.

Cambridge IGCSE O Level Computer Science answers

5 The internet and cyber security

1 a Internet World wide web (www)
It is a collection of multimedia
Users can send and receive emails web pages and other
information on websites
Web pages are written using
Allows online chatting (via text, audio and video) hypertext mark-up language
(html)
Uniform resource locators
Makes use of transmission protocols (TCP) and
(URLs) are used to specify the
internet protocols (IP)
locations of web pages
Web resources are accessed by
web browsers
The www uses the internet
It is a worldwide collection of interconnected networks
to access information from
and devices
web servers
Makes use of the http(s)
protocol

b i https
ii www
iii .com
iv comp_science_sample
c Three from:
• They have a home page.
• They can store a user’s favourite websites/web pages (used as a bookmark).
• They keep a history of websites visited by the user (user history).
• They have the ability to allow the user to navigate forwards and backwards through
websites/web pages already opened; many webpages can be open at the same time
(navigation).
• They make use of hyperlinks that allow navigation between websites and web pages;
links are shown in one of two ways:
• either the website is underlined and requires <ctrl> + <click> to follow the link
• or a small pointed finger shows under the name of the website link to highlight it
• They make use of cookies.
• Data is stored as a cache.
• They translate HTML and display the result of the translation on the user’s device.
• They make use of JavaScript.
• They use an address bar.
2 order: 2, 4, 5, 1, 6, 3

Page 1 of 7
.
Cambridge IGCSE O Level Computer Science answers

3 a • a cookie that is stored temporarily on a computer

• cookie is deleted when the browser is closed or the website session terminated
b • a cookie that is stored on a user’s HDD/SSD
• a cookie that is only deleted when its expiry date is reached or it is deleted by the user
c Three from:
• They allow a website to remember a user’s details.
• They allow a website to recognise a user every time they visit the website.
• They can save a user’s items in a virtual shopping basket.
• They can track a user’s internet habits and their browsing history or favourites
(bookmarks).
• They can target users with advertising which matches previous buying/surfing habits.
• They can store user preferences.
• They allow different languages to be used on the webpage automatically as soon as a
user logs onto the website.
• They allow progress in online games/quizzes to be stored.
4 a True False
Blockchaining statement
() ()

All digital currency systems use blockchaining 

Blockchaining uses a decentralised database 

The last block in a blockchain is known as the ‘genesis block’ 

New hash values are only generated when data in a block is altered 

Tampering of data in a block by a hacker would cause the hash value


to change

Blocks are ‘policed’ by network users called ‘miners’ 

b In any order:
• data (for example, name of sender/recipient)
• hash value (a unique ‘fingerprint’)
• previous hash value (pointing back to previous block in the chain)
c i 0000 A4BF 6AB1 34EE FF12 AA00
ii Any changes to block '4' will cause the hash value (FF12) to be changed. This means
that blocks '5' and '6' and beyond will now be invalid because the chain was broken
between '4' and '5' (previous hash value FF12 is no longer valid).
d • Cryptocurrency uses cryptography to track transactions.
• Digital currency uses a central banking system; whereas cryptocurrency is
decentralised.
• Cryptocurrency uses block chaining.
• Cryptocurrency transactions are publicly available and therefore all transactions can be
tracked.

Page 2 of 7
.
Cambridge IGCSE O Level Computer Science answers

6 a i Trojan horse: a malicious program often disguised as legitimate-looking software; it

replaces all or part of the genuine software with the intent of carrying out some harm to
the user’s system.
ii Adware: software that floods the user’s computer with unwanted advertising; usually
in the form of ‘pop ups’ but can frequently appear in the browser’s address window
redirecting the browser to another website that contains promotional adverts
(or sometimes adverts that create a security breach).
iii Ransomware: programs that encrypt the data on a user’s computer; a decryption key is
sent back to the user once they pay a sum of money (the ransom); often sent via a
Trojan horse or by social engineering.

Page 3 of 7
.
Cambridge IGCSE O Level Computer Science answers

b i This occurs when a cybercriminal creates a social situation that can lead to a potential
victim ‘dropping their guard’. It involves manipulation of people into breaking their
normal security protocols by:
• instant messaging
• scareware
• email/phishing scams
• baiting
• bogus phone calls

ii Threat used by How the threat is used (include examples)

cybercriminals
Instant messaging • malicious links are embedded into instant messages
• for example, an important software upgrade
• relies on the user’s curiosity
Scareware • this is often done using a pop-up message that claims that
the user’s computer is infected with a virus
• the user is told they need to download the fake antivirus
immediately
• relies on the user’s fear of viruses and other malware
Baiting • the cybercriminal leaves a malware-infected memory stick
somewhere where it can be found:
• the finder picks up the memory stick and plugs it into
their computer (just to see who it belongs to)
• the finder unwittingly downloads malicious malware
• relies on the user’s curiosity
Phone calls • a so-called IT professional calls the user on their mobile
claiming their device has been compromised in some way
• the user is advised to download some special software that
allows the cybercriminal to take over the user’s device …
• … giving them access to personal information
• relies on fear of the ‘unknown’ risks

Page 4 of 7
.
Cambridge IGCSE O Level Computer Science answers

7 a i It is software that detects and removes spyware programs installed illegally on a user’s
computer system.
ii Three from:
• It detects and removes spyware already installed on a device.
• It prevents a user from downloading spyware.
• It encrypts files to make the data more secure in case it is ‘spied’ on.
• It encrypts keyboard strokes to help remove the risk posed by the keylogging
aspects of some spyware.
• It blocks access to a user’s webcam and microphone (the software stops the
spyware from taking over the control of a user’s webcam and microphone which
can be used to collect information without the user’s knowledge).
• It scans for signs that the user’s personal information has been stolen and warns
the user if this has happened.

b Biometric
Benefits Drawbacks
technique
Fingerprint • is one of the most • is very intrusive for some people
or developed biometric because it is still related to criminal
thumbprint techniques identification
scans
• has high accuracy • can make mistakes if the skin is dirty or
• is very easy to use damaged (e.g. cuts)

• has relatively small

storage requirements
for the biometric data
created
Retina • has very high accuracy • is very intrusive
scans • no known way to • can be relatively slow to verify the retina
replicate a person’s scan with stored scans
retina • is very expensive to install and set up
• a person’s voice can be easily recorded
• non-intrusive method
and used for unauthorised access
• verification takes less
Voice • low accuracy
than 5 seconds
recognition • an illness such as a cold can change a
• relatively inexpensive
person’s voice, making absolute
technology
identification difficult or impossible

c • A microphone picks up verbal commands.

• Certain words, such as ‘navigate’, ‘media’, ‘open windows’, etc, often need to be used.
• The processor processes words by comparing them to those stored on the database.
• Commands are sent to a device to operate satnav, media or window mechanism.
• Signals are sent to actuators to operate motors to open/close windows, and so on.

Page 5 of 7
.
Cambridge IGCSE O Level Computer Science answers

8 a order: 4, 5, 2, 6, 3, 1
b They contain ‘patches’ that contain software improvements, for example, removing
glitches or adding new features; updates may contain security fixes, such as improved anti-
malware routines.
9 Four from:
• email address gives clues, for example, no company will use an email such as
‘…@gmail.com’
• email address should contain the company name
• tone of email is a clear indication of a scam
• not only spelling mistakes, but the language used and the way the target victim is
addressed, for example ‘Dear User’
• mis-spelling in a subtle way (i.e. typo squatting)
• suspicious links; the destination address should match the rest of the email
• some links (such as, How To Contact Us) don’t work
• look at the domain; for example, large companies would use .com rather than .co or .org
10 a a type of protocol that:
• allows data to be sent and received securely over a network
• encrypts data
• is active when the connection protocol is https or if there is a small green padlock by
the website address
b order: 2, 4, 1, 5, 3
c Three from:
• online banking and financial transactions
• online shopping/commerce
• when sending out software to a restricted list of users
• sending/receiving emails
• using cloud storage facilities
• using VoIP
• when using instant messaging
• when using social networking sites
11 a • They can filter information in and out of a computer.
• They are the primary defence of any computer system to prevent it from hacking,
malware, phishing and pharming.
• They can be hardware or software.

Page 6 of 7
.
Cambridge IGCSE O Level Computer Science answers

b Four from:
• It is used to examine the ‘traffic’ between a user’s computer (or internal network) and a
public network (for example, the internet).
• It checks whether incoming or outgoing data meets a given set of criteria, and if the
data fails the criteria, the firewall will block the ‘traffic’ and give the user (or network
manager) a warning that there may be a security issue.
• The firewall can be used to log all incoming and outgoing ‘traffic’ to allow later
interrogation by the user (or network manager).
• Criteria can be set so that the firewall prevents access to certain undesirable sites; the
firewall can keep a list of all undesirable IP addresses.
• Alternatively, the firewall can be set to only allow access to known and trusted IP
addresses.
• It is therefore possible for firewalls to help prevent viruses or hackers from entering the
user’s computer (or internal network).
• The user is warned if some software on their system is trying to access an external data
source (for example, automatic software upgrade); the user is given the option of
allowing it to go ahead or request that such access is denied.

Page 7 of 7