Security+ 701 Acronyms Flashcards

Question

AZFSR

Answer 1

Zone transfer The synchronization of name resolution information between a primary and secondary DNS server.

Answer 2

Bourne again shell Bash is a UNIX and LINUX command interface and language.

Answer 3

Business Continuity Plan The orderly planning for and management of threats and incidents to an organization.

Answer 4

Border Gatewar Protocol BGP is for routing exterior traffic between autonomous systems/organizations.

Answer 5

Business Impact Analysis This is the prerequisite for disaste recovery and continuity planning to identify potential losses.

Answer 6

Basic Input / Output System The now deprecated firmware based initialization code for booting a system.

Answer 7

Buffer Overflow Insertion of malicious computer instructions into the RAM of a host to accomplish denial of service or injecting shellcode.

Answer 8

Business Partners Agreement This outlines the goals and responsibilities between entities pursuing a common work product.

Answer 9

Bridge Protocol Data Unit Key element in STP to prevent looping.

Answer 10

Brute Force Attack Discovers a hash or encrypted secret by attempting all combinations and permutations.

Answer 11

Basic Service Set IDentifier This is the MAC that a wireless device is attached to.

Answer 12

Bring Your Own Device The organization compensates the individual for use of their phone in organizational activities.

Answer 13

Command and Control Servers that are centrally placed the hold control instructions for illicitly managed hosts.

Answer 14

Certificate Authority This entity issues certificates. After verifying them, and is the center of trust in PKI.

Answer 15

Common Access Card A form of identification with photograph, barcode, RFIC and cryptographic storage of private key information.

Answer 16

Completely Automated Public Turning Test to Tell Computer and Humans Apart

Answer 17

Corrective Action Report A document generated when the defect or error has been detected that has the goal of eliminating a reoccurrence.

Answer 18

Cloud Access Security Broker A software resource place between users and cloud applications that monitors and enforces policy-based access to cloud resources.

Answer 19

Cipher Block Chaining Each plaintext block is XORed (see XOR) with the immediately previous ciphertext block.

Answer 20

Computer-Based Training Courseware or lessons that are delivered via a computer, commonly used for at home and corporate training.

Answer 21

Counter-Mode / CBC-MAC Protocol Each plaintext block is XORed (see XOR) with the immediately previous ciphertext block that includes a message authentication code.

Answer 22

Closed-circuit TV Allows monitoring and recording of activities in an area.

Answer 23

Certificate A generic term for a document that facilitates authentication.

Answer 24

Cross-over Error Rate The point at which false acceptances are equal to false rejection.

Answer 25

Computer Emergency Response Team A multi-discipline group designated to handle IT incidents.

Answer 26

Cipher Feedback A mode of operation for a block of cipher.

Answer 27

Challenge Handshake Authentication Protocol Commonly used by routers and has several derivatives in use by Microsoft for authentication.

Answer 28

Confidentiality Integrity Availability The security triad.

Answer 29

Chief Information Officer The most senior official in an organization responsible for the information technology and systems that support enterprise.

Answer 30

Computer Incident Response Team A group that investigates and resolves IT security problems.

Answer 31

Center for Internet Security Its mission is to identify, develop, promote, and lead the world with regard to best practices for cybersecurity solutions.

Answer 32

Change Management Policy An organizational process designed to facilitate making changes to organizational resoures in such a way that they are identifiable, auditable, and orderly.

Answer 33

Content Management System These are applications that facilitate the creation, editing, publishing, and archival or web pages and content.

Answer 34

Common Name An identifying name that may be applied to a directory resource, such as a uder, server, or other object.

Answer 35

Continuity of Operations Plan Ensuring that vital and primary mission essential functions continue to run, even in the face of emergencies.

Answer 36

Corporate Owned, Personally Enabled Smart phones owned by the organization but approved for personal use.

Answer 37

Contingency Planning Procedures to follow in the event of a catastrophic incident, even though it may be unlikely.

Answer 38

Cyclical Redundancy Check An error checking code, used in digital technology primarily to identify accidental changes to data.

Answer 39

Certificate Revocation List This is maintained by a certificate authority to identify certificates associated with compromise or lost private keys.

Answer 40

Cloud Security Alliance a nonprofit organization that promotes best practices in security for cloud-based computing.

Answer 41

Computer Security Incident Response Team Information technology personnel whose purpose is to prevent, manage, and coordinate actions about security incidents.

Answer 42

Chief Security Officer An executive position in charge of policy and programs to reduce risk in an organization.

Answer 43

Cloud Service Provider An organization that provides cloud-based access to infrastructure, storage, and/or applications.

Answer 44

Certificate Signing Request Created by an applicant seeking to gain a certificate from an authority.

Answer 45

Cross-site Request Forgery An attack wherein a message is spoofed from a user to a trusted site.

Answer 46

Channel Service Unit A connecting device used to link an organization to telco-based T-services.

Answer 47

Chief Technology Officer The executive person tasked with identifying useful technology, IT strategies and partnerships.

Answer 48

Centralized Terminal Operating System Legacy Management

Answer 49

Counter This form of encryption is used by AED to perform streaming encryption.

Answer 50

Common Vulnerabilities and Exposures A database of known and published software flaws that may impact security that is managed by MITRE.

Answer 51

Choose Your Own Device In this mode of control and acquisition, an employee chooses a device from a company provided list. Ownership may be personal or organization.

Answer 52

Discretionary Access Control The creator has all control over an asset and access to it. The default form of access for Windows.

Answer 53

Database Administrator This role is filled by personnel capable of managing automated and large infromation repositories.

Answer 54

Distributed Denial of Service This attack methodology involves a multitude of remotely controlled devices focusing upon a single target.

Answer 55

Data Execution Prevention An operating system memory management technique that prevents user data from overlapping into computer instructions.

Answer 56

Distinguished Encoding Rules A commonly used method of encoding the data that makes up the certificate using ASN.1.

Answer 57

Digital Encryption Standard The first US government standard for symmetric encryption. It has a 56 bit key.

Answer 58

Dynamic Host Configuration Protocol This is an extension of BOOTP and is used to dynamically allocate IPs.

Answer 59

Diffie-Hellman Ephemeral This is a key exchange algorithm that enhances confidentiality by discarding the session keys after use.

Answer 60

Domain Keys Identified Mail A messaging secyruty standard designed to facilitate non-repudiation between sender and receiver.

Answer 61

Dynamic Link Library These files are not directly executed but are called up by an application when certain additional functions or libraries are needed.

Answer 62

Data Loss Prevention Strategies and applications that prevent data theft or illicit access.

Answer 63

Domain Message Authentication Reporting and Conformance This is an email security standard designed to allow domains to protect themselves from unauthorized use and spoofing.

Answer 64

Demilitarized Zone The permiter area where the outside world may access certain services.

Answer 65

Destination Network Address Translation The initial destination of a packet as it enters a NET system to be redirected to another destination.

Answer 66

Domain Name Service (Server) An application that handles symbolic name to address mappings, as well as the reverse.

Answer 67

Domain Name System Security Extensions An array of tools devised by the IETF to secure DNS transactions.

Answer 68

Denial of Service A one on one attack that causes access or utility to cease.

Answer 69

Data Protection Officer A senior officer responsible for an organization's data protection strategies and compliance.

Answer 70

Disaster Recovery Plan The immediate plans for recovery of operations or services in the event of a catastrophic incident.

Answer 71

Digital Signature Algorithm An algorithm created by the NSA to implement non-repudiation.

Answer 72

Digital Subscriber Line High-speed Internet conductivity based upon existing infrastructure for telephones.

Answer 73

Extensible Authentication Protocol A derivative of PPP used by wired and wireless networks to validate connections.

Answer 74

Electronic Code Book A mode of symmetric encryption that divides the message into each block and encrypts them separately.

Answer 75

Elliptic Curve Cryptography An algorithm commonly used for key exchange that relies upon geometric complexities.

Answer 76

Elliptic Curve Digital Signature Algorithm This signing technique employs the complexities of geometry, instead of factoring prime numbers.

Answer 77

Elliptic Curve Diffie-Hellman Ephemeral Used to negotiate a temporary shared secret using a public and private key.

Answer 78

Endpoint Detection Response An intranet technology designed to protect access to the infrastructure, identify threats and quarantine known offenders.

Answer 79

Exposure Factor Typically referenced as a percentage of value indicating value lost from one attack.

Answer 80

Encrypted File System A cryptosystem built into Microsoft that allows selective encryption.

Answer 81

Extended Instruction Pointer A programming concept that points an application to the bottom or next step in execution.

Answer 82

Electromagnetic Interference Typically associated with accidental radiation of signals that interfere with IT systems.

Answer 83

Electro Magnetic Pulse Large and significant discharge of signals that can create a denial of service in transmission and storage.

Answer 84

End of Life This term identifies when a product has reached the end of its useful life according to the vendor.

Answer 85

Enterprise Resource Planning Business process management integrated into multiple aspects of an organization, its services, and human resources.

Answer 86

Electronic Serial Number n identifying number created by the Federal Communications Commission to uniquely identify mobile devices and radios.

Answer 87

Encapsulated Security Payload A header used in IPSEC to create confidentiality.

Answer 88

End User License Agreement

Answer 89

File System Access Control List This is creating filters or restrictions on disk storage.

Answer 90

False Acceptance Rate When biometrics malfunction, incorrectly granting permissions.

Answer 91

Full Disk Encryption Enforcing confidentiality across the entire storage device.

Answer 92

File Integrity Monitoring A defensive control designed to assess or validate the integrity of files, such as Tripwire.

Answer 93

Field Programmable Gate Array An integrated circuit or chip that may be revised or configured after manufacture.

Answer 94

False Rejection Rate A biometric measurement, indicating the rate at which authorized personnal are forbidden access.

Answer 95

File Transfer Protocol A file management application designed to insecurely upload and download files.

Answer 96

File Transfer Protocol - Secure A relative of the HTTPS implemented in the same way with certificates and key exchange.

Answer 97

Full Backup It moves files to alternative media that regardless of whether the archive bit is set, and then it clears it.

Answer 98

Galois Counter Mode Useful for protecting packet data as it has little latency and minimum operation overhead.

Answer 99

General Data Protection Regulation A law from the EU that directs protection and privacy of personal information.

Answer 100

Gnu Privacy Guard The free ancarnation of a popular cryptosystem, commonly used to secure email.

Answer 101

Group Policy Object A feature of Windows that provides centralized management of configuration and settings.

Answer 102

Global Positioning System A satellite-based protocol that can closely identify the location or asset.

Answer 103

Graphic Processing Unit These processors have an alternate use in discovering keys and cracking.

Answer 104

Generic Routing Encapsulation An old and standard protocol that inserts one packet within another.

Answer 105

High Availability Ensuring that system uptime extends longer than what is normally would.

Answer 106

Host-based Intrusion Detection System A defensive application that identifies anomalous or malicious activities with a device.

Answer 107

Host-based Intrusion Prevention System A defensive application that prevents anomalous or malicious activities within a device.

Answer 108

Hashed Message Authentication Code Implementing non-repudiation via an exchanged value and hashing.

Answer 109

Honeypot network A sophisticated system designed to locate, discover, distract and otherwise observe malicious behavior.

Answer 110

Software firewall The last line of defense for a system against a malicious intranet host.

Answer 111

HMAC-based One-Time Password Performs authentication by requiring a user to enter a system generated code into a hashing or calculating algorithm that produces a response.

Answer 112

Hardware Security Module These key management systems are ideally suited for automated private key transactions that require strong security.

Answer 113

Hard Disk Drive A mass storage system, typically implemented with spinning platters and heads that perform reading and writing.

Answer 114

Hypertext Markup Language The scripting used by browsers to interpret and display content.

Answer 115

Hypertext Transfer Protocol The means by which HTML and images are viewed and accessed by browsers.

Answer 116

Hypertext Transfer Protocol over SSL/TLS Performing HTTP over an encrypted channel.

Answer 117

Heating, Ventilation and Air Conditioning The heating, cooling, and other environmental aspects of a building.

Answer 118

Infrastructure as a Service Implementing cloud-based networks, servers, and other infrastructure.

Answer 119

Infrastructure as Code Management and provisioning of infrastructure systems and divides by code and settings versus manual and physical means.

Answer 120

Identity and Access Management The policies, procedures, and technologies that facilitate ensuring that only the appropriate personnel have access to resources in an organization.

Answer 121

Internet Control Message Protocol A multifunctional protocol designed to perform network testing and report errors.

Answer 122

Industrial Control Systems Semi-intelligent devices used to control industrial or scientific equipment from central consoles.

Answer 123

International Data Encryption Algorithm This is a symmetric cipher that is block-oriented, with the key size of 128 bits.

Answer 124

Intermediate Distribution Frame The wiring panels linked by risers between floors to perform cross-connection.

Answer 125

Identity Provider A service that contains subjects and can perform centralized authentication on behalf of service providers.

Answer 126

Intrusion Detection System A generic term referring to generating alerts for malicious activity.

Answer 127

Institute of Electrical and Elctronic Engineers The mission of the IEEE is to promote and develop technological advances for the benefit of humanity.

Answer 128

Internet Key Exchange This is used prior to IPSEC for the nefotiation, exchange, and management of symmetric key information.

Answer 129

Instant Messaging A class of online chat that offers real-time transmission of messages over the Internet and local area networks.

Answer 130

Internet Message Access Protocol v4 This applications listens on TCP/143 and it is clear text form.

Answer 131

Indicators of Compromise Artifacts and other forensic data that may be used to identify illicit activity, malware and data breaches.

Answer 132

Internet of Things A reference to network devices that typically have little defensive capability.

Answer 133

Internet Protocol A layer 3 system for addressing, fragmenting, reassembly and delivery of datagrams.

Answer 134

Internet Protocol Security Generally considered the most secure remote access protocol.

Answer 135

Incident Response A generic reference to steps to be taken after specific adverse events occur.

Answer 136

Internet Relay Chat A protocol commonly implemented by helpdesks and Bots.

Answer 137

Incident Response Plan Devised plans to be implemented upon the manifestation of a specific threat.

Answer 138

Interconnection security Agreement The agreed-upon measures, settings, and protocols taken by two organizations to facilitate communication.

Answer 139

Internal Segmentation Firewall A network firewall placed on the intranet to separate two different security zones.

Answer 140

International Organization for Standardization An international nonprofic organization that develops and publishes standards.

Answer 141

Internet Service Provider An organization that facilitates access to a worldwide digital network.

Answer 142

Information Systems Security Officer An organizational role charges with developing, implementing, testing and reviewing IT security.

Answer 143

IT Contingency Plan Minimizing risk by identifying threats of the vulnerabilities in the appropriate measures to limit or prevent them.

Answer 144

Initialization Vector This is a random number that augments a secret key to enhance security for a session.

Answer 145

Key Distribution Center The key server in a Kerberos realm that has access to the keys for all principles.

Answer 146

Key Encryption Key Protects a private or secret key from unauthorized access or disclosure.

Answer 147

Switch Filter and forward data at the MAC layer.

Answer 148

Layer 2 Tunneling Protocol Supports VPN site to site connections but does not encrypt.

Answer 149

Router This is an infrastructure device that interconnects networks and can span different technologies.

Answer 150

Local Area Network A network composed of relatively short-range protocols that facilitate swift transfer of information.

Answer 151

Lightweight Directory Access Protocol This is a protocol designed to work with AD or NDS information from a tree.

Answer 152

Lightweight Extensible Authentication Protocol Commonly integrated with Cisco systems to facilitate centralized authentication.

Answer 153

Insider alteration A catefory of malicious activity, wherein an authorized user adds unwanted instructions.

Answer 154

Monitoring as a Service The staging of general purpose or security management systems on the cloud that manage local agent-based systems.

Answer 155

Mandatory Access Control A strict form of access control that prevents subjects from accessing objects above their security level.

Answer 156

Media Access Control This is typified by a network interface card, along with its unique burned in identifying number.

Answer 157

Mobile Application Management Management software designed to allow an enterprise to maintain control over its mobile devices, smart phones, and tablets.

Answer 158

Metropolitan Network A general description of a technology that allows access across entire minicipal areas.

Answer 159

Master Boot Record A pointer to an area on the disk where initial loading information is stored.

Answer 160

Message Digest 5 One of the oldest hashing algorithms.

Answer 161

Main Distribution Frame This is the centralized connection point between intermediate distribution frames and the outside world.

Answer 162

Mobile Device Management Software that centrally controls the security aspects and configuration of smart phones.

Answer 163

Multifactor Authentication Requiring the use of two or more of location, something you know, have, are or do.

Answer 164

Multi-function Device Office equipment, typically a printer, that is able to fac, photocopy and scan documents.

Answer 165

Multifunction Printer A printer that can fax, photocopy, and scan documents.

Answer 166

Man-in-the-Middle An attacker insinuates itself between a client and a server, observing or modifying communication.

Answer 167

Machine Learning A component of artificial intelligence that enables a system to learn, adapt, and improve based upon inputs without having to be reprogrammed.

Answer 168

Multimedia Message Service A protocol intended to facilitate multimedia transfer over SMS.

Answer 169

Memorandum of Agreement This is a document that describes the cooperative work to be taken together by two parties toward an objective.

Answer 170

Memorandum of Understanding This provides terms and details necessary for two parties to work together.

Answer 171

Multi-Protocol Label Switching This is used by WAN providers to quickly forward data using short and discrete labels, rather than complex network addresses.

Answer 172

Master Service Agreement An agreement between parties that establishes what terms and conditions will govern a range of activities.

Answer 173

Microsoft Challenge Handshake Authentication Protocol Uses an initial handshake to create a nonce added to the hashed ID and secret to create varying outputs.

Answer 174

Managed Service Provider A specialty provider of IT services management contracted by a client.

Answer 175

Managed Security Service Provider A contracted service wherein an outside party manages, monitors, and maintains security services, including firewalls, intrusion detection, virtual private networks, and endpoint security.

Answer 176

Mean Time Between Failures The estimation as to how often serious errors occur, typically measured in thousands of hours.

Answer 177

Mean Time to Failure Measures the average amount of time an asset operates before it has a serious failure.

Answer 178

Mean Time to Recover or Mean Time to Repair A standard recovery statistic indicating swiftness of DRP responses.

Answer 179

Maximum Transmission Unit The maximum number of bytes allowed within a datalink technology.

Answer 180

Network Access Control A technology primarily used for local access control that may involve MAC addresses and 802.1x.

Answer 181

Network-attached Storage File oriented storage of computer information across the network on a central device that may be using multiple storage media.

Answer 182

Network Address Translation This is commonly implemented by firewalls and is used to remap address space on the inside to one or several addresses on the outside edge.

Answer 183

Non-disclosure Agreement A legally binding agreement, compelling parties to not reveal information to others.

Answer 184

Near Field Communication This is a short range wireless technology, commonly used for payment systems and person-to-person data exchanges.

Answer 185

Network Function Virtualization An architectural concept that utilizes virtual machines and virtual infrastructures to connect and manage networks.

Answer 186

Next-generation Secure Web Gateway A cloud-based defensive measure designed to protect users from web-based threats and to provide enforcement of corporate policies.

Answer 187

Next-generation Firewall Considered a third-generation technology, this type of firewall implements multiple security measures, such as filtering, VPN, social media monitoring and more to provide protection.

Answer 188

Network-based Intrusion Detection System The technology used to scan packet data for threats and exploits.

Answer 189

Network-based Intrusion Protection System A technology that identifies and stops attacks by inspecting network information.

Answer 190

National Institute of Standards and Technology A government group that publishes recommendations and standards, many related to IT security.

Answer 191

Network Operations Center IT network management, monitoring and control are performed here.

Answer 192

No operation A common element in memory corruption attacks.

Answer 193

New Technology File System The file system used by Windows that incorporates multilevel security.

Answer 194

Network Time Protocol This protocol is necessary to support Kerberos and its requirement for close chronograph management.

Answer 195

Open Authorization An authentication mechanism that allows secure delegated access.

Answer 196

Online Certificate Status Protocol This protocol is used by the client to validate the status of a received certificate.

Answer 197

Object Identifier This is a value, commonly associated with SNMP that is used to identify aspects of a managed device or system.

Answer 198

Operating System The software on a system initially loaded that regulates access to resources and facilitates the execution of applications.

Answer 199

Open Systems Interconnection A seven layer scheme that identifies commonly implemented features involved in networked applications and systems.

Answer 200

Open-source Intelligence Accessing data stores of information that enable one to collect, analyze and discern useful information from publicly available resources.

Answer 201

Open Shortest Path First An open standard routing protocol capable of dynamic routing and the secure transfer of routing table information.

Answer 202

Operational Technology Associated with industrial controls and processes, this refers to systems that identify changes, perform monitoring and control industrial equipment resources.

Answer 203

Over the Air A general technology category of systems that use wireless and cellular means to obstain new data or updates.

Answer 204

On-the-Go A technical specification for USB devices that allow them to act as hosts and facilitate connections from the other USB devices, such as mice and keyboards.

Answer 205

One-time Password Implement the authentication with a secret that expires upon initial access.

Answer 206

One-time pad Involves a key that is as long as the message but may only be used once.

Answer 207

Open Vulnerability Assessment Language A derivative of the SCAP program to automate vulnerability detection and management.

Answer 208

Open Web Application Security Project A nonprofit international organization that facilitates education, secure development, documentation, tools, and other technologies to enhance web applications.

Answer 209

PKCS #12 This format allows for the storage of both public and private keys in open or encrypted form.

Answer 210

Peer to Peer A headless file sharing system that has no centralized point of control and facilitates wide-open file sharing.

Answer 211

Platform as a Service A form of access that allows an organization to create and run its own applications on the cloud.

Answer 212

Proxy Auto Configuration A JavaScript based technology that regulates the configuration of browsers and their use of web proxies.

Answer 213

Pluggable Authentication Modules Dynamically, loadable authentication libraries used on Linux.

Answer 214

Password Authentication Protocol This is an insecure authentication protocol, sometimes used between routers.

Answer 215

Port Address Translation Address translation that multiplexes many internal addresses through one or a few external addresses, linking connections based upon the source port.

Answer 216

Configuration and baseline maintenance An application designed to identify compliance deviations and variance from a baseline, and then rectify it.

Answer 217

Password-based Key Derivation Function 2 This cryptographic function, processes, and otherwise insecure secret through repeated rounds of hashing to create a longer key value.

Answer 218

Private Branch Exchange The point of interface between public switched telephone network and an organization's internal telephony.

Answer 219

Packet Capture Sniffing and recording network data into a file for later analysis.

Answer 220

Payment Card Industry Data Security Standard A nongovernmental security standard that regulates the implementation and security of web payment gateways.

Answer 221

Power Distribution Unit This is a multiple output device that regulates the power supply and its quality to multiple devices within a rack of devices in a data center.

Answer 222

Portable Executable This is a format for code run by Windows systems and 32 or 64 bit mode.

Answer 223

Protected Extensible Authentication Protocol An EAP form that send MSCHAP credentials secured within a TLS envelope.

Answer 224

Portable Electronic Device Small electronics, such as beepers, calendars, and note applications used prior to smart phones.

Answer 225

Privacy-enhanced Electronic Mail This is one of the oldest formats of certificates and uses of Base64.

Answer 226

Perfect Forward Secrecy This is the property of Key management where in the loss of one key is not in danger data encrypted with earlier session keys.

Answer 227

Personal Echange Format A binary format for storing or sending server certificates and private keys.

Answer 228

Pretty Good Privacy A widely used cryptosystem initially used for securing email by encryption and digital signatures.

Answer 229

Personal Health Information Typically sensitive information regarding the health of an individual.

Answer 230

Personally Identifiable Information This is data or pieces of data that uniquely correspond or identify one individual and requires special handling.

Answer 231

Personal Identification Number Knowledge-based authentication using a single value or number.

Answer 232

Personal Identity Verification An identification card that contains a photograph, RFID, barcode, and cryptographically stored PKI information.

Answer 233

Public Key Cryptography Standards Public-key encryption standards developed by RSA Security.

Answer 234

Public Key Infrastructure The processes and management associated with the identification and validation of certificates and public keys.

Answer 235

Proof of Concept An implementation of an idea or theory that establishes its validity commonly associated with vulnerabilities and exploits.

Answer 236

Padding Oracle on Downgrade Legacy Encryption An attack technique that could subvert confidentiality in an SSL connection.

Answer 237

Post Office Protocol This protocol listens on TCP/110 and downloads messages from the server.

Answer 238

Network mapping and service enumeration Performing address and host discovery, along with identifying listening applications.

Answer 239

Plain Old Telephone Service The old form of telephony that implemented and dedicated copper connections vs. packet advised voice transmission.

Answer 240

Point-to-Point Protocol This is a layer 2 technology implemented to facilitate communication between endpoints or routers.

Answer 241

Point-to-Point Tunneling Protocol A largely deprecated protocol used for establishing tunnels and securing packet ice communication.

Answer 242

Pre-shared Key Managing key establishment and management by using pre-established relationships and non-automatic exchange methods.

Answer 243

Pan-Tilt-Zoom The property of a camera to be able to swivel in various directions on demand.

Answer 244

Potentially Unwanted Program Defined by policy, this is software that provides functionality in violation of authorized use.

Answer 245

Quality Assurance The monitoring and control function an organization that identifies, prevents, or corrects errors in processes, procedures, or products.

Answer 246

Quality of Service A networking function that seeks to reserve bandwidth in order to preserve the timing and availability of communication, especially as it pertains to multimedia.

Answer 247

Recovery Agent The party in PKI who is capable of obtaining a private key locked away in escrow.

Answer 248

Registration Authority This is the entry point of a subject into PKI. It is here that the party establishes and verifies identity before obtaining keys.

Answer 249

Rapid Application Development A model of application development that very quickly works through the development phases.

Answer 250

Remote Authentication Dial-in User Server The most common centralized authentication service.

Answer 251

Redundant Array of Inexpensive Disks A set of standards that specify verying levels of fault tolerance, performance and system requirements for hard drive data storage.

Answer 252

Random Access Memory This is a form of storage that allows specific and independent access to information and does not require a sequential read or write.

Answer 253

Cryptovirology Requires payment for return of information.

Answer 254

Remote Access Server A Microsoft specific term that relates to servers that facilitate modem-based access to in intranet.

Answer 255

Remote Access Trojan Software that implements illicit remote control software.

Answer 256

Role-based Access Control A model of access control, typically implmeneted in an inverted tree, where rights float down.

Answer 257

Rule-based Access Control A model of access regulation commonly used for firewalls and physical controls.

Answer 258

Rivest Cipher version 4 A now deprecated encryption algorithm used by SSL and WEP.

Answer 259

Remote Desktop Protocol Allows access to a system for remote management and help desk operations.

Answer 260

Request for Comments Documents that are largely specifications and definitions for entities on the Internet.

Answer 261

Radio Frequency Identifier This is a common choice for tracking small devices and objects, as well as doorwar access control.

Answer 262

RACE Integrity Primitives Evaluation Message Digest This is a hashing algorithm.

Answer 263

Risk Management Framework This risk management paradigm was promulgated by the US government.

Answer 264

Return on Investment This is the primary metric to be used when evaluating whether something is worth the time, effort, or cost.

Answer 265

Enables and hides access Implemented by an attacker to prevent discovery or observation of activities.

Answer 266

Recovery Point Objective A metric that identifies the number of transactions or quantity of data that can be acceptably lost.

Answer 267

Rivest, Shamir, and Adleman This algorithm relies on factoring large prime numbers.

Answer 268

Remotely Triggered Blackhole Cisco term that refers to a filtering technique that dumps unwanted traffic prior to being received in the target network.

Answer 269

Recovery Time Objective A metric that identifies the maximum amount of time allowed for an outage.

Answer 270

Real-time Operating System These are operating systems that work in real-time, such as manufacturing and robotics.

Answer 271

Real-time Transport Protocol One of several protocols used for telephony/audio/video.

Answer 272

Secure / Multipurpose Internet Mail Extensions Developed by RSA, this is a formatting standard originally created for implementing digital signatures and encryption with public key infrastructure.

Answer 273

Software as a Service A minimal cloud asset that allows access to one application or port.

Answer 274

Simultaneous Authentication of Equals Based upon Dragonfly, this key management system incorporates elements of Diffie Hellman and is part of WPA3.

Answer 275

Security Assertions Markup Language A method of exchanging credentials via a trusted authentication service.

Answer 276

Storage Area Network A remote file system access via Internet-based protocols.

Answer 277

Subject Alternative Name Embedding multiple names for server within a single certificate.

Answer 278

System Control and Data Acquisition Industrial controls automation the network-based management systems that control many remote, small, embedded devices.

Answer 279

Security Content Automation Protocol This is a framework promoted by the US government to create open standards for the automation of information assurance.

Answer 280

Simple Certificate Enrollment Protocol This is a technology that is highly resistant to dictionary attacks and is designed to replace Pre-shared Keys and WPA2-Personal

Answer 281

Secure Copy A command line application that will securely upload or download files to work from a remote host.

Answer 282

Small Computer System Interface A host bus interface to connect to multiple hard drives.

Answer 283

Software Development Kit Tools, APIs, and applications created by a vendor to allow development and customization.

Answer 284

Software Development Life Cycle The sequence of processes involved in the creation and management of software.

Answer 285

Software Development Life Cycle Methodology The stages or phases of a software-based application as it goes from inception to maintenance.

Answer 286

Software Defined Network Using virtualization to create, manage, and secure networks between various sytems.

Answer 287

Service Delivery Platform The elements that procide service delivery, session management, and other key components to a client.

Answer 288

Software-defined Visibility The capability implemented with software that allows for the organization to closely inspect network traffic from an array of collectors and sensors.

Answer 289

Self-encrypting Drive Storage devices that are capable of implementing high-grade encryption without additional software or resources.

Answer 290

Secured File Transfer Protocol This application runs over TCP/22 and encrypts control and data functions.

Answer 291

Secure Hashing Algorithm A now deprecated hashing algorithm that has been in very common use.

Answer 292

Structured Exception Handler This is the facility within Windows that identifies memory corruption and contingencies.

Answer 293

Secure Hypertext Transfer Protocol An obsolete alternative to the HTTPS protocol.

Answer 294

Security Information and Event Management These servers collect, aggregate, and analyze data from multiple sources to identify threats and dangerous trends.

Answer 295

Subscriber Identity Module An integrated circuit that identigies a phone and subscriber.

Answer 296

Session Initiation Protocol This is used to signal, start up, maintain and terminate real-time communication services between endpoints using Internet protocol.

Answer 297

Service Level Agreement An agreement on the characteristics of quality and performance between two parties.

Answer 298

Single Loss Expectancy The value of an asset multiplied times the exposure factor.

Answer 299

Server Message Block This is a core Microsoft protocol used for general access and authentication.

Answer 300

Short Message Service Protocol used by cell phones to exchange brief text-based messages.

Answer 301

Simple Mail Transfer Protocol The vulnerable application responsible for forwarding email to a destination server or receiving it from a sender.

Answer 302

Simple Mail Transfer Protocol Secure The secured application responsible for forwarding email to a destination server or receiving it from a sender.

Answer 303

Simple Network Management Protocol A network-based application designed to discover device status, change configuration and receive errors and exceptions.

Answer 304

Simple Object Access Protocol The structured markup used to identify components of service oriented architecture messages.

Answer 305

System on Chip The minimization of an application and operating system to a state that will fit on an integrated circuit.

Answer 306

Security Operations Center This is a hub of operations and communication that focuses on security incidents and management at a technical level.

Answer 307

Statement of Work It is a narrative description of ap roject's work requirement.

Answer 308

Sender Policy Framework An email validation architecture designed to detect and eliminate spoofing and spamming through approved mail exchangers.

Answer 309

Spam over Internet Messaging Chat messages delivered as a hoax were to induce purchase.

Answer 310

Spam over Internet Telephony The use of SMS to deliver unwanted messages.

Answer 311

Single Point of Failure A device, business process or persn that is critical to a business and has no redundancy.

Answer 312

Structured Query Language An industry-standard mass information repository retrieval system.

Answer 313

Secure Real-Time Protocol A secure form of Internet protocol-based telephony.

Answer 314

Solid State Drive Nonvolatile storage using persistent solid-state flash memory to store and retrieve information.

Answer 315

Secure Shell This protocol, runs over TCP/22 and encrypts its exchanges.

Answer 316

Service Set Identifier An identifier for a wireless network.

Answer 317

Secure Sockets Layer A certificate-based authentication and encryption application that would securely process any TCP-based layer 7 protocol.

Answer 318

Single Sign-on An authentication architecture that relies on a central system and its authentication to authorize users for other servies using a single set of credentials.

Answer 319

Structured Threat Information eXpression Developed by OASIS and MITRE, this is an international standard for sharing intelligence and threat information.

Answer 320

Shielded Twisted Pair Four pairs of wires wrapped in foil that is grounded to prevent interference and eavesdropping.

Answer 321

Secure Web Gateway A system used by enterprises to protect the intranet from hostile or unsecured traffic, commonly implemented in a cloud-based solution.

Answer 322

Terminal Access Controller Access Control System Plus This was initially used by Cisco as centralized authentication for its routers and switches.

Answer 323

Trusted Automated eXchange of Indicator Information This defines four different services (discovery, collection, inbox, and polling) for the purpose of sharing intelligence and threat information between organizations.

Answer 324

Transmission Control Protocol An upper layer protocol that requires handshakes, acknowledgements, and a graceful close.

Answer 325

Wireshark alternative It is a command Linux base dnetwork analysis tool.

Answer 326

Ticket Granting Ticket This is returned after a user successfully authenticates to a KDC.

Answer 327

Temporal Key Integrity Protocol A protocol for key management and change used by WPA.

Answer 328

Transport Layer Security This is now incorporated into HTTPS and allows for AES and other more recent cryptographic algorithms.

Answer 329

Time-based One-time Password A physical token-based authentication system with an access code that changes regularly.

Answer 330

Time-of-use The point in time when information is fetched and employed.

Answer 331

Trusted Platform Module A cryptographic chipset that contains key information to allow encryption and ensure device integrity.

Answer 332

Trojan horse This is a methodology of approaching a target by disguising one thing or activity as something to achieve insertion.

Answer 333

Transaction Signature The component of the name resolution message that performs authentication in DNSSEC.

Answer 334

User Acceptance Testing This is the phase of development wherein the client decides if it is correct.

Answer 335

Unmanned Aerial Vehicle Remotely piloted aircraft.

Answer 336

User Datagram Protocol A datagram protocol that has no handshake, close, or acknowledgement requirement.

Answer 337

User and Entity Behavior Analytics The tools and resources used to analyze insider threats and to proactively prevent fraud and exfiltration.

Answer 338

Unified Extensible Firmware Interface The modern solution for the boot up environment of computer.

Answer 339

Unified Endpoint Management Software that may be implemented to protect devices, servers, and other endpoints from a variety of threats that can be managed from a single interface.

Answer 340

Uninterruptable Power Supply This is typically a battery-powered device that provides temporary electric support.

Answer 341

Uniform Resource Identifier This is the file/resource portion of a URL, typically located at the end.

Answer 342

Universal Serial Bus Multiplatform specification for integrating peripherals into computer systems.

Answer 343

USB On The Go An extension of the USB specification that allows it to integrate with devices such as tablets and smart phones.

Answer 344

Unified Threat Management This is a multifunction firewall system, commonly supporting VPN, NAT, antivirus, spam filtering, intrusion detection, and content filtering.

Answer 345

Unshielded Twisted Pair Commonly known as four-pair, in ubiquitous use for data networking wired connections.

Answer 346

Vulnerability Assessment An operational defense designed to proactively discover flaws, incorrect configurations and outdated applications.

Answer 347

Visual Basic An old microsoft programming language

Answer 348

Virtual Desktop Environment Hosting a desktop operating system on centralized server and allowing users to remotely access it.

Answer 349

Virtual Desktop Infrastructure Hosting a desktop operating system on a centralized server and allowing users to remotely access it.

Answer 350

Virtual Local Area Network A technology for isolating and nodes attached to switches into various groups to enhance performance and create isolation-based security.

Answer 351

Variable Length Subnet Masking An IP network masking technique that does not require full bytes in each position of the mask.

Answer 352

Virtual Machine The implementation of an operating system within an application running on top of another host.

Answer 353

Voice Over IP Converting analog sound into packet eyes data for efficient transport over the Internet.

Answer 354

An implementation of cloud computing where in the cloud service provider reserves resources for particular group or customer, providing isolation.

Answer 355

Virtual Private Network the transmission of information in a protected form over potentially hostile mediums.

Answer 356

Video Teleconferencing Video or audio conductively between remote sites.

Answer 357

Web Application Firewall A filtering device designed to perform deep content inspection to identify application threats.

Answer 358

Wireless Access Point The hub of communication in a radio-based data network.

Answer 359

Wired Equivalent Privacy The now deprecated authentication and confidentiality measures used by 802.11 networks.

Answer 360

Wireless Intrusion Detection System This is an intrusion sensor that looks for 802.11-related threats.

Answer 361

Wireless Intrusion Prevention System This is an intrusion sensor that stops 802.11-related threats.

Answer 362

Work Order An authorization or request for labor or an operation.

Answer 363

Write Once Read Many One-way writing of logs and performance data.

Answer 364

Self-propagating malicious software that floods a network, causing a denial of service.

Answer 365

WiFi Protected Access The predecessor to WPA/2 that implemented TKIP.

Answer 366

WiFi Protected Access 2 The successor to WPA that incorporates AES-CCMP.

Answer 367

WiFi Protected Setup New clients may gain access by pushing a button.

Answer 368

Wireless TLS A security layer for the Wireless Application Protocol.

Answer 369

Scheme of identification document Definition and structure for server, host, and personal identification.

Answer 370

Anything as a Service A broad term that refers to accessing any type of service, large or small, via the internet and it is commonly associated with cloud computing.

Answer 371

Extensible Markup Language A text-based language that defines the encoding of documents and data so that it is both human readable and machine readable, commonly associated with web services.

Answer 372

Exclusive OR A mathematical bit-wise operation, commonly employed in encryption.

Answer 373

Cross-site Request Forgery An attack wherein a message is spoofed from a user to a trusted site.

Answer 374

Cross-site Scripting Web application attack that relies on malicious user, script input to steal information from other users.

Answer 375

Privileged Access Management The processes and technologies used to secure administrative or privileged accounts.

Security+ 701 Acronyms Flashcards

(399 cards)