Certified Internal Auditor (CIA) Part 3: Business Knowledge for Internal Auditing — Question 254
Which of the following is an example of a smart device security control intended to prevent unauthorized users from gaining access to a device's data or applications?
Answer options
- A. Anti-malware software.
- B. Authentication.
- C. Spyware.
- D. Rooting.
Correct answer: B
Explanation
Authentication is the process that verifies the identity of a user trying to access a device, making it a key security control. Anti-malware software protects against malicious software, but it does not directly prevent unauthorized access. Spyware is a type of malware that can compromise security, and rooting involves gaining unauthorized access to a device, which could lead to security vulnerabilities.