IT Vocab 12

Question 1

An early example of encryption used by Julius Caesar to send confidential military messages

Answer 1

Caesar Cipher

Question 2

Authentication that requires two or more evidences of authentication, usually of different types

Answer 2

Multifactor Authentication

Question 3

Data that are being transported from one device to another, whether by radio, electrical, or light signals

Answer 3

Data in Transit

Question 4

A type of access control that restricts access based on the user’s role in an organization

Answer 4

Role-based Access Control (RBAC)

Question 5

Convincing a victim that they are performing a legitimate task within their web browser window when, in fact, they are being tricked into revealing sensitive information or installing malware on their computer

Answer 5

Browser Attack

Question 6

A device that controls the flow of network traffic to protect systems from unauthorized network connections

Answer 6

Firewall

Question 7

An attack that attempts to overload a system to that the services it provides are no longer available to legitimate network clients

Answer 7

Denial of Service

Question 8

An attack where the attacker secretly relays and possibly alters the communications between two parties who believe they are directly communicating with each other

Answer 8

Man-in-the-Middle Attack

Question 9

The process of keeping track of user activity while attached to a system

Answer 9

Accounting

Question 10

Software that helps remove unwanted, unsolicited email

Answer 10

Anti-Spam Software

Question 11

The capturing and storing of computer and user events

Answer 11

Logging

Question 12

An attribute used to classify information based on the risk of public disclosure

Answer 12

Information Sensitivity

Question 13

A method of authenticating with one system to gain access to other related systems

Answer 13

Single Sign-on

Question 14

A type of authentication that requires the user to provide something that they know, such as a password or PIN

Answer 14

Type 1 Authentication

Question 15

A type of authentication that requires the user to provide something that they have, such as a key, fob, electronic chip, or smart card

Answer 15

Type 2 Authentication

Question 16

TCP session hacking and other methods where an attacker takes over the communication to a server by appearing to be the victim

Answer 16

Impersonation

Question 17

A type of authentication that requires the user to provide something that they are, such as a fingerprint, handprint, retinal pattern, face, or voice

Answer 17

Type 3 Authentication

Question 18

Data in a persistent storage medium, such as a hard drive or optical disc

Answer 18

Data at rest

Question 19

An attempt to connect to a server by capturing and resending authentication information

Answer 19

Replay attack

Question 20

The ability to ensure that someone can’t deny that they performed a certain act

Answer 20

Non-repudiation

Question 21

A type of access control where a user has complete control over a resource and also determines the permissions other users have to those resources

Answer 21

Discretionary Access Control (DAC)

Question 22

Software that helps protect against malicious software infections

Answer 22

Anti-Malware Software

Question 23

A type of access control that historically was associated with multilevel security and military systems and may use a security clearance to restrict access to resources. The security manager controls the security policy, and users aren’t able to override the policy

Answer 23

Mandatory Access Control (MAC)

Question 24

Exploiting a victim using email messages

Answer 24

Email Attack

Question 25

The buying and selling of products or services electronically, typically through the Internet

Answer 25

Ecommerce

Question 26

A security concern regarding network devices and other devices, such as smartphones, that give the option of using the device without a password

Answer 26

Device Password