Security+ Terminology Flashcards

Question

authorization

Answer 1

When a user is granted access to specific resources after authentication is complete.

Answer 2

Data is obtainable regardless of how information is stored, accessed, or protected.

Answer 3

Used in computer programs to bypass normal authentication and other security mechanisms in place.

Answer 4

A type of DMZ where the DMZ is located between the LAN and application‐ level gateway (ALG). Applies security mechanisms to specific applications, such as FTP and/ or BitTorrent. It supports address and port translation and checks whether the type of application traffic is allowed. (Bonus: Blackout: When a total loss of power for a prolonged period occurs.)

Answer 5

A service‐level agreement (SLA) that is reoccurring.

Answer 6

A type of algorithm that encrypts a number of bits as individual units known as blocks.

Answer 7

The sending of unsolicited messages to Bluetooth‐enabled devices such as mobile phones and tablets.

Answer 8

The unauthorized access of information from a wireless device through a Bluetooth connection.

Answer 9

A group of compromised computers used to distribute malware across the Internet; the members are usually zombies.

Answer 10

When there is an accumulation of broadcast and multicast packet traffic on the LAN coming from one or more network interfaces.

Answer 11

When the voltage drops to such an extent that it typically causes the lights to dim and causes computers to shut off.

Answer 12

A password attack where every possible password is attempted.

Answer 13

When a process stores data outside the memory that the developer intended to be used for storage. This could cause erratic behavior in the application, especially if the memory already had other data in it.

Answer 14

The examination of critical versus noncritical functions, it is part of a business continuity plan (BCP).

Answer 15

A device that looks similar to a phone but has alligator clips that can connect to the various terminals used by phone equipment, enabling a person to listen in to a conversation.

Answer 16

A table that is in a switch’s memory that contains ports and their corresponding MAC addresses.

Answer 17

A type of challenge‐response mechanism used primarily in websites to tell whether or not the user is human. Stands for Completely Automated Public Turing test to tell Computers and Humans Apart.

Answer 18

The entity (usually a server) that issues digital certificates to users.

Answer 19

A list of certificates no longer valid or that have been revoked by the issuer.

Answer 20

Digitally signed electronic documents that bind a public key with a user identity.

Answer 21

Documents who had custody of evidence all the way up to litigation or a court trial (if necessary) and verifies that the evidence has not been modified.

Answer 22

An authentication scheme used by the Point‐to‐Point Protocol (PPP) that is the standard for dial‐up connections.

Answer 23

A structured way of changing the state of a computer system, network, or IT procedure.

Answer 24

The refraction of light as in a rainbow. If light is refracted in such a manner on fiber‐optic cables, the signal cannot be read by the receiver.

Answer 25

An algorithm that can perform encryption or decryption.

Answer 26

Works at the Session Layer of the OSI model and applies security mechanisms when a TCP or UDP connection is established; acts as a go‐between for the Transport and Application Layers in TCP/ IP.

Answer 27

A video system (often used for surveillance) that makes use of traditional coaxial‐based video components, but is used privately, within a building or campus.

Answer 28

A way of offering on‐demand services that extend the capabilities of a person’s computer or an organization’s network.

Answer 29

Two or more servers that work with each other.

Answer 30

A site that has tables, chairs, bathrooms, and possibly some technical setup (for example, basic phone, data, and electric lines), but will require days if not weeks to set up properly.

Answer 31

An online list of known vulnerabilities (and patches) to software, especially web servers. It is maintained by the MITRE Corporation.

Answer 32

Technical assessments made of applications, systems, or networks.

Answer 33

Preventing the disclosure of information to unauthorized persons.

Answer 34

Individual computer programs that block external files that use Java‐Script or images from loading into the browser.

Answer 35

Text files placed on the client computer that store information about it, which could include your computer’s browsing habits and credentials. Tracking cookies are used by spyware to collect information about a web user’s activities. Session cookies are used by attackers in an attempt to hijack a session.

Answer 36

An attack that exploits the trust a website has in a user’s browser in an attempt to transmit unauthorized commands to the website.

Answer 37

A type of vulnerability found in web applications used with session hijacking.

Answer 38

When a signal transmitted on one copper wire creates an undesired effect on another wire; the signal “bleeds” over, so to speak.

Answer 39

A password attack that uses a considerable set of precalculated encrypted passwords located in a lookup table.

Answer 40

Hash functions based on block ciphers.

Answer 41

The practice and study of hiding information.

Answer 42

The electromagnetic field generated by a network cable or network device, which can be manipulated to eavesdrop on conversations or to steal data.

Answer 43

An older type of block cipher selected by the United States federal government back in the 1970s as its encryption standard; due to its weak key, it is now considered deprecated.

Answer 44

Systems that are designed to protect data by way of content inspection. They are meant to stop the leakage of confidential data, often concentrating on communications.

Answer 45

An account installed by default on a device or within an operating system with a default set of user credentials that are usually insecure.

Answer 46

The building up and layering of security measures that protect data from inception, on through storage and network transfer, and lastly to final disposal.

Answer 47

A special area of the network (sometimes referred to as a subnetwork) that houses servers of host information accessed by clients or other networks on the Internet.

Answer 48

A broad term given to many different types of network attacks that attempt to make computer resources unavailable.

Answer 49

A password attack that uses a prearranged list of likely words, trying each of them one at a time.

Answer 50

Type of backup that backs up only the contents of a folder that have changed since the last full backup.

Answer 51

Key exchange Invented in the 1970s, it was the first practical method for establishing a shared secret key over an unprotected communications channel.

Answer 52

A signature that authenticates a document through math, letting the recipient know that the document was created and sent by the actual sender and not someone else.

Answer 53

Also known as the ../ (dot dot slash) attack A method of accessing unauthorized parent directories.

Answer 54

A plan that details the policies and procedures concerning the recovery and/ or continuation of an organization’s technology infrastructure.

Answer 55

An access control policy generally determined by the owner.

Answer 56

An attack in which a group of compromised systems attack a single target, causing a DoS to occur at that host, usually using a botnet.

Answer 57

When a thief attempts to take responsibility for a shipment by diverting the delivery to a nearby location.

Answer 58

The modification of name resolution information that should be in a DNS server’s cache.

Answer 59

The mitigation action that an organization takes to defend against the risks that have been uncovered during due diligence.

Answer 60

The principle that an organization must respect and safeguard personnel’s rights.

Answer 61

When a person literally scavenges for private information in garbage and recycling containers.

Answer 62

A platonic extra added to an OS or application as a sort of joke; the harmless cousin of the logic bomb.

Answer 63

Ensuring that IT infrastructure risks are known and managed.

Answer 64

The process of deleting a domain name during the five‐day grace period (known as the add grace period, or AGP) and immediately reregistering it for another five‐day period to keep a domain name indefinitely and for free.

Answer 65

When each disk is connected to a separate controller.

Answer 66

When a person uses direct observation to “listen” in to a conversation.

Answer 67

A disturbance that can affect electrical circuits, devices, and cables due to electromagnetic conduction or radiation.

Answer 68

A type of public key cryptography based on the structure of an elliptic curve.

Answer 69

The process of changing information using an algorithm (or cipher) into another form that is unreadable by others— unless they possess the key to that data.

Answer 70

An expert at breaking into systems and can attack systems on behalf of the system’s owner and with the owner’s consent.

Answer 71

A rogue wireless access point that uses the same SSID as a nearby legitimate access point.

Answer 72

When an administrator sets a rule that allows a specific type of traffic through a firewall, often within an ACL.

Answer 73

When an administrator sets a rule that denies a specific type of traffic access through a firewall, often within an ACL.

Answer 74

Not an authentication mechanism in itself but instead defines message formats. 802.1X would be the authentication mechanism and defines how EAP is encapsulated within messages.

Answer 75

When a switch broadcasts data on all ports the way a hub does.

Answer 76

Also known as high‐availability clusters, these are designed so that a secondary server can take over in the case that the primary one fails, with limited or no downtime.

Answer 77

When a system denies a user who actually should be allowed access to the system— for example, when an IDS/ IPS fails to block an attack, thinking it is legitimate traffic.

Answer 78

When a system authenticates a user who should not be allowed access to the system— for example, when an IDS/ IPS blocks legitimate traffic from passing on to the network.

Answer 79

When a biometric system fails to recognize an authorized person and doesn’t allow that person access.

Answer 80

An enclosure formed by conducting material or by a mesh of such material; it blocks out external static electric fields and can stop emanations from cell phones and other devices within the cage from leaking out.

Answer 81

When a user’s identity is shared across multiple identity management systems.

Answer 82

The process of controlling and/ or extinguishing fires to protect people and an organization’s data and equipment.

Answer 83

A part of a computer system or network designed to block unauthorized access while permitting authorized communications. It is a device or set of devices configured to permit or deny computer applications based on a set of rules and other criteria.

Answer 84

People who perform preliminary analysis of the incident data and determine whether the incident is an incident or just an event, and the criticality of the incident.

Answer 85

Security feature implemented on some firewalls to protect against SYN floods and other flooding attacks. Also known as attack guards.

Answer 86

An attack that works by creating a large number of processes quickly to saturate the available processing space in the computer’s operating system. It is a type of wabbit.

Answer 87

A type of DoS similar to the Smurf attack, but the traffic sent is UDP echo traffic as opposed to ICMP echo traffic.

Answer 88

Type of backup where all the contents of a folder are backed up.

Answer 89

When random data is inputted into a computer program in an attempt to find vulnerabilities.

Answer 90

A backup rotation scheme in which three sets of backup tapes must be defined— usually they are daily, weekly, and monthly, which correspond to son, father, and grandfather.

Answer 91

A general term used to describe applications that are behaving improperly but without serious consequences; often describes types of spyware. Group Policy is used in Microsoft environments to govern user and computer accounts through a set of rules.

Answer 92

The act of configuring an OS securely, updating it, creating rules and policies to help govern the system in a secure manner, and removing unnecessary applications and services.

Answer 93

A physical device that deals with the encryption of authentication processes, digital signings and payment processes.

Answer 94

A summary of a file or message. It is generated to verify the integrity of the file or message.

Answer 95

A mathematical procedure that converts a variable‐sized amount of data into a smaller block of data.

Answer 96

The attempt at deceiving people into believing something that is false.

Answer 97

One or more computers, servers, or an area of a network, used to attract and trap potential attackers to counteract any attempts at unauthorized access of the network.

Answer 98

Generally is a single computer but could also be a file, group of files, or an area of unused IP address space used to attract and trap potential attackers to counteract any attempts at unauthorized access of the network.

Answer 99

A type of system loaded on an individual computer; it analyzes and monitors what happens inside that computer— for example, if any changes have been made to file integrity.

Answer 100

The aisles in a server room or data center that circulate cold air into the systems and hot air out of them. Usually, the systems and cabinets are supported by a raised floor.

Answer 101

A near duplicate of the original site of the organization, complete with phones, computers, networking devices, and full backups.

Answer 102

Originally, a hotfix was defined as a single problem fixing patch to an individual OS or application that was installed live while the system was up and running, and without a reboot necessary. However, this term has changed over time and varies from vendor to vendor.

Answer 103

Caches web pages from servers on the Internet for a set amount of time.

Answer 104

The portion of virtual machine software that allows multiple virtual operating systems (guests) to run at the same time on a single computer.

Answer 105

When a person is in a state of being identified. It can also be described as something that identifies a person such as an ID card.

Answer 106

An initial validation of an identity.

Answer 107

The monitoring and detection of security events on a computer network and the execution of proper responses to those security events.

Answer 108

A set of procedures that an investigator follows when examining a computer security incident.

Answer 109

Type of backup that backs up only the contents of a folder that have changed since the last full backup or the last incremental backup.

Answer 110

The practice of managing risks that are related to computer hardware and software systems.

Answer 111

The act of protecting information from unauthorized access. It usually includes an in‐depth plan on how to secure data, computers, and networks.

Answer 112

A cloud computing service that offers computer networking, storage, load balancing, routing, and VM hosting.

Answer 113

A process that ensures the correct usage of data.

Answer 114

When arithmetic operations attempt to create a numeric value that is too big for the available memory space.

Answer 115

This means that authorization is necessary before data can be modified.

Answer 116

A filter that is usually applied as software at the Application Layer and can filter out various types of Internet activities such as websites accessed, e‐mail, instant messaging, and more. It is used most often to disallow access to inappropriate web material.

Answer 117

A TCP/IP protocol that authenticates and encrypts IP packets, effectively securing communications between computers and devices using the protocol.

Answer 118

Secures a network by keeping machines behind it anonymous; it does this through the use of NAT.

Answer 119

A type of related‐key attack, which is when an attacker observes the operation of a cipher using several different keys and finds a mathematical relationship between them, allowing the attacker to ultimately decipher data.

Answer 120

When users are cycled through various assignments.

Answer 121

The essential piece of information that determines the output of a cipher.

Answer 122

When certificate keys are held in case third parties, such as government or other organizations, need access to encrypted communications.

Answer 123

Software that can be used to archive and restore keys if necessary.

Answer 124

Takes a weak key, processes it, and outputs an enhanced and more powerful key, usually increasing key size to 128 bits.

Answer 125

The original hash used to store Windows passwords, known as LM hash, based off the DES algorithm.

Answer 126

A tunneling protocol used to connect virtual private networks. It does not include confidentiality or encryption on its own. It uses port 1701 and can be more secure than PPTP if used in conjunction with IPsec.

Answer 127

When a user is given only the amount of privileges needed to do his job.

Answer 128

An Application Layer protocol used for accessing and modifying directory service data.

Answer 129

When multiple computers are connected in an attempt to share resources such as CPU, RAM, and hard disks.

Answer 130

Also known as Flash cookies, these are files stored on users’ computers that allow websites to collect information about visitors. Also referred to as “local shared objects.”

Answer 131

Code that has, in some way, been inserted into software; it is meant to initiate some type of malicious function when specific criteria are met.

Answer 132

A method used to filter out which computers can access the wireless network; the WAP does this by consulting a list of MAC addresses that have been previously entered.

Answer 133

An attack that sends numerous packets to a switch, each of which has a different source MAC address, in an attempt to use up the memory on the switch. If this is successful, the switch will change state to fail‐open mode.

Answer 134

An access control policy determined by a computer system, not by a user or owner, as it is in DAC.

Answer 135

When an organization requires that employees take a certain number of days of vacation consecutively.

Answer 136

Infects a vulnerable web browser and modifies online transactions. Similar to MITM.

Answer 137

A form of eavesdropping that intercepts all data between a client and a server, relaying that information back and forth.

Answer 138

An area between two doorways, meant to hold people until they are identified and authenticated.

Answer 139

When multiple certificates are mapped to a single recipient.

Answer 140

Defines the average number of failures per million hours for a product in question.

Answer 141

A letter of intent between two entities (such as government agencies) concerning SLAs and BPAs. Message‐Digest Algorithm 5 (MD5) A 128‐bit key hash used to provide integrity of files and messages.

Answer 142

A centralized software solution that allows for the control and configuration of mobile devices.

Answer 143

When two or more types of authentication are used when dealing with user access control.

Answer 144

When two computers (for example, a client and a server) verify each other’s identity.

Answer 145

Sets the rules by which connections to a network are governed.

Answer 146

The process of changing an IP address while it is in transit across a router. This is usually implemented so that one larger address space (private) can be remapped to another address space, or single IP address (public).

Answer 147

A type of IDS that attempts to detect malicious network activities— for example, port scans and DoS attacks— by constantly monitoring network traffic.

Answer 148

Designed to inspect traffic, and based on its configuration or security policy, the system can remove, detain, or redirect malicious traffic.

Answer 149

The software run on one or more servers that controls the monitoring of network‐attached devices and computers.

Answer 150

The study of physical and logical connectivity of networks.

Answer 151

The border of a computer network, commonly secured by devices such as firewalls and NIDS/ NIPS solutions.

Answer 152

A random number issued by an authentication protocol that can only be used once.

Answer 153

When a network adapter captures only the packets that are addressed to it.

Answer 154

The idea of ensuring that a person or group cannot refute the validity of your proof against them.

Answer 155

Successor to the LM hash. A more advanced hash used to store Windows passwords, based off the RC4 algorithm.

Answer 156

Successor to the NTLM hash. Based off the MD5 hashing algorithm.

Answer 157

When used by an attacker, a malicious connection to the Windows interprocess communications share (IPC $).

Answer 158

When a new employee is added to an organization, and to its identity and access management system.

Answer 159

A cipher that encrypts plaintext with a secret random key that is the same length as the plain text.

Answer 160

When an individual certificate is mapped to a single recipient.

Answer 161

An alternative to using a certificate revocation list (CRL). It contains less information than a CRL does, and does not require encryption.

Answer 162

Also known as an SMTP open relay, enables anyone on the Internet to send e‐mail through an SMTP server.

Answer 163

A standard and a programming language designed to standardize the transfer of secure public information across networks and the Internet utilizing any security tools and services available.

Answer 164

In the context of firewalls, inspects each packet passing through the firewall and accepts or rejects it based on rules. Two types of packet filtering include stateless packet filters and stateful packet inspection (SPI).

Answer 165

Software tool used to recover passwords from hosts or to discover weak passwords.

Answer 166

An update to a system. Patches generally carry the connotation of a small fix in the mind of the user or system administrator, so larger patches often are referred to as software updates, service packs, or something similar.

Answer 167

The planning, testing, implementing, and auditing of patches.

Answer 168

An authentication protocol that enables computers to prove their identity to each other in a secure manner.

Answer 169

Denies all traffic to a resource unless the users generating that traffic are specifically granted access to the resource. For example, when a device denies all traffic unless a rule is made to open the port associated with the type of traffic desired to be let through.

Answer 170

A method of evaluating the security of a system by simulating one or more attacks on that system.

Answer 171

Generally consists of an attacker exploiting security flaws in routers and other networking hardware by flashing the firmware of the device and replacing it with a modified image.

Answer 172

Control which file system resources a person can access on the network.

Answer 173

An application that protects an individual computer from unwanted Internet traffic; it does so by way of a set of rules and policies.

Answer 174

Information used to uniquely identify, contact, or locate a person.

Answer 175

When an attacker redirects one website’s traffic to another bogus and possibly malicious website by modifying a DNS server or hosts file.

Answer 176

The criminally fraudulent process of attempting to acquire sensitive information such as usernames, passwords, and credit card details by masquerading as a trustworthy entity in an electronic communication.

Answer 177

When an unauthorized person tags along with an authorized person to gain entry to a restricted area.

Answer 178

When an attacker attempts to send many ICMP echo request packets (pings) to a host in an attempt to use up all available bandwidth. Also known as an ICMP flood attack.

Answer 179

A type of DoS that sends an oversized and/ or malformed packet to another computer.

Answer 180

A cloud computing service that provides various software solutions to organizations, especially the ability to develop applications without the cost or administration of a physical platform.

Answer 181

Rules or guidelines used to guide decisions and achieve outcomes. They can be written or configured on a computer.

Answer 182

An application or add‐on to a web browser that blocks pop‐up windows that usually contain advertisements.

Answer 183

Like NAT, but it translates both IP addresses and port numbers.

Answer 184

Software used to decipher which ports are open on a host.

Answer 185

Similar to a dry pipe system, but there are requirements for it to be set off such as heat or smoke.

Answer 186

When a person invents a scenario, or pretext, in the hope of persuading a victim to divulge information.

Answer 187

An encryption program used primarily for signing, encrypting, and decrypting e‐mails in an attempt to increase the security of e‐mail communications.

Answer 188

A type of key that is known only to a specific user or users who keep the key a secret.

Answer 189

The act of exploiting a bug or design flaw in a software or firmware application to gain access to resources that normally would’ve been protected from an application or user.

Answer 190

In a network adapter, this passes all traffic to the CPU, not just the frames addressed to it. When the network adapter captures all packets that it has access to regardless of the destination for those packets.

Answer 191

Security system implemented to protect unencrypted data transfer over wired networks.

Answer 192

Protocol used to encapsulate EAP packets within encrypted and authenticated tunnels.

Answer 193

Software tool used to capture and analyze packets.

Answer 194

Acts as an intermediary between clients, usually located on a LAN, and the servers that they want to access, usually located on the Internet.

Answer 195

A type of key that is known to all parties involved in encrypted transactions within a given group.

Answer 196

Uses asymmetric keys alone or in addition to symmetric keys. The asymmetric key algorithm creates a secret private key and a published public key.

Answer 197

An entire system of hardware and software, policies and procedures, and people, used to create, distribute, manage, store, and revoke digital certificates.

Answer 198

An assessment that assigns numeric values to the probability of a risk and the impact it can have on the system or network.

Answer 199

An assessment that measures risk by using exact monetary values.

Answer 200

Interference that can come from AM/ FM transmissions and cell towers.

Answer 201

Data is copied to two identical disks. If one disk fails, the other continues to operate.

Answer 202

Data striped across multiple disks; fault‐tolerant parity data is also written to each disk.

Answer 203

In password cracking, a set of precalculated encrypted passwords located in a lookup table.

Answer 204

A type of malware that restricts access to a computer system, and demands a ransom be paid.

Answer 205

In business impact analysis, the acceptable latency of data.

Answer 206

In business impact analysis, the acceptable amount of time to restore a function.

Answer 207

Secondary connections to another ISP; for example, a backup T‐1 line.

Answer 208

An enclosure that contains two complete power supplies, the second of which turns on when the first fails.

Answer 209

Used to verify requests for certificates.

Answer 210

A networking service that allows incoming connections from remote dial‐in clients. It is also used with VPNs.

Answer 211

Used to provide centralized administration of dial‐up, VPN, and wireless authentication.

Answer 212

When an attacker acquires control of a remote computer through a code vulnerability. Also known as arbitrary code execution. Attackers often use a web browser’s URL field or a tool such as Netcat to accomplish this.

Answer 213

An attack in which valid data transmission is maliciously or fraudulently repeated or delayed.

Answer 214

The risk that is left over after a security plan and a disaster recovery plan have been implemented.

Answer 215

The possibility of a malicious attack or other threat causing damage or downtime to a computer system.

Answer 216

The amount of risk an organization is willing to accept. Also known as risk retention.

Answer 217

The attempt to determine the amount of threats or hazards that could possibly occur in a given amount of time to your computers and networks.

Answer 218

When an organization avoid risk because the risk factor is too great.

Answer 219

The identification, assessment, and prioritization of risks, and the mitigation and monitoring of those risks.

Answer 220

When a risk is reduced or eliminated altogether.

Answer 221

When an organization mitigates risk to an acceptable level.

Answer 222

The transfer or outsourcing of risk to a third party. Also known as risk sharing.

Answer 223

An access model that works with sets of permissions, instead of individual permissions that are label‐based. So roles are created for various job functions in an organization.

Answer 224

A type of software designed to gain administrator‐level control over a computer system without being detected.

Answer 225

A public key cryptography algorithm created by Rivest, Shamir, Adleman. It is commonly used in e‐ commerce.

Answer 226

An unexpected decrease in the amount of voltage provided.

Answer 227

The randomization of the hashing process to defend against crypto-analysis password attacks and rainbow tables.

Answer 228

When a web script runs in its own environment for the express purpose of not interfering with other processes, possibly for testing.

Answer 229

An in‐depth code inspection procedure.

Answer 230

The best practices used during the life cycle of software development.

Answer 231

A group of hash functions designed by the NSA and published by the NIST, widely used in government. The most common currently is SHA‐1.

Answer 232

A protocol that can create a secure channel between two computers or network devices.

Answer 233

A cryptographic protocol that provides secure Internet communications such as web browsing, instant messaging, e‐mail, and VoIP.

Answer 234

Files that log activity of users. They show who did what and when, plus whether they succeeded or failed in their attempt.

Answer 235

The risk level to which a system, or other technology element, is exposed.

Answer 236

An assessment that uses baseline reporting and other analyses to discover vulnerabilities and weaknesses in systems and networks.

Answer 237

Groups of policies that can be loaded in one procedure.

Answer 238

Physical devices given to authorized users to help with authentication. These devices might be attached to a keychain or are part of a card system.

Answer 239

This is when more than one person is required to complete a particular task or operation.

Answer 240

Part of a service contract where the level of service is formally defined.

Answer 241

A group of updates, bug fixes, updated drivers, and security fixes that is installed from one downloadable package or from one disc.

Answer 242

The name of a wireless access point (or network) to which network clients will connect; it is broadcast through the air.

Answer 243

When a person uses direct observation to find out a target’s password, PIN, or other such authentication information.

Answer 244

Frames and packets of network traffic are analyzed for predetermined attack patterns. These attack patterns are known as signatures.

Answer 245

A TCP/ IP protocol that monitors network‐attached devices and computers. It’s usually incorporated as part of a network management system.

Answer 246

An element, object, or part of a system that, if it fails, will cause the whole system to fail.

Answer 247

When a user can log in once but gain access to multiple systems without being asked to log in again.

Answer 248

A type of DoS that sends large amounts of ICMP echoes, broadcasting the ICMP echo requests to every computer on its network or subnetwork. The header of the ICMP echo requests will have a spoofed IP address. That IP address is the target of the Smurf attack. Every computer that replies to the ICMP echo requests will do so to the spoofed IP.

Answer 249

Software deployed by the network management system that is loaded on managed devices. The software redirects the information that the NMS needs to monitor the remote managed devices.

Answer 250

A cloud computing service where users access applications over the Internet that are provided by a third party.

Answer 251

The abuse of electronic messaging systems such as e‐mail and broadcast media (Bonus) Spear phishing - A type of phishing attack that targets particular individuals.

Answer 252

A clean agent sprinkler system such as FM‐200 used in server rooms.

Answer 253

A short transient in voltage that can be due to a short circuit, tripped circuit breaker, power outage, or lightning strike.

Answer 254

The abuse of instant messaging systems, a derivative of spam.

Answer 255

When an attacker masquerades as another person by falsifying information.

Answer 256

A type of malicious software either downloaded unwittingly from a website or installed along with some other third‐party software.

Answer 257

Systems that turn on automatically within seconds of a power outage.

Answer 258

Type of packet inspection that keeps track of network connections by examining the header in each packet.

Answer 259

When a single private IP address translates to a single public IP address. This is also called one‐to‐one mapping.

Answer 260

``` The science (and art) of writing hidden messages; it is a form of security through obscurity. ```

Answer 261

A clear separation of organizational and personal information, applications, and other content.

Answer 262

A type of algorithm that encrypts each byte in a message one at a time.

Answer 263

System of hardware and software that controls and monitors industrial systems such as HVAC.

Answer 264

Means that there is an unexpected increase in the amount of voltage provided.

Answer 265

A class of cipher that uses identical or closely related keys for encryption and decryption.

Answer 266

A type of DoS where an attacker sends a large amount of SYN request packets to a server in an attempt to deny service.

Answer 267

The process of creating systems and applications, and the methodologies used to do so.

Answer 268

A type of piggybacking where an unauthorized person follows an authorized person into a secure area, without the authorized person’s consent.

Answer 269

Sets the reset flag in a TCP header to 1, telling the respective computer to kill the TCP session immediately.

Answer 270

When a hacker takes over a TCP session between two computers without the need of a cookie or any other type of host access.

Answer 271

A type of DoS that sends mangled IP fragments with overlapping and oversized payloads to the target machine.

Answer 272

Refers to the investigations of conducted emissions from electrical and mechanical devices, which could be compromising to an organization.

Answer 273

An algorithm used to secure wireless computer networks; meant as a replacement for WEP.

Answer 274

A remote authentication protocol similar to RADIUS used in Cisco networks. (Bonus) Threat Modeling A way of prioritizing threats to an application.

Answer 275

The method a threat uses to gain access to a target computer.

Answer 276

Part of the authentication process used by Kerberos.

Answer 277

A Trojan set off on a certain date.

Answer 278

When a user’s logon hours are configured to restrict access to the network during certain times of the day and week.

Answer 279

A backup rotation scheme based on the mathematics of the Towers of Hanoi puzzle. Uses three backup sets. For example, the first tape is used every second day, the second tape is used every fourth day, and the third tape is used every eighth day.

Answer 280

The successor to SSL. Provides secure Internet communications. This is shown in a browser as HTTPS.

Answer 281

Similar to DES but applies the cipher algorithm three times to each cipher block.

Answer 282

An application that appears to perform desired functions but is actually performing malicious functions behind the scenes.

Answer 283

A DoD standard that sets basic requirements for assessing the effectiveness of computer security access policies. Also known as The Orange Book.

Answer 284

A system that adheres to criteria for multilevel security and meets government regulations.

Answer 285

A method used by attackers that takes advantage of user typos when accessing websites. Instead of the expected website, the user ends up at a website with a similar name but often malicious content.

Answer 286

A similar attack to the Fraggle. It uses the connectionless User Datagram Protocol. It is enticing to attackers because it does not require a synchronization process.

Answer 287

Takes the functionality of a surge suppressor and combines that with a battery backup, protecting computers not only from surges and spikes, but also from sags, brownouts, and blackouts.

Answer 288

A Security component of Windows that keeps every user (besides the actual Administrator account) in standard user mode instead of as an administrator with full administrative rights— even if they are a member of the administrators group.

Answer 289

A device used to add computers to a 10BASE5 network. It pierces the copper conductor of a coaxial cable and can also be used for malicious purposes.

Answer 290

Created by virtual software; VMs are images of operating systems or individual applications.

Answer 291

A connection between two or more computers or devices that are not on the same private network.

Answer 292

The creation of a virtual entity, as opposed to a true or actual entity.

Answer 293

Code that runs on a computer without the user’s knowledge; it infects the computer when the code is accessed and executed.

Answer 294

A type of phishing attack that makes use of telephones and VoIP.

Answer 295

The act of gaining access to traffic on other VLANs that would not normally be accessible by jumping from one VLAN to another.

Answer 296

A hardware appliance that allows hundreds of users to connect to the network from remote locations via a VPN.

Answer 297

Weaknesses in your computer network design and individual host configuration.

Answer 298

Baselining of the network to assess the current security state of computers, servers, network devices, and the entire network in general.

Answer 299

The practice of finding and mitigating software vulnerabilities in computers and networks.

Answer 300

The act of scanning for weaknesses and susceptibility in the network and on individual systems.

Answer 301

The act of physically drawing symbols in public places that denote open, closed, or protected wireless networks.

Answer 302

The act of scanning telephone numbers by dialing them one at a time and adding them to a list, in an attempt to gain access to computer networks.

Answer 303

The act of searching for wireless networks by a person in a vehicle through the use of a device with a wireless antenna, often a particularly strong antenna.

Answer 304

A site that has computers, phones, and servers, but they might require some configuration before users can start working on them.

Answer 305

An attacker profiles which websites a user accesses and later infects those sites to redirect the user to other websites.

Answer 306

A decentralized model used for sharing certificates without the need for a centralized CA.

Answer 307

An intermediary that can scan for viruses and filter Internet content.

Answer 308

Consists of a pressurized water supply system that can deliver a high quantity of water to an entire building via a piping distribution system.

Answer 309

A phishing attack that targets senior executives.

Answer 310

A method of testing applications or systems where the tester is given access to the internal workings of the system.

Answer 311

A type of hacker that is contracted to break into a company’s system.

Answer 312

A security protocol created by the Wi‐Fi Alliance to secure wireless computer networks; more secure than WEP.

Answer 313

A deprecated wireless network security standard, less secure than WPA.

Answer 314

Tapping into a network cable in an attempt to eavesdrop on a conversation or steal data.

Answer 315

Code that runs on a computer without the user’s knowledge; a worm self‐replicates, whereas a virus does not.

Answer 316

A common PKI standard developed by the ITU‐T that incorporates the single sign‐on authentication method.

Answer 317

An attack that is executed on a vulnerability in software before that vulnerability is known to the creator of the software.

Answer 318

An individual compromised computer in a botnet.

Answer 319

An IETF standard that provides cryptographic security for electronic messaging such as e‐mail.

Answer 320

A tunneling protocol used to support VPNs. Generally includes security mechanisms, and no additional software or protocols need to be loaded. A VPN device or server must have inbound port 1723 open to enable incoming PPTP connections.

Security+ Terminology Flashcards

(344 cards)