Vocab Flashcards

Question

Basic Service Set Identifier(BSSID)

Answer 1

Media access control (MAC) address of an access point(AP) or base station that has set up a basic service Set(BSS).

Answer 2

A computer system designed and configured to protect network resources from attacks.

Answer 3

Behavior based intrusion detection techniques assume an intrusion can be detected by observing a deviation from normal or expected behavior of the system of users.

Answer 4

A technology which identifies human characteristics for authenticating people

Answer 5

An advanced and unique security technology that utilizes an individual's physical attributes such as fingerprint, iris, face, voice, and behavior for verifying their identity.

Answer 6

With this tech data is transfered between cell phones, computers, and other networking devices over short distances.

Answer 7

A short vertical post that controls and restricts motor vehicles.

Answer 8

A policy that allows employees to bring their devices such as laptops, smartphones, and tablets to the workplace.

Answer 9

Info that contains critical data to business operations.

Answer 10

A broadband cellular network that operates at high bandwidth with low latency and provides high-speed data downloads.

Answer 11

An encryption protocol used in WPA2 for stronger encryption and authentication.

Answer 12

Communication based on a single network tower that services devices located within it's radius.

Answer 13

A single database for authorizing all the network resources or applications

Answer 14

In an centralized system, the data is gathered from different sites to a centralized one

Answer 15

Trusted entities that issue digital certificates

Answer 16

A policy where employees select their device of choice from a pre-approved list, to access company data according to the chosen access privilege of the organization

Answer 17

An algorithm for performing encryption and decryption

Answer 18

Work at the session layer of the OSI model, or the TCP layer of TCP/IP.

Answer 19

Allow multiple hosts or clients to establish secure connections to a companies network over the internet

Answer 20

A party that performs an independent examination of cloud service controls to express an opinion

Answer 21

An entity that manages cloud services in terms of use, performance, and delivery, while maintaining the relationship between cloud providers and consumers

Answer 22

An intermediary that provides connectivity and transport services between CSPs and cloud consumers

Answer 23

An on-demand delivery of IT capabilities where IT infrastructure and applications are provided to subscribers as a metered service over a network

Answer 24

Person or organization that uses cloud computing services

Answer 25

Storing backup data on storage provided by an online backup provider

Answer 26

Servers hosted in the cloud accept, store and process the sensor data received from IoT gateways

Answer 27

A person or organization providing services to interested parties via network access.

Answer 28

A data storage medium used to store digital data in logistical pools using a network

Answer 29

Extends the device to cloud communication type such that the data from IoT devices can be accessed by authorized users

Answer 30

It has a combination of numbers and letters, that the user must use to open the lock.

Answer 31

Provides a user interface to the administrator for the purpose of receiving and analyzing security events, alerts, and log files.

Answer 32

(connectivity edge computing) the components of communication protocols and networks used for connectivity and edge computing.

Answer 33

Shared infrastructure shared between several organizations from a specific community with common concerns.

Answer 34

Refers to a policy that allows employees to use and manage the devices purchased by the organization but restrict the use of the device for business use only.

Answer 35

Used as an alternative control when the intended control fails or is unavailable

Answer 36

Whoever access es a computer without authorization or exceeds authorized access, and thereby obtains information from any protected computer, and if the conduct involves an interstate or foreign communication, shall be punished under the act

Answer 37

Ensures the info is not disclosed to any unauthorized persons.

Answer 38

Refers to the virtualization based on the operating system, in which the kernels operating system is functionally replicated on multiple instances of isolated user space

Answer 39

A cloud computing model that provides containers and clusters as a service to it's subscribers

Answer 40

A technique in which all personal and organizational data are segregated on a employees mobile device.

Answer 41

A type of enhanced security technique that uses the contextual information of a user for enhancing data security decisions.

Answer 42

Materials banned from entering the environment

Answer 43

Refers to a policy that enables employees to use and manage devices purchased by the organization.

Answer 44

Gaining access to a container and utilizing it to attack other containers of the same host or within the local network.

Answer 45

The practice of concealing info by converting it from plain text (readable format) into cyphertext (unreadable format) using a key or encryption scheme.

Answer 46

Enables authentication and authorization of users access to data.

Answer 47

An ideal back up strategy involves steps ranging from selecting the right data to conducting a test data restoration drill.

Answer 48

The process of making backup data of critical data such as physical and computer records.

Answer 49

Involves destroying the data so that it cannot be recovered and used for the wrong motive.

Answer 50

Designed to encipher and decipher blocks of data consisting of 64bits under control of a 56 bit key.

Answer 51

Protecting information so that it becomes unreadable for an unauthorized party

Answer 52

A set of software products and processes that do not allow users to send confidential corporate data outside of the organization.

Answer 53

Protecting information by obscuring specific areas of data with random characters or codes.

Answer 54

An act to make provision for the regulation of the processing of information relating to individuals

Answer 55

Making duplicates of critical data to be used for restoring and recovering purposes

Answer 56

Securing data securly for compliance or business requirements

Answer 57

Involves the application of several security protocols to prevent any (un)intentional acts of data misuse, destruction, or modification.

Answer 58

Employ fake databases that are vulnerable to perform database related attacks such as SQL injection and database enumeration

Answer 59

Maintains a separate database for each resource

Answer 60

A subnetwork is placed between the organizations private network such as a lan, and an outside network like the internet, and acts as another security layer.

Answer 61

Traffic containing certain traffic signatures that indicate a DoS attempt that floods a server with a large number of requests.

Answer 62

Used to detect unauthorized access attempts

Answer 63

Used to discourage the violation of security policies

Answer 64

Layer of IoT that consists of hardware

Answer 65

Devices communicate with the cloud directly, rather than communicating with a client to send or receive data commands.

Answer 66

Inter connected devices interact with each other through the internet, but they predominantly use protocols such as ZigBee, zwave or bluetooth

Answer 67

The IoT device communicates with an intermediate device called a gateway, which in turn communicates with a cloud device.

Answer 68

All the data that has been changed since the last backup is copied over to the backup data.

Answer 69

Allow a secure exchange of info between a sender and a reciever

Answer 70

Use fingerprint, smartcard, or pin on a keypad to unlock

Answer 71

A federal information processing standard(FIPS) for digital signatures.

Answer 72

Use of the asymmetric key algorithms to provide data integrity.

Answer 73

A straight electrical conductor measuring half a wavelength from end to end, and it is connected at the center of the radio frequency (RF) feed line.

Answer 74

DSSS is a spread spectrum technique that multiplies the original data signature with a pseudo random noise spreading code.

Answer 75

Can broadcast and receive radio waves from a single direction.

Answer 76

Determines the access control taken by any processor of an object in order to decide the access control of an subject on that object.

Answer 77

Encryption of data stored in a physical or logical disk.

Answer 78

A distributed intrusion detection system (dIDS) consists of multiple IDSs over a large network.

Answer 79

This type of networking architecture is developed on a set of interfaces known as container network model (CNM). Which provides application portability across heterogeneous infastuctures.

Answer 80

Gaining access to the docker Registry.

Answer 81

An open source technology used for developing, packaging, and running applications and all it's dependencies in the form of containers, to ensure that the application works in a seamless environment.

Answer 82

The duel Firewall approach uses two firewalls to create a DMZ

Answer 83

The extensible authentication protocol(EAP) supports multiple authentication methods, such as token cards, kerberos and certificates.

Answer 84

This level of virtualization makes the virtualization independent of the physical computer hardware.

Answer 85

The EDGE is the main physical device in the IoT ecosystem that interacts with it's surroundings and contains various components like sensors, actuators, operating systems, hardware and network, and communication capabilities.

Answer 86

Compares and identifies a person on the basis of the facial features from an image or a video source.

Answer 87

A locking mechanism that operates on an electrical current.

Answer 88

A condition that occurs when an IDS fails to react to an attack event.

Answer 89

Occurs when an electronic device's performance is interrupted or degraded due to electromagnetic radiation or conduction.

Answer 90

Occurs if an event triggers an alarm without an actual attack occuring.

Answer 91

Also known as email traps. These are fake emails designed to attract fake and malicious emails from advertiser's.

Answer 92

General marks of a restricted area, controlled areas and prevent unwanted access.

Answer 93

The method in which protocols have separate functions to communicate among each other by hiding the data.

Answer 94

Refers to virtualization at the layer where the filing system is present.

Answer 95

The practice of concealing information by converting a plain text(readable format) into a cypher text (unreadable format) using a key or encryption scheme.

Answer 96

Encryption of data stored in files/folders.

Answer 97

This connects a sandbox to a network and abstracts the actual network from the application.

Answer 98

Compares two fingerprints for verification and identification on the basis of the patterns on the finger.

Answer 99

EISP drives an organizations scope and provides direction is there security policies.

Answer 100

A software or, hardware or combination of both, which is generally used to separate a protected network from an unprotected public network.

Answer 101

Consists of tools and technologies used in an organization to secure the data in an employees personal BYOD and organizational devices

Answer 102

Provided the general public the right to request access to record from any federal agency.

Answer 103

Maintains separate authorization details for each requested resource request.

Answer 104

Also known as frequency hopping code division multiple access(FH-CDMA), a method of transmitting radio signals by rapidly switching a carrier among many frequency channels.

Answer 105

This is also called a normal backup. It copies all files and compresses them to save space.

Answer 106

A security feature that can encrypt all the information stored on any storage medium within a mobile device.

Answer 107

In a fully meshed VPN network, all peers can communicate, with each other, making it a complex network.

Answer 108

In this type of virtualization, the guest OS is not aware that it is running a virtualized environment.

Answer 109

This cloud computing service provides a platform for developing, running, and managing application functionalities without the complexity of building and maintaining necessary infastucture.

Answer 110

Levies harsh fines against those who violate it's privacy and security standards, with penalties reaching tens of millions of euros.

Answer 111

A dedicated stand-alone hardware device or it comes as part of a router

Answer 112

Integrated device electronics(IDE) allows the connection of two devices per channel. It is normally used for internal devices as the cables are large and flat.

Answer 113

A technique through which mobile application marketers use the location of the user to gather info.

Answer 114

A dedicated hardware VPN application is used to connect routers and gateways to ensure communication over an insecure channel.

Answer 115

Enhances VPN security through the use of strong encryption algorithms and authentication.

Answer 116

A technology that can identify the real-world geographical location of users or devices when connected to the internet.

Answer 117

A type of message identification code(MAC) that uses a cryptographic key along with a cryptographic hash function.

Answer 118

Set of frequencies for the international industrial, scientific, and medical community's.

Answer 119

A radio navigation and positioning system based on satellite communication

Answer 120

Provides federal protections for the individually identifyable health information held by covered entities and their business associates and gives patients an array of rights to that information.

Answer 121

Responsible for providing the right individual with the right information at the right time.

Answer 122

A universal system used for Mobile data transmission in wireless networks worldwide.

Answer 123

Do not emulate anything; they run actual vulnerable services or software on production systems with real OS and applications

Answer 124

This cloud computing service offers authentication services to the subscribed enterprises and is managed by a third party vendor to provide identity and Access Management services.

Answer 125

Refers to the statuory obligation of individuals and organizations to disclose their cryptographic keys to the government agencies.

Answer 126

Networks of honeypots. They are very effective in determining the entire capabilities of adversaries.

Answer 127

Provides access to resources indirectly

Answer 128

A united states federal law that requires financial institutions to explain how they share and protect their customers private information.

Answer 129

An informational system resource that is expressly set up to attract people who attempt to penetrate a organization's network.

Answer 130

Only files that have been changed or created after the last backup are copied to the backup media

Answer 131

Independent instance of an operating system created by virtual machine monitor.

Answer 132

Installed on a specific host in order to monitor, detect, and analyze events occurring on that host.

Answer 133

Act as enablers for an organizations security activities to protect and defend it's network from security attacks.

Answer 134

Real physical machine that provide computing resources to support virtual machines.

Answer 135

Traffic containing certain signatures that may be suspicious but might not be malicious.

Answer 136

Used to filter inbound/outbound traffic of a computer on which it is installed.

Answer 137

A wireless technology for transferring data between devices in the digital form within a short range of up to 5 m.

Answer 138

Also called a dynamic backup or active backup. In a hot backup, the system continues to perform the backup even when the user is using the system.

Answer 139

Devices inside a wireless network are connected through an AP.

Answer 140

Places where wireless networks are available for public use.

Answer 141

Provides virtual machines and other abstract hardware and operating systems which may be controlled through a service API.

Answer 142

The main organization is considered the hub, and it's remote offices are considered the spokes.

Answer 143

Ensures information is not tampered with or modified by unauthorized parties

Answer 144

Combination of two or more clouds that remain unique entities but are bound together, thereby offering the benefits of multiple deployment models

Answer 145

It can be single homed or multihomes bastion hosts

Answer 146

A combination of HIDS and NIDS

Answer 147

A network layer protocol that ensures a secure IP level communication.

Answer 148

Those with trusted VPNs as part of the secure VPNs. They implement different network components of an organization at the same time in order to confirm security at very low costs.

Answer 149

Refers to computing devices that are web enabled and have the capability of sensing, collecting, and sending data using sensors, and the communication hardware and processors.

Answer 150

The guest OS adopts the functionality of para virtualization and uses the VMM for binary translation to different types of hardware resources.

Answer 151

Interval based or offline analysis refers to the storage of the intrusion-related info for further analysis.

Answer 152

Ensures secure communication between two computers over HTTP.

Answer 153

A network security appliance that inspects all inbound and outbound network traffic of suspicious patterns that might indicate a network or system security breach.

Answer 154

An application or firmware that enables multiple guest operating systems to share a hosts resources.

Answer 155

Helps security professionals to track, monitor, and manage physical IoT devices from a remote location.

Answer 156

Provide control over the users who have access to an IoT system.

Answer 157

Analyzes the colored part of the eye suspended behind the cornea.

Answer 158

Directs the audience on the usage of technology-based systems with the help of guidelines.

Answer 159

A network authentication protocol that is implemented for authentication requests in computer networks.

Answer 160

A proprietary version of EAP developed by Cisco

Answer 161

Also known as K8s, is an open source, portable, extensible, orchestration platform developed by Google for managing containerized applications and micro servers.

Answer 162

Adequate lighting should be provided inside,outside, and at the entrance of a building which helps seeing long distance during security patrols.

Answer 163

Utilizes VLANs, which are isolated logically without considering the physical location of devices.

Answer 164

Emulate only a limited number of services and applications of a target system or network.

Answer 165

This algorithm takes a message of arbitrary length as an input and then outputs a 128 bit-fingerprint or message digest of the input.

Answer 166

Provides a non-volatile storage for the RAID systems primary cache.

Answer 167

In this type of virtualization, the guest OS is aware of the virtual experiment in which it is running and communicates with the host Machine to request for resources.

Answer 168

Uses a merkle-tree-like structure to allow for large scale parallel computation of hashes for very long inputs.

Answer 169

Covers very short distances. It employs electromagnetic induction to enable communication between devices connected within 10m.

Answer 170

Virtual environments sharing the kernal of the host environment that provides the isolated user space.

Answer 171

Used to trap malware campaigns or malware attempts over network infastucture.

Answer 172

Offer various access control mechanisms for network devices like routers and switches

Answer 173

An explicit resource on which an access restriction is imposed.

Answer 174

Interface used to access, configure, and manage the virtualization product.

Answer 175

Also known as a media gateway or a remote access server(RAS). It is responsible for setting up and maintaining each tunnel in a remote access VPN.

Answer 176

Storing data in a remote location such as a fire proof, indestructible safe.

Answer 177

Virtualization platform components used to directly manage the virtual machines and to simplify the administration of resources.

Answer 178

Separates IP addresses Into two sets and enables lan to use these resources for internal and external traffic, respectively.

Answer 179

Radiate electromagnetic (EM) energy in all directions.

Answer 180

Determines the usage and access policies of users.

Answer 181

A file based data storage service and a dedicated computer appliance shared over the network.

Answer 182

Storing backup data at onsite data storage only.

Answer 183

A security system having an entry and exit door on opposite sides, separating secure and non-secure areas.

Answer 184

A security program covering the fundamentals concepts of network security.

Answer 185

A null authorization, algorithm that does not verify whether it's user or machine requesting network access.

Answer 186

Provide an easy method to restrict unauthorized access in an organization.

Answer 187

To protect an organizations info, systems, and infastucture from unauthorized access, misuse, modification, service denial, or any other degredation and disruptions.

Answer 188

Enables the hardware to execute multiple operating systems simultaneously

Answer 189

Simulate a real OS as well as applications and services of a target network.

Answer 190

These are pluggable and provide actual implemention for the functioning of the network.

Answer 191

An action performed by a subject on an object

Answer 192

A software or service that enables network defenders to secure, manage, and distribute enterprise applications on employee mobile devices.

Answer 193

Used to observe the traffic for any specific segment or device and recognize the occurrence of any suspicious activity on the network and application protocols.

Answer 194

Method of encoding digital data on multiple carrier frequencies.

Answer 195

Provide secure access to corporate data on tablets, smartphones, and other mobile devices.

Answer 196

A unit of data transmitted over a network for communication.

Answer 197

Provides platforms for over-the-air or wired distribution of applications,data, and communication settings of all types for Mobile devices including mobile phones, smartphones, and tablet computers.

Answer 198

The security feature that should be appropriately configured and implemented to ensure network security.

Answer 199

Ensure the security of corporate email infastucture and data.

Answer 200

Devices that are deployed to protect computer networks from unwanted traffic and threats

Answer 201

Involves actions and precautionary steps for securing the organizations data and mobile devices used by employees.

Answer 202

Implement security related operations to ensure the security and integrity of data in transit.

Answer 203

A dynamic heterogeneous environment that combines workloads across multiple cloud vendors that are managed by one primary interface to ensure long term business goals.

Answer 204

The practice of splitting a network into smaller network segments and separate groups of systems or applications from each other.

Answer 205

A firewall device with at least two network interfaces.

Answer 206

Hardware and software components that monitor network traffic and trigger alarms if any abnormal activity is detected.

Answer 207

Prevents access to IoT by using multi-factor authentication (MFA), transport layer security (TLS), device identity management, ect.

Answer 208

A retrospective security approach that involves monitoring a network for abnormal activities, performance issues, bandwidth issues, ect.

Answer 209

An air interface for 4g and 5g communications.

Answer 210

A set of traffic characteristics such as a source/destination IP address, ports, transmission control protocol (TCP) flags, packet length, time to Live (TTL), and protocols. Signatures are used to define the type of activity on a network.

Answer 211

Provides access to memory in up to 8 ports. A memory controller can be present as a separate chip or as an integrated memory.

Answer 212

A process of combining all the available network resources and enabling security professionals to share these resources amongst the network users using a single administrative unit.

Answer 213

A collection of endpoints that have connectivity between them.

Answer 214

Used to filter inbound/outbound traffic from internal LAN.

Answer 215

A third generation firewall technology that moves beyond port/protocol inspection.

Answer 216

Ensures that a party in communication cannot deny sending the message

Answer 217

This type of host is completely a firewall, or a component in a multi-faceted firewall.

Answer 218

Also known as explicit proxies and require client software to be configured to use the proxy server.

Answer 219

Acceptable traffic patterns allowed to enter the network

Answer 220

The fastest non-volatile RAM in the industry with 20ns read and write access time.

Answer 221

Method of encoding digital data on multiple carrier frequencies

Answer 222

A protocol that encapsulates the EAP within an encrypted and authenticated transport layer security (TLS) tunnel.

Answer 223

Remote authentication dial-in user service(RADIUS) an authentication protocol that provides centralized Authorization, Authentication, and Accounting (AAA) for remote access servers to communicate with a cent real server.

Answer 224

Work at the network level of the OSI model (or the IP layer of TCP/IP)

Answer 225

Manages an array of physical disk drives and presents them to the computer as logical units.

Answer 226

Examine the routing info if the packets.

Answer 227

Disk striping RAID 0 deals with data performance. In this level, data is broken into sections and written across multiple drives.

Answer 228

Uses the same principles as a satellite dish, but does not have a solid dish. Consists of a semi-dish in the form of a grid of aluminum wires.

Answer 229

Disk mirroring: multiple copies of data are written on multiple drives at the same time.

Answer 230

Forbids everything. There is a strict restriction on all company computers, whether it's in system or network usage.

Answer 231

Blocks striped and mirrored: RAID 10 is a combination of RAID 0 (striping volume data) and RAID 1 (disk mirroring), and it's implementation requires at least four drives.

Answer 232

A combination of a username and password to authenticate the network users.

Answer 233

Disk Striping with parity: Data is striped at the byte level across multiple drives. One drive per set is taken up for parity info.

Answer 234

Contains a list of words that are prohibited from use as passwords because of their familiarity.

Answer 235

Block Interval Distribution Parity: The data is striped at the byte level across multiple drives, and the parity info is distributed among all member drives.

Answer 236

Provides guidelines for using strong passwords for an organizations resources

Answer 237

Mirroring and stripping across multiple RAID Levels: RAID level 50 includes mirroring and stripping across multiple RAID Levels.

Answer 238

Basic security features used in all mobile devices.

Answer 239

A variable key size symmetric key stream cypher with byte oriented operations, and it is based on the use of random permutation.

Answer 240

A proprietary information security standard for organizations that handle cardholder info for major debit, credit, prepaid, e-purse, ATM, and POS cards.

Answer 241

A parameterized algorithm with a variable block size, variable key size, and variable number of rounds. The key size is 128 bits.

Answer 242

This policy is wide open, and only known dangerous services/attacks or behaviors are blocked.

Answer 243

A parameterized algorithm with a variable block size, key size, and number of rounds.

Answer 244

Restrict unauthorized persons from entering the building; always use a combination of barriers to discourage unauthorized entry.

Answer 245

The radio frequency identification (RFID) tech uses radio frequency (RF) electromagnetic waves to transfer data for automatic identification and for tracking tags attached to objects.

Answer 246

Provide physical protection of the information, buildings, and all other physical assets of the organization.

Answer 247

Consists of methods or techniques that are used to detect attacks on the target network.

Answer 248

Defines guidelines to ensure that adequate physical security measures are in place.

Answer 249

Involves analyzing IoT things and taking steps accordingly.

Answer 250

Restricting physical access to the infrastructure, office premises, workstations, and employees of the organization.

Answer 251

Involves monitoring IoT assets, processing products, maintaining a flow, helping detect issues, and taking actions immediately.

Answer 252

A process for splitting a larger network into smaller physical components.

Answer 253

Gathers and monitors information from network traffic regularly.

Answer 254

A cloud computing service offers development tools, configuration management, and development platforms on-demand that can be used by subscribers to develop custom applications.

Answer 255

Consist of signatures that indicate an attempt to scan the network for possible weaknesses

Answer 256

Any two endpoints are considered as peer devices which can communicate with each other. Any of the devices can be used to initiate the connection.

Answer 257

These controls are used in a more serious condition to recover from security violation and restore information and systems to a persistent state.

Answer 258

(P2MP, PTMP, PMP) connection allows one-to-many connections by providing multiple paths from a single location to several other locations

Answer 259

A method of combining multiple hard drives into a single unit and writing data across several disk drives, offering fault tolerance.

Answer 260

Enables secure communication between two mobile devices without data encryption.

Answer 261

Monitors the restrictions imposed on the basis of certain access control rules.

Answer 262

High-level statements dealing with the administrative network security of an organization.

Answer 263

Used for concentrating electromagnetic energy that is radiated or received at a focal point.

Answer 264

An application layer protocol which provides cryptographic privacy and authentication for network communication.

Answer 265

Contains all images that an organization deploys

Answer 266

used to prevent unwanted or unauthorized access to resources.

Answer 267

Contain a set of guidelines and best practices

Answer 268

Consists of methods or techniques that are used to avoid threats or attacks on the target network

Answer 269

A technique used for securing and protecting data from miscreants if a mobile device used by an employee was stolen or lost.

Answer 270

Prevent security violations and enforce various access control mechanisms.

Answer 271

Prevents removable Media devices from unauthorized access

Answer 272

Cache is used to write the data in transition. A RAID system uses a cache to speed up I/O performance on the storage system.

Answer 273

Research Honeypots are High-Interaction Honeypots primarily deployed by research institutes, governments, or military organizations to gain detailed knowledge about the actions of intruders

Answer 274

Extends the need to know principle in providing access to a system

Answer 275

Issues countermeasures against any intrusion that is detected

Answer 276

A cloud operated infastucture operated by a single organization and implemented with a corporate firewall

Answer 277

Analyzes the layer of blood vessels at the back of their eyes to identify the person

Answer 278

Consists of methods or techniques that are used to make informed decisions on potential attacks in the future on the target network

Answer 279

Consist of methods or techniques that examine the causes for attacks, and contain, remediate, eradicate, and recover from damage caused by the attack on the target network

Answer 280

Gathers info and processes the received information.

Answer 281

Usually situated closer to the server(s) and will only return a configured set of resources.

Answer 282

Deployed inside the production network of the organization along with the other production servers

Answer 283

An internet encryption and authentication system that uses a algorithm developed by Ron Rivest, Adi Shamir, and Leonard Aldeman

Answer 284

Does not impose any restrictions on the usage of system resources

Answer 285

In a role based access control, the access permissions are available based on the access policies determined by the system.

Answer 286

Depends on the anomalies specific to a protocol

Answer 287

Role based access control gives permissions to a user role dynamically based on a set of rules defined by the admin.

Answer 288

An application that serves as an intermediary when connecting with other computers

Answer 289

Starts with all services blocked. The Network defender enables safe and necessary services individually.

Answer 290

The provider makes services such as applications, servers, and data storage available to the public over the internet

Answer 291

A security architecture developed for increasing the confidentiality of the information exchanged over the internet.

Answer 292

Emulate the real production network of a target organization.

Answer 293

A messaging feature that originates from a server and enables the delivery of data or a message from an application to a mobile device without any explicit request from the user.

Answer 294

Serial ATA deals with hot plugging and serial connectivity. The hot plugging technique may be used to replace computer components without shutting down the system.

Answer 295

Provides authentication, authorization, and Accounting (AAA) services for network communication.

Answer 296

The purpose of the USA Patriot act is to deter and punish terrorist acts in the us and around the world and enhance law enforcement investigation tools.

Answer 297

Small computer system interface (SCSI) allows multiple devices to be connected to a single port at the same time.

Answer 298

A security protocol used in WPA as a replacement for WEP

Answer 299

Traffic containing certain signatures that indicate an attempt to gain unauthorized access.

Answer 300

Dynamic Random Access memory (DRAM) that is synchronized with the CPU clock speed

Answer 301

Used for restricting access to devices in an organization to protect the security of sensitive data

Answer 302

Enables wired communication for devices. It can be used for power supply and serial data transmission between devices

Answer 303

Produces a 160-bit digest from a message with a maximum length of (264 - 1) bits, and it resembles the MD5 algorithm.

Answer 304

A united states copyright law that implements two 1996 treaties of the world intellectual property organization (WIPO).

Answer 305

The process of tracking user Behavior to detect malicious attacks, potential threats, and financial fraud.

Answer 306

A family of two similar hash functions with different block sizes, namely, SHA-256, which uses 32-bit words, and SHA-512, which uses 64-bit words

Answer 307

The electronic communications privacy act and the stored wire electronic communications act are commonly refered together as the electronic communications privacy act (ECPA) of 1986.

Answer 308

Deals with confirming the identity of a user, process, or device accessing the network

Answer 309

Uses the sponge construction, in which message blocks are XORed into the initial bits of the state, which is then invariably permutated.

Answer 310

Provides a comprehensive framework for ensuring the effectiveness of information security controls over information resources that support federal operations and assets.

Answer 311

SOCKS, an internet Engineering Task Force (IETF) standard, is a proxy server that does not have the special caching abilities of a caching HTTP proxy server

Answer 312

Makes provision for the discloser of information held by public authorities or by persons providing services for them to amend the data protection act of 1998 and the public records act of 1958.

Answer 313

This contains the configuration of a containers network stack such as routing table, management of containers interfaces, and DNS settings.

Answer 314

Buttresses the rights and freedoms guaranteed under the European convention of human rights.

Answer 315

Designed to protect investors and the public by increasing the accuracy and reliability of corporate disclosures.

Answer 316

A proxy through which a client system connects to a server without it's knowledge.

Answer 317

An artificial geostationary satellite that provides services across the globe, but it is much slower.

Answer 318

Ensures a secure communication between client-server applications over the internet

Answer 319

A feature in mobile devices that is used to secure data and prevent illegal access by perpetrators

Answer 320

A condition that occurs when an IDS identifies an activity as acceptable behavior, and the activity is acceptable

Answer 321

Generates a cryptographically secure one-way hash; it was published by the national institute of standards and technology as a US federal Information Processing standard

Answer 322

A condition that occurs when an event is triggers an alarm and causes the IDS to react as if an attack is in progress.

Answer 323

An application layer level protocol that is used to encrypt web communications carried over HTTP

Answer 324

Physical barrier that allows entry to one person at a time

Answer 325

A protocol used for providing a secure authentication mechanism between two communicating applications such as a client and server.

Answer 326

A process where a system confirms the user identification in two steps.

Answer 327

Networks constructed using encryption

Answer 328

Application layer protocol which is used by sending digitally signed and encrypted email messages.

Answer 329

Performs real time SOC(Security Operations Center) functions like identifying, monitoring, recording, auditing, and analyzing security incidents.

Answer 330

To address security breaches at early stages and to prevent malicious attacks on an IoT system.

Answer 331

A well documented set of plans, processes, procedures, standards, and guidelines required to establish an ideal information security status of an organization.

Answer 332

Cloud computing model that integrates security services into corporate infastucture in a cost-effective way.

Answer 333

Breakdown of the authentication process into various steps.

Answer 334

The logical partitioning of a servers hard drive.

Answer 335

A 32-alphanumeric-character unique identifier given to a WLAN that acts as a wireless identifier of the network.

Answer 336

Each wireless station receives a shared secret key over a secure channel that is distinct from the 802.11 wireless network communication channels.

Answer 337

Security is a shared Responsibility on cloud systems l, wherein the cloud consumer and service providers have varying levels of control over the available computing resources.

Answer 338

Also known as misuse detection, tries to identify events that indicate an abuse of the system or network resource

Answer 339

Used for identifying the IP devices attached to a wired network

Answer 340

The network architecture containing the DMZ consists of three network interfaces.

Answer 341

Allows users to access multiple applications using a single username and password

Answer 342

A firewall device with only one network interface

Answer 343

Extends the companies network, allows access of the organizations network resources from multiple locations

Answer 344

A smart card consists of a small computer chip that stores personal info of the users identification

Answer 345

A software program installed on a computer, just like normal software software

Answer 346

VPN software is installed and configured on routers, servers and firewalls or as a gateway that functions as a VPN

Answer 347

Cloud computing service offers software to subscribers on demand over the internet

Answer 348

Specifically target spammers who abuse vulnerable resources such as open email relays and open proxies.

Answer 349

Also called spider traps. These honeypots are specifically designed to trap we crawlers and spiders

Answer 350

Comprise specific low-level mandatory controls or controls related to the implementation of a specific tech.

Answer 351

Each device on the network is connected to a central hub that manages the traffic through the network

Answer 352

Combines the aspects of the other three types

Answer 353

A specialized, dedicated, and discreet high speed network that connects storage devices with high speed I/O interconnect

Answer 354

Virtualization of storage devices using techniques such as data striping and data mirroring

Answer 355

Defined as a user or a process that attempts to access objects

Answer 356

Requires that both the sender and the receiver of the message have the same encryption key.

Answer 357

Used for the restriction of access to data according to the sensitivity of data, clearance level of users, user rights, and permissions.

Answer 358

Directs users while configuring or maintaining a system

Answer 359

A network device used to create secure VPN connections

Answer 360

Connects users in a local area with a network. The area may range from a single room to an entire campus

Answer 361

Specifies how the peers and networks within a VPN are connected

Answer 362

Accesses broadband area networks by using an exterior antenna. It is a good alternative to a fixed line network

Answer 363

Analyzes thickness and location of veins to identify a person

Answer 364

Integrated EAP standards with WPA2 encryption.

Answer 365

Refers to Monitoring activities in and around the premises using CCTV (Close Circuit Television) systems.

Answer 366

An upgrade to WPA, and it includes mandatory support for counter mode with cypher blocks chaining message Authentication Code protocol (CCMP), an AES-based encryption mode with strong security.

Answer 367

A private network constructed using public networks, such as the internet.

Answer 368

An advanced implementation of WPA2 providing trailblazing protocols and uses the AES-GCMP encryption algorithm.

Answer 369

Refers to a software-based virtual representation of an IT infastucture that includes network, devices, applications, storage, ect.

Answer 370

Interconnects devices positioned around an individual, in which the connections are wireless. It has a very short range.

Answer 371

Identifies a person based on voice and speech patterns.

Answer 372

Covers an area larger than the WLAN. It can cover a particular region,nation,or a globe.

Answer 373

The system updates are turned on to receive periodic updates.

Answer 374

Used to ensure someone does not inadvertently intrude on any restricted areas

Answer 375

An advanced encryption protocol using TKIP and message integrity check(MIC) to provide strong encryption and authentication

Answer 376

Radio waves or microwaves to allow electronic devices to exchange data or connect over the internet

Answer 377

The worldwide interoperability for microwave access (WiMAX) tech uses long range wireless networking and high speed internet

Answer 378

WIP has an endpoint data loss prevention (DLP) capability that can be helpful in protecting local data at rest on endpoint devices

Answer 379

A security protocol defined by the 802.11b standard; it was designed to provide wireless LAN with a level of security and privacy comparable to that of a wired LAN

Answer 380

Wired network scanners such as Nmap are used for identifying a large number of devices on a network by sending specifically crafted TCP packets to the device (Nmap-TCP fingerprinting).

Answer 381

Connects multiple LANs at the medium access control (MAC) layer.

Answer 382

A key component of a wireless network. It is a device that allows Internet-enabled devices to access the network.

Answer 383

A device that allows PCs to connect to a wireless network and access the internet connection directly with the help of an ISP.

Answer 384

Cards that locate and communicate to an AP with a powerful signal, giving network access to users.

Answer 385

Use radio frequency (RF) signals to connect wireless-enabled devices to a network

Answer 386

The device retransmits the existing signal captured from the wireless router or an AP to create a new network.

Answer 387

A device in a WLAN which interconnects two types of Networks using radio waves to the wireless enabled devices such as computers, laptops, and tablets.

Answer 388

Performs an active wireless network scanning to detect the presence of wireless APs in the vicinity

Answer 389

Connects different devices to a wireless network in order to access the internet without a computer, router, or any other network device.

Answer 390

Also called a Yagi-Uda antenna, is a unidirectional antenna commonly used in communications using the frequency band from 10 MHz to very high frequency (VHF) and ultra-high frequency (UHF)

Vocab Flashcards

(414 cards)