Glossary: A

Question 1

Access control list (ACL)

Answer 1

A method of defining what rights and permissions an entity has to a given resource. In networking, access control lists are commonly associated with firewall and router traffic-filtering rules.

Question 2

Acceptable Use Policy (AUP)

Answer 2

Policy stating what users of a system can and cannot do with the organization’s assets

Question 3

access creep

Answer 3

Occurs when authorized users accumulate excess privileges on a system because of moving from one position to another; allowances accidentally remain with the account from position to position.

Question 4

access point (AP)

Answer 4

A wireless LAN device that acts as a central point for all wireless traffic. The AP is connected to both the wireless LAN and the wired LAN, providing wireless clients access to network resources.

Question 5

accountability

Answer 5

The ability to trace actions performed on a system to a specific user or system entity.

Question 6

acknowledgement (ACK)

Answer 6

A TCP flag notifying an originating station that the preceding packet (or packets) has been received.

Question 7

active attack

Answer 7

An attack that is direct in nature- usually where the attacker injects something into, or otherwise alters, the network or system target.

Question 8

Active Directory (AD)

Answer 8

The directory service created by Microsoft for use on its networks. It provides a variety of network services using Lightweight Directory Access Protocol (LDAP), Kerberos-based authentication, and single sign-on for user access to network-based resources.

Question 9

active fingerprinting

Answer 9

Injecting traffic into the network to identify the operating system of a device.

Question 10

ad hoc mode

Answer 10

A mode of operation in a wireless LAN in which clients send data directly to one another without utilizing a wireless access point (WAP), much like a point-to-point wired connection.

Question 11

Address Resolution Protocol (ARP)

Answer 11

A protocol used to map a known IP address to a physical (MAC) address. It is defined in RFC 826. The ARP table is a list of IP addresses and corresponding MAC addresses stored on a local computer.

Question 12

adware

Answer 12

Software that has advertisements embedded within it, IT generally displays ads in the form of pop-ups.

Question 13

algorithm

Answer 13

A step-by-step method of solving a problem. In computing security, an algorithm is a set of mathematical rules (logic) for the process of encryption and decryption.

Question 14

annualized loss expectancy (ALE)

Answer 14

A measurement of the cost of an asset’s value to the organization and the monetary loss that can be expected for an asset due to risk over a one-year period. ALE is the product of the annualized rate of occurrence (ARO) and the single loss expectancy (SLE). It is mathematically expressed as ALE = ARO x SLE.

Question 15

annualized rate of occurrence (ARO)

Answer 15

An estimate of the number of times during a year a particular asset would be lost or experience downtime.

Question 16

anonymizer

Answer 16

A device or service designed to obfuscate traffic between a client and the internet. It is generally used to make activity on the Internet as untraceable as possible.

Question 17

anti-malware

Answer 17

An application that monitors a computer or network to identify, and prevent, malware. AV (antivirus) applications are usually signature-based and can take multiple actions on defined malware files/ activity.

Question 18

Application layer

Answer 18

Layer 7 of the OSI reference model. The Application layer provides services to applications to allow them access to the network. Protocols such as FTP and SMTP reside here.

Question 19

application-level attack

Answer 19

Attack on the actual programming code of an application.

Question 20

archive

Answer 20

A collection of historical records or the place where they are kept. In computing, an archive generally refers to backup copies of logs and/or data.

Question 21

assessment

Answer 21

Activities to determine the extent to which a security control is implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements of the system.

Question 22

asset

Answer 22

Any item of value or worth to an organization, whether physical or virtual.

Question 23

asymmetric

Answer 23

Literally, “not balanced or the same”. In networking, asymmetric refers to a difference in networking speeds upstream and downstream. In cryptography, it’s the use of more than one key for encryption/ authentication purposes.

Question 24

asymmetric algorithm

Answer 24

In computer security, an algorithm that uses separate keys for encryption and decryption.

Question 25

asynchronous

Answer 25

1. The lack of clocking (imposed time ordering) on a bit stream. 2. An industry term referring to an implant or malware that does not require active interaction from the attacker. 3. An implant or malware where command/ task execution and the return of results or data are set to predefined intervals or timelines versus real-time execution.

Question 26

asynchronous transmission

Answer 26

The transmission of digital signals without precise clocking or synchronization.

Question 27

audit

Answer 27

Independent review and examination of records and activities to assess the adequacy of system controls, to ensure compliance with established policies and operational procedures, and to recommend necessary changes.

Question 28

audit data

Answer 28

Chronological record of system activities to enable the reconstruction and examination of the sequence of events and changes in an event.

Question 29

audit trail

Answer 29

A record showing which user has accessed a given resource and what operations the user performed during a given period.

Question 30

auditing

Answer 30

The process of recording activity on a system for monitoring and later review.

Question 31

authentication

Answer 31

The process of determining whether a network entity (user or service) is legitimate-- usually accomplished through a user ID and password. Authentication measures are categorized by something you know (user ID and password), something you have (smart card or token), or something you are (biometrics).

Question 32

authentication, authorization, and accounting (AAA)

Answer 32

Authentication confirms the identity of the user or device. Authorization determines the privileges (rights) of the user or device. Accounting records the access attempts, both successful and unsuccessful.

Question 33

Authentication Header (AH)

Answer 33

An Internet Protocol Security (IPSec) header used to verify that the contents of a packet have not been modified while the packet was in transit.

Question 34

authenticity

Answer 34

Sometimes included as a fundamental security element, refers to the characteristic of data that ensures it is genuine.

Question 35

authorization

Answer 35

The conveying of official access or legal power to a person or entity.

Question 36

availability

Answer 36

The condition of a resource being ready for use and accessible by authorized users.