Acronym Flashcards

Question

CCA

Answer 1

Chosen Cipher Attack

Answer 2

Closed-circuit Television Detective Control, Deterrent Control

Answer 3

Chief Executive Officer

Answer 4

Cross-over Error Rate A metric for biometric technologies are rated. The CER is the point where the FRR (False Rejection Rate) and FAR (False Acceptance Rate) meet. The lowest possible CER is most desirable.

Answer 5

Computer Emergency Response Team

Answer 6

Chief Financial Officer

Answer 7

Challenge Handshake Authentication Protocol An encrypted authentication protocol normally used for remote access.

Answer 8

Confidentiality, Integrity, Availability

Answer 9

Continuous Integration / Continuous Delivery

Answer 10

Chief Information Officer

Answer 11

Computer Incident Response Team

Answer 12

Center for Internet Security

Answer 13

Chief Information Security Officer

Answer 14

Continuity of Operations Plan Designing operations and systems to be as little affected by an incident and to have resources to recover from them.

Answer 15

Corporate Owned, Personally Enabled Company owns and supplies the device. The employee may use the device for web browsing, personal email, and personal social media sites.

Answer 16

Central Processing Unit

Answer 17

Cyclic Redundancy Check

Answer 18

Certificate Revocation List A list of certificates that were revoked before they were configured to expire

Answer 19

Cybersecurity Framework

Answer 20

Cloud Service Provider

Answer 21

Certificate Signing Request When a subject wants a certificate, it completes a CSR and submits it to a CA (Certificate Authority)

Answer 22

Chief Technology Officer

Answer 23

Common Vulnerabilities and Exposures This is a place to find out what platforms have vulnerabilities

Answer 24

Common Vulnerability Scoring System This scoring system lets you know the criticality / impact to the system

Answer 25

Choose Your Own Device A mobile deployment model where the company gives the employees a list of approved mobile devices they can use on the corporate network. This helps keep the devices with more current models.

Answer 26

Discretionary Access Control Access control is set by the data owner, or possibly the administrator. The permissions can be applied to a group or an individual.

Answer 27

Database Administrator

Answer 28

Data Duplicator Linux command that makes a bit-by-bit copy of an input file, typically used for disk imaging

Answer 29

Distributed Denial of Service Many devices attacking a single device. The devices can be PCs' laptops, DVRs, Webcams, etc. This type of attack is carried out via a botnet, and the devices are known as drones or zombies.

Answer 30

Digital Encryption Standard Considered weak encryption, symmetric block cipher that encrypts in blocks of 64 bits and uses a 56-bit key. This method is deprecated and the easiest upgrade is 3DES (Triple DES). Considered weak encryption and has been deprecated

Answer 31

Dynamic Host Configuration Protocol A protocol that provides an automated process of assigning IP addresses. Can also issue optional parameters such as DNS address, DNS suffix, Default Gateway, and subnet mask. Uses Ports 67 & 68 UDP

Answer 32

Domain Keys Identified Mail

Answer 33

Dynamic Link Library Is a binary package used to implement functionality, such as cryptography or establishing a network connection

Answer 34

Data Loss Prevention A hardware or software solution that prevents a certain type of information from being exfiltrated from a device or network. Data like PII (Personally Identifiable Information), credit card numbers, Social Security numbers, data that is sensitive using keywords. USB blocking is a form of DLP. Preventing this type of information from being printed is another protection.

Answer 35

Domain Message Authentication Reporting and Conformance Prevents phishing and spear phishing attacks against an organization's email server

Answer 36

Domain Name Service (Server) A service that maps / resolves host names to an IP address. Use Port 53 UDP for DNS queries, uses Port 53 TCP for Zone Transfers

Answer 37

Domain Name System Security Extensions A security protocol that provides authentication of DNS data and upholds DNS data integrity

Answer 38

Denial of Service Is an attack that is one to one. Anything that can keep a device or user from accessing a service or information is a denial of service. One user flooding other user's accounts with email attachments until the email box is full, cut the network cable or power are just a few examples.

Answer 39

Data Protection Officer

Answer 40

Disaster Recovery Plan

Answer 41

Digital Signature Algorithm Public key encryption used for digital signatures. This is an asymmetric encryption method

Answer 42

Extensible Authentication Protocol EAP allows different authentication methods, most of using a digital certificate on the server and/or the client

Answer 43

Extensible Authentication Protocol-Transport Layer Security Requires certificates on the clients and server

Answer 44

Endpoint Detection and Response A software agent that collects system data and logs for analysis by a monitoring system to provide early detection of threats

Answer 45

Exposure Factor

Answer 46

Electronic Load Balancer

Answer 47

End of Life When systems or applications are no longer supported by the manufacturer or developer.

Answer 48

Encapsulated Security Payload An IPSec protocol that does the same as for AH (Authentication Header), but also encrypts/encapsulates the entire payload/packet. Uses protocol # 50.

Answer 49

End User Licensing Agreement

Answer 50

Exchangeable Image File Format

Answer 51

False Acceptance Rate A Type II error. The ratio of when a biometric system authenticates an unauthorized user as an authorized user.

Answer 52

Full Disk Encryption This means that the entire contents of the drive (or volume), including system files and folders, are encrypted. Two methods are BitLocker and PGP Whole Disk Encryption. This is a software-based or an operating system encryption method. These methods are more CPU intensive processes.

Answer 53

File Integrity Monitoring

Answer 54

Field Programmable Gate Array

Answer 55

False Rejection Rate Type I error. The ratio in which a biometric system rejects an authorized user.

Answer 56

File Transfer Protocol Uploads and downloads large files to and from an FTP server. FTP transmits data in plaintext. FTP active mode uses TCP port 21 for control and TCP port 20 for data transfer. FTP passive mode (PASV) also uses TCP port 21 for control signals, but it uses a random TCP port for data. If the user can connect to the FTP but not upload or download, disable PASV (passive mode)

Answer 57

Secure File Transfer Protocol / FTP over SSL Ports 989 & 990 TCP, transfer in plain text or encrypted via "Explicit" mode, forced to use encryption is "Implicit" mode

Answer 58

Firewall Service Module

Answer 59

Gigabit per second

Answer 60

General Data Protection Regulation Provisions and requirements protecting the personal data of European Union (EU) citizens

Answer 61

Gramm-Leach-Bliley Act

Answer 62

Group Policy Object Group Policy Object is a component of Group Policy (in Microsoft Active Directory) that can be used in Microsoft operating systems to control user accounts and user activity.

Answer 63

Global Positioning System GPS is a way of determining a device's position (its latitude and longitude) based on information received from GPS satellites. The device must have line-of-sight to the GPS satellites. GPS provides another means of locating the device.

Answer 64

High Availability The key premise is that systems are resilient and redundant. HA is the percentage of uptime a system is able to maintain over a period of a year. For example, 99% would equal being down 3.65 per year of 14 minutes per day. The five 9's, 99.999%, would equal being down 5.25 minutes per year or .86 seconds per day.

Answer 65

Hard Disk Drive

Answer 66

Host-Based Intrusion Detection System

Answer 67

Health Insurance Portability Accountability Act

Answer 68

Host-Based Intrusion Prevention System

Answer 69

Human Resources

Answer 70

Hardware Security Module Provides root of trust, stores cryptographic keys, can also work as an SSL accelerator

Answer 71

Hypertext Transfer Protocol Port 80 TCP, plaintext

Answer 72

Hypertext Transfer Protocol Secure Port 443 TCP, requires certificates and TLS

Answer 73

Heating, Ventilation, Air Conditioning Provides availability

Answer 74

Infrastructure as a Service This type of service you have the most control.

Answer 75

Infrastructure as Code A provisioning architecture in which deployment of resources is performed by scripted automation and orchestration.

Answer 76

Identity and Access Management

Answer 77

Internet Control Message Protocol Suite containing ping, tracert, and pathping

Answer 78

Industrial Control Systems

Answer 79

Identity Provider

Answer 80

Intrusion Detection System Out-of-band. If anomaly, heuristic, or behavioral-based, need to establish a baseline first. Detects attacks and sends an alert.

Answer 81

Internet Key Exchange

Answer 82

Indicators of Compromise

Answer 83

Internet of Things IoT includes any connecting to the Internet that is not a PC, tablet, or laptop.

Answer 84

Internet Protocol

Answer 85

Intrusion Prevention System IPS are in-band, either Signature-based or Anomaly-based.

Answer 86

Internet Protocol Security IPSec is used to secure data-in-transit. Works at Layer 3 of the OSI, and has two modes: transport and tunneling. In Transport mode, only the data is encrypted, not the header. in Tunnel mode, the packet and header are encrypted.

Answer 87

Incident Response

Answer 88

Internet Relay Channel

Answer 89

Incident Response Plan Specific procedures that must be performed if a certain type of event is detected or reported

Answer 90

Interconnection Security Agreement

Answer 91

Information Sharing and Analysis Center Not-for-profit group set up to share sector-specific threat intelligence and security best practices amongst its members.

Answer 92

International Organization for Standardization

Answer 93

Incident Service Provider

Answer 94

JavaScript Object Notation

Answer 95

Key Management System

Answer 96

Layer 2 Tunneling Protocol Port 1701 UDP, uses IPSec

Answer 97

Local Area Network

Answer 98

Lightweight Directory Access Protocol Port 389 TCP, plaintext

Answer 99

Secure Lightweight Directory Access Protocol Port 636 TCP, requires PKI/CA, uses TLS

Answer 100

Lightweight Extensible Authentication Protocol Does not require certificates, deprecated & replaced with EAP-FAST

Answer 101

Mandatory Access Control Resources (objects) and users (subjects) are allocated a clearance level (or label), or a "need to know" basis

Answer 102

Media Access Control: A network data transfer policy that determines how data is transmitted between two computer terminals through a network cable.

Answer 103

Mobile Application Management Enterprise management function that enables control over apps and storage for mobile devices and other endpoints

Answer 104

Message Digest 5 Hashing algorithm, 128 bit, fastest, provides an integrity check.

Answer 105

Mobile Device Management The process and supporting technologies for tracking, controlling, and securing the organization's mobile infrastructure

Answer 106

Multifactor Authentication Two or more factors from the following: 1. Something you know 2. Something you have 3. Something you are 4. Something you do 5. Somewhere you are or are not

Answer 107

Man in the Middle: A man-in-the-middle (MITM) attack is a cyberattack where a criminal inserts themselves between two parties to intercept their communication. The attacker can then steal data or manipulate it without the victim's knowledge.

Answer 108

Memorandum of Agreement: A written contract between parties to work together on a project or goal

Answer 109

Memorandum of Understanding A non-binding agreement between two or more parties. It's a formal document that outlines the parties' intentions, roles, and objectives.

Answer 110

Multiprotocol Label Switching A network routing technique that uses labels to direct data packets to their destinations.

Answer 111

Master Service Agreement A contract that establishes the terms and conditions of a business relationship between two parties.

Answer 112

Microsoft Challenge-Handshake Authentication Protocol A password-based authentication method that's used for secure user logins.

Answer 113

Managed Service Provider A third-party company that manages a customer's IT systems and information.

Answer 114

Managed Security Service Provider A third-party company that offers cybersecurity services to organizations.

Answer 115

Mean Time Between Failures The system can be repaired, the reliability of the system, need a redundant/fail-over system while the system is being repaired.

Answer 116

Mean Time to Failure Life expectancy of a system, cannot be repaired.

Answer 117

Mean Time to Repair The actual time it took to bring a system back online.

Answer 118

Network Access Control Make sure systems have current Operating System updates and Antivirus updates.

Answer 119

Network Address Translation Many internal IP addresses mapped to one external IP address.

Answer 120

Non-disclosure Agreement

Answer 121

Near-field Communication: A wireless technology that allows devices to communicate when they are very close together.

Answer 122

Next-generation Firewall: A security device that protects networks by analyzing traffic and blocking potentially dangerous traffic.

Answer 123

Network Interface Card: An essential component of any computer that connects it to the network.

Answer 124

Network-based Intrusion Detection System NIDS can also perform rogue system detection.

Answer 125

Network-based Intrusion Prevention System A security technology that actively monitors network traffic for malicious activity and takes immediate action to block or mitigate potential threats

Answer 126

National Institute of Standards and Technology: Promotes U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life

Answer 127

National Security Agency: Collects and analyzes intelligence to protect the United States from foreign threats.

Answer 128

New Technology LAN Manager: A set of Microsoft security protocols that authenticates users and protects their activity.

Answer 129

Network Time Protocol: An internet standard that synchronizes clocks between devices.

Answer 130

Open Authorization: A standard that allows users to grant third-party apps access to their information without sharing their passwords.

Answer 131

Online Certificate Status Protocol: An internet protocol used to check the validity of a digital certificate, specifically whether it has been revoked, by querying a Certificate Authority (CA) in real-time.

Answer 132

Operational Security: A security process that protects sensitive information from adversaries.

Answer 133

Operating System

Answer 134

Open Systems Interconnection: A framework that describes how different systems communicate on a network.

Answer 135

Open Source Intelligence: Information gathered from publicly available sources. It's used by organizations like law enforcement, cybersecurity, and intelligence agencies.

Answer 136

Open Vulnerability and Assessment Language Used with SCAP

Answer 137

Open Web Application Security Project: A non-profit organization focused on improving the security of software applications by providing freely available resources like articles, methodologies, tools, and documentation to help developers and security professionals identify and mitigate common web application vulnerabilities.

Answer 138

Platform as a Service: A cloud computing model where a third-party provider delivers a complete development environment, including tools, middleware, operating systems, and databases, allowing users to build, test, deploy, and manage applications without having to manage the underlying infrastructure.

Answer 139

Privileged Access Management: A cybersecurity strategy that protects an organization's sensitive systems and data.

Answer 140

Password Authentication Protocol Username and password sent in cleartext

Answer 141

Packet Capture

Answer 142

Payment Card Industry Data Security Standard

Answer 143

Power Distribution Unit

Answer 144

Protected Extensible Authentication Protocol

Answer 145

Privacy-Enhanced Mail

Answer 146

Personal Health Information

Answer 147

Personally Identifiable Information

Answer 148

Personal Identification Number Something you know

Answer 149

Public Key Infrastructure: A system of policies, hardware, software, and procedures that manage digital certificates and public-key encryption.

Answer 150

Portable Network Graphics: A raster image file format that supports lossless compression.

Answer 151

Point-to-Point over Ethernet Encapsulation

Answer 152

Point-to-Point Tunneling Protocol: A network protocol that creates virtual private networks (VPNs).

Answer 153

Pre-Shared Key Password or passphrase

Answer 154

Remote Authentication Dial-in User Server

Answer 155

Redundant Array of Inexpensive Disks: A data storage technology that combines multiple physical hard drives into a single logical unit, allowing for increased reliability and performance by distributing data across the drives, creating redundancy in case of a single drive failure; essentially, it lets you use several inexpensive disks to create a more reliable storage system.

Answer 156

Random Access Memory: Your computer or laptop's short-term memory. It's where the data is stored that your computer processor needs to run your applications and open your files.

Answer 157

Remote Access Server: A combination of hardware and software that allows users to connect to a network from a remote location.

Answer 158

Remote Access Trojan: Is malicious software designed to allow attackers to monitor and control a computer system or network remotely.

Answer 159

Role-Based Access Control: A security model that limits access to systems and data based on a user's role in an organization.

Answer 160

Rule-Based Access Control: A system that controls access to resources based on predetermined rules.

Answer 161

Remote Desktop Protocol Port 3389

Answer 162

Radio Frequency Identifier: A wireless system that uses radio waves to identify objects, people, or animals.

Answer 163

Return on Investment

Answer 164

Read-only Memory Non-volatile

Answer 165

Recovery Point Objective Amount of data an organization is willing to lose.

Answer 166

Rivest, Shamir, & Adleman Asymmetric encryption, used to encrypt email, digital signatures, and X.509 certificates.

Answer 167

Remote Shell: A command-line program that allows users to run commands on a remote computer as if they were logged in locally.

Answer 168

Rapid Spanning Tree Protocol: A network protocol that acts as an improved version of the standard Spanning Tree Protocol (STP), designed to significantly reduce the time it takes for a network to recover from topology changes by providing faster convergence when network links fail.

Answer 169

Recovery Time Objective An allotted, expected, or maximum amount of time to get a system online.

Answer 170

Real Time Operating System: A specialized operating system designed to handle tasks with strict time constraints, ensuring that data is processed and events are responded to within a predictable timeframe.

Answer 171

Real-time Transfer Protocol Audio, Video, VoIP

Answer 172

Secure/Multipurpose Internet Mail Extensions Used for encrypting email and creating digital signatures

Answer 173

Security Associations

Answer 174

Software as a Service You have no control over, can only use the program.

Answer 175

Simultaneous Authentication of Equals Used with WPA-3, replaces PSK

Answer 176

Security Accounts Manager

Answer 177

Security Assertions Markup Language: An open standard that allows applications to exchange authentication and authorization data between different parties.

Answer 178

Storage Area Network: A high-speed network that connects servers to storage devices.

Answer 179

Subject Alternative Name

Answer 180

Secure Access Service Edge

Answer 181

System Control and Data Acquisition: A system that monitors and controls industrial processes by collecting real-time data from sensors and field devices, allowing operators to remotely manage equipment and conditions within a facility or network, often used in applications like power grids, water treatment plants, and oil pipelines.

Answer 182

Security Content Automation Protocol

Answer 183

Simple Certificate Enrollment Protocol: An open-source protocol that allows devices to easily and automatically request and receive digital certificates from a Certificate Authority (CA) by using a standardized method to communicate, typically through a shared secret and a URL.

Answer 184

Supply Chain Management

Answer 185

Software Development Life Cycle: A structured process that software development teams follow, encompassing all stages from initial planning and requirement analysis to design, development, testing, deployment, and ongoing maintenance.

Answer 186

Software Defined Networking: A network architecture that uses software to manage and control a network.

Answer 187

Software-Defined Wide Area Network: A network technology that uses software-based principles to manage and optimize wide area networks (WANs), allowing organizations to securely connect users and applications across multiple locations while improving performance, reliability, and scalability through centralized control and visibility over the network.

Answer 188

Self-Encrypting Drives: A hard disk drive (HDD) or solid state drive (SSD) that encrypts data as it's written and decrypts it when it's read.

Answer 189

Secured File Transfer Protocol Also known as FTP over SSH, uses port 22 TCP

Answer 190

Secure Hashing Algorithm: A cryptographic function that turns an input of any size into a fixed-sized output, or hash value.

Answer 191

Security Information and Event Management This is a detective control.

Answer 192

Session Initiation Protocol VoIP credentials

Answer 193

Service Level Agreement: A contract between a service provider and a customer that defines the level of service expected.

Answer 194

Single Loss Expectancy: The estimated amount of money lost if an asset is damaged or compromised.

Answer 195

Short Message Service Test message

Answer 196

Simple Mail Transfer Protocol Port 25 TCP, sends email in plaintext

Answer 197

Simple Network Management Protocol Port 161 UDP, only secure version is version 3.

Answer 198

Security Orchestration, Automation, Response

Answer 199

System on Chip

Answer 200

Security Operation Center

Answer 201

Service Organization Control

Answer 202

Standard Operating Procedure

Answer 203

Statement of Work

Answer 204

Switched Port Analyzer: A dedicated port on a switch that takes a mirrored copy of network traffic from within the switch to be sent to a destination.

Answer 205

Sender Policy Framework: An email authentication method that verifies that an email's sender is authorized to send mail from a domain.

Answer 206

Spam over Internet Messaging

Answer 207

Structured Query Language

Answer 208

SQL Injection: A code injection technique that might destroy your database. SQL injection is one of the most common web hacking techniques.

Answer 209

Secure Real-Time Protocol Encrypts audio & video streaming, and VoIP

Answer 210

Solid State Drive: Is a type of solid-state storage device that uses integrated circuits to store data persistently.

Answer 211

Secure Shell Port 22 TCP

Answer 212

Service Set Identifier: A unique name that identifies a wireless network.

Answer 213

Secure Sockets Layer: A security protocol that encrypts data sent between a user's device and a website or server.

Answer 214

Single Sign On: System that lets users log in to multiple applications using one set of credentials.

Answer 215

Structured Threat Information eXchange: A standardized language used to express and share cyber threat intelligence information in a consistent format.

Answer 216

Spanning Tree Protocol Prevents switching loops

Answer 217

Secure Web Gateway URL filter, Content Filter

Answer 218

Test Access Point

Answer 219

Trusted Automated eXchange of Indicator Information

Answer 220

Transmission Control Protocol: A set of rules that govern how data is sent and received over a network.

Answer 221

Trivial File Transfer Protocol Uses port 69 UDP, mainly used for deploying images

Answer 222

Ticket Granting Ticket

Answer 223

Temporal Key Integrity Protocol: A security protocol used in wireless networking, primarily within the IEEE 802.11 standard, designed to provide more secure encryption than the older "Wired Equivalent Privacy" (WEP) while still working with existing hardware.

Answer 224

Transport Layer Security: A cryptographic protocol that protects data sent over networks like the internet.

Answer 225

Time of Check / Time of Use Used in a Race Condition attack

Answer 226

The Onion Router

Answer 227

Time-based One Time Password

Answer 228

Trusted Platform Module: A chip on a computer's motherboard that helps protect sensitive information and verifies the authenticity of the operating system and firmware.

Answer 229

User Acceptance Testing

Answer 230

User Behavior Analytics

Answer 231

User Datagram Protocol

Answer 232

Uninterruptable Power Supply

Answer 233

Universal Resource Locator

Answer 234

Unified Threat Management

Answer 235

Virtual Desktop Infrastructure

Answer 236

Virtual Local Area Network

Answer 237

Virtual Machine

Answer 238

Virtual Private Cloud

Answer 239

Virtual Private Network

Answer 240

Virtual Storage Area Network

Answer 241

Web Application Firewall

Answer 242

Wireless Access Point

Answer 243

Wired Equivalent Privacy

Answer 244

Wi-Fi Protected Access

Answer 245

Wi-Fi Protected Setup

Answer 246

Anything as a Service

Answer 247

Extended Detection and Response

Answer 248

Extensible Markup Language: A text-based format for storing, sharing, and exchanging data.

Answer 249

Cross-Site Request Forgery: A cyber attack that tricks a user into performing actions they didn't intend. This can include transferring funds, changing passwords, or making purchases.

Answer 250

Cross-Site Scripting: A web security flaw that allows attackers to inject malicious scripts into websites.

Answer 251

Network Attached Server

Acronym Flashcards

(275 cards)