) National Securities Association Examination Materials, (2) The abbreviation of a pure functional programming language SAC (Single Assignment C) is a strictly pure functional programming language with the main purpose of meeting the needs of the field of numerical computing.

How to achieve efficient calculation of multi-dimensional arrays is the core part of SAC.

Efficiency can be understood in two aspects in the field of programming.

On the one hand, it provides advanced array operation operations to speed up the development of programs, and on the other hand, it optimizes the compiled program in a certain mode to reduce its required running time and storage capacity.

To be a successful computer language, the second condition must be met.

In order to be able to compile efficient executable code, certain features of functional languages ??that are not important for numerical calculations are (so far) supported by SAC, such as higher-order functions, polymorphism,

and lazy evaluation.

And programs like Haskell, Clean, Miranda or ML have these characteristics.

[Edit this paragraph] 6. The abbreviation of system assurance and control (3) SAC (systems assurance and control) refers to system assurance and control.

The International Institute of Internal Audit (IIA) clearly proposed the concept of SAC for the first time in 1977.

At that time, SAC referred to system auditability & control.

After major updates by the International Internal Audit Research Foundation in 1991 and 1994, SAC refers to system assurance & control.

Currently, SAC has become an important guide for IT auditors in the fields of information technology security, control and auditing.

In the new version, the word auditability has been replaced by assurance. This is because we have gradually recognized the importance of governance and alliance within the organization and with business partners.

During cooperation, ensure adequate controls over information systems to protect system security and auditability.

In the era of e-commerce, with the rapid development of Internet technology, control and interdependence in the system are no longer restricted by organization and geographical location, and are common in various organizations. No matter what size organization, it needs a set of controls

Guidelines to effectively manage information systems and technology and to promptly update systems as the business environment changes and new technologies develop.

Information systems auditors and IT security practitioners must know where threats come from, how to manage the risks posed by these threats, and also know how to discuss security issues with managers at different levels.

When we consider information and system security, we focus on answering the following key questions: "How to manage IT risks?", "How to judge whether security and control measures are complete?", "Who can provide assurance for IT security?", "Authentication can

What does it mean?" etc.

This is the main reason for developing SAC control specifications.

SAC helps us understand, monitor, evaluate and reduce technology risks by providing timely and updated information.

SAC examines the risks of all components of the business system, including customers, competitors, regulators and partners.

In the new version of SAC, an important feature is the proposed eSAC control model.

The establishment of this model is conducive to the discussion of the relationship between goals, risks and measures to mitigate the risks caused by threats in the e-commerce environment.

There are currently many different risk and control models. Each model has its specific target and scope, and the organization must tailor it appropriately to suit the actual situation of the organization. The eSAC model can better reflect the rapidly changing technical environment.

and the risks brought by the e-commerce model, and give suggestions on how to manage these risks. The left arrow in the model represents the organization's tasks, including the organization's value orientation, corporate strategy, main goals, etc.

The arrow on the right indicates that the organization obtains the desired returns, while satisfying the improvement of the organization's image and reputation, and obtaining the learning ability to further improve performance.

The SAC describes a range of effective responses to technology challenges, including risk assessments for e-commerce, internal control objectives and electronic attestation services.