How many QCAA Digital Solutions questions cover Complex digital data exchange problems and solution requirements?

Q: How many QCAA Digital Solutions questions cover Complex digital data exchange problems and solution requirements?

AusGrader has 22 QCAA Digital Solutions questions on Complex digital data exchange problems and solution requirements, all with instant AI grading and detailed marking feedback.

QCAA (QCE) Digital Solutions — Complex digital data exchange problems and solution requirements Questions & Answers | AusGrader

Q9

2024

QCAA

1 mark

Q9

1 mark

A school is developing a class timetabling solution for their students.

Which is not an essential data store for the initial iteration of the app?

A

teacher

B

subject

C

student

D

assessment

Q10

2025

QCAA

1 mark

Q10

1 mark

A user accidentally modifies critical data in a shared document. This is a compromise of data

A

access.

B

integrity.

C

availability.

D

confidentiality.

Q14

2022

QCAA

6 marks

Q14

6 marks

Refer to Stimulus 3 in the stimulus book.

A secondary school stores encrypted student results in a database. To access their results, students must log in using their student ID and password. Login details are checked against the database to ensure only authorised students can gain access.

Passwords are encrypted for added security. Once logged in, students must enter a public decryption key to have their results displayed.

The database contains overall results for all subjects and students. Only results linked to the relevant student ID are displayed; students cannot view other students' results.

The algorithm for this system is incomplete. Complete the algorithm using the supplied code library.

BEGIN
    GET studentID from input form
    GET password from input form
    GET key from input form

BEGIN
    IF checkLogin(studentID, hashPassword(password)) THEN
        Results = getResults(studentID)
        FOR i = 0 to (size of Results)-1
            Display decryptData(key, results[i])
        ENDFOR
    ELSE
        Display “Access denied”
    ENDIF
END

Marking Criteria

Descriptor	Marks
Symbolises, without logic errors, an algorithmic statement for password encryption using 'hashPassword'	1
Symbolises, without logic errors, an algorithmic statement for checking student ID and hashed password using 'checkLogin'	1
Symbolises, without logic errors, an algorithmic statement for handling login errors	1
Symbolises, without logic errors, an algorithmic statement for retrieving data for specific student ID using 'getResults'	1
Symbolises, without logic errors, an algorithmic statement for outputting data for specific student ID using 'decryptData'	1
Effectively uses pseudocode conventions	1

Q12

2021

QCAA

18 marks

Q12

A mobile application (app) allows car owners to remotely unlock their cars if they lock the keys inside or their keys malfunction. Once users have created an account, they can request a remote unlock by entering their username and password.

The user data that is required to set up an account includes:

full name
date of birth
home address
driver licence number
vehicle make, model and colour
vehicle registration.

Q12a

6 marks

Analyse the information and evaluate risks to data confidentiality, integrity and availability for this app. Justify your response with three examples.

A data confidentiality risk is the possibility that an unauthorised person could observe the user data in transit. For example, the app requires a password for the user to log in and the data would need to be encrypted so that it cannot be stolen.

A data integrity risk is the possibility that the data could become corrupted, lost or be maliciously manipulated. For example, the wrong car might be unlocked or a hacker might use the data to cause distress.

A data availability risk is the possibility that someone may interfere with transmission to prevent data packets from reaching the intended destination, allowing them to access the person's car so that they can steal it.

Marking Criteria

Descriptor	Marks
Logically evaluates risks to data: confidentiality	1
Logically evaluates risks to data: integrity	1
Logically evaluates risks to data: availability	1
Justifies this evaluation by providing a coherent example of a risk to data: confidentiality	1
Justifies this evaluation by providing a coherent example of a risk to data: integrity	1
Justifies this evaluation by providing a coherent example of a risk to data: availability	1

Q12b

2 marks

Identify a relevant Australian Privacy Principle and explain an ethical consideration when using app data.

Australian Privacy Principle: Security of personal information. Allow an administrator to de-identify or destroy personal information once it is no longer in use.

Ethical consideration: Security of personal information is important if the user sells their car, or if the car is no longer in use. The user should not be getting unnecessary calls or marketing materials for a service they no longer use or for a car they no longer own, and it would be unsafe for the original owner to still have access to the vehicle once it has been sold.

Marking Criteria

Descriptor	Marks
Identifies a relevant Australian Privacy Principle (APP)	1
Logically explains an ethical consideration relating to the identified APP	1

Q12c

2 marks

You discover that the app uses a Caesar cipher to encrypt data, allowing you to intercept a password in transit. Perform a desk check for five iterations to decrypt the password ‘KYIWW’.

ABC DE FG H I J K L M N O P Q R S T U V W X Y Z

KEY SHIFT	PASSWORD
0	K Y I W W
1	J X H V V
2	I W G U U
3	H V F T T
4	G U E S S

Marking Criteria

Descriptor	Marks
Performs a desk check that decrypts the password using iterations	1
Contains no errors	1

Q12d

8 marks

A friend is interested in learning more about encryption. Use pseudocode to symbolise a simple Caesar cipher as a demonstration.

BEGIN
INPUT string plainText
INPUT int keyShift
SET string alphabet =ABCDEFGHIJKLMNOPQRSTUVWXYZ
SET encryptedText = ""
    FOR each character in plainText
        SHIFT character by keyShift
        APPEND letter to encryptedText
    END FOR
    RETURN encryptedText
END

Marking Criteria

Descriptor	Marks
Symbolises INPUT for password string	1
Symbolises INPUT for key or shift integer	1
Symbolises declarative statement for alphabet	1
Symbolises a FOR loop to traverse password one character at a time	1
Symbolises a function to encrypt password one character at a time, using the key	1
Symbolises RETURN for encrypted password	1
Symbolises an algorithm with no logic errors	1
Effectively uses pseudocode conventions	1

Q11

2024

QCAA

9 marks

Q11

Refer to Stimulus 1 in the stimulus book.

A hospital has installed a state-of-the-art boom gate at the entrance to the staff car park. The boom gate scans and records numberplates and requires drivers to swipe their ID card for access.

Q11a

3 marks

Identify three Australian Privacy Principles that apply to the use of personally identifiable or sensitive data and explain how the hospital could implement each principle.

Australian Privacy Principle: 1
Implementation: The hospital must be open and transparent about why it is collecting the data, how the data will be used and disclosed, and who will have access to the data. The hospital must also provide clear guidelines to staff about the collection and use of this information.

Australian Privacy Principle: 2
Implementation: The hospital must consider whether it is possible for staff to use a pseudonym instead of their real names when accessing the car park. If this is not practical, the hospital must ensure that it handles the personal information it collects in a secure and confidential manner, and only uses it for the purposes for which it was collected.

Australian Privacy Principle: 3
Implementation: The hospital must have a lawful reason for collecting staff driver information and inform staff of the purpose and use of the data collected.

Marking Criteria

Descriptor	Marks
Identifies and explains the implementation of one Australian Privacy Principle	1
Identifies and explains the implementation of a second Australian Privacy Principle	1
Identifies and explains the implementation of a third Australian Privacy Principle	1

Q11b

6 marks

Analyse the scenario to determine a risk to data confidentiality, integrity and availability and make a recommendation for reducing each of these risks.

Confidentiality: The digital solution for capturing numberplate information and staff names poses risks for privacy, as personal data from various sources may be linked in unexpected ways. Only one trusted employee, like an IT manager, should have access to the database, and only after going through a review process approved by the hospital's recruitment and management staff. Information should only be shared between the IT manager and staff member in question, with no other parties privy to conversations or actions taken.

Integrity: The data in the database must be error-free, but staff may attempt to abuse the system by providing access to family or friends by lending them their staff ID and obscuring their number plates to gain entry. To prevent staff from logging different numberplates, the system should crosscheck a list of permitted numberplates against IDs before granting access.

Availability: The data may be vulnerable to hacking if allowed online, so a MicroSD card should be used for offline access by a trusted staff member. Physical security of the system and SD card should be maintained to prevent staff from damaging or destroying the digital solution. Data should be purged regularly, and the database should be detached and not accessible online. Numberplate data captured by the system should be encrypted and only accessible in extreme cases.

Marking Criteria

Descriptor	Marks
Analyses a risk to data: confidentiality	1
Analyses a risk to data: integrity	1
Analyses a risk to data: availability	1
Makes a recommendation for reducing risks to data: confidentiality	1
Makes a recommendation for reducing risks to data: integrity	1
Makes a recommendation for reducing risks to data: availability	1

QCAA Digital Solutions Complex digital data exchange problems and solution requirements

Frequently Asked Questions

Ready to practise QCAA Digital Solutions?