Patterns, Protocols & Implementation Standards

Question 1

2FA

Answer 1

Two Factor Authentication

Question 2

ABAC

Answer 2

Attribute Based Access Control

Question 3

ACL

Answer 3

Access Control List

Question 4

CA

Answer 4

Certificate Authority

Question 5

CORS

Answer 5

Cross Origin Resource Sharing

Question 6

DoH

Answer 6

DNS over HTTPS

Question 7

DOM

Answer 7

Document Object Model

Question 8

FTPS

Answer 8

FTP-SSL or FTP Secure

Question 9

IR

Answer 9

Incidence Response

Question 10

JIT

Answer 10

Just In Time (SAML)

Question 11

JWT

Answer 11

Json Web Token

Question 12

MFA

Answer 12

Multi Factor Authentication

Question 13

mTLS

Answer 13

Mutual Transport Layer Security

Question 14

OASIS

Answer 14

Organization for the Advancement of Structured Information Standards

Question 15

OAuth

Answer 15

Open Authorization

Question 16

OTP

Answer 16

One Time Password

Question 17

PaC

Answer 17

Policy as Code

Question 18

SAML

Answer 18

Security Assertion Markup Language

Question 19

SARIF

Answer 19

Static Analysis Results Interchange Format

Question 20

SFTP

Answer 20

SSH File Transfer Protocol

Question 21

SPDX

Answer 21

Software Package Data Exchange

Question 22

SSH

Answer 22

Secure Shell

Question 23

SSL

Answer 23

Secure Sockets Layer

Question 24

SSO

Answer 24

Single Sign-On

Question 25

TLP

Answer 25

Traffic Light Protocol (TLP) The Traffic Light Protocol (TLP) is a standardized, four-color classification system designed to facilitate secure, controlled sharing of sensitive information among individuals or organizations. It enables creators to define sharing boundaries, ensuring information reaches the right audience to act on threats or incidents without unauthorized disclosure.

Question 26

TLS

Answer 26

Transport Layer Security

Question 27

U2F

Answer 27

Universal Two Factor

Question 28

WEP

Answer 28

Wired Equivalent Privacy (WEP) is an outdated, insecure IEEE 802.11 security protocol from 1997 designed to provide wireless networks (WLANs) the same confidentiality as wired networks. Utilizing 64-bit or 128-bit static keys with the RC4 algorithm, WEP is now obsolete, as flaws allow attackers to crack keys in minutes.

Question 29

WPA

Answer 29

Wi-Fi Protected Access (WPA) is a security standard designed by the Wi-Fi Alliance to secure wireless networks, replacing the insecure WEP protocol. It offers improved data protection via Temporal Key Integrity Protocol (TKIP) and stronger authentication (Pre-Shared Key or 802.1x). WPA is often used in home (WPA-PSK) and enterprise (WPA-802.1x) environments.

Question 30

WPS

Answer 30

Wi-Fi Protected Setup (WPS) is a network security standard that allows users to easily connect devices to a secure home Wi-Fi network without typing long passwords. It works via a physical button on the router or a PIN, primarily supporting devices like printers, smart TVs, and extenders.