EnglandComputer ScienceSyllabus dot point

How can a system be protected against attack, and how should data be backed up and managed?

The methods used to protect a system (firewalls, encryption, passwords and biometrics), and data management including the need for and types of backup.

An Eduqas GCSE Computer Science answer on the methods used to protect a system (firewalls, encryption, passwords, biometrics) and on data management, including why backups matter and full versus incremental backup.

Generated by Claude Opus 4.810 min answerUpdated 2026-06-02

Reviewed by: AI editorial process; not yet individually human-reviewed

Have a quick question? Jump to the Q&A page

Quick answer

Several methods protect a system. A firewall monitors and controls the traffic in and out of a network against a set of rules, blocking unauthorised connections. Encryption scrambles data into ciphertext using a key, so that if it is intercepted it cannot be read without the key (protecting data in transit and at rest). Passwords authenticate users, and strong ones (long, complex, not reused), plus locking an account after repeated failed attempts, resist brute-force attacks. Biometrics use a physical characteristic (fingerprint, face, iris) to authenticate, which is hard to copy but raises privacy concerns. For data management, backups keep a separate copy so data can be restored after hardware failure, deletion, malware or disaster; a full backup copies everything (slow, large, quick to restore), while an incremental backup copies only what changed since the last backup (fast, small, but needs the full backup plus all increments to restore). Off-site or cloud copies protect against fire and theft.

Jump to a section

What this dot point is asking
Firewalls and encryption
Passwords and biometrics
Data management and backups
Try this

What this dot point is asking

Eduqas wants you to explain the methods used to protect a system against the threats in the previous topic: firewalls, encryption, passwords and biometrics, and to cover data management, especially why backups matter and the difference between full and incremental backups. The firewall-versus-encryption distinction and the backup contrast are the recurring marks.

Firewalls and encryption

Passwords and biometrics

Data management and backups

Design protection for an online shop

An online shop stores customer accounts and card details and wants to protect them. Recommend protection methods and a backup approach.

Step 1: Protect data in transit and at rest

Use HTTPS encryption so card details cannot be read if intercepted, and encrypt the stored customer data so a stolen database is unreadable.

Step 2: Control access

Put the servers behind a firewall to block unauthorised connections, require strong passwords for staff and customers, and lock accounts after repeated failed logins to resist brute force.

Step 3: Plan backups

Take regular backups (for example a weekly full backup and daily incremental backups) and keep a copy off site or in the cloud, so customer data can be restored after hardware failure, ransomware or a disaster.

Try this

Q1. State the purpose of a firewall. [1 mark]

Cue. To monitor and control the traffic in and out of a network, blocking unauthorised connections.

Q2. Explain how encryption protects data. [2 marks]

Cue. It scrambles the data into ciphertext using a key, so it cannot be read without the key if intercepted.

Q3. State one difference between a full backup and an incremental backup. [1 mark]

Cue. A full backup copies all the data; an incremental backup copies only the data that has changed since the last backup.

Exam-style practice questions

Practice questions written in the style of WJEC Eduqas exam questions on this dot point, with worked answer explainers. The year tag is the paper they imitate, not the source.

Eduqas Component 1, 20224 marksExplain how a firewall and encryption each help to protect a computer system.

Show worked answer →

Firewall (up to 2 marks): monitors and controls the traffic entering and leaving a network against a set of rules, blocking unauthorised or suspicious connections so attackers cannot get in and malware cannot communicate out.

Encryption (up to 2 marks): scrambles data into ciphertext using a key, so that if it is intercepted or stolen it cannot be read without the key; it protects data both in transit (over a network) and at rest (stored).

Markers reward "controls/filters network traffic" for the firewall and "scrambles data so it is unreadable without the key" for encryption. Saying encryption "stops hackers getting in" confuses it with a firewall.

Eduqas Component 1, 20234 marksA business wants to protect against data loss. Explain why backups are needed and describe the difference between a full backup and an incremental backup.

Show worked answer →

Why backups (up to 2 marks): they keep a separate copy of data so it can be restored if the original is lost through hardware failure, accidental deletion, malware (such as ransomware) or disaster. Keeping a copy off site protects against fire or theft.

Full versus incremental (up to 2 marks): a full backup copies all the data every time, which is slower and uses more storage but restores quickly from one copy; an incremental backup copies only the data that has changed since the last backup, which is faster and smaller but needs the last full backup plus all increments to restore.

Markers reward a clear reason for backups and an accurate full-versus-incremental contrast (all data versus only changes).

Related dot points

Sources & how we know this

WJEC Eduqas GCSE Computer Science specification (from 2016) — Eduqas (2020)