Acronyms Flashcards by

Triple Digital Encryption Standard

(Symmetric Encryption)

3DES

How well did you know this?

Not at all

Perfectly

Authentication, Authorization, and Accounting

(RADIUS)

AAA

How well did you know this?

Not at all

Perfectly

Attribute-based Access Control

Access Control technique that evaluates a set of attributes that each subject possesses to determine if access should be granted.

ABAC

How well did you know this?

Not at all

Perfectly

Access Control List

Collection of Access Control Entries.

ACL

How well did you know this?

Not at all

Perfectly

Advanced Encryption Standard

Symmetric Block Cipher

AES

How well did you know this?

Not at all

Perfectly

Advanced Encryption Standards 256bit

Symmetric Block Cipher

AES256

How well did you know this?

Not at all

Perfectly

Authentication Header

IPSec protocol that provides authentication, integrity and protection against replay attacks.

How well did you know this?

Not at all

Perfectly

Artificial Intelligence

Science of creating machines with the ability to develop problem solving and analysis without significant human direction or intervention.

How well did you know this?

Not at all

Perfectly

Automated Indicator Sharing

Threat intelligence data feed operated by the DHS.

AIS

How well did you know this?

Not at all

Perfectly

Annualized Loss Expectancy

Expected cost of a realized threat over a given year.
SLE (Single Loss Expectancy) x
ARO (Annual Rate of Occurrence)

ALE

How well did you know this?

Not at all

Perfectly

Access Point

How well did you know this?

Not at all

Perfectly

Application Programming Interface

Library of programming utilities used to enable software developers to access functions of another application.

API

How well did you know this?

Not at all

Perfectly

Advanced Persistent Threat

An attacker’s ability to obtain, maintain, and diversify access to network systems using exploits and malware.

APT

How well did you know this?

Not at all

Perfectly

Annualized Rate of Occurrence

In risk calculation, the percentage of an asset’s value that would be lost during a security incident or disaster.

ARO

How well did you know this?

Not at all

Perfectly

Address Resolution Protocol

The broadcast mechanism by which individual hardware MAC addresses are matched to an IP address on a local network segment.

ARP

How well did you know this?

Not at all

Perfectly

Optional security feature of a switch that prevents excessive ARP replies from flooding a network segment.

ARP inspection

How well did you know this?

Not at all

Perfectly

A network-based attack where an attacker with access to target local network segment redirects an IP address to the MAC address of a computer that is not the intended recipient.

ARP poisoning

How well did you know this?

Not at all

Perfectly

Address Space Layout Randomization

Method used by programmers to randomly arrange the different address spaces used by a program or process to prevent buffer overflow exploits.

ASLR

How well did you know this?

Not at all

Perfectly

Active Server Page

ASP

How well did you know this?

Not at all

Perfectly

Adversarial Tactics, Techniques, and Common Knowledge.

A knowledge base maintained by the MITRE Corporation for listing and explaining specific adversary tactics, and procedures.

ATT&CK

How well did you know this?

Not at all

Perfectly

Acceptable Use Policy

AUP

How well did you know this?

Not at all

Perfectly

Antivirus

Software capable of detecting and removing virus infections and other types of malware.

A-V

How well did you know this?

Not at all

Perfectly

Bourne Again Shell

BASH

How well did you know this?

Not at all

Perfectly

Business Continuity Planning

Disaster Recovery Planning - How business processes should deal with minor/disaster level disruption by ensuring that there is a processing redundancy supporting the workflow.

BCP

How well did you know this?

Not at all

Perfectly

Border Gateway Protocol A path vector routing protocol used by ISPs to establish routing between one another.

BGP

Business Impact Analysis A systematic activity that identifies organizational risks and determines their effect on ongoing, mission critical operations.

BIA

Basic Input/Output System

BIOS

Business Partnership Agreement An agreement between two companies to work together closely, such as the partner agreement that large IT companies set up with resellers and solution providers.

BPA

Bridge Protocol Data Unit Used to communicate information about the topology and are not expected on access port.

BPDU

Bring Your Own Device

BYOD

Certificate Authority A server that guarantees subject identities by issuing signed digital certificate wrappers for their public keys.

Completely Automated Public Turing Test to Tell Computers and Humans Apart. A type of security measure known as challenge-response authentication.

CAPTCHA

Corrective Action Report

CAR

Cloud Access Security Broker Enterprise management software designed to mediate access to cloud services by users across all types of devices.

CASB

Cipher Block Chaining An encryption mode of operation where an exclusive or (XOR) is applied to the first plaintext block.

CBC

Computer-based Training Training and education programs delivered using computer devices and e-learning instructional models and design.

CBT

Counter-Mode/CBC-Mac Protocol An encryption protocol used for wireless LANs that addresses the vulnerabilities of the WEP protocol.

CCMP

Closed-Circuit Television A TV system in which signals are not publicly distributed but are monitored, primarily for surveillance and security purposes.

CCTV

Computer Emergency Response Team A group of information security experts responsible for the protection against, detection of and response to an organization’s cybersecurity incidents.

CERT

Cipher Feedback A mode in which the DES algorithm is used to encrypt the preceding block of cipher text. This block is then XORed with the next block of plain text to produce the next block of cipher text.

CFB

Challenge Handshake Authentication Protocol Authentication scheme developed for dial-up networks that uses an encrypted three-way handshake to authenticate the client to the server.

CHAP

Chief Information Officer

CIO

Computer Incident Response Team Group is responsible for responding to security breaches, viruses and other potentially catastrophic incidents in enterprises that face significant security risks.

CIRT

Center for Internet Security CIS is a forward-thinking nonprofit that harnesses the power of a global IT community to safeguard public and private organizations against cyber threats.

CIS

Content Management System Helps companies manage digital content.

CMS

Continuity of Operation Planning Sites that provide an alternate location for operations after a critical outage.

COOP

Corporate Owned Personal Enabled Enterprise mobile device provisioning model where the device remains the property of the organization, but certain personal use, such as private email, social networking, and web browsing, is permitted.

COPE

Contingency Planning A course of action designed to help an organization respond effectively to a significant future incident, event or situation that may or may not happen.

Cyclical Redundancy Check A network method designed to detect errors in the data and information transmitted over the network.

CRC

Certificate Revocation List A list of certificates that were revoked before their expiration date.

CRL

Chief Security Officer

CSO

Cloud Service Provider A vendor offering public cloud service models, such as PaaS, IaaS, or Saas

CSP

Certificate Signing Request A Base64 ASCHII file that a subject sends to a CA to get a certificate.

CSR

Cross-Site Request Forgery A malicious script hosted on the attackers site that can exploit a session started on another site in the same browser.

CSRF

Channel Service Unit A digital communication device that is used to connect a digital line to a digital device. C

CSU

Counter-Mode An encryption mode of operation where a numerical counter valued is used to create a constantly changing IV.

CTM

Chief Technology Officer

CTO

Common Vulnerabilities and Exposures Scheme for identifying vulnerabilities developed by MITRE and adopted by NIST.

CVE

Common Vulnerability Scoring System Risk management approach to quantifying vulnerability data and then taking into account the degree of risk to different types of systems or information.

CVSS

Choose Your Own Device An employee provisioning model in which an organization allows people to select the mobile devices they would like, usually from a limited number of options.

CYOD

Discretionary Access Control Access control model where each resource is protected by an Access Control List managed by the resource's owner.

DAC

Database Administrator

DBA

Distributed Denial of Service An attack that uses multiple compromised hosts (a botnet) to overwhelm a service with request/response traffic.

DDoS

Data Execution Prevention (Windows operating systems) prevents malicious code from being executed from system memory locations

DEP

Distinguished Encoding Rules The binary format used to structure the information in a digital certificate.

DER

Digital Encryption Standard A symmetric-key algorithm for the encryption of digital data.

DES

Dynamic Host Configuration Protocol A client/server protocol that automatically provides an Internet Protocol (IP) host with its IP address and other related configuration information such as the subnet mask and default gateway.

DHCP

Dynamic Host Configuration Protocol An attack in which an attacker responds to a client requesting address assignment from a DHCP server.

DHCP Spoofing

Diffie-Hellman Ephemeral A cryptographic protocol that is based on Diffie-Hellman and that provides for secure key exchange by using ephemeral keys. DH - Asymmetric Algorithms.

DHE

Domain Keys Identified Mail Aprotocol that allows an organization to take responsibility for transmitting a message by signing it in a way that mailbox providers can verify.

DKIM

Dynamic Link Library A collection of small programs that larger programs can load when needed to complete specific tasks.

DLL

Data Loss Prevention A software solution that detects and prevents sensitive information from being stored on unauthorized networks.

DLP

Domain Message Authentication Reporting and Conformance An email authentication policy that protects against bad actors using fake email addresses disguised to look like legitimate emails from trusted sources.

DMARC

Demilitarized Zone A segment isolated from the rest of a private network by one or more firewalls that accepts connection from the Internet over designated ports.

DMZ

Destination Network Address Translaction NAT service where private internal addresses are mapped to one or more public addresses to facilitate Internet connectivity for host on a local network via a router

DNAT

Domain Name Service (Server)

DNS

Domain Name System Security Extensions A security protocol that provides authentication of DNS data and upholds DNS data integrity.

DNSSEC

Denial of Service Any type of physical, application, or network attack that affects the availability of a managed resource.

DoS

Data Privacy Officer Institutional data governance role with responsibility for complaint collection and processing of personal and sensitive data.

DPO

Disaster Recovery Plan A documented and resourced plan showing actions and responsibilities to be used in response to critical incidents.

DRP

Digital Signature Algorithm Public key encryption standard used for digital signatures that provides authentication and integrity verification for messages.

DSA

Digital Subscriber Line A family of technologies that are used to transmit digital data over telephone lines.

DSL

Extensible Authentication Protocol Framework for negotiating authentication methods that enable systems to use hardware-based identifier, such as fingerprint scanners or smart card readers, for authentication.

EAP

Electronic Code Book

ECB

Elliptic Curve Cryptography An symmetric encryption algorithm that leverage the algebraic structures of elliptic curves over finite fields to derive public/private key pairs.

ECC

Elliptic Curve Diffie-Hellman Ephemeral A cryptographic protocol that is based on Diffie-Hellman and that provides for secure key exchange keys and elliptic curve cryptography.

ECDHE

Elliptic Curve Digital Signature Algorithm Implementation of the DSA cipher that uses the ECC algorithm.

ECDSA

Endpoint Detection and Response A software agent that collects system data and logs for analysis by a monitoring systems to provide early detection of threats.

EDR

Encrypted File System

EFS

End of Life Product life cycle phase where sales are discontinued and support options reduced over time.

EOL

End of Service Product life cycle phase where support is no longer available from the vendor.

EOS

Enterprise Resource Planning

ERP

Electronic Serial Number

ESN

Encapsulated Security Payload Provides integrity, confidentiality, and authenticity of packets by encapsulating and encrypting them. Transport mode - host-to-host transport mode only uses encryption of the payload of an IP packet but not its header. transport mode is used for transmission between hosts on a private network. Tunnel mode - network tunnel is created which encrypts the entire IP packet (payload and header). Tunnel mode is commonly used for transmission between networks.

ESP

File System Access Control List

FACL

Full Disk Encryption Encryption of all data on a disk (including system files, temporary files, and the page file can be accomplished via a supported OS, third-party software, or at the controller level by the disk device itself.

FDE

Field Programmable Gate Array A processor that can be programmed to perform a specific function by a customer rather than at the time of manufacture.

FPGA

False Rejection Rate Biometric assessment metric that measures the number of valid subjects who are denied access.

FRR

File Transfer Protocol A protocol used to transfer file between network hosts. VAriants included S(ecure)FTP, FTP with SSL (FTPS and FTPES) and T(rivial)FTP. FTP utilizes ports 20 and 21.

FTP

Secured File Transfer Protocol A type of FTP using TLS for confidentiality.

FTPS

Galois Counter Mode A mode of block chained encryption that provides message authenticity for each block.

GCM

General Data Protection Regulation PRovisions and requirement protecting the personal data of European Union (EU) citizens. Transfer of personal data outside the EU SIngle Market are restricted unless protected by like-for-like regulations, such as the US's Privacy Shield requirements.

GDPR

Gnu Privacy Guard A complete and free implementation of the OpenPGP standard as defined by RFC4880 (also known as PGP). GnuPG allows you to encrypt and sign your data and communications; it features a versatile key management system, along with access modules for all kinds of public key directories.

GPG

Group Policy Object On a Windows domain, a way to deploy per-user and per-computer settings such as password policy, account restrictions, firewall status, and so on.

GPO

Global Positioning System Means of determining a receiver's position on the Earth based on information received from GPS satellites. The receiver must have line-of-sight to the GPS satellites.

GPS

Graphics Processing Unit

GPU

Generic Routing Encapsulation Provides a private path for transporting packets through an otherwise public network by encapsulating (or tunneling) the packets

GRE

High Availability The property that defines how closely systems approach the goal of providing data availability 100 percent of the time while maintaining a high level of system performance.

Hard Disk Drive

HDD

Host-Based Intrusion Detection System A type of IDS that monitors a computer system for unexpected behavior or drastic changes to the systems state.

HIDS

Host-Based Intrusion Prevention System A type of IPS that monitors a computer system for unexpected behavior or drastic changes to the system's state on an endpoint.

HIPS

Hashed Message Authentication Code A method used to verify both the integrity and authenticity of a message by combining a cryptographic hash of the message with a secret key.

HMAC

HMAC based One Time Password An algorithm that generates a one-time password using a hash-based authentication code to verify the authenticity of the message.

HOTP

Hardware Security Module An appliance for generating and storing cryptographic keys. This sort of solution may be less susceptible to tampering and insider threats than software based storage.

HSM

HyperText Markup Language The basic scripting language used by web browsers to render pages on the world wide web. ·

HTML

Hypertext Transfer Protocol The protocol used to provide web content to browsers. HTTP uses port 80.

HTTP

Hypertext Transfer Protocol over SSL/TLS HTTPS(secure) provides for encrypted transfers, using SSL/TLS and port 443.

HTTPS

Heating, Ventilation, Air Conditioning Building control systems maintain an optimum heating, cooling, and humidity level working environment for different parts of the building.

HVAC

Infrastructure as a Service A computing method that uses the cloud to provide any or all infrastructure needs.

IaaS

Internet Control Message Protocol IP-level protocol for reporting errors and status information supporting the function of troubleshooting utilities such as ping.

ICMP

Industrial Control Systems A network managing embedded devices (computer systems that are designed to perform a specific, dedicated function).

ICS

International Data Encryption Algorithm

IDEA

Intermediate Distribution Frame

IDF

Identity Provider In a federated network, the service that holds the user account and performs authentication.

IdP

Intrusion Detection System A software and/or hardware system that scans, audits, and monitors the security infrastructure for signs of attacks in progress.

IDS

Institute of Electrical and Electronics Engineers A standard for encapsulating EAP communications over a LAN (EAPoL) to implement port-based authentication.

IEEE

Internet Key Exchange Framework for creating a Security Association (SA) used with IPSec. An SA establishes that two hosts trust one another (authenticate) and agree secure protocols and cipher suites to use to exchange data.

IKE

Instant Messaging

Internet Message Access Protocol v4 TCP/IP application protocol providing a means for a client to access and manage email messages stored in a mailbox on a remote server. IMAP4 utilizes TCP port number 143

IMAPv4

Indicators of Compromise A sign that an asset or network has been attacked or is currently under attack.

IoC

Internet of Things Devices that can report state and configuration data and be remotely managed over IP networks.

IoT

Internet Protocol

Intrusion Prevention System An IDS that can actively block attacks.

IPS

Internet Protocol Security A set of open, non-proprietary standards that are used to secure data through authentication and encryption as the data travels across the network or the Internet.

IPSec

Incident Response Procedures and guidelines covering appropriate priorities, actions, and responsibilities in the event of security incidents, divided into preparation, detection/analysis, containment, eradication/recovery, and post-incident stages.

Internet Relay Chat A group communication protocol that enables user to chat, send private messages, and share files.

IRC

Incident Response Plan Specific procedures that must be performed if a certain type of event is detected or reported.

IRP

International Organization for Standardization

ISO

Internet Service Provider

ISP

Information Systems Security Officer Organizational role with technical responsibilities for implementation of security policies, frameworks, and controls.

ISSO

IT Contingency Plan

ITCP

Initialization Vector WEPs weakness is its 24-bit IV

Key Distribution Center Component of Kerberos that authenticates users and issues tickets (tokens).

KDC

Key Encryption Key Component of Kerberos that authenticates users and issues tickets (tokens).

KEK

Layer 2 Tunneling Protocol VPN protocol for tunneling PPP sessions across a variety of network protocols such as IP, Frame Relay, or ATM.

L2TP

Local Area Network

LAN

Lightweight Directory Access Protocol A network protocol used to access network directory databases, which store information about authorized users and their privileges, as well as other organizational information.

LDAP

Lightweight Extensible Authentication Protocol Cisco Systems' proprietary EAP implementation.

LEAP

Monitoring as a Service

MaaS

Mandatory Access Control Access control model where resources are protected by inflexible, system defined rules. REsources (objects) and users (subjects) are allocated a clearance level (or label).

MAC

Mobile Application Management Enterprise management function that enables control over apps and storage for mobile devices and other endpoints.

MAM

Metropolitan Area Network

MAN

Master Boot Record

MBR

Message Digest 5 A cryptographic hash function producing a 128-bit output.

MD5

Main Distribution Frame

MDF

Mobile Device Management The process and supporting technologies for tracking, controlling, and securing the organization's mobile infrastructure.

MDM

Multifactor Authentication Authentication scheme that requires the user to present at least two different factors as credentials, from something you know, something you have, something you are, something you do, and somewhere you are. SPecifying two factors is knowns as 2FA.

MFA

Multi-Function Device Any device that performs more than one function, but typically print devices that can also scan and fax.

MFD

Multi-Function Printer Any device that performs more than one function, but typically print devices that can also scan and fax.

MFP

Machine Learning A component of AI that enable a machine to develop strategies for solving a task given a labeled data set where features have been manually identified but without further explicit instructions.

Multimedia Message Service Extension to SMS allowing digital data (picture, video, or audio) to be sent over a cellular data connection.

MMS

Memorandum of Agreement

MOA

Memorandum of Understanding Usually a preliminary or exploratory agreement to express an intent to work together that is no legally binding and does not involve the exchange of money.

MoU

Multi-Protocol Label Switching

MPLS

Measurement Systems Analysis Evaluates the data collection and statistical methods used by quality management process to ensure they are robust.

MSA

Microsoft Challenge Handshake Authentication Protocol Implementation of CHAP created by Microsoft for use in its products.

MSCHAP

Managed Service Provider

MSP

Managed Security Service Provider Third-party provision of security configuration and monitoring as an outsourced service.

MSSP

Mean Time Between Failures Rating a device or component that predicts the expected time between failures.

MTBF

Mean Time to Failure An average time a device or component is expected to be in operation.

MTTF

Mean Time to Recover Average time taken for a device or component to be repaired, replaced, or otherwise recover from a failure.

MTTR

Maximum Transmission Unit

MTU

Network Access Control A general term for the collected protocols, policies, and hardware that authenticate and authorize access to a network at the device level.

NAC

Network Attached Storage A storage device with an embedded OS that supports typical network file access protocols (TCP/IP and SMB for instance).

NAS

Network Address Translation A routing mechanism that conceals internal addressing schemes from the public Internet by translating between a single public address on the external side of a router and private, non-routable addresses internally.

NAT

Non-Disclosure Agreement An agreement that stipulates that entities will not share confidential information, knowledge, or materials with unauthorized third parties.

NDA

Near Field Communication A standard for peer-to-peer (2-way) radio communication over very short (around 4") distances, facilitating contactless payment and similar technologies, NFC is based on RFID.

NFC

Network Functions Virtualization Provisioning virtual network appliances, such as switches, routers, and firewalls, via VMs and containers.

NFV

Network Interface Card

NIC

Network Based Intrusion Detection System A system that uses passive hardware sensors to monitor traffic on a specific segment of the network.

NIDS

Network Based Intrusion Prevention System An inline security device that monitors suspicious network and/or system traffic and reacts in real time to block it.

NIPS

National Institute of Standards & Technology Develops computer security standards used by US federal agencies and published cybersecurity best practice guides and research.

NIST

New Technology File System is the file system that the Windows NT operating system (OS) uses for storing and retrieving files on hard disk drives (HDDs) and solid-state drives (SSDs).

NTFS

New Technology LAN Manager A challenge-response authentication protocol created by Microsoft for use in its products.

NTLM

Network Time Protocol TCP/IP application protocol allowing machines to synchronize to the same time clock that runs over UDP port 123.

NTP

Open Authorization Standard for federated identity management, allowing resource server or consumer site to work with user accounts created and managed on a separate identity provider.

OAUTH

Online Certificate Status Protocol Allows clients to request the status of a digital certificate, to check whether it is revoked.

OCSP

Object Identifier

OID

Operating System

Open Systems Interconnection Assigns network and hardware components and functions at seven discrete layers: Physical, Data Link, Network, Transport, Session, Presentation, and Application.

OSI

Open Source Intelligence Publicly available information plus the tools used to aggregate and search it.

OSINT

Open Shortest Path First A link-state routing protocol used on IP networks.

OSPF

Operational Technology A communications network designed to implement an industrial control system rather than data networking.

Over The Air A firmware update delivered on a cellular data connection.

OTA

On The Go USB specification allow a mobile device to act as a host when a device such as an external drive or keyboard is attached.

OTG

Open Vulnerability Assessment Language

OVAL

Open Web Application Security Project A charity and community publishing a number of secure application development resources.

OWASP

PKCS #12 Format that allows a private key to be exported along with its digital certificate.

P12

Peer to Peer

P2P

Platform as a Service A computing method that uses the cloud to provide any platform-type services.

PaaS

Proxy Auto Configuration

PAC

Privileged Access Management Policies, procedures, and support software for managing accounts and credentials with administrative permissions.

PAM

Pluggable Authentication Modules Framework for implementing authentication providers in Linux.

PAM

Password Authentication Protocol Obsolete authentication mechanism used with PPP. PAP transfers the password in plaintext and so is vulnerable to eavesdropping.

PAP

Port Address Translation Maps private host IP addresses onto a single public IP address. Each host is tracked by assigning it a random high TCP port for communications. Also, referred to as network address port translation (NAPT) and as NAT overloading.

PAT

Password Based Key Derivation Function 2 Implementation of key stretching to make potentially weak input used to derive a cryptographic key, such as short passwords, less susceptible to brute force attacks.

PBKDF2

Private Branch Exchange

PBX

Packet Capture Standard format for recording packet captures to a file.

PCAP

Payment Card Industry Data Security Standard Information security standard for organizations that process credit or bank card payments.

PCI-DSS

Power Distribution Unit Advanced strip socket that provides filtered output voltage. A managed unit supports remote administration.

PDU

Protected Extensible Authentication Protocol EAP implementation that uses a server-side certificate to create a secure tunnel for user authentication, referred to as the inner method.

PEAP

Personal Electronic Device

PED

Privacy Enhanced Mail Base64 encoding scheme used to store certificate and key data as ASCII text.

PEM

Perfect Forward Secrecy A characteristic of transport encryption that ensures if a key is compromised the compromise will only affect a single session and not facilitate recovery of plaintext data from other sessions.

PFS

Pretty Good Privacy

PGP

Personal Health Information Information that identifies someone as the subject of medical and insurance records, plus associated hospital and laboratory test results.

PHI

Personally Identifiable Information Data that can be used to identify or contact an individual (or in the case of identity theft, to impersonate them).

PII

Personal Identity Verification

PIV

Public Key Cryptography Standards Series of standards defining the use of certificate authorities and digital certificates.

PKCS

Public Key Infrastructure Framework of certificate authorities, digital certificates, software, services, and other cryptographic components deployed for the purpose of validating subject identities.

PKI

Post Office Protocol TCP port 110 protocol that enables a client to access email messages stored in a mailbox on a remote server. The server usually deletes messages once the client has downloaded them.

POP

Plain Old Telephone Service

POTS

Point-to-Point Protocol Dial-up protocol working at layer 2 (Data Link) used to connect devices remotely to networks.

PPP

Point-to-Point Tunneling Protocol Developed by Cisco and Microsoft to support VPNs over PPP and TCP/IP. PPTP is highly vulnerable to password cracking attacks and considered obsolete.

PPTP

Pre-Shared Key Passphrase-based mechanism to allow group authentication to a wireless network. The passphrase is used to derive an encryption key.

PSK

Pan-Tilt-Zoom A class of surveillance camera that allows a remote operator to move the device and zoom the image.

PTZ

Potentially Unwanted Program Software that cannot definitively be classed as malicious, but may not have been chosen by or wanted by the user.

PUP

Quality Assurance Policies, procedures, and tools designed to ensure defect-free development and delivery.

Quality of Service Systems that differentiate data passing over the network that can reserve bandwidth for particular applications. A system that cannot guarantee a level of available bandwidth is often described as Class of Service (CoS).

QoS

Registration Authority In PKI, an authority that accepts requests for digital certificates and authenticates the entities making those requests.

Rapid Application Development

RAD

Remote Authentication Dial-in User Server A standard protocol used to manage remote and wireless authentication infrastructures.

RADIUS

Redundant Array of Inexpensive Disks Specifications that support redundancy and fault tolerance for different configurations of multiple-device storage systems.

RAID

Random Access Memory

RAM

Remote Access Server

RAS

Remote Access Trojan Malware that creates a backdoor remote administration channel to allow a threat actor to access and control the infected host.

RAT

Rivest Cipher version 4 A symmetric stream cipher generally considered obsolete, as it does not support large key sizes and is vulnerable to several attacks.

RC4

Rich Communication Services Platform-independent advanced messaging functionality designed to replace SMS and MMS.

RCS

Request for Comments

RFC

Radio Frequency Identifier A means of encoding information into passive tags, which can be easily attached to devices, structures, clothing, or almost anything else.

RFID

RACE Integrity Primitives Evaluation Message Digest

RIPEMD

Return on Investment

ROI

Recovery Point Objective The longest period of time that an organization can tolerate lost data being unrecoverable.

RPO

Rivest, Shamir, & Adleman Named for its designers, Ronald Rivest, Adi Shamir, and Len Adelman, the first successful algorithm for public key encryption with a variable key length and block size.

RSA

Remote Triggered Black Hole

RTBH

Recovery Time Objective The length of time it takes after an event to resume normal business operations and activities.

RTO

Real-Time Operating System A type of OS that prioritizes deterministic execution of operations to ensure consistent response for time-critical tasks.

RTOS

Real-Time Transport Protocol Opens a data stream for video and voice applications over UDP. The data is packetized and tagged with control information (sequence numbering and time-stamping).

RTP

Secure/Multipurpose Internet Mail Extensions An email encryption standard that adds digital signatures and public key cryptography to traditional MIME communications.

S/MIME

Software as a Service A computing method that uses the cloud to provide application services to users.

SaaS

Simultaneous Authentication of Equals Personal authentication mechanism for Wi-Fi networks introduced with WPA3 to address vulnerabilities in the WPA-PSK method.

SAE

Security Assertions Markup Language An XML-based data format used to exchange authentication information between a client and a service.

SAML

System Control and Data Acquisition A type of industrial control system that manages large-scale, multiple-site devices and equipment spread over geographically large areas.

SCADA

Security Content Automation Protocol A NIST framework that outlines various accepted practices for automating vulnerability scanning.

SCAP

Simple Certificate Enrollment Protocol

SCEP

Software Development Kit Coding resources provided by a vendor to assist with development projects that use their platform or API.

SDK

Software Development Life Cycle The processes of planning, analysis, design, implementation, and maintenances that often govern software and systems development.

SDLC

Software Development Life-cycle Methodology

SDLM

Software Defined Networking APIs and compatible hardware/virtual appliances allowing for programmable network appliances and systems.

SDN

Software Defined Visibility APIs for reporting configuration and state data for automated monitoring and alerting.

SDV

Self-Encrypting Drives

SED

Structured Exception Handler A mechanism to account for unexpected error conditions that might arise during code execution. Effective error handling reduces the chances that a program could be exploited.

SEH

Secured File Transfer Protocol A secure version of the File Transfer Protocol that uses a Secure Shell (SSH) tunnel as an encryption method to transfer, access, and manage files.

SFTP

Secure Hashing Algorithm A cryptographic hashing algorithm created to address possible weaknesses in MDA. The current version is SHA-2.

SHA

Secure Hypertext Transfer Protocol HTTPS(ecure) provides for encrypted transfers, using SSL/TLS and port 443.

SHTTP

Security Information and Event Management A solution that provides real-time or near-real-time analysis of security alerts generated by network hardware and applications.

SIEM

Subscriber Identity Module A small chip card that identifies the user and phone number of a mobile device, via an International Mobile Subscriber Identity (ISMI).

SIM

Session Initiation Protocol Used to establish, disestablish, and manage VoIP and conferencing communications sessions. It handles user discovery (locating a user on the network), availability advertising (whether a user is prepared to receive calls), negotiating session parameters (such as use of audio/ video), and session management and termination.

SIP

Service Level Agreement Operating procedures and standards for a service contract.

SLA

Single Loss Expectancy The amount that would be lost in a single occurrence of a particular risk factor.

SLE

Short Message Service

SMS

Simple Mail Transfer Protocol The protocol used to send mail between hosts on the Internet. Messages are sent over TCP port 25.

SMTP

Simple Mail Transfer Protocol Secure

SMTPS

Simple Network Management Protocol Protocol for monitoring and managing network devices. SNMP works over UDP ports 161 and 162 by default.

SNMP

Simple Object Access Protocol An XML-based web services protocol that is used to exchange messages.

SOAP

Security Orchestration, Automation, Response A class of security tools that facilitates incident response, threat hunting, and security configuration by orchestrating automated runbooks and delivering data enrichment.

SOAR

System on Chip A processor that integrates the platform functionality of multiple logical controllers onto a single chip.

SoC

Security Operations Center The location where security professionals monitor and protect critical information assets in an organization.

SOC

Sender Policy Framework

SPF

Spam over Internet Messaging A spam attack that is propagated through instant messaging rather than email.

SPIM

Structured Query Language A programming and query language common to many largescale database systems.

SQL

SQL Injection An attack that injects a database query into the input data directed at a server by accessing the client side of the application.

SQLi

Secure Real-Time Protocol Version of RTP secured using TLS.

SRTP

Solid State Drive

SSD

Secure Shell A remote administration and file-copy program that supports VPNs by using port forwarding, and that runs on TCP port 22.

SSH

Secure Sockets Layer

SSL

Single Sign On An authentication technology that enables a user to authenticate once and receive authorizations for multiple services.

SSO

Structured Threat Information eXchange A framework for analyzing cybersecurity incidents.

STIX

Shielded Twisted Pair

STP

Secure Web Gateway An appliance or proxy server that mediates client connections with the Internet by filtering spam and malware and enforcing access restrictions on types of sites visited, time spent, and bandwidth consumed.

SWG

Terminal Access Controller Access Control System An AAA protocol developed by Cisco that is often used to authenticate to administrator accounts for network appliance management.

TACACS+

Trusted Automated eXchange of Indicator Information A protocol for supplying codified information to automate incident detection and analysis.

TAXII

Transmission Control Protocol/Internet Protocol

TCP/IP

Ticket Granting Ticket In Kerberos, a token issued to an authenticated account to allow access to authorized application servers.

TGT

Temporal Key Integrity Protocol A mechanism used in the first version of WPA to improve the security of wireless encryption mechanisms, compared to the flawed WEP standard.

TKIP

Transport Layer Security A security protocol that uses certificates for authentication and encryption to protect web communication.

TLS

Time-based One Time Password An improvement on HOTP that forces one-time passwords to expire after a short period of time.

TOTP

Trusted Platform Module A specification for hardware-based storage of digital certificates, keys, hashed passwords, and other user and platform identification information.

TPM

Transaction Signature

TSIG

Tactics, Techniques, and Procedures Analysis of historical cyber-attacks and adversary actions.

TTP

User Acceptance Testing Usually one of the last stages in software development before release (beta testing), UAT proves that a program is usable and fit-for-purpose in real world conditions.

UAT

User Datagram Protocol

UDP

Unified Extensible Firmware Interface A type of system firmware providing support for 64-bit CPU operation at boot, full GUI and mouse operation at boot, and better boot security.

UEFI

Unified Endpoint Management Enterprise software for controlling device settings, apps, and corporate data storage on all types of fixed, mobile, and IoT computing devices.

UEM

Uninterruptible Power Supply A battery-powered device that supplies AC power that an electronic device can use in the event of power failure.

UPS

Uniform Resource Identifier

URI

Universal Resource Locator Application-level addressing scheme for TCP/IP, allowing for human-readable resource addressing. For example: protocol://server/file, where "protocol" is the type of resource (HTTP, FTP), "server" is the name of the computer (www.microsoft.com), and "file" is the name of the resource you wish to access.

URL

Universal Serial Bus

USB

USB On The Go USB specification allowing a mobile device to act as a host when a device such as an external drive or keyboard is attached.

USB OTG

Unified Threat Management All-in-one security appliances and agents that combine the functions of a firewall, malware scanner, intrusion detection, vulnerability scanner, data loss prevention, content filtering, and so on.

UTM

Unshielded Twisted Pair

UTP

Visual Basic Programming languages used to implement macros and scripting in Office document automation.

VBA

Virtual Desktop Environment The user desktop and software applications provisioned as an instance under VDI.

VDE

Virtual Desktop Infrastructure A virtualization implementation that separates the personal computing environment from a user's physical computer.

VDI

Virtual Local Area Network A logically separate network, created by using switching technology. Even though hosts on two VLANs may be physically connected to the same cabling, local traffic is isolated to each VLAN so they must use a router to communicate.

VLAN

Variable Length Subnet Masking

VLSM

Virtual Machine A guest operating system installed on a host computer using virtualization software (a hypervisor), such as Microsoft Hyper-V or VMware.

Voice over IP A generic name for protocols that carry voice traffic over data networks.

VoIP

Virtual Private Cloud A private network segment made available to a single cloud consumer on a public cloud.

VPC

Virtual Private Network A secure tunnel created between two endpoints connected via an unsecure network (typically the Internet).

VPN

Video Teleconferencing

VTC

Web Application Firewall A firewall designed specifically to protect software running on web servers and their back-end databases from code injection and DoS attacks.

WAF

Wireless Access Point

WAP

Wired Equivalent Privacy A legacy mechanism for encrypting data sent over a wireless connection.

WEP

Wireless Intrusion Detection System

WIDS

Wireless Intrusion Prevention System

WIPS

Write Once Read Many

WORM

WiFi Protected Access Standards for authenticating and encrypting access to Wi-Fi networks. Versions include WPA2 and WPA3.

WPA

WiFi Protected Setup A feature of WPA and WPA2 that allows enrollment in a wireless network based on an 8-digit PIN.

WPS

Anything as a Service Expressing the concept that most types of IT requirements can be deployed as a cloud service model.

XaaS

Extensible Markup Language A system for structuring documents so that they are human- and machine-readable. Information within the document is placed within tags, which describe how information within the document is structured.

XML

Exclusive Or An operation that outputs to true only if one input is true and the other input is false.

XOR

Cross-Site Request Forgery A malicious script hosted on the attacker's site that can exploit a session started on another site in the same browser. Also referred to as client-side request forgery (CSRF).

XSRF

Cross-Site Scripting A malicious script hosted on the attacker's site or coded in a link injected onto a trusted site designed to compromise clients browsing the trusted site, circumventing the browser's security model of trusted zones.

XSS

An attack in which an attacker responds to a client requesting address assignment from a DHCP server.

DHCP Spoofing

Active Directory

Basic Service Set Identifier

BSSID

CSA

CSIRT

Extended Instruction Pointer

EIP

Extended Service Set Identifier

ESSID

File Integrity Monitoring

FIM

Hardware Security Module as a Service

HSMaaS

Identity and Access Management

IAM

Next-generation Firewall

NGFW

Next-generation Secure Web Gateway

NG-SWG

Proof of Concept

PoC

Service Set Identifier

SSID

Service Delivery Platform

SDP

User Datagram Protocol

UDP

Acronyms Flashcards

(350 cards)