S

Question 1

S/MIME

Answer 1

Secure/Multipurpose Internet Mail Extensions

The standard form of messaging with encryption or
digital signatures that requires public and private keys.

Question 2

SaaS

Answer 2

Software as a Service

A minimal cloud asset that allows access to one
application or port.

Question 3

SAE

Answer 3

Simultaneous Authentication of Equals

Based upon Dragonfly, this key management system
incorporates elements of Diffie Hellman and is a part of
WPA3.

Question 4

SAML

Answer 4

Security Assertions Markup Language

A method of exchanging credentials via a trusted
authentication service.

Question 5

SAN

Answer 5

Storage Area Network

A remote file system access via Internet-based
protocols.

Question 6

SAN

Answer 6

Subject Alternative Name

Embedding multiple names for server within a single
certificate.

Question 7

SCADA

Answer 7

System Control and Data Acquisition

Industrial controls automation the network-based
management systems that control many remote, small,
embedded devices.

Question 8

SCAP

Answer 8

Security Content Automation Protocol

This is a framework promoted by the US government to
create open standards for the automation of information
assurance.

Question 9

SCEP

Answer 9

Simple Certificate Enrollment Protocol

This is a technology that is highly resistant to dictionary
attacks and is designed to replace Pre-shared Keys and
WPA2-Personal.

Question 10

SCP

Answer 10

Secure Copy

A command line application that will securely upload or
download files to work from a remote host.

Question 11

SCSI

Answer 11

Small Computer System Interface

A host bus interface to connect to multiple hard drives.

Question 12

SDK

Answer 12

Software Development Kit

Tools, APIs and applications created by a vendor to
allow development and customization.

Question 13

SDLC

Answer 13

Software Development Life Cycle

The sequence of processes involved in the creation and
management of software.

Question 14

SDLM

Answer 14

Software Development Life-cycle Methodology

The stages or phases of a software-based application as
it goes from inception to maintenance.

Question 15

SDN

Answer 15

Software Defined Network

Using virtualization to create, manage and secure
networks between various systems.

Question 16

SDP

Answer 16

Service Delivery Platform

The elements that provide service delivery, session
management and other key components to a client.

Question 17

SDV

Answer 17

Software-defined Visibility

The capability implemented with software that allows
for the organization to closely inspect network traffic
from an array of collectors and sensors.

Question 18

SED

Answer 18

Self-Encrypting Drives

Storage devices that are capable of implementing high-
grade encryption without additional software or resources.

Question 19

SHE

Answer 19

Structured Exception Handler

This is the facility within Windows that identifies
memory corruption and contingencies.

Question 20

SFTP

Answer 20

Secured File Transfer Protocol

This application runs over TCP/22 and encrypts control
and data functions.

Question 21

SHA

Answer 21

Secure Hashing Algorithm

A now deprecated hashing algorithm that has been in
very common use.

Question 22

SIEM

Answer 22

Security Information and Event Management

These servers collect, aggregate and analyze data from
multiple sources to identify threats and dangerous
trends.

Question 23

SIM

Answer 23

Subscriber Identity Module

An integrated circuit that identifies a phone and
subscriber.

Question 24

SIP

Answer 24

Session Initiation Protocol

This is used to signal, start up, maintain and terminate
real-time communication services between endpoints
using Internet protocol.

Question 25

SLA

Answer 25

Service Level Agreement An agreement on the characteristics of quality and performance between two parties.

Question 26

SLE

Answer 26

Single Loss Expectancy The value of an asset multiplied times the exposure factor.

Question 27

SMB

Answer 27

Server Message Block This is a core Microsoft protocol used for general access and authentication.

Question 28

S/MIME

Answer 28

Secure/Multipurpose Internet Mail Extensions Developed by RSA, this is a formatting standard originally created for implementing digital signatures and encryption with public key infrastructure.

Question 29

SMS

Answer 29

Short Message Service Protocol used by cell phones to exchange brief text- based messages.

Question 30

SMTP

Answer 30

Simple Mail Transfer Protocol The vulnerable application responsible for forwarding email to a destination server or receiving it from a sender.

Question 31

SMTPS

Answer 31

Simple Mail Transfer Protocol Secure The secured application responsible for forwarding email to a destination server or receiving it from a sender.

Question 32

SNMP

Answer 32

Simple Network Management Protocol A network-based application designed to discover device status, change configuration and receive errors and exceptions.

Question 33

SOAP

Answer 33

Simple Object Access Protocol The structured markup used to identify components of service oriented architecture messages.

Question 34

SOAR

Answer 34

Security Orchestration, Automation, Response A software architecture designed to allow an organization to collect and analyze threat information from numerous sources and inputs, as well as respond to incidents

Question 35

SoC

Answer 35

System on Chip The minimization of an application and operating system to a state that will fit on an integrated circuit.

Question 36

SOC

Answer 36

Security Operations Center This is a hub of operations and communication that focuses on security incidents and management at a technical level.

Question 37

SPF

Answer 37

Sender Policy Framework An email validation architecture designed to detect and eliminate spoofing and spamming through approved mail exchangers.

Question 38

SPIM

Answer 38

Spam over Internet Messaging Chat messages delivered as a hoax were to induce purchase.

Question 39

SPIT

Answer 39

Spam over Internet Telephony The use of SMS to deliver unwanted messages.

Question 40

SPoF

Answer 40

Single Point of Failure A device, business process or person that is critical to a business and has no redundancy.

Question 41

SQL

Answer 41

Structured Query Language An industry-standard mass information repository retrieval system.

Question 42

SQLi

Answer 42

SQL injection Manipulation of input to the front end of a server in order to gain access to the data repositories.

Question 43

SRTP

Answer 43

Secure Real-Time Protocol A secure form of Internet protocol-based telephony.

Question 44

SSD

Answer 44

Solid State Drive Nonvolatile storage using persistent solid-state flash memory to store and retrieve information.

Question 45

SSH

Answer 45

SSH This protocol, runs over TCP/22 and encrypts its exchanges.

Question 46

SSID

Answer 46

Service Set Identifier An identifier for a wireless network.

Question 47

SSL

Answer 47

Secure Sockets Layer A certificate-based authentication and encryption application that would securely process any TCP-based layer 7 protocol.

Question 48

SSO

Answer 48

Single Sign-on An authentication architecture that relies on a central system and it's authentication to authorize users for other services using a single set of credentials.

Question 49

STIX

Answer 49

Structured Threat Information eXpression Developed by OASIS and MITRE, this is an international standard for sharing intelligence and threat information

Question 50

Stego

Answer 50

Stenography The obfuscation of information within a common looking format that achieves stealth.

Question 51

STP

Answer 51

Shielded Twisted Pair Four pairs of wires wrapped in foil that is grounded to prevent interference and eavesdropping.

Question 52

Symmetric key

Answer 52

Secret key The use of a single value to hide and then reveal information.

Question 53

SWG

Answer 53

Secure Web Gateway A system used by enterprises to protect the intranet from hostile or unsecured traffic, commonly implemented in a cloud-based solution.