Acronyms

Question 1

AAA

Answer 1

Authentication, Authorization, and Accounting (Manages user access & tracks activity)

Question 2

ACL

Answer 2

Access Control List (Defines what users/systems can access specific resources)

Question 3

AH

Answer 3

Authentication Header (Provides integrity & authentication for IPsec packets)

Question 4

BCP

Answer 4

Business Continuity Planning (Strategy for maintaining operations during disruptions)

Question 5

BIOS

Answer 5

Basic Input/Output System (Initializes hardware during system startup)

Question 6

DMZ

Answer 6

Demilitarized Zone (A buffer network between internal & external networks)

Question 7

HIDS

Answer 7

Host-based Intrusion Detection System (Monitors a single device for threats)

Question 8

HIPS

Answer 8

Host-based Intrusion Prevention System (Prevents threats on a specific device)

Question 9

IDS

Answer 9

Intrusion Detection System (Detects suspicious network activity but doesn’t block it)

Question 10

IPS

Answer 10

Intrusion Prevention System (Detects & actively blocks threats in real-time)

Question 11

MAC

Answer 11

Mandatory Access Control (Strict security model with clearance levels and predefined access rules)

Question 12

NAC

Answer 12

Network Access Control (Manages which devices can connect to a network)

Question 13

NIDS

Answer 13

Network-based Intrusion Detection System (Monitors entire network for threats)

Question 14

NIPS

Answer 14

Network-based Intrusion Prevention System (Prevents attacks at the network level)

Question 15

RBAC

Answer 15

Role-based Access Control (Grants access based on user roles)

Question 16

SED

Answer 16

Self-encrypting Drive (Storage device that automatically encrypts data)

Question 17

SIEM

Answer 17

Security Information and Event Management (Centralized security log monitoring & analysis)

Question 18

TPM

Answer 18

Trusted Platform Module (Hardware chip for encryption & secure key storage)

Question 19

WAF

Answer 19

Web Application Firewall (Protects web applications from attacks like SQL injection & XSS)

Question 20

CERT

Answer 20

Computer Emergency Response Team (Handles cybersecurity incidents & responses)

Question 21

CSIRT

Answer 21

Computer Security Incident Response Team (Dedicated team for managing security breaches)

Question 22

DDoS

Answer 22

Distributed Denial of Service (Overwhelms a system with excessive traffic)

Question 23

EDR

Answer 23

Endpoint Detection and Response (Advanced security for detecting & responding to endpoint threats)

Question 24

FIM

Answer 24

File Integrity Monitoring (Detects unauthorized changes to system files)

Question 25

HIDS

Answer 25

Host-based Intrusion Detection System (Monitors individual devices for security threats)

Question 26

IRP

Answer 26

Incident Response Plan (Guidelines for managing security incidents)

Question 27

MDM

Answer 27

Mobile Device Management (Controls & secures mobile devices in a network)

Question 28

MITM

Answer 28

Man-in-the-Middle Attack (Intercepts and manipulates communication between two parties)

Question 29

NIST

Answer 29

National Institute of Standards & Technology (Develops cybersecurity frameworks & guidelines)

Question 30

RAT

Answer 30

Remote Access Trojan (Malware that allows remote control of a victim’s system)

Question 31

SOC

Answer 31

Security Operations Center (Centralized team monitoring security incidents)

Question 32

UEBA

Answer 32

User and Entity Behavior Analytics (Detects unusual behavior patterns for security threats)

Question 33

XSS

Answer 33

Cross-site Scripting (Injects malicious scripts into web applications)

Question 34

XSRF/CSRF

Answer 34

Cross-site Request Forgery (Tricks users into performing unwanted actions on a web app)

Question 35

ARP

Answer 35

Address Resolution Protocol (Maps IP addresses to MAC addresses on a network)

Question 36

DNS

Answer 36

Domain Name System (Translates domain names into IP addresses)

Question 37

DoS

Answer 37

Denial of Service (Disrupts service by overloading a system with requests)

Question 38

HTTPS

Answer 38

Hypertext Transfer Protocol Secure (Encrypted version of HTTP using TLS)

Question 39

ICMP

Answer 39

Internet Control Message Protocol (Used for error reporting & network diagnostics like ping)

Question 40

LAN

Answer 40

Local Area Network (Small network for a specific location like an office or home)

Question 41

MAC

Answer 41

Media Access Control (Unique hardware address for network devices)

Question 42

MFA

Answer 42

Multi-factor Authentication (Requires multiple forms of authentication for access)

Question 43

NAT

Answer 43

Network Address Translation (Translates private IP addresses to public ones for internet access)

Question 44

P2P

Answer 44

Peer-to-Peer (Decentralized network where devices share resources directly)

Question 45

PKI

Answer 45

Public Key Infrastructure (Manages digital certificates & encryption keys)

Question 46

RADIUS

Answer 46

Remote Authentication Dial-in User Service (Provides authentication for network access)

Question 47

TCP/IP

Answer 47

Transmission Control Protocol / Internet Protocol (Standard communication protocol for the internet)

Question 48

UDP

Answer 48

User Datagram Protocol (Faster but connectionless alternative to TCP for data transmission)

Question 49

VLAN

Answer 49

Virtual Local Area Network (Separates network traffic for security & efficiency)

Question 50

VPN

Answer 50

Virtual Private Network (Creates a secure, encrypted connection over the internet)

Question 51

WPA2

Answer 51

WiFi Protected Access 2 (Stronger wireless security than WEP & WPA)

Question 52

AES

Answer 52

Advanced Encryption Standard (Symmetric, Strong, Block cipher)

Question 53

3DES

Answer 53

Triple Data Encryption Standard (Symmetric, Block cipher, legacy)

Question 54

DES

Answer 54

Data Encryption Standard (Symmetric, Block cipher, weak and deprecated)

Question 55

RC4

Answer 55

Rivest Cipher 4 (Symmetric, Stream cipher, insecure)

Question 56

Blowfish

Answer 56

Block cipher (Symmetric, Flexible key length, strong)

Question 57

Twofish

Answer 57

Block cipher (Symmetric, Successor to Blowfish, strong)

Question 58

RSA

Answer 58

Rivest-Shamir-Adleman (Asymmetric, Used for encryption & digital signatures)

Question 59

ECC

Answer 59

Elliptic Curve Cryptography (Asymmetric, Efficient asymmetric encryption)

Question 60

Diffie-Hellman (DH)

Answer 60

Key exchange algorithm (Asymmetric, Doesn’t encrypt data itself)

Question 61

DHE

Answer 61

Diffie-Hellman Ephemeral (Asymmetric, Temporary key for each session)

Question 62

ECDHE

Answer 62

Elliptic Curve Diffie-Hellman Ephemeral (Asymmetric, Stronger version of DHE)

Question 63

MD5

Answer 63

Message Digest Algorithm 5 (128-bit, insecure)

Question 64

SHA-1

Answer 64

Secure Hash Algorithm 1 (160-bit, insecure)

Question 65

SHA-2

Answer 65

Secure Hash Algorithm 2 (256-bit/512-bit, secure)

Question 66

SHA-3

Answer 66

Secure Hash Algorithm 3 (Stronger alternative to SHA-2)

Question 67

HMAC

Answer 67

Hash-based Message Authentication Code (Used for integrity & authentication)

Question 68

PBKDF2

Answer 68

Password-Based Key Derivation Function 2 (Used for password hashing)

Question 69

bcrypt

Answer 69

Key derivation function (Used for password security)

Question 70

TLS

Answer 70

Transport Layer Security (Successor to SSL, encrypts web traffic)

Question 71

SSL

Answer 71

Secure Sockets Layer (Deprecated, replaced by TLS)

Question 72

IPSec

Answer 72

Internet Protocol Security (Encrypts network traffic at the IP layer)

Question 73

L2TP

Answer 73

Layer 2 Tunneling Protocol (Used with IPSec for VPNs)

Question 74

SSH

Answer 74

Secure Shell (Used for secure remote login & file transfers)

Question 75

PGP

Answer 75

Pretty Good Privacy (Used for encrypting emails & files)

Question 76

S/MIME

Answer 76

Secure/Multipurpose Internet Mail Extensions (Email encryption)