Acronyms

Question 1

FRR

Answer 1

False Rejection Rate

Question 2

FAR

Answer 2

False Acceptance Rate

Question 3

TGS

Answer 3

Ticket Granting Service

Question 4

TGT

Answer 4

Ticket Granting Ticket

Question 5

TGT

Answer 5

Ticket Granting Ticket

Question 6

STIX

Answer 6

Structured Threat Information Expression
- a standardized XML programming language for conveying data about cybersecurity threats in a common language that can be easily understood by humans and security technologies

Question 7

MSSP

Answer 7

Managed Security Service Provider

Question 8

CAC

Answer 8

Common Access Cards
- Used by military personnel

Question 9

PIV

Answer 9

Personal Identification Verification
- Used by US Federal Employees

Question 10

ISA

Answer 10

Interconnection Security Agreement
- How the systems of each party will be connected
- How data will be shared

Question 11

MSA

Answer 11

Measure System Analysis
- Sates measurements to be used to determine the quality and effectiveness of provided services

Question 12

SIEM

Answer 12

Security Information & Event Management
- collects event log data from a range of sources, identifies activity that deviates from the norm with real-time analysis, and takes appropriate action

Question 13

MOU

Answer 13

Memorandum of Understanding
- Provides a summary of which party is responsible for specific tasks
- Who is going to do what, when

Question 14

BPO

Answer 14

Blanket Purchase Order
- agreement w/ 3rd party vendor to provide services on an ongoing basis
- typically negotiated to take advantage of a preset discounted pricing structure

Question 15

SLA

Answer 15

Service Level Agreement
- Specifies services provided by 3rd party & what level of performance is guranteed
- may also define how disputes will be managed, warranties provided, specific disaster recovery procedures, and when agreement will be terminated

Question 16

OCSP

Answer 16

Online Certificate Status Protocol
- used for obtaining the revocation status of an X.509 digital certificate

Question 17

CSR

Answer 17

Certificate Signing Requests
- one of the first steps towards getting your own SSL/TLS certificate

Question 18

PEM

Answer 18

Privacy Enhanced Mail
- used to store SSL certificates and their associated private keys

Question 19

P7B

Answer 19

A format for sharing and achieving certificates without the private key

Question 20

DER

Answer 20

Distinguished Encoding Rules
- digital certificate file that is created and stored in binary format

Question 21

.cer

Answer 21

certificate files stored using a base-64 encoded X.509 certificate format

Question 22

PFX

Answer 22

Personal Information Exchange
- used to signify a file carrying just a single certificate

Question 23

RIPEMD

Answer 23

RACE Integrity Primitives Evaluation Message Digest
- group of hash functions
- most popular is 160 bit
- also offers 128, 256, and 320 bit

Question 24

MD5

Answer 24

Message Digest 5
- 128 bit hash

Question 25

SHA-2

Answer 25

Secure Hashing Algorithm 2 - set of cryptographic hash functions - variable length input into fixed-length hashes - 224, 256, 384, 512 bit hashes

Question 26

SHA-1

Answer 26

Secure Hashing Algorithm 1 - produces only 160 bit hash

Question 27

RC4

Answer 27

Rivest Cypher 4 - Stream cipher

Question 28

ECC

Answer 28

Elliptical Curve Cryptography - Newer, complex mathematical approach to create relative short but very secure and high-performance keys - used when device is low powered

Question 29

OSINT

Answer 29

Open-source Intelligence - collection and analysis of data gathered from open sources to produce actionable intelligence

Question 30

HMAC

Answer 30

Hash-Based Message Authentication Code - Allows user to verify that a file or message is legitimate

Question 31

DPR

Answer 31

Disaster Recovery Plan - describes how an organization can quickly resume work after an unplanned incident

Question 32

BCP

Answer 32

Business Continuity Plan - consists of the critical information an organization needs to continue operating during an unplanned event

Question 33

ASA

Answer 33

Adaptive Security Appliance - security device that combines firewall, antivirus, intrusion prevention, and virtual private network (VPN)

Question 34

CSA

Answer 34

Cloud Security Alliance - best practices for providing security assurance within cloud computing

Question 35

ISO

Answer 35

International Organization for Standardization - develop and publish International Standards

Question 36

eHI

Answer 36

Electronic Health Information

Question 37

IDS

Answer 37

Intrusion Detection System - identifies threats but does nothing to prevent issues

Question 38

IPS

Answer 38

Intrusion Prevention System - identifies threats and tries to stop issue

Question 39

DLP

Answer 39

Data Loss Prevention

Question 40

FACTA

Answer 40

Fair and Accurate Credit Transactions Act - intended to prevent credit card theft and fraud

Question 41

FISMA

Answer 41

Federal Information Security Management Act - defines an information security framework for government agencies and their contractors

Question 42

COD

Answer 42

Certificate of Destruction - document that states receipt and destruction of confidential data

Question 43

PTZ

Answer 43

Pan Tilt Zoom camera

Question 44

TACACS+

Answer 44

Terminal Access Controller Access Control Server - Provides 3 protocols - authentication - authorization - accounting Uses - TCP 49 Encrypts entire data packet contents

Question 45

RBAC

Answer 45

Role-based Access Control

Question 46

DAC

Answer 46

Discretionary Access Control - Access assigned directly to subjected based on the discretion of the data owner

Question 47

MAC (access control)

Answer 47

Mandatory Access Control - labels both users who need access (subjects) and resources w/ controlled access (objects)

Question 48

DACL

Answer 48

Discretionary Access Control - Objects have a discretionary access control list w/ entries for each subject

Question 49

SOAR

Answer 49

Security Orchestration, Automation, Response - assess, detect, intervene, or search through incidents and processes without the consistent need for human interaction

Question 50

ALE

Answer 50

Annualized Loss Expectancy -Formula: Asset value * exposure factor *ARO (annualized rate of occurrence)

Question 51

PAP

Answer 51

Password Authentication Protocol - Transmits passwords in clear text

Question 52

DRM

Answer 52

Digital Rights Management

Question 53

IRM

Answer 53

Information Rights Mangement

Question 54

HSM

Answer 54

Hardware Security Module - Physical security device - manages and safe guards digital keys and performs encryptions and decryption

Question 55

APT

Answer 55

Advanced Persistent Threat - threat actor, typically a nation state or state-sponsored group, which gains unauthorized access to a computer network and remains undetected for an extended period

Question 56

TAXII

Answer 56

Trusted Automated eXchange of Intelligence of Information - enables exchange of threat intelligence

Question 57

SED

Answer 57

Self-encrypting Drive

Question 58

IP

Answer 58

Intellectual Property

Question 59

ANT

Answer 59

Advanced and Adaptive Network Technology - similar to bluetooth - designed for more specialized devices

Question 60

iPaaS

Answer 60

Integration Platform as a Service - set of automated tools that integrate software applications that are deployed in different environments

Question 61

MaaS

Answer 61

Monitoring as a Service

Question 62

AaaS

Answer 62

Analytics as a Service

Question 63

FWaaS

Answer 63

Firewall as a Service

Question 64

EBS

Answer 64

Enterprise Service Bus - Set of rules and principles for integrating numerous applications together

Question 65

PDS

Answer 65

Protected Distribution System - Protects classified network data by using physical security - best way to protect data in transit when strong cryptography is not feasible - keeps cabling secure while also preventing electronic emissions

Question 66

COOP

Answer 66

Continuity of operations plan - same as BCP (Business continuity plan) - term favored by public and government entities

Question 67

BIA

Answer 67

Business Impact Analysis -predicts the consequences of disruption of a business function

Question 68

PFS

Answer 68

Perfect Forward Secrecy - Requires more computer power - Browser must support it - Uses ECDHE (Elliptical Curve or Diffie-Helman Ephemeral) - Every sessions uses a different private key

Question 69

ECB

Answer 69

Electronic Codebook - Simplest encryption mode - Each block is encrypted w/ same key

Question 70

CBC

Answer 70

Cipher Block Chaining - Each plaintext block is XORed w/ previous cypher block - Uses an initial vector block

Question 71

CTR

Answer 71

Counter - Uses incremental counter

Question 72

GCM

Answer 72

Galois/Counter Mode - Encryption w/ authentication - Commonly used in networks (SSH, TLS)

Question 73

VFA

Answer 73

Virtual Firewall Appliance - provides packet filtering and monitoring