Ack2

Question 1

CASB

Answer 1

Cloud Access Security Broker

enterprise management software designed to mediate access to cloud services by users across all types of devices

Question 2

CBC

Answer 2

Cipher Block Chaining
ensures that no plaintext block produces the same ciphertext. CBC needs to use padding to ensure that the data to encrypt is an exact multiple of the block s

Question 3

CBT

Answer 3

Computer-based Training

lets a student acquire skills & experience by completing various activities

Question 4

CCMP

Answer 4

Counter-Mode/CBC-MAC Protocol
provides authenticated encryption, which is designed to make replay attacks harder

Cipher Block chaining encryption on the LAN

Question 5

CERT

Answer 5

Computer Emergency Response Team

Question 6

CFB

Answer 6

Cipher Feedback

Question 7

CHAP

Answer 7

Challenge-Handshake Authentication Protocol

Question 8

CIO

Answer 8

Chief Info Officer

Question 9

CIRT

Answer 9

Computer Incident Response Team

Question 10

CIS

Answer 10

Center for Internet Security

Question 11

CMS

Answer 11

Content Management System

Question 12

CN

Answer 12

Common Name

Question 13

COOP

Answer 13

Continuity of Operations Planning

refers to the same sorts of activities when undertaken by a government agency, rather than a business

Question 14

COPE

Answer 14

Corporate-owned Personally Enabled

Question 15

CP

Answer 15

Contingency Planning

Question 16

CRC

Answer 16

Cyclic Redundancy Check

a code added to data which is used to detect errors occurring during transmission, storage, or retrieval.

Question 17

CRL

Answer 17

Certificate Revocation List

lets you know about suspended or revoked keys

Question 18

CSA

Answer 18

Cloud Security Alliance

Industry body providing security guidance to CSP

Question 19

CSIRT

Answer 19

Computer Security Incident Response Team

Question 20

CSO

Answer 20

Chief Security Officer

Question 21

CSP

Answer 21

Cloud Service Provider

Question 22

CSR

Answer 22

Certificate Signing Request
Base64 ASCII file that a subject sends to a CA to get a certificate
Use for online CA and make the root an offline CA (to make it secure)

Question 23

XSRF (CSRF)

Answer 23

Cross-Site Request Forgery
A malicious script hosted on the attacker’s site that can exploit a session started on another site in the same browser.

user unintentionally makes changes

Question 24

CSU

Answer 24

Channel Service Unit WAN (wide area network port: used to connect to an internet source) router performs loopback testing

Question 25

CTM

Answer 25

Counter-Mode

An encryption mode of operation where a numerical counter value is used to create a constantly changing IV

Question 26

CCMP

Answer 26

CCMP (counter mode with cipher block chaining message authentication code protocol) An encryption protocol used for wireless LANs that addresses the vulnerabilities of the WEP protocol

Question 27

CTO

Answer 27

Chief Technology Officer

Question 28

CYOD

Answer 28

Choose Your Own Device

Question 29

DAC

Answer 29

Discretionary Access Control

Access control model where each resource is protected by an Access Control List (ACL) managed by the resource’s owner

Question 30

DDoS

Answer 30

Distributed Denial-of-Service

An attack that uses multiple compromised hosts (a botnet) to overwhelm a service with request or response traffic

Question 31

DEP

Answer 31

Data Execution Prevention
system-level memory protection feature, Windows OS (legacy) mark pages as non-executable

helps prevent damage from viruses or malicious code exploits

Question 32

NFC

Answer 32

Near-field Communication
A standard for peer-to-peer (2-way) radio communications over very short (around 4”) distances, facilitating contactless payment and similar technologies. Based on RFID

Question 33

NFV

Answer 33

Network Function Virtualization

Provisioning virtual network appliances, such as switches, routers, and firewalls, via VMs and containers

Question 34

NGFW

Answer 34

Next-Generation Firewall

Question 35

NG-SWG

Answer 35

Next-Generation Secure Web Gateway

Question 36

NIC

Answer 36

Network Interface Card

hardware component without which a computer cannot be connected over a network. It is a circuit board

Question 37

NOC

Answer 37

Network Operations Center

monitor/manage network systems

Question 38

NTFS

Answer 38

New Technology File System
Stores time values in UTC format used internally Controls storage space on a drive (store/read info on computer that’s not easily removed)

Question 39

NTLM

Answer 39

New Technology LAN Manager

challenge-response authentication protocol created by Microsoft for use in its products

Question 40

NTP

Answer 40

Network Time Protocol

Helps servers on a network & on the internet keep the correct time

Question 41

OAUTH

Answer 41

Open Authentication
Standard for federated identity management, allowing resource servers or consumer sites to work with user accounts created and managed on a separate identity provider (let users give website their info w/o a PW)

Question 42

OCSP

Answer 42

Online Certificate Status Protocol

Allows clients to request the status of a digital certificate, to check whether it is revoked.

Question 43

OID

Answer 43

Object Identifier
used for attributes of digital certificates.
onboarding The process of bringing in a new employee, contractor, or supplier

Question 44

OSI

Answer 44

Open System Interconnection

The 7 layers used for networks

Question 45

OSINT

Answer 45

Open-source Intelligence

operate threat intelligence services on an open-source basis, earning income from consultancy

Question 46

OSPF

Answer 46

Open Shortest Path First

link-state routing protocol providing fast convergence and excellent scalability

Question 47

OT

Answer 47

Operational Technology
network is established between embedded systems
devices and their controllers.
i.e. valves, motors, gauges, sensors
DDoS can be used

Question 48

OTA

Answer 48

Over-The-Air

updates can be delivered wirelessly, either through a Wi-Fi network or the data connection

Question 49

OTG

Answer 49

On-The-Go

Android USB ports, allow a port to be a host or a device

Question 50

Port

Answer 50

A number used to uniquely identify a transaction over a network by specifying both the host, and the service