CompTIA Security+ Vocabulary List

Question 1

Active Directory

Answer 1

Directory service by Microsoft for Windows domain networks.

Question 2

AES (Advanced Encryption Standard)

Answer 2

Symmetric encryption algorithm.

Question 3

Application Layer

Answer 3

Layer 7 of the OSI model, providing network services to applications.

Question 3

Anomaly Detection

Answer 3

Identifying unusual patterns that do not conform to expected behavior.

Question 4

Attack Surface

Answer 4

Total points where an attacker can try to enter data into or extract data from an environment.

Question 5

Audit Trail

Answer 5

Record of activities to ensure integrity and track changes.

Question 6

Biometrics

Answer 6

Authentication using physical characteristics, like fingerprints or facial recognition.

Question 7

Authentication Header (AH)

Answer 7

IPsec protocol providing connectionless integrity and data origin authentication.

Question 7

Black Box Testing

Answer 7

Testing without knowledge of the internal workings of the application.

Question 8

Blue Team

Answer 8

Group responsible for defending an organization from cyber attacks.

Question 9

Bollard

Answer 9

Physical security device to prevent vehicle-based attacks.

Question 9

CCTV (Closed-Circuit Television)

Answer 9

Video surveillance system.

Question 10

Compensating Controls

Answer 10

Security controls that provide alternative measures.

Question 10

Certificate Revocation List (CRL)

Answer 10

List of certificates that have been revoked by the Certificate Authority.

Question 10

Chain of Custody

Answer 10

Documentation showing the seizure, custody, control, transfer, analysis, and disposition of evidence.

Question 11

Ciphertext

Answer 11

Encrypted text transformed from plaintext.

Question 12

Confidentiality

Answer 12

Ensuring that information is only accessible to those authorized to have access.

Question 12

Control Diversity

Answer 12

Using different types of controls (administrative, technical, physical) to achieve security.

Question 13

Data-at-Rest

Answer 13

Inactive data stored physically in any digital form.

Question 14

Data-in-Transit

Answer 14

Data actively moving from one location to another.

Question 15

Degaussing

Answer 15

Process of reducing or eliminating a magnetic field, often used to erase data from magnetic storage.

Question 16

Digital Forensics

Answer 16

Process of uncovering and interpreting electronic data.

Question 17

Elliptic Curve Cryptography (ECC)

Answer 17

Encryption algorithm based on elliptic curves over finite fields.

Question 17

Demilitarized Zone (DMZ)

Answer 17

Physical or logical subnetwork that contains and exposes an organization’s external-facing services.

Question 18

Dumpster Diving

Answer 18

Searching through waste to find confidential information.

Question 19

EAP (Extensible Authentication Protocol)

Answer 19

Framework for transporting authentication protocols.

Question 20

Evil Twin

Answer 20

Rogue wireless access point mimicking a legitimate one.

Question 21

EMI (Electromagnetic Interference)

Answer 21

Disturbance affecting an electrical circuit due to electromagnetic radiation.

Question 22

Escrowed Encryption

Answer 22

Encryption process where decryption keys are held in escrow.

Question 23

File Integrity Monitoring

Answer 23

Process of validating the integrity of operating system and application software files.

Question 24

Federated Identity Management

Answer 24

Linking a user’s electronic identity and attributes, stored across multiple distinct identity management systems.

Question 25

Geofencing

Answer 25

Creating a virtual boundary for a geographic area.

Question 26

Hashcat

Answer 26

Popular password cracking tool.

Question 27

Identity Federation

Answer 27

Linking a single identity across multiple systems.

Question 27

HIPS (Host-based Intrusion Prevention System)

Answer 27

System designed to protect a host from malicious attacks.

Question 27

Hybrid Attack

Answer 27

Combining dictionary and brute-force attacks to crack passwords.

Question 28

HIDS (Host-based Intrusion Detection System)

Answer 28

System that monitors and analyzes the internals of a computing system.

Question 29

Incident Response Plan

Answer 29

Organized approach to addressing and managing the aftermath of a security breach or attack.

Question 29

IDS (Intrusion Detection System)

Answer 29

System that monitors network or system activities for malicious activities.

Question 30

IMAP (Internet Message Access Protocol)

Answer 30

Protocol used by email clients to retrieve messages from a mail server.

Question 31

Kerberos

Answer 31

Network authentication protocol using tickets.

Question 32

IoC (Indicators of Compromise)

Answer 32

Artifacts observed on a network or in an operating system that with high confidence indicate a computer intrusion.

Question 33

KDE (Kernel Density Estimation)

Answer 33

Non-parametric way to estimate the probability density function of a random variable.

Question 33

Least Privilege

Answer 33

Principle of limiting access rights for users to the bare minimum.

Question 33

Key Escrow

Answer 33

Secure storage and recovery of encryption keys.

Question 34

IP Spoofing

Answer 34

Creating IP packets with a forged source IP address.

Question 35

Logic Bomb

Answer 35

Code inserted into a system that sets off a malicious function when specified conditions are met.

Question 35

LDAP (Lightweight Directory Access Protocol)

Answer 35

Protocol for accessing and maintaining distributed directory information services.

Question 36

MAC (Mandatory Access Control)

Answer 36

Access control policy determined by the system.

Question 36

Mantrap

Answer 36

Physical security device that monitors and controls two interlocking doors to a small room.

Question 37

Malware

Answer 37

Software intentionally designed to cause damage.

Question 38

MD5 (Message Digest Algorithm 5)

Answer 38

Widely used cryptographic hash function.

Question 39

MitM (Man-in-the-Middle)

Answer 39

Attack where the attacker secretly intercepts and relays messages.

Question 40

Multi-Tenancy

Answer 40

Architecture where a single instance of software serves multiple customers.

Question 41

NAC (Network Access Control)

Answer 41

Solutions to define and implement a security policy that grants access to network resources.

Question 42

Non-Repudiation

Answer 42

Assurance that someone cannot deny the validity of their actions.

Question 42

Netflow

Answer 42

Network protocol for collecting IP traffic information.

Question 42

NIDS (Network Intrusion Detection System)

Answer 42

System for monitoring and analyzing network traffic.

Question 43

NTLM (NT LAN Manager)

Answer 43

Suite of Microsoft security protocols for authentication.

Question 44

Obfuscation

Answer 44

Making something obscure or unclear.

Question 44

OID (Object Identifier)

Answer 44

Identifier used to name an object.

Question 45

One-Time Pad

Answer 45

Encryption technique that cannot be cracked.

Question 45

OAuth (Open Authorization)

Answer 45

Open standard for access delegation.

Question 46

PAP (Password Authentication Protocol)

Answer 46

Authentication protocol that uses a two-way handshake.

Question 46

OpenID

Answer 46

Decentralized authentication protocol.

Question 46

OWASP (Open Web Application Security Project)

Answer 46

Online community creating freely available security-related resources.

Question 47

Pivoting

Answer 47

Using one compromised system to attack others.

Question 47

Pharming

Answer 47

Redirecting website traffic to another, fraudulent website.

Question 47

PFS (Perfect Forward Secrecy)

Answer 47

Property ensuring that the compromise of one session key does not affect others.

Question 48

Red Team

Answer 48

Group playing the role of an adversary to test security.

Question 48

Rainbow Table

Answer 48

Precomputed table for reversing cryptographic hash functions.

Question 48

Remote Code Execution (RCE)

Answer 48

Executing code remotely on a different system.

Question 49

PTZ (Pan-Tilt-Zoom)

Answer 49

Camera that can be remotely controlled to pan, tilt, and zoom.

Question 50

Smurf Attack

Answer 50

DDoS attack using IP spoofing and ICMP.

Question 50

SOAR (Security Orchestration, Automation, and Response)

Answer 50

Stack of compatible software programs enabling security operations teams to streamline and standardize activities.

Question 50

Sandbox

Answer 50

Isolated environment for running untrusted programs.

Question 50

Residual Risk

Answer 50

Risk remaining after security measures have been applied.

Question 50

SFTP (Secure File Transfer Protocol)

Answer 50

Secure version of FTP using SSH.

Question 51

Rogue AP

Answer 51

Unauthorized wireless access point.

Question 51

Salting

Answer 51

Adding random data to a hash function to ensure unique outputs.

Question 51

SIEM (Security Information and Event Management)

Answer 51

Solution for real-time analysis of security alerts.

Question 51

Spear Phishing

Answer 51

Targeted phishing attack.

Question 51

Shibboleth

Answer 51

Single sign-on (SSO) solution for web resources.

Question 52

SDN (Software-Defined Networking)

Answer 52

Network management approach enabling programmatically efficient network configuration.

Question 53

Spyware

Answer 53

Software that secretly monitors user activity.

Question 54

Syslog

Answer 54

Standard for message logging.

Question 55

Steganography

Answer 55

Concealing messages within other non-secret text or data.

Question 56

SYN Flood

Answer 56

Attack sending a series of SYN requests to consume resources.

Question 57

Threat Hunting

Answer 57

Proactively searching for cyber threats.

Question 57

Tokenization

Answer 57

Replacing sensitive data with unique identification symbols.

Question 58

UEBA (User and Entity Behavior Analytics)

Answer 58

Analyzing user behavior to detect anomalies.

Question 59

Vishing

Answer 59

Phishing conducted through phone calls.

Question 59

Vulnerability Scanner

Answer 59

Tool for identifying security weaknesses.

Question 59

XOR Cipher

Answer 59

Simple symmetric encryption algorithm.

Question 60

War Driving

Answer 60

Searching for Wi-Fi networks by moving around.

Question 61

Worm

Answer 61

Self-replicating malware.

Question 62

YARA

Answer 62

Tool for identifying and classifying malware.

Question 63

Zero Trust

Answer 63

Security concept assuming no implicit trust.

Question 64

Zero-Day Exploit

Answer 64

Exploiting a vulnerability that is not yet known to the vendor.

Question 65

Zoning

Answer 65

Dividing a storage area network (SAN) into logical segments.