Ack

Question 1

NT LAN (NTLM)

Answer 1

Windows New Technology LAN Manager (NTLM) is an outmoded challenge-response authentication protocol from Microsoft. Still in use though succeeded by Kerberos, NTLM is a form of Single Sign-On (SSO) enabling users to authenticate to applications without submitting the underlying password

Question 2

3DES

Answer 2

Triple Digital Encryption Algorithm (deprecated)

symmetric-key block cipher applies the DES cipher algorithm three times to each data block - 168 bits

Question 3

AAA

Answer 3

Authentication, Authorization, and Accounting
It is used to refer to a family of protocols that mediate network access. Two network protocols providing this functionality are particularly popular: the RADIUS protocol, and its newer Diameter counterpart

Question 4

ABAC

Answer 4

Attribute-based Access Control
also known as policy-based access control for IAM, defines an access control paradigm whereby access rights are granted to users through the use of policies

Question 5

ACL

Answer 5

Access Control List

a list of permissions associated with a system resource

Question 6

AD

Answer 6

Active Directory
access policies can be configured via GPOs Windows Active Directory network, users and devices can often auto-enroll with the CA just by authenticating to Active Directory

Question 7

AES

Answer 7

Advanced Encryption Standard

specification for the encryption of electronic data

Question 8

AES256

Answer 8

Advanced Encryption Standards 256bit
AES-256, which has a key length of 256 bits, supports the largest bit size and is practically unbreakable by brute force based on current computing power, making it the strongest encryption standard

Question 9

AH

Answer 9

Authentication Header
provides message authentication and integrity but not confidentiality.

performs a cryptographic hash on the whole packet, including the IP header, plus a shared secret key (known only to the communicating hosts), and adds this HMAC in its header as an Integrity Check Value (ICV).

Question 10

AIS

Answer 10

Automated Indicator Sharing
Threat intelligence data feed operated by the DHS.
Uses TAXII to transmit CTI data between servers and clients

Question 11

ALE

Answer 11

Annualized Loss Expectancy
the amount that would be lost over the course of a year. This is determined by multiplying the SLE by the Annualized Rate of Occurrence (ARO)

Question 12

AP

Answer 12

Access Point
device that provides a connection between wireless devices and can connect to wired networks. Also known as wireless access point or WAP

Question 13

API

Answer 13

Application Programming Interface
A library of programming utilities used, for example, to enable software developers to access functions of the TCP/IP network stack under a particular operating system

Question 14

APT

Answer 14

Advanced Persistent Threat
An attacker’s ability to obtain, maintain, and diversify access to network systems using exploits and malware.
Can evade signature-based detection

Question 15

ARP

Answer 15

Address Resolution Protocol

maps a network interface’s hardware (MAC) address to an IP address.

Question 16

ASLR

Answer 16

Address Space Layout Randomization
A memory-protection process - computer security technique involved in preventing exploitation of memory corruption vulnerabilities

Question 17

ASP

Answer 17

Active Server Pages

Microsoft’s first server-side scripting language and engine for dynamic web pages.

Question 18

ATT&CK

Answer 18

Adversarial Tactics, Techniques, and Common Knowledge
MITRE ATT&CK™ framework is a comprehensive matrix of tactics and techniques used by threat hunters, red teamers, and defenders to better classify attacks and assess an organization’s risk. Organizations can use the framework to identify holes in defenses, and prioritize them based on risk (TTP)

Question 19

AUP

Answer 19

Acceptable Use Policy
set of rules applied by the owner, creator or administrator of a network, website, or service, that restrict the ways in which the network, website or system may be used and sets guidelines as to how it should be used

Question 20

AV or A-V

Answer 20

Antivirus

prevent, detect, and remove malware

Question 21

BASH

Answer 21

Bourne Again Shell
A command shell and scripting language for Unix-like system
Found in DMZ

Question 22

BCP

Answer 22

Business Continuity Planning
identifies controls and processes that enable an organization to maintain critical workflows in the face of some adverse event

Question 23

BIA

Answer 23

Business Impact Analysis

process of assessing what losses might occur for a range of threat scenarios

Question 24

BGP

Answer 24

Border Gateway Protocol
exterior gateway protocol designed to exchange routing and reachability information between autonomous systems (AS) on the Internet
Decides which network your local router should hookup with. (think matchmaker)

Question 25

BIOS

Answer 25

Basic Input/Output System
Firmware—vulnerabilities can exist in the BIOS/UEFI firmware that controls the boot process for PCs.
“the program a computer’s microprocessor uses to start the computer system after it is powered on”

Question 26

BPA

Answer 26

Business Partnership Agreement

Agreement by two companies to work together closely

Question 27

BPDU

Answer 27

Bridge Protocol Data Unit
Switch port security feature that disables the port if it receives BPDU notifications related to spanning tree.
This is configured on access ports where there any BPDU frames are likely to be malicious
Messages exchanged between switches inside a LAN; prevents looping

Question 28

BSSID

Answer 28

Basic Service Set Identifier

Each WAP is identified by its MAC address, BSSID is the MAC address of a wireless point

Question 29

BYOD

Answer 29

Bring Your Own Device

Question 30

CA

Answer 30

Certificate Authority

entity responsible for issuing and guaranteeing certificates

Question 31

CAC

Answer 31

Common Access Card

smart card that provides certificate-based authentication and supports two-factor authentication

Question 32

CAPTCHA

Answer 32

Completely Automated Public Turing

Test to Tell Computers and Humans Apart

Question 33

CAR

Answer 33

Corrective Action Report

actions adopted to eliminate the problem from occurring again

Question 34

ML

Answer 34

Machine Learning

Question 35

MMS

Answer 35

Multimedia Message Service

Question 36

MOA

Answer 36

Memorandum of Agreement

written (legal) document describing a cooperative relationship between two parties wishing to work together

Question 37

MOU

Answer 37

Memorandum of Understanding

Intent to work together (informal, not binding)

Question 38

MPLS

Answer 38

Multiprotocol Label Switching
Developed by Cisco data forwarding technology that increases the speed and controls the flow of network traffic.
A VPN (not part of public internet) that directs data from one node to the next using short path labels instead of long network addresses.

Question 39

MSA

Answer 39

Measurement System Analysis

Cyber, Evaluates the data collection and statistical methods used by a quality management process

Question 40

MSCHAP

Answer 40

MS Challenge Handshake Authentication Protocol

Question 41

MSP

Answer 41

Managed Service Provider
a third-party company that provides network, application and system management services to enterprises with a pay-as-you-go pricing model

Question 42

MSSP

Answer 42

Managed Security Service Provider
fully outsourcing responsibility for information assurance to a third party.
Expensive but can be a good fit for an SME that has experienced rapid growth and has no in-house security capability

Question 43

MTBF

Answer 43

Mean Time Between Failures

Question 44

MTTF

Answer 44

Mean Time to Failure

Question 45

MTTR

Answer 45

Mean Time to Repair

Question 46

MTU

Answer 46

Maximum Transmission Unit

limits data packet size on a network

Question 47

NAC

Answer 47

Network Access Control
Keeps unauthorized users and devices out of a private network
802.1X standard

Question 48

NAS

Answer 48

Network-attached Storage
storage device connected to a network that allows storage and retrieval of data from a centralized location for authorized network users

Question 49

NAT

Answer 49

Network Address Translation

used to enable multiple hosts on a private network to connect to the Internet using a single public IP address

Question 50

NDA

Answer 50

Non-disclosure Agreement