Acronyms

Question 1

ABAC

Answer 1

Attribute-based access control

*typically matched to attributes other than the job role.

Question 2

AD HOC

Answer 2

A wireless network that allows easy connection establishment between wireless client devices in the same physical area without the use of an infrastructure device, such as an access point or a base station.

Question 3

AES

Answer 3

Advanced Encryption Standard

*a symmetric block cipher chosen by the U.S. government to protect classified information

Question 4

API Keys

Answer 4

Application Programming Interface

*a code used to identify and authenticate an application or user.

Question 5

APT

Answer 5

Advanced Persistent Threats

*advanced techniques that are persistent, occurring over a significant period of time.

Question 6

ARP

Answer 6

Address Resolution Protocol

*used to associate the IP address to a MAC address.

Question 7

AUP

Answer 7

Acceptable Use Policy
*an agreement between two or more parties that outlines the appropriate use of access to a corporate network or the internet

Question 8

BIOS

Answer 8

Basic Input-Output system

*a low-level software that resides in a chip on your computer’s motherboard.

Question 9

BPA

Answer 9

Business Partnership Agreements
*legal agreements between partners. This is a legal agreement that outlines the terms, conditions, and expectations between the partners.

Question 10

BYOD

Answer 10

Bring Your Own Device

*allows users to use their own device, rather than have the company provide it

Question 11

CAN bus

Answer 11

The Controller Area Network - bus is a message-based protocol designed to allow the Electronic Control Units (ECUs) found in today’s automobiles, as well as other devices, to communicate with each other in a reliable, priority-driven fashion

Question 12

CASB

Answer 12

Cloud Access Security Broker

*an intermediary between users, devices, and cloud providers that enforces security policies.

Question 13

C&C

Answer 13

Control and Command

Question 14

CCMP

Answer 14

Counter Mode CBC-MAC Protocol
*the encryption mechanism that is the security standard used with WPA2 wireless networks. A block cipher, CCMP provides confidentiality, authentication, and access control features.

Question 15

CER

Answer 15

Crossover Error Rate

*describes the overall accuracy of a biometric system.

Question 16

CIA Triad

Answer 16

Confidentiality, Integrity, Availability

Question 17

CISA

Answer 17

Cybersecurity and Infrastructure Security Agency

Question 18

COOP

Answer 18

the federal government’s standards for continuity of operations
* four phases: readiness and preparedness, activation and relocation, continuity facility operations, and reconstitution

Question 19

COPE

Answer 19

Corporate-Owned, Personally Enabled

Question 20

CRM

Answer 20

Customer relationship management
*packages offered in the cloud would be classified as software-as-a-service (SaaS), since they are not infrastructure components.

Question 21

CYOD

Answer 21

Choose Your Own Device

*allows users to choose a device but then centrally manages it.

Question 22

DAC

Answer 22

Discretionary access control
*the principle of restricting access to objects based on the identity of the subject (the user or the group to which the user belongs)

Question 23

DAD Triad

Answer 23

Disclosure, Alteration, Denial

Question 24

DDoS

Answer 24

Distributed Denial-of-Service

Question 25

DES

Answer 25

Data Encryption Standard

*an outdated symmetric key method of data encryption

Question 26

DLP

Answer 26

Data Loss Prevention

Question 27

DKIM

Answer 27

DomainKeys Identified Mail
*a protocol that allows an organization to take responsibility for transmitting a message by signing it in a way that mailbox providers can verify.

Question 28

DMARC

Answer 28

Domain-based Message Authentication Reporting and Conformance
*a free and open technical specification that is used to authenticate an email by aligning SPF and DKIM mechanisms.

Question 29

DMZ

Answer 29

Demilitarized Zone

*a secured zone exposed to a lower trust level area or population

Question 30

DNS

Answer 30

Domain Name System

Question 31

DOS

Answer 31

Denial of Service

*these attacks create viruses, make a Trojan horse, or even distribute ransomware as a service.

Question 32

DRM

Answer 32

Digital Rights Management

Question 33

DROP

Answer 33

Don’t Route or Peer Lists

Question 34

EAP

Answer 34

Extensible Authentication Protocol
*an architectural framework that provides extensibility for authentication methods for commonly used protected network access technologies

Question 35

EV

Answer 35

Extended validation certificates provide the highest available level of assurance

Question 36

FAR

Answer 36

False Acceptance Rate

*the percentage of identification instances in which unauthorized persons are incorrectly accepted.

Question 37

FDE

Answer 37

Full-Device Encryption

Question 38

FPGA

Answer 38

Field Programmable Gate Arrays

*a hardware circuit that a user can program to carry out one or more logical operations

Question 39

FRR

Answer 39

False Rejection Rate

*the percentage of identification instances in which authorized persons are incorrectly rejected.

Question 40

HIPS

Answer 40

Host Intrusion Prevention System

Question 41

HOTP

Answer 41

Hash-based one-time password

*it is based on hash-based message authentication codes.

Question 42

HMAC-based

Answer 42

Hash-based message authentication code is a cryptographic authentication technique that uses a hash function and a secret key.

Question 43

HSM

Answer 43

Hardware Security Module

*used to create, manage, and store cryptographic certificates as well as perform and offload cryptographic operations

Question 44

HTTP or HTTPS (secure)

Answer 44

Hypertext Transfer Protocol

*an application-layer protocol for transmitting hypermedia documents, such as HTML.

Question 45

IoCs

Answer 45

Indicators of Compromise
*the telltale signs that an attack has taken place and may include file signatures, log patterns, and other evidence left behind by attackers.

Question 46

IKE

Answer 46

Internet Key Exchange

*the standard used for remote host, network access, and virtual private network (VPN) access.

Question 47

IMAP or IMAPs (Secure)

Answer 47

Internet Message Access Protocol

• a method of accessing and storing mail on a mail server.
• runs on TCP Port 993

Question 48

IPS

Answer 48

Intrusion Prevention System

Question 49

IPv6

Answer 49

Internet Protocol version 6
*the sixth revision to the Internet Protocol and the successor to IPv4. It functions similarly to IPv4 in that it provides the unique IP addresses necessary for Internet-enabled devices to communicate.

Question 50

IRC

Answer 50

Internet Relay Chat

*was frequently used to manage client-server botnets in the past

Question 51

ISAKMP

Answer 51

Internet Security Association and Key Management Protocol

*used for negotiating, establishing, modification and deletion of SAs and related parameters.

Question 52

ISACs

Answer 52

Information Sharing and Analysis Centers

*help infrastructure owners and operators share threat information and provide tools and assistance to their members

Question 53

IV

Answer 53

Initialization Vector (or starting variable (SV))
*an input to a cryptographic primitive being used to provide the initial state.

Question 54

LDAP

Answer 54

Lightweight Directory Access Protocol

• an open and cross platform protocol used for directory services authentication.
• runs on TCP Port 636

Question 55

MAC

Answer 55

Mandatory access control
*a method of limiting access to resources based on the sensitivity of the information that the resource contains and the authorization of the user to access information with that level of sensitivity.

Question 56

MFA

Answer 56

Multifactor Authentication

Question 57

MFP

Answer 57

Multifunction Printer

Question 58

MOU

Answer 58

Memorandum of Understanding
*has its purpose in promoting cooperation in the field of cyber security between the Participants according to the relevant laws and regulations of their two countries, and based on the principle of equal benefit and mutual interest.

Question 59

MSP

Answer 59

managed service provider

Question 60

MSSP

Answer 60

managed security service provider

Question 61

NAC

Answer 61

Network access control (also called network admission control)
*a method to bolster the security, visibility and access management of a proprietary network.

Question 62

NAT

Answer 62

Network Address Translation

*a way to map multiple local private addresses to a public one before transferring the information.

Question 63

NFC

Answer 63

Near-field communications

• most frequently used for wireless payment systems
• provides short-range, low-bandwidth wireless connection

Question 64

NGFW

Answer 64

Next-generation firewall

Question 65

OSINT

Answer 65

Open Source Intelligence

Question 66

OASIS

Answer 66

Organization for the Advancement of Structured Information Standards
*an internal nonprofit consortium that maintains many other projects related to information formatting, including XML and HTML.

Question 67

OpenIOC

Answer 67

Open Indicators of Compromise

*an XML-based framework

Question 68

PaaS

Answer 68

Platform as a service
*a complete development and deployment environment in the cloud, with resources that enable you to deliver everything from simple cloud-based apps to sophisticated, cloud-enabled enterprise applications.

Question 69

PBL

Answer 69

Policy Block List

Question 70

PCI DSS

Answer 70

Payment Card Industry Data Security Standard

Question 71

PEAP

Answer 71

Protected Extensible Authentication Protocol

*a version of EAP, the authentication protocol used in wireless networks and Point-to-Point connections.

Question 72

POP or POPS (secure)

Answer 72

Post Office Protocol
*POP works by contacting your email server and downloading all of your new messages from it. Once they are downloaded, they disappear from the server.

Question 73

PR

Answer 73

Privileges Required

*metric that indicates the type of system access that an attacker must have to execute the attack.

Question 74

PSK

Answer 74

Preshared Key

Question 75

PUPs

Answer 75

Potentially Unwanted Programs

*programs that may bot be wanted by the user but are not as dangerous as other types of malware

Question 76

RAID

Answer 76

Redundant array of independent disks
*a way of storing the same data in different places on multiple hard disks or solid-state drives (SSDs) to protect data in the case of a drive failure.

Question 77

RATs

Answer 77

Remote Access Trojans

*provide attackers with remote access to systems

Question 78

RBAC

Answer 78

Role-based access control

*sets permissions based on an individual’s role, which is typically associated with their job.

Question 79

RCS

Answer 79

Rich Communication Services

*a next generation SMS protocol that upgrades text messaging.

Question 80

RDP

Answer 80

Remote Desktop Protocol

*operate over an encrypted channel, preventing anyone from viewing your session by listening on the network.

Question 81

RFID

Answer 81

Radio frequency identification

*commonly used for entry access cards.

Question 82

RSA

Answer 82

Rivest–Shamir–Adleman

*a public-key cryptosystem that is widely used for secure data transmission.

Question 83

RTOS

Answer 83

A real-time operating system
*is an OS that is designed to handle data as it is fed to the operating system, rather than delaying handling it as other processes and programs are run.

Question 84

SaaS

Answer 84

Software as a Service

*on-demand software that you would simply log in to the system and begin to use.

Question 85

SAE

Answer 85

Simultaneous Authentication of Equals

*a password-based authentication and password-authenticated key agreement method.

Question 86

SBL

Answer 86

Spamhaus Block List

Question 87

SCADA

Answer 87

Supervisory Control and Data Acquisition
*a system architecture that combines data acquisition and control devices with communications methods and interfaces to oversee complex industrial and manufacturing processes, just like those used in utilities.

Question 88

SFTP

Answer 88

Secure File Transfer Protocol
*a secure file transfer protocol that uses secure shell encryption to provide a high level of security for sending and receiving file transfers.

Question 89

SIEM

Answer 89

Security Information and Event Management

Question 90

SLA

Answer 90

Service Level Agreement

*a negotiated agreement between two parties that outlines expectations of service.

Question 91

S/MIME

Answer 91

Secure/Multipurpose internet Mail Extensions

*a widely accepted protocol for sending digitally signed and encrypted messages.

Question 92

SNMPv3

Answer 92

Simple Network Management Protocol version 3

*predominantly used for monitoring and performance management.

Question 93

SOAR

Answer 93

Security orchestration, automation, and response
*tools designed to automate security responses, to allow centralized control of security settings and controls, and to provide strong incident response capabilities.

Question 94

SoC

Answer 94

System on a Chip

Question 95

SPF

Answer 95

Sender Policy Framework

*an email authentication protocol and part of email cybersecurity used to stop phishing attacks

Question 96

SPIM

Answer 96

Spam over Instant Messaging

Question 97

SQL injection

Answer 97

*a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database.

Question 98

SRTP

Answer 98

Secure Real-Time Transfer Protocol

• used for media streaming in many VoIP implementations.
• runs on UDP 5004

Question 99

SSH

Answer 99

Secure Shell
*a network communication protocol that enables two computers to communicate (c.f http or hypertext transfer protocol, which is the protocol used to transfer hypertext such as web pages) and share data

Question 100

STIX

Answer 100

Structured Threat Information eXpression

• an XML language originally sponsored by the US Dept. of Homeland Security.
• In its current version, STIX 2.0 defines 12 STIX domain objects, including things like attack patterns, identities, malware, threat actors, and tools.

Question 101

SWG

Answer 101

A secure web gateway

*protects users from web-based threats in addition to applying and enforcing corporate acceptable use policies.

Question 102

TAXII

Answer 102

Trusted Automated eXchange of Indicator Information

• intended to allow cyber threat information to be communicated at the application layer via HTTPS.
• specifically designed to support STIX data exchange.

Question 103

TKIP

Answer 103

Temporal Key Integrity Protocol

*an encryption protocol included as part of the IEEE 802.11i standard for wireless LANs (WLANs).

Question 104

TLS

Answer 104

Transport Layer Security
*commonly used to wrap (protect) otherwise insecure protocols. In fact, many of the secure protocols simply add TLS to protect them.

Question 105

TOTP

Answer 105

Time-based one-time password

*a temporary passcode generated by an algorithm that uses the current time of day as one of its authentication factors.

Question 106

TPM

Answer 106

Trusted Platform Module

*commonly used to provide the hardware root of trust

Question 107

TTPs

Answer 107

Tactics, Techniques, and Procedures

Question 108

UEFI

Answer 108

Unified Extensible Firmware Interface
*defines a new method by which OSes and platform firmware communicate, providing a lightweight BIOS alternative that uses only the information needed to launch the OS boot process.

Question 109

VBA

Answer 109

Visual Basic for Applications

Question 110

VDI

Answer 110

Virtual Desktop Infrastructure

*used to provided controlled virtual systems for productivity and application presentation among other users

Question 111

VPC

Answer 111

Virtual private cloud

*a virtual network dedicated to your AWS account.

Question 112

WEP

Answer 112

Wired Equivalent Privacy

*the oldest and most common Wi-Fi security protocol.

Question 113

WPA2

Answer 113

Wi-Fi Protected Access 2

*the second generation of the Wi-Fi Protected Access wireless security protocol.

Question 114

WPS

Answer 114

Wi-Fi Protected Setup

*a network security standard to create a secure wireless home network.

Question 115

XBL

Answer 115

Exploits Block List

Question 116

XML

Answer 116

eXtensible Markup Language
*a simple text-based format for representing structured information: documents, data, configuration, books, transactions, invoices, and much more

Question 117

XSS

Answer 117

Cross site scripting

*an attack in which an attacker injects malicious executable scripts into the code of a trusted application or website.

Question 118

3DES

Answer 118

Triple Data Encryption Algorithm

*a symmetric-key block cipher, which applies the DES cipher algorithm three times to each data block.