Acronyms "A"

Question 1

3DES (Triple Data Encryption Standard)

Answer 1

• Deprecated and considered insecure. Replaced by AES
• Symmetric
• Applies the DES cipher algorithm 3 times to each data block

Question 2

• AAA (Authentication, Authorization, and Accounting)

Answer 2

• Often used to describe RADIUS, or some other form of networking protocol that provides Authentication, Authorization, and Accounting

Question 3

• ABAC (Attribute-based Access Control)

Answer 3

• Rights granted through policies that combine attributes together

Question 4

Active Directory

Answer 4

• Database and identity service used to provide identity management

Question 5

ACL (Access Control List)

Answer 5

• Set of rules that allow/deny any traffic flow through routers
• Looks at the packet to determine whether it should be allowed or denied
• Works at layer 3 toprovide security by filtering & controlling the flow of trafficfrom one router to another

Question 6

• AES (Advanced Encryption Standard)

Answer 6

• Industry-standard for data security

- 128-bit, 192-bit, or 256-bit (strongest) implementations

Question 7

• AH (Authentication Header)

Answer 7

• Used to authenticate origins of datagrams — packets of data transmitted

Question 8

• AI (Artificial Intelligence)

Answer 8

• For the exam, be aware of what’s called data poisoning (or tainted training) & adversarial AI

Question 9

AIS (Automated Indicator Sharing)

Answer 9

• DHS and CISA free program
• Enables organizations to share and receive machine-readable cyber threat indicators (CTIs) and defensive measures (DMs) in real-time
• Useful to monitor and defend networks against known threats

Question 10

ALE (Annualized Loss Expectancy)

Answer 10

• ie: can expect x number of devices to fail per year

Question 11

• AP (Access Point)

Answer 11

• Networking hardware device that provides Wi-Fi access, typically then connected via wire to the router, or directly integrated in the router itself

Question 12

• API (Application Programming Interface)

Answer 12

• APIs are used to allow applications to talk to one another

Question 13

• APT (Advanced Persistent Threat)

Answer 13

• Stealthy threat actor (usually nation-state or state-sponsored group) that gains unauthorized access to a system and remains undetected for a period of time

Question 14

• ARO (Annualized Rate of Occurrence)

Answer 14

• The calculated probability that a risk will occur in a given year

Question 15

• ARP (Address Resolution Protocol)

Answer 15

• Helps connect IP devices to MAC addresses

Question 16

• ASLR (Address Space Layout Randomization)

Answer 16

• Prevent exploitation of memory corruption vulnerabilities

Question 17

• ASP (Active Server Page)

Answer 17

• Microsoft server-side scripting language and engine to create dynamic web pages
  
  • Superseded by ASP.NET in 2002

Question 18

• ATT&CK Adversarial Tactics, Techniques, and Common Knowledge

Answer 18

• Knowledge base framework of adversary tactics and techniques based on real-world observations
  
  • Helpful to build effective threat models and defenses against real threats

Question 19

• AUP (Acceptable Use Policy)

Answer 19

• Terms that users must accept in order to use a network, system, website, etc…

Question 20

• AV (Antivirus)

Answer 20

Antivirus is a kind of software used to prevent, scan, detect and delete viruses from a computer.