Marks Total]
Penetration Testing process.
(a) Describe the process. [2] (b) Explain the purpose of doing this BEFORE release. [2] (c) What type of "hacker" does this legally? [1]
✅ Mark Scheme

(a) Authorised users simulate an attack (1) to find weak points (1).

(b) To find/fix vulnerabilities (1) before malicious hackers exploit them (1).

(c) White hat / Ethical hacker (1).

Score yourself (Max 5):
3 [6 Marks Total]
Firewalls.
(a) Describe two actions a firewall performs. [4] (b) Why won't a firewall stop a virus on a USB stick? [2]
✅ Mark Scheme

(a) Actions: Monitors traffic (1) against rules (1). Blocks unauthorised traffic (1). Opens/Closes ports (1).

(b) Firewalls monitor network traffic (gateways) (1). USB sticks are physical storage devices, not network traffic (1).

Score yourself (Max 6):
4 [4 Marks Total]
Anti-malware software.
(a) Apart from hard drive scans, when else does it scan a file? [1] (b) Describe steps taken when a virus is detected. [3]
✅ Mark Scheme

(a) When downloaded / opened / scheduled scan.

(b) Alerts user (1). Quarantines file (1). Asks to delete (1).

Score yourself (Max 4):
5 [8 Marks Total]
Sarah installs a Firewall but no Anti-malware.
(a) Explain why she is wrong (compare the tools). [4] (b) One non-software prevention for social engineering? [1] (c) Are Backups "Prevention" or "Recovery"? Justify. [3]
✅ Mark Scheme

(a) Firewall blocks connections/traffic (1) but can't see inside valid downloads (1). Anti-malware scans content (1) to remove viruses that bypass firewall (1).

(b) Training / Education / AUP.

(c) Recovery (1). Backups don't stop the attack (1), they only restore data afterwards (1).

Score yourself (Max 8):