200

Question 1

An asymmetric standard for exchanging keys

Answer 1

Diffie-Hellman key exchange

Question 2

An asymmetrically encrypted signature whose sole purpose is to authenticate the sender

Answer 2

digital signature

Question 3

An attack that involves navigating to other directories and gaining access to files/directories that would be otherwise restricted

Answer 3

directory traversal attack

Question 4

The act of recovering data following a disaster that has destroyed it

Answer 4

disaster recovery

Question 5

A plan outlining the procedure by which data is recovered after a disaster

Answer 5

disaster-recovery plan

Question 6

A method of restricting access to objects based on the identity of the subjects or the groups to which they belong

Answer 6

Discretionary Access Control (DAC)

Question 7

Technology that uses two controllers and two disks to keep identical copies of data to prevent the loss of data if one disk fails

Answer 7

disk duplexing

Question 8

Technology that keeps identical copies of data on two disks to prevent the loss of data if one disk fails

Answer 8

disk mirroring

Question 9

Technology that enables writing data to multiple disks simultaneously in small portions called stripes

Answer 9

disk striping

Question 10

A fault-tolerance solution of writing data across a number of disks and recording the parity on another (also known as disk striping with a parity disk) In the event that any of disk fails - the data on it can be re-created by looking at the remaining data and computing parity to figure out the missing data

Answer 10

disk striping with parity

Question 11

A derivative of a DoS attack in which multiple hosts in multiple locations all focus on one target to reduce its availability to the public

Answer 11

distributed denial-of-service (DDoS)

Question 12

An attack method in which a daemon caches DNS reply packets - which sometimes contain other information (data used to fill the packets) The extra data can be scanned for information useful in a brea-in or man-in-the-middle attack

Answer 12

DNS poisoning

Question 13

The DNS server is given information about a name server that it thinks is legitimate when it isn’t

Answer 13

DNS spoofing

Question 14

The network service used in TCP/IP networks that translates hostnames to IP addresses

Answer 14

Domain Name System (DNS)

Question 15

A host that resides on more than one network and possesses more than one physical network card

Answer 15

dual-homed firewall

Question 16

Looking through trash for clues—often in the form of paper scraps—to find users’ passwords and other pertinent information

Answer 16

dumpster diving

Question 17

A protocol used on a TCP/IP network to send client configuration data - including IP address - default gateway - subnet mask - and DNS configuration - to clients

Answer 17

Dynamic Host Configuration Protocol (DHCP)

Question 18

The IEEE standard that defines port-based security for wireless network access control

Answer 18

EAP over LAN (EAPOL)

Question 19

Dynamic provisioning of resources as needed

Answer 19

elasticity

Question 20

The interference that can occur during transmissions over copper cable because of electromagnetic energy outside the cable

Answer 20

electromagnetic interference (EMI)

Question 21

A device that identifies you electronically in the same way as the cards you carry in your wallet

Answer 21

electronic wallet

Question 22

A type of public key cryptosystem that requires a shorter key length than many other cryptography systems (including the de facto industry standard - RSA)

Answer 22

Elliptic Curve Cryptography (ECC)

Question 23

A header used to provide a mix of security services in IPv4 and IPv6

Answer 23

Encapsulating Security Payload (ESP)

Question 24

The process of enclosing data in a packet

Answer 24

encapsulation

Question 25

The process of converting data into a form that makes it less likely to be suable to anyone intercepting it if they cant decrypt it

Answer 25

encryption

Question 26

A string of alphanumeric characters used to decrypt encrypted data

Answer 26

encryption key

Question 27

The process of luring someone

Answer 27

enticement

Question 28

The process of encouraging an attacker to perform an act - even if they don't want to do it

Answer 28

entrapment

Question 29

A key that exists only for that session

Answer 29

ephemeral key

Question 30

The act of moving something up in priority

Answer 30

escalation

Question 31

A level of assurance - expressed as a numeric value - based on standards set by the Common Criterion Recognition Agreement (CCRA)

Answer 31

evaluation assurance levels (EALs)

Question 32

Any noticeable action or occurrence

Answer 32

event

Question 33

A statement that differs from the norm

Answer 33

exception statement

Question 34

An authentication protocol used in wireless networks and point-to-point connections

Answer 34

Extensible Authentication Protocol (EAP)

Question 35

The process of reconstructing a system or switching over to other systems when failure is detected

Answer 35

failover

Question 36

An event that should be flagged but isn't

Answer 36

false negative

Question 37

A flagged event that isn't really an event and has been falsely triggered

Answer 37

false positive

Question 38

An electrically conductive wire mesh or other conductor woven into a "cage" that surrounds a room and prevents electromagnetic signals from entering or leaving the room through the walls

Answer 38

Faraday cage

Question 39

The ability to withstand a fault (failure) without losing data

Answer 39

fault tolerance

Question 40

A networking protocol that is not routable at the IP layer and thus cannot work across large networks

Answer 40

FCoE (Fibre Channel over Ethernet)

Question 41

A set of guidelines for US federal government information systems

Answer 41

Federal Information Processing Standard (FIPS)

Question 42

A means of linking a user's identity with their privileges in a manner that can be used across business boundaries

Answer 42

federated identity

Question 43

A collection of computer networks that agree on standards of operation - such as security standards

Answer 43

federation

Question 44

A high-speed networking technology

Answer 44

Fibre Channel

Question 45

Microsoft's earliest filesystem

Answer 45

File Allocation Table (FAT)

Question 46

TCP/IP and software that permit transferring files between computer systems and use cleartext passwords

Answer 46

File Transfer Protocol (FTP)

Question 47

The act of stopping a fire and preventing it from spreading

Answer 47

fire suppression

Question 48

A combination of hardware and software that protects a network from attack by hackers who could gain access through public networks - including the Internet

Answer 48

firewall

Question 49

A system that is up and running at least 99.999 percent of the time

Answer 49

five nines availability

Question 50

The process of systematically identifying the network and its security posture

Answer 50

footprinting

Question 51

In terms of security - the act of looking at all the data at your disposal to try to figure out who gained unauthorized access and the extent of that access

Answer 51

forensics

Question 52

A property of any key exchange system that ensures that if one key is compromised - subsequent keys will not also be compromised

Answer 52

forward secrecy

Question 53

A secure form of FTP

Answer 53

FTP over SSL (FTPS)

Question 54

A concept that works on the assumption that any information created on any system is stored forever

Answer 54

Full Archival method

Question 55

A backup that copies all data to the archive medium

Answer 55

full backup

Question 56

An information classification stating that the data so classified is available to anyone

Answer 56

full distribution

Question 57

A technique of penetration testing

Answer 57

fuzzing

Question 58

Vulnerability possible when the interconnection between the WAP server and the Internet isnt encrypted and packets between the devices may be intercepted

Answer 58

gap in the WAP

Question 59

One of the most popular methods of backup tape rotation

Answer 59

Grandfather - Father - Son method

Question 60

Virtual machines running on a physical machine

Answer 60

guests

Question 61

Rules - policies - or procedures that are advisory or nonmandatory

Answer 61

guidelines

Question 62

The process of making certain that an entity (such as an operating system or application) is as secure as it can be

Answer 62

hardening

Question 63

A system that bases actions on the heuristics it observes

Answer 63

heuristic system

Question 64

A newer backup type that provides continuous online backup by using optical or tape jukeboxes

Answer 64

hierarchical storage management (HSM)

Question 65

A trust model - also known as a tree - in which a root CA at the top provides all of the information

Answer 65

hierarchical trust model

Question 66

A clustering solution to provide resource reliability and availability

Answer 66

high availability (HA)

Question 67

A mechanism for message authentication using cryptographic hash functions per the draft of the Federal Information Processing Standards (FIPS) publication

Answer 67

HMAC (Hash-Based Message Authentication Code)

Question 68

Typically an email message warning of something that isn't true - such as an outbreak of a new virus

Answer 68

hoax

Question 69

A bogus system set up to attract and slow down a hacker

Answer 69

honeypot

Question 70

Any network device with a TCP/IP network address or physical machines running virtual machines

Answer 70

host

Question 71

An intrusion detection system that is host based

Answer 71

host-based IDS (HIDS)

Question 72

A server room aisle that removes hot air

Answer 72

hot aisles

Question 73

A location that can provide operations within hours of a failure

Answer 73

hot site

Question 74

Another word for a patch

Answer 74

hotfix

Question 75

A cryptoprocessor chip (or circuit mounted within the computer) that can be used to enhance security and is commonly used with PKI systems

Answer 75

HSM (Hardware Security Module)

Question 76

A combination of HTTP with Secure Sockets Layer (SSL) that results in a secure connection It uses port 443 by default

Answer 76

HTTP Secure (HTTPS

Question 77

A password attack that uses a combination of dictionary entries and brute force

Answer 77

hybrid attack

Question 78

Cloud delivery model that combines other types

Answer 78

hybrid cloud

Question 79

A trust model that can use the capabilities of any or all of the structures of other trust models

Answer 79

hybrid trust model

Question 80

A set of codes used to format text and graphics that will be displayed in a browser

Answer 80

Hypertext Markup Language (HTML)

Question 81

The protocol used for communication between a web server and a web browser

Answer 81

Hypertext Transfer Protocol (HTTP)

Question 82

Also known as HTTPS and HTTP Secure

Answer 82

Hypertext Transport Protocol over SSL (HTTPS)

Question 83

The software that allows virtual machines to exist

Answer 83

hypervisor

Question 84

The process of proofing invoked when a person claims that they are the user but cannot be authenticated - such as when they lose their password

Answer 84

identity proofing

Question 85

Pretending to be another to gain information

Answer 85

impersonation

Question 86

A condition that states that unless otherwise given - the permission will be denied

Answer 86

implicit deny

Question 87

An attempt to violate a security policy - a successful penetration - a compromise of a system - or unauthorized access to information

Answer 87

incident

Question 88

How an organization responds to an incident

Answer 88

incident response

Question 89

A policy that defines how an organization will respond to an incident

Answer 89

incident response plan (IRP)

Question 90

A type of backup in which only new files or files that have changed since the last full backup or the last incremental backup are included

Answer 90

incremental backup

Question 91

The process of determining what information is accessible to what parties and for what purposes

Answer 91

information classification

Question 92

A model of cloud computing that utilizes virtualization; clients pay an outsourcer for the resources used

Answer 92

Infrastructure as a Service (IaaS)

Question 93

Immediate communication that can be sent back and forth between users who are currently logged on

Answer 93

instant messaging (IM)

Question 94

An international organization that sets standards for various electrical and electronics issues

Answer 94

Institute of Electrical and Electronics Engineers (IEEE)

Question 95

Putting too much information into too small of a space that has been set aside for numbers

Answer 95

integer overflow

Question 96

An obstruction to the signal

Answer 96

interference

Question 97

An information classification stating that the data so classified is limited to internal employees only

Answer 97

internal information

Question 98

An algorithm that uses a 128-bit key

Answer 98

International Data Encryption Algorithm (IDEA)

Question 99

Organization responsible for communications standards - spectrum management and the development of communications infrastructures in underveloped nations

Answer 99

International Telecommunications Union (ITU)

Question 100

The organization responsible for governing IP addresses; its website is www

Answer 100

Internet Assigned Numbers Authority (IANA)