a

Question 1

What does AAA stand for?

Answer 1

Authentication, Authorization, and Accounting

A security framework that controls access, enforces policy, audits usage, and provides billing information.

Question 2

What is CHAP?

Answer 2

Challenge Handshake Authentication Protocol

A secure authentication protocol that uses a three-way handshake to verify identity.

Question 3

What is an ACL?

Answer 3

Access Control List

A set of rules that controls network traffic and access to resources.

Question 4

What does CIA stand for in cybersecurity?

Answer 4

Confidentiality, Integrity, Availability

The core principles of cybersecurity.

Question 5

What is AES?

Answer 5

Advanced Encryption Standard

A symmetric encryption algorithm used to protect data.

Question 6

What does CIO stand for?

Answer 6

Chief Information Officer

Executive responsible for information technology strategy.

Question 7

What is AES-256?

Answer 7

Advanced Encryption Standard 256-bit

A strong encryption standard using a 256-bit key.

Question 8

What does CIRT stand for?

Answer 8

Computer Incident Response Team

A team designated to handle cybersecurity incidents.

Question 9

What is an AH?

Answer 9

Authentication Header

A part of IPsec that authenticates the origin of IP packets.

Question 10

What does CMS stand for?

Answer 10

Content Management System

A platform to manage and publish digital content.

Question 11

What is AI?

Answer 11

Artificial Intelligence

The simulation of human intelligence in machines.

Question 12

What does COOP stand for?

Answer 12

Continuity of Operation Planning

Ensuring critical operations continue during emergencies.

Question 13

What is AIS?

Answer 13

Automated Indicator Sharing

A system that enables real-time sharing of cyber threat indicators.

Question 14

What does COPE stand for?

Answer 14

Corporate Owned, Personally Enabled

A mobile device model where the company owns the device but employees can use it personally.

Question 15

What is ALE?

Answer 15

Annualized Loss Expectancy

The expected monetary loss for an asset due to a risk over a year.

Question 16

What does CP stand for?

Answer 16

Contingency Planning

Preparation to maintain or restore business operations after disruption.

Question 17

What is an AP?

Answer 17

Access Point

A networking device that allows wireless devices to connect to a wired network.

Question 18

What does CRC stand for?

Answer 18

Cyclical Redundancy Check

A method for detecting errors in data transmission.

Question 19

What is an API?

Answer 19

Application Programming Interface

A set of protocols and tools for building software.

Question 20

What does CRL stand for?

Answer 20

Certificate Revocation List

A list of revoked digital certificates.

Question 21

What is an APT?

Answer 21

Advanced Persistent Threat

A prolonged targeted cyberattack where the intruder remains undetected.

Question 22

What does CSO stand for?

Answer 22

Chief Security Officer

Responsible for the overall security posture of an organization.

Question 23

What is ARO?

Answer 23

Annualized Rate of Occurrence

The estimated frequency a threat will occur in a year.

Question 24

What does CSP stand for?

Answer 24

Cloud Service Provider

A company offering cloud-based platform, infrastructure, or storage services.

Question 25

What is ARP?

Answer 25

Address Resolution Protocol ## Footnote Resolves IP addresses to MAC addresses.

Question 26

What does CSR stand for?

Answer 26

Certificate Signing Request ## Footnote A request sent to a certificate authority for a digital certificate.

Question 27

What is ASLR?

Answer 27

Address Space Layout Randomization ## Footnote A security technique to prevent exploitation by randomizing memory address locations.

Question 28

What does CSRF stand for?

Answer 28

Cross-site Request Forgery ## Footnote An attack that tricks a user into performing actions without consent.

Question 29

What is ATT&CK?

Answer 29

Adversarial Tactics, Techniques, and Common Knowledge ## Footnote A cybersecurity knowledge base of attack behaviors.

Question 30

What does CSU stand for?

Answer 30

Channel Service Unit ## Footnote A device used to connect digital lines to a router.

Question 31

What is CTM?

Answer 31

Counter Mode ## Footnote An encryption mode that converts a block cipher into a stream cipher.

Question 32

Fill in the blank: AUP stands for _______.

Answer 32

Acceptable Use Policy ## Footnote A set of rules governing use of network or system resources.

Question 33

What does CTO stand for?

Answer 33

Chief Technology Officer ## Footnote Executive responsible for technological development and direction.

Question 34

What is AV?

Answer 34

Antivirus ## Footnote Software used to detect and remove malicious software.

Question 35

What does CVE stand for?

Answer 35

Common Vulnerability Enumeration ## Footnote A reference system for publicly known information-security vulnerabilities.

Question 36

What is BASH?

Answer 36

Bourne Again Shell ## Footnote A Unix shell and command processor.

Question 37

What does CVSS stand for?

Answer 37

Common Vulnerability Scoring System ## Footnote A system for rating the severity of security vulnerabilities.

Question 38

What is BCP?

Answer 38

Business Continuity Planning ## Footnote The process to ensure continuous business operations during disruption.

Question 39

What does CYOD stand for?

Answer 39

Choose Your Own Device ## Footnote Employees select their preferred device from a list approved by the organization.

Question 40

What is BGP?

Answer 40

Border Gateway Protocol ## Footnote The protocol used to exchange routing information across the internet.

Question 41

What does DAC stand for?

Answer 41

Discretionary Access Control ## Footnote An access control method where the owner defines access permissions.

Question 42

What is BIA?

Answer 42

Business Impact Analysis ## Footnote Identifies critical systems and evaluates the impact of disruptions.

Question 43

What does DBA stand for?

Answer 43

Database Administrator ## Footnote Manages and maintains databases.

Question 44

What is BIOS?

Answer 44

Basic Input/Output System ## Footnote Firmware used to initialize hardware during booting.

Question 45

What does DDoS stand for?

Answer 45

Distributed Denial of Service ## Footnote An attack using multiple systems to overwhelm a target.

Question 46

What is BPA?

Answer 46

Business Partners Agreement ## Footnote A written agreement outlining responsibilities in a business relationship.

Question 47

What does DEP stand for?

Answer 47

Data Execution Prevention ## Footnote Prevents code from being run in certain memory areas to stop exploits.

Question 48

What does BPDU stand for?

Answer 48

Bridge Protocol Data Unit ## Footnote Used to detect loops in a network with Spanning Tree Protocol.

Question 49

What is DES?

Answer 49

Digital Encryption Standard ## Footnote A symmetric-key method for encrypting electronic data.

Question 50

What does BYOD stand for?

Answer 50

Bring Your Own Device ## Footnote Policy allowing employees to use personal devices for work.

Question 51

What is DHCP?

Answer 51

Dynamic Host Configuration Protocol ## Footnote Assigns IP addresses and configures devices on a network.

Question 52

What does CA stand for?

Answer 52

Certificate Authority ## Footnote Issues and manages security credentials and digital certificates.

Question 53

What does DHE stand for?

Answer 53

Diffie-Hellman Ephemeral ## Footnote A key exchange protocol using temporary keys for forward secrecy.

Question 54

What is CAPTCHA?

Answer 54

Completely Automated Public Turing test to tell Computers and Humans Apart ## Footnote Used to distinguish human from automated access.

Question 56

CAPTCHA

Answer 56

Completely Automated Public Turing test to tell Computers and Humans Apart

Question 57

CAR

Answer 57

Corrective Action Report Definition: A Corrective Action Report is a formal document used to identify, document, and correct the root causes of nonconformities or security incidents within an organization’s systems or processes. It outlines the issue, the investigation, and the corrective actions taken to prevent recurrence. Purpose in Security: In the context of cybersecurity and risk management, CARs are part of an organization’s incident response and continuous improvement processes. They ensure that once a security breach or vulnerability is identified, steps are taken not only to fix the immediate problem but also to address underlying weaknesses in policies, configurations, or behavior. Example: If a phishing attack compromises a user account, a CAR might lead to retraining employees, implementing multi-factor authentication, and improving email filtering to prevent similar incidents.

Question 58

CASB

Answer 58

Cloud Access Security Broker Definition: A Cloud Access Security Broker is a security policy enforcement point placed between cloud service users and cloud applications to monitor activity, enforce security policies, and ensure compliance. Purpose in Security: CASBs provide visibility into cloud usage across an organization, helping to detect shadow IT, control access to cloud data, encrypt sensitive information, and prevent data leaks or misuse of cloud services. Example: If an employee uploads sensitive data to an unsanctioned cloud storage service, a CASB can detect this activity, block the transfer, and alert the security team—maintaining compliance with organizational policies and regulations.

Question 59

CBC

Answer 59

Cipher Block Chaining Definition: Cipher Block Chaining is a mode of operation for block ciphers in which each block of plaintext is XORed with the previous ciphertext block before being encrypted. This method ensures that identical plaintext blocks produce different ciphertexts, enhancing security. Purpose in Security: CBC prevents patterns in encrypted data, making it harder for attackers to infer information from ciphertext. It requires an initialization vector (IV) for the first block to ensure randomness. Example: If you’re encrypting multiple blocks of sensitive data (like a document), CBC ensures that even repeated phrases result in unique encrypted blocks, protecting against analysis by attackers.

Question 60

CCMP

Answer 60

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol

Question 61

CCTV

Answer 61

Closed-circuit Television

Question 62

CERT

Answer 62

Computer Emergency Response Team

Question 63

CFB

Answer 63

Cipher Feedback

Question 64

DKIM

Answer 64

DomainKeys Identified Mail

Question 65

DLL

Answer 65

Dynamic Link Library Summary: Dynamic Link Library (DLL) A Dynamic Link Library (DLL) is a file that contains code, data, and functions that can be used by multiple programs at runtime, helping reduce redundancy and improve efficiency. DLLs allow programs to share common functionality without duplicating code. ⸻ Key Points: • File extension: .dll • Used for: Code reuse, modular design, memory efficiency • Loaded dynamically (during program execution) • Examples: • user32.dll – user interface functions • GDI32.dll – graphics and printing ⸻ Analogy: A DLL is like a shared toolbox—multiple programs grab the tools (functions) they need without bringing their own.

Question 66

DLP

Answer 66

Data Loss Prevention According to CompTIA Security+, Data Loss Prevention (DLP) refers to: Technologies, strategies, and policies used to prevent unauthorized access, transfer, or leakage of sensitive data. DLP solutions monitor, detect, and block the movement of critical information — whether in use, in motion, or at rest — to ensure data doesn’t leave the organization’s control. There are three main types of DLP controls: 1. Endpoint DLP – Monitors and controls data on end-user devices. 2. Network DLP – Monitors data in transit across the network. 3. Storage DLP – Secures data at rest in storage systems. DLP is especially important for protecting PII, PHI, financial records, and intellectual property, and helps organizations comply with laws like GDPR, HIPAA, and PCI-DSS.

Question 67

DMARC

Answer 67

Domain-based Message Authentication

Question 68

DNAT

Answer 68

Destination Network Address Translation

Question 69

DNS

Answer 69

Domain Name System

Question 70

DPO

Answer 70

Data Protection Officer A DPO acts as the data privacy watchdog within an organization, protecting individuals’ personal information and guiding the business in staying compliant with privacy laws.

Question 71

DRP

Answer 71

Disaster Recovery Plan A documented, structured approach with instructions for responding to unplanned incidents that threaten an organization’s IT systems, data, and operations. The goal of a DRP is to restore critical systems and operations as quickly and efficiently as possible after a disaster such as: • Natural disasters (e.g., floods, earthquakes) • Cyberattacks (e.g., ransomware) • Power outages • Hardware failures Key Components of a DRP: 1. Recovery Time Objective (RTO): Maximum acceptable time to restore a system after a disruption. 2. Recovery Point Objective (RPO): Maximum acceptable amount of data loss measured in time. 3. Business Impact Analysis (BIA): Identifies critical systems and the impact of their downtime. 4. Backups and Redundancy: Regular data backups, hot/cold sites, and failover systems. 5. Roles and Responsibilities: Defines who does what during a disaster. 6. Communication Plan: Procedures for informing stakeholders during a crisis. 7. Testing and Maintenance: Regular testing and updates to ensure effectiveness. A DRP is a part of a broader Business Continuity Plan (BCP).

Question 72

DSA

Answer 72

Digital Signature Algorithm A Federal Information Processing Standard (FIPS) for digital signatures that ensures data integrity and authenticity. It is part of the Digital Signature Standard (DSS) and was developed by NIST. Key Features of DSA: 1. Purpose: • Used to digitally sign data, not to encrypt it. • Ensures authentication, integrity, and non-repudiation. 2. Asymmetric Encryption: • Uses a private key to sign. • Uses a public key to verify. 3. Process Overview: • The sender hashes the message. • The sender signs the hash using their private key. • The receiver verifies the signature using the sender’s public key. 4. Algorithms Involved: • Uses mathematical functions such as modular exponentiation and discrete logarithms. 5. Limitations: • Slower than RSA for verification. • Often paired with SHA (Secure Hash Algorithm) for hashing. DSA is commonly used in government and secure communications.

Question 73

DSL

Answer 73

Digital Subscriber Line

Question 74

DoS

Answer 74

Denial of Service A Denial of Service (DoS) attack is a cyberattack where an attacker floods or overloads a system, server, or network with excessive traffic or requests, causing it to become slow, unresponsive, or completely unavailable to legitimate users. ⸻ Explanation: • The goal is to disrupt normal operations of a service, often temporarily. • A single system typically launches a DoS attack. • Can target websites, applications, servers, or network infrastructure. • Different methods include flood attacks, crashing services, or resource exhaustion. ⸻ Example: A hacker sends thousands of fake requests per second to a company’s website server, overwhelming it. Real customers can no longer access the website to make purchases or get support — causing business downtime and reputation damage. ⸻ Types of DoS Attacks: • Ping Flood • SYN Flood • Application Layer Attacks ⸻ Real-World Analogy: Imagine a small café that can seat 20 people. An attacker sends 100 fake customers to fill the seats and block the entrance, preventing real customers from getting in — even though the café is technically “open.”

Question 75

EAP

Answer 75

Extensible Authentication Protocol Definition: Extensible Authentication Protocol (EAP) Extensible Authentication Protocol (EAP) is a framework used for providing flexible authentication methods over network connections, especially in wireless and point-to-point communication. ⸻ Explanation: • EAP is not a specific authentication method, but a framework that supports multiple authentication mechanisms such as: • Passwords • Digital certificates • Smart cards • One-time passwords (OTP) • Commonly used in: • Wi-Fi authentication (especially with WPA2-Enterprise/WPA3-Enterprise) • VPNs • Remote access services ⸻ EAP Methods (Examples): 1. EAP-TLS (Transport Layer Security): Uses digital certificates for mutual authentication. Highly secure. 2. EAP-TTLS (Tunneled TLS): Uses certificates only on the server side, then tunnels inner authentication (e.g., passwords). 3. PEAP (Protected EAP): Encapsulates EAP in a TLS tunnel to protect the authentication exchange. 4. EAP-MSCHAPv2: Uses username and password for authentication, often within PEAP. ⸻ Example Scenario: When connecting to a corporate Wi-Fi network: • Your device is prompted for a username and password. • The network uses PEAP with EAP-MSCHAPv2 to authenticate you securely. • Once validated, you’re granted access to the internal network. ⸻ Real-World Analogy: Think of EAP as a blank form template—it allows various ways to fill it out (passwords, certificates, smart cards) depending on what kind of verification is required.

Question 76

ECB

Answer 76

Electronic Code Book

Question 77

ECC

Answer 77

Elliptic Curve Cryptography Definition: Elliptic Curve Cryptography (ECC) Elliptic Curve Cryptography (ECC) is an asymmetric encryption technique that uses the mathematics of elliptic curves over finite fields to create secure, efficient cryptographic keys. ⸻ Explanation: • ECC provides high levels of security with smaller key sizes compared to other algorithms like RSA. • It is used for encryption, digital signatures, and key exchange. • ECC is efficient in processing power, memory, and bandwidth, making it ideal for mobile devices, IoT, and embedded systems. ⸻ Key Features: • Smaller key size: ECC-256 (256-bit key) is as secure as RSA-3072. • Faster computations: Speeds up encryption/decryption processes. • Lower resource usage: Ideal for systems with limited power or memory. ⸻ Example Use Cases: 1. Mobile Apps & Messaging: Secure messaging apps like Signal use ECC for end-to-end encryption. 2. TLS/SSL Certificates: Websites using HTTPS may use ECC-based certificates for secure connections. 3. Cryptocurrencies: Bitcoin and Ethereum use ECC for generating wallets and signing transactions. ⸻ Real-World Analogy: Imagine ECC as a stronger, smaller lock on a door. It takes less material to make but provides just as much (or more) protection than a big, bulky lock (like RSA).

Question 78

ECDHE

Answer 78

Elliptic Curve Diffie-Hellman Ephemeral Definition: Elliptic Curve Diffie-Hellman Ephemeral (ECDHE) Elliptic Curve Diffie-Hellman Ephemeral (ECDHE) is a key exchange protocol that uses Elliptic Curve Cryptography (ECC) to securely exchange cryptographic keys over an untrusted communication channel. The “ephemeral” part refers to the use of temporary, one-time keys, ensuring that each session uses a fresh key pair. ⸻ Explanation: • ECDHE allows two parties to securely share a shared secret without transmitting it directly. • The term “ephemeral” means that the keys are generated and used only for a single session, then discarded, making it more secure because even if an attacker gains access to the keys after the session, they cannot decrypt past communications. • ECDHE is part of the Diffie-Hellman family of protocols, which allows both parties to generate a shared secret without prior knowledge of each other’s keys. How ECDHE Works: 1. Key Generation: Each party generates a public-private key pair based on elliptic curve mathematics. 2. Key Exchange: The parties exchange their public keys. 3. Shared Secret Creation: Using their private key and the other party’s public key, each party independently computes the shared secret. 4. Session Key Creation: The shared secret is then used to generate symmetric encryption keys for the communication session. Since ephemeral keys are used, each session is uniquely secured, and the keys aren’t reused, ensuring better forward secrecy. ⸻ Example Use Case: 1. HTTPS/TLS Connections: When connecting to a secure website, the server and client might use ECDHE to exchange keys securely for encrypting the session. This ensures that even if someone intercepts the traffic, they can’t decrypt it later because the session keys are ephemeral (temporary). 2. VPNs: VPN services often use ECDHE to securely establish a tunnel between a client and a server, ensuring that each session uses new, temporary keys for enhanced security. ⸻ Real-World Analogy: Think of ECDHE as sending a secret message in a locked box, where the key to open it is never stored or shared. The key is created just for this one message, and after the message is opened, the key is destroyed. Even if someone intercepts the locked box, they cannot access any previous messages because the key is no longer available. ⸻ Let me know if you want a visual or more details on how ECDHE compares with other key exchange protocols like RSA or DHE

Question 79

ECDS

Answer 79

Elliptic Curve Digital Signature Algorithm Definition: Elliptic Curve Digital Signature Algorithm (ECDSA) The Elliptic Curve Digital Signature Algorithm (ECDSA) is an asymmetric cryptographic algorithm used to generate digital signatures for verifying the authenticity and integrity of a message or document, using Elliptic Curve Cryptography (ECC). ⸻ Explanation: • ECDSA is a variation of the Digital Signature Algorithm (DSA) that uses elliptic curve mathematics to provide strong security with smaller key sizes, making it efficient for systems with limited resources, such as mobile devices or embedded systems. • ECDSA is widely used in cryptocurrencies (like Bitcoin), TLS/SSL certificates, and other secure communication protocols to ensure data has not been tampered with and to confirm the identity of the sender. ⸻ How ECDSA Works: 1. Key Generation: • The user generates an elliptic curve key pair: a private key (kept secret) and a public key (shared with others). 2. Signing Process: • The sender hashes the message (using a cryptographic hash function like SHA-256). • The sender uses their private key to create a digital signature of the hash. • The resulting digital signature is attached to the message. 3. Verification Process: • The recipient hashes the received message. • They use the sender’s public key to verify the digital signature, ensuring that the message has not been altered and confirming the sender’s identity. ⸻ Advantages of ECDSA: • Smaller Key Sizes: ECDSA requires smaller key sizes compared to other algorithms like RSA, making it faster and more efficient. • Strong Security: Despite smaller keys, ECDSA offers strong security and is considered highly secure for modern cryptographic needs. • Efficient in Low-Resource Environments: ECDSA is particularly effective for devices with limited processing power, such as mobile phones, smartcards, or IoT devices. ⸻ Example Use Cases: 1. Cryptocurrency Transactions: • In Bitcoin and other cryptocurrencies, ECDSA is used to sign transactions, ensuring that only the owner of the private key can send funds from their wallet. 2. SSL/TLS Certificates: • ECDSA is used in SSL/TLS certificates for websites, enabling secure communication between a web server and a client. 3. Digital Document Signing: • ECDSA can be used to sign and verify the authenticity of digital contracts, messages, or software downloads. ⸻ Real-World Analogy: Think of ECDSA as a sealed envelope with a signature: • The sender uses a private key (a personal seal) to sign the envelope. • The recipient can check the authenticity of the signature with the sender’s public key, ensuring the envelope has not been tampered with and truly came from the sender.

Question 80

EDR

Answer 80

Endpoint Detection and Response

Question 81

EFS

Answer 81

Encrypted File System

Question 82

ERP

Answer 82

Enterprise Resource Planning

Question 83

IEEE

Answer 83

Institute of Electrical and Electronics Engineers

Question 84

IKE

Answer 84

Internet Key Exchange

Question 85

IM

Answer 85

Instant Messaging

Question 86

IMAP

Answer 86

Internet Message Access Protocol

Question 87

IP

Answer 87

Internet Protocol

Question 88

IPS

Answer 88

Intrusion Prevention System

Question 89

IPSec

Answer 89

Internet Protocol Security

Question 90

IR

Answer 90

Incident Response

Question 91

IoC

Answer 91

Indicators of Compromise

Question 92

IoT

Answer 92

Internet of Things

Question 94

ESN

Answer 94

Electronic Serial Number

Question 95

IRC

Answer 95

Internet Relay Chat

Question 96

ESP

Answer 96

Encapsulated Security Payload

Question 97

IRP

Answer 97

Incident Response Plan

Question 98

FACL

Answer 98

File System Access Control List

Question 99

ISO

Answer 99

International Standards Organization

Question 100

FDE

Answer 100

Full Disk Encryption

Question 101

ISP

Answer 101

Internet Service Provider

Question 102

FIM

Answer 102

File Integrity Management

Question 103

ISSO

Answer 103

Information Systems Security Officer

Question 104

FPGA

Answer 104

Field Programmable Gate Array

Question 105

IV

Answer 105

Initialization Vector

Question 106

FRR

Answer 106

False Rejection Rate

Question 107

KDC

Answer 107

Key Distribution Center

Question 108

FTP

Answer 108

File Transfer Protocol

Question 109

KEK

Answer 109

Key Encryption Keyrv 🔐 KEK – Key Encryption Key ✅ What it means (plain language): A KEK is a special password (or cryptographic key) used not to protect files or messages directly, but to protect other keys that do protect those files or messages. Think of it like this: 🔑 A Data Encryption Key (DEK) locks your valuables (like a safe with your files). 🧰 A KEK locks the key to the safe — keeping it secure in case someone finds it. ⸻ 💡 Real-life example: Imagine you’re a manager at a company that stores employee records in a digital vault. • Each file is encrypted with a DEK (a file-specific password). • But the DEKs are stored in a central secure system. • To make sure no one can just grab those DEKs, the system encrypts the DEKs using a KEK. So even if someone hacks into the system and gets a DEK, they can’t use it unless they also have access to the KEK — the master lock. ⸻ 🔁 Why it’s important for CompTIA TAS: In enterprise environments, managing and protecting encryption keys is just as critical as protecting the data itself. KEKs help reduce risk by adding a secure layer to key management systems.

Question 110

FTPS

Answer 110

Secured File Transfer Protocol

Question 111

L2TP

Answer 111

Layer 2 Tunneling Protocol

Question 112

GCM

Answer 112

Galois Counter Mode

Question 113

LAN

Answer 113

Local Area Network

Question 114

GDPR

Answer 114

General Data Protection Regulation

Question 115

LDAP

Answer 115

Lightweight Directory Access Protocol

Question 116

GPG

Answer 116

Gnu Privacy Guard

Question 117

LEAP

Answer 117

Lightweight Extensible Authentication Protocol

Question 118

GPO

Answer 118

Group Policy Object

Question 119

GPS

Answer 119

Global Positioning System

Question 120

MaaS

Answer 120

Monitoring as a Service

Question 121

GPU

Answer 121

Graphics Processing Unit

Question 122

MandatoryAC

Answer 122

Mandatory Access Control

Question 123

MAcontrol

Answer 123

Media Access Control

Question 124

MACode

Answer 124

Message Authentication Code

Question 125

GRE

Answer 125

Generic Routing Encapsulation

Question 126

HA

Answer 126

High Availability

Question 127

HDD

Answer 127

Hard Disk Drive

Question 128

MAN

Answer 128

Metropolitan Area Network

Question 129

HIDS

Answer 129

Host-based Intrusion Detection System

Question 130

MBR

Answer 130

Master Boot Record

Question 131

HIPS

Answer 131

Host-based Intrusion Prevention System

Question 132

MD5

Answer 132

Message Digest 5

Question 133

HMAC

Answer 133

Hashed Message Authentication Code

Question 134

MDF

Answer 134

Main Distribution Frame

Question 135

HOTP

Answer 135

HMAC-based One-time Password

Question 136

MDM

Answer 136

Mobile Device Management

Question 137

HSM

Answer 137

Hardware Security Module

Question 138

MFA

Answer 138

Multifactor Authentication

Question 139

HTML

Answer 139

Hypertext Markup Language

Question 140

MFD

Answer 140

Multifunction Device

Question 141

HTTP

Answer 141

Hypertext Transfer Protocol

Question 142

MFP

Answer 142

Multifunction Printer

Question 143

HTTPS

Answer 143

Hypertext Transfer Protocol Secure

Question 144

ML

Answer 144

Machine Learning

Question 145

HVAC

Answer 145

Heating, Ventilation Air Conditioning

Question 146

MMS

Answer 146

Multimedia Message Service

Question 147

IaaS

Answer 147

Infrastructure as a Service

Question 148

MOA

Answer 148

Memorandum of Agreement

Question 149

IaC

Answer 149

Infrastructure as Code

Question 150

MOU

Answer 150

Memorandum of Understanding

Question 151

IAM

Answer 151

Identity and Access Management

Question 152

MPLS

Answer 152

Multi-protocol Label Switching

Question 153

ICMP

Answer 153

Internet Control Message Protocol

Question 154

MSA

Answer 154

Master Service Agreement

Question 155

ICS

Answer 155

Industrial Control Systems

Question 156

MSCHAP

Answer 156

Microsoft Challenge Handshake Authentication Protocol

Question 157

IDEA

Answer 157

International Data Encryption Algorithm

Question 158

IDF

Answer 158

Intermediate Distribution Frame

Question 159

MSP

Answer 159

Managed Service Provider

Question 160

IdP

Answer 160

Identity Provider

Question 161

MSSP

Answer 161

Managed Security Service Provider

Question 162

IDS

Answer 162

Intrusion Detection System

Question 163

MTBF

Answer 163

Mean Time Between Failures

Question 164

MTTF

Answer 164

Mean Time to Failure

Question 165

MTTR

Answer 165

Mean Time to Recover

Question 166

MTU

Answer 166

Maximum Transmission Unit

Question 167

NAC

Answer 167

Network Access Control

Question 168

NAT

Answer 168

Network Address Translation

Question 169

NDA

Answer 169

Non-disclosure Agreement

Question 170

NFC

Answer 170

Near Field Communication

Question 171

NGFW

Answer 171

Next-generation Firewall

Question 172

NIDS

Answer 172

Network-based Intrusion Detection System

Question 173

NIPS

Answer 173

Network-based Intrusion Prevention System

Question 174

NIST

Answer 174

National Institute of Standards & Technology

Question 175

NTFS

Answer 175

New Technology File System

Question 176

NTLM

Answer 176

New Technology LAN Manager

Question 177

NTP

Answer 177

Network Time Protocol

Question 178

OAUTH

Answer 178

Open Authorization

Question 179

OCSP

Answer 179

Online Certificate Status Protocol

Question 180

OID

Answer 180

Object Identifier

Question 181

OS

Answer 181

Operating System

Question 182

OSINT

Answer 182

Open-source Intelligence

Question 183

OSPF

Answer 183

Open Shortest Path First

Question 184

OT

Answer 184

Operational Technology

Question 185

OTA

Answer 185

Over the Air

Question 186

OVAL

Answer 186

Open Vulnerability Assessment Language

Question 187

P12

Answer 187

PKCS #12

Question 188

P2P

Answer 188

Peer to Peer

Question 189

PaaS

Answer 189

Platform as a Service

Question 190

PAC

Answer 190

Proxy Auto Configuration

Question 191

PrivellegedAM

Answer 191

Privileged Access Management

Question 192

PAM

Answer 192

Pluggable Authentication Modules

Question 193

PAP

Answer 193

Password Authentication Protocol

Question 194

PAT

Answer 194

Port Address Translation

Question 195

PBKDF2

Answer 195

Password-based Key Derivation Function 2

Question 196

PBX

Answer 196

Private Branch Exchange

Question 197

PCAP

Answer 197

Packet Capture

Question 198

PCI

Answer 198

DSS Payment Card Industry Data Security Standard

Question 199

PDU

Answer 199

Power Distribution Unit

Question 200

PEAP

Answer 200

Protected Extensible Authentication Protocol

Question 201

PED

Answer 201

Personal Electronic Device

Question 202

PEM

Answer 202

Privacy Enhanced Mail

Question 203

PFS

Answer 203

Perfect Forward Secrecy

Question 204

PGP

Answer 204

Pretty Good Privacy

Question 205

PHI

Answer 205

Personal Health Information

Question 206

PII

Answer 206

Personally Identifiable Information

Question 207

PIV

Answer 207

Personal Identity Verification

Question 208

PKCS

Answer 208

Public Key Cryptography Standards

Question 209

PKI

Answer 209

Public Key Infrastructure

Question 210

POP

Answer 210

Post Office Protocol

Question 211

POTS

Answer 211

Plain Old Telephone Service

Question 212

PPP

Answer 212

Point-to-Point Protocol

Question 213

Acronym

Answer 213

Definition

Question 214

PPTP

Answer 214

Point-to-Point Tunneling Protocol

Question 215

PSK

Answer 215

Pre-shared Key

Question 216

PTZ

Answer 216

Pan-tilt-zoom

Question 217

PUP

Answer 217

Potentially Unwanted Program

Question 218

RA

Answer 218

Recovery Agent

Question 219

RA

Answer 219

Registration Authority

Question 220

RACE

Answer 220

Research and Development in Advanced Communications Technologies in Europe

Question 221

RAD

Answer 221

Rapid Application Development

Question 222

RADIUS

Answer 222

Remote Authentication Dial-in User Service

Question 223

RAID

Answer 223

Redundant Array of Inexpensive Disks

Question 224

RAS

Answer 224

Remote Access Server

Question 225

RAT

Answer 225

Remote Access Trojan

Question 226

RBAC

Answer 226

Role-based Access Control

Question 227

RBAC

Answer 227

Rule-based Access Control

Question 228

RC4

Answer 228

Rivest Cipher version 4

Question 229

RDP

Answer 229

Remote Desktop Protocol

Question 230

RFID

Answer 230

Radio Frequency Identifier

Question 231

RIPEMD

Answer 231

RACE Integrity Primitives Evaluation Message Digest

Question 232

ROI

Answer 232

Return on Investment

Question 233

RPO

Answer 233

Recovery Point Objective

Question 234

RSA

Answer 234

Rivest

Question 235

RTBH

Answer 235

Remotely Triggered Black Hole

Question 236

RTO

Answer 236

Recovery Time Objective

Question 237

RTOS

Answer 237

Real-time Operating System

Question 238

RTP

Answer 238

Real-time Transport Protocol

Question 239

S/MIME

Answer 239

Secure/Multipurpose Internet Mail Extensions

Question 240

SaaS

Answer 240

Software as a Service

Question 241

SAE

Answer 241

Simultaneous Authentication of Equals

Question 242

SAML

Answer 242

Security Assertions Markup Language

Question 243

SAN

Answer 243

Storage Area Network

Question 244

SAN

Answer 244

Subject Alternative Namev SAN – Subject Alternative Name ✅ What it means (plain language): SAN is an extension to an SSL/TLS certificate that allows you to secure multiple domain names or IP addresses with a single certificate. Instead of needing a separate certificate for each website or service, SAN lets you list them all in one. ⸻ 💡 Real-life example: Suppose a company owns: • www.example.com • mail.example.com • shop.example.net Normally, they’d need separate certificates for each. But with a SAN certificate, all those domains can be protected under one certificate. This saves time, money, and simplifies certificate management. ⸻ 🏢 Real-world use case: In an enterprise, you might have: • A main website • An internal HR portal • A customer-facing app • An email server All hosted under different subdomains or even different domains. Rather than managing 4+ certificates, the company uses a SAN certificate that lists all of them. That way, secure connections (HTTPS) work seamlessly across all systems — and users don’t get scary browser warnings. ⸻ 🔐 Why it matters for CompTIA TAS: SANs are essential in public key infrastructure (PKI) and help with efficient certificate lifecycle management — a key topic in enterprise security architecture.

Question 245

SASE

Answer 245

Secure Access Service Edge

Question 246

SCADA

Answer 246

Supervisory Control and Data Acquisition

Question 247

SCAP

Answer 247

Security Content Automation Protocol

Question 248

SCEP

Answer 248

Simple Certificate Enrollment Protocol

Question 249

SD-WAN

Answer 249

Software-defined Wide Area Network

Question 250

SDK

Answer 250

Software Development Kit

Question 251

SDLC

Answer 251

Software Development Lifecycle

Question 252

SDLM

Answer 252

Software Development Lifecycle Methodology

Question 253

SDN

Answer 253

Software-defined Networking

Question 254

TOTP

Answer 254

Time-based One-time Password

Question 255

SE Linux

Answer 255

Security-enhanced Linux

Question 256

TOU

Answer 256

Time-of-use

Question 257

SED

Answer 257

Self-encrypting Drives

Question 258

TPM

Answer 258

Trusted Platform Module

Question 259

SEH

Answer 259

Structured Exception Handler

Question 260

TTP

Answer 260

Tactics

Question 261

SFTP

Answer 261

Secured File Transfer Protocol

Question 262

TSIG

Answer 262

Transaction Signature

Question 263

SHA

Answer 263

Secure Hashing Algorithm

Question 264

UAT

Answer 264

User Acceptance Testing

Question 265

SHTTP

Answer 265

Secure Hypertext Transfer Protocol

Question 267

Acronym

Answer 267

Definition

Question 268

UAV

Answer 268

Unmanned Aerial Vehicle

Question 269

SIEM

Answer 269

Security Information and Event Management

Question 270

UDP

Answer 270

User Datagram Protocol

Question 271

SIM

Answer 271

Subscriber Identity Module

Question 272

UEFI

Answer 272

Unified Extensible Firmware Interface

Question 273

SLA

Answer 273

Service-level Agreement

Question 274

UEM

Answer 274

Unified Endpoint Management

Question 275

SLE

Answer 275

Single Loss Expectancy

Question 276

UPS

Answer 276

Uninterruptable Power Supply

Question 277

SMS

Answer 277

Short Message Service

Question 278

URI

Answer 278

Uniform Resource Identifier

Question 279

SMTP

Answer 279

Simple Mail Transfer Protocol

Question 280

URL

Answer 280

Universal Resource Locator

Question 281

SMTPS

Answer 281

Simple Mail Transfer Protocol Secure

Question 282

USB

Answer 282

Universal Serial Bus

Question 283

SNMP

Answer 283

Simple Network Management Protocol

Question 284

USB OTG

Answer 284

USB On the Go

Question 285

SOAP

Answer 285

Simple Object Access Protocol

Question 286

UTM

Answer 286

Unified Threat Management

Question 287

SOAR

Answer 287

Security Orchestration, Automation, Response

Question 288

UTP

Answer 288

Unshielded Twisted Pair

Question 289

VBA

Answer 289

Visual Basic for Applications

Question 290

SoC

Answer 290

System on Chip

Question 291

VDE

Answer 291

Virtual Desktop Environment

Question 292

SOC

Answer 292

Security Operations Center

Question 293

VDI

Answer 293

Virtual Desktop Infrastructure

Question 294

SOW

Answer 294

Statement of Work

Question 295

VLAN

Answer 295

Virtual Local Area Network

Question 296

SPF

Answer 296

Sender Policy Framework

Question 297

VLSM

Answer 297

Variable Length Subnet Masking

Question 298

SPIM

Answer 298

Spam over Internet Messaging

Question 299

VM

Answer 299

Virtual Machine

Question 300

SQL

Answer 300

Structured Query Language

Question 301

VoIP

Answer 301

Voice over IP

Question 302

SQLi

Answer 302

SQL Injection

Question 303

VPC

Answer 303

Virtual Private Cloud

Question 304

SRTP

Answer 304

Secure Real-Time Protocol

Question 305

VPN

Answer 305

Virtual Private Network

Question 306

SSD

Answer 306

Solid State Drive

Question 307

VTC

Answer 307

Video Teleconferencing

Question 308

SSH

Answer 308

Secure Shell

Question 309

WAF

Answer 309

Web Application Firewall

Question 310

SSL

Answer 310

Secure Sockets Layer

Question 311

WAP

Answer 311

Wireless Access Point

Question 312

SSO

Answer 312

Single Sign-on

Question 313

WEP

Answer 313

Wired Equivalent Privacy

Question 314

STIX

Answer 314

Structured Threat Information eXchange

Question 315

WIDS

Answer 315

Wireless Intrusion Detection System

Question 316

SWG

Answer 316

Secure Web Gateway

Question 317

WIPS

Answer 317

Wireless Intrusion Prevention System

Question 318

TACACS+

Answer 318

Terminal Access Controller Access Control System

Question 319

WO

Answer 319

Work Order

Question 320

WPA

Answer 320

Wi-Fi Protected Access

Question 321

TAXII

Answer 321

Trusted Automated eXchange of Indicator Information

Question 322

WPS

Answer 322

Wi-Fi Protected Setup

Question 323

WTLS

Answer 323

Wireless TLS

Question 324

TCP/IP

Answer 324

Transmission Control Protocol/Internet Protocol

Question 325

XDR

Answer 325

Extended Detection and Response

Question 326

XML

Answer 326

Extensible Markup Language

Question 327

TGT

Answer 327

Ticket Granting Ticket

Question 328

XOR

Answer 328

Exclusive Or

Question 329

TKIP

Answer 329

Temporal Key Integrity Protocol

Question 330

TLS

Answer 330

Transport Layer Security

Question 331

XSRF

Answer 331

Cross-site Request Forgery

Question 332

XSS

Answer 332

Cross-site Scripting