Visit www.webtrust.org. Read the Overview of Trust Services and the following paragraphs of Principles and Criteria:
Question:
Visit www.webtrust.org. Read the “Overview of Trust Services” and the following paragraphs of “Principles and Criteria”:
■ Introduction (paragraphs. 01–.18).
■ Paragraph .19, which provides a description of the security principle.
■ Paragraphs .21–.22, which provide a description of the availability principle.
■ Paragraphs .24–.26, which provide a description of the processing integrity principle.
■ Paragraphs .28–.31, which provide a description of the confidentiality principle.
■ Paragraphs .33–44, which provide a description of the privacy principle.
a. What are Trust Services? What is the WebTrust service? What is the SysTrust service?
b. What are Trust Services principles, criteria, and illustrative controls?
c. How is “system” defined?
d. What is the security principle?
e. What is the availability principle?
f. What is the processing integrity principle? What is the difference between processing integrity and data integrity?
g. What is the confidentiality principle? What kinds of information may be subject to confidentiality?
h. What does “privacy” mean? What are some examples of “personal information?” What are some examples of “sensitive personal information?” What is the difference between privacy and confidentiality? What is the privacy objective? What are the 10 generally accepted privacy principles?
Step by Step Answer:
Internal Auditing Assurance & Advisory Services
ISBN: 9780894139871
4th Edition
Authors: Urton L. Anderson, Michael J. Head, Sridhar Ramamoorti, Cris Riddle, Mark Salamasick, Paul J. Sobel