acronyms

Question 1

ACL

Answer 1

Access Control List

Question 2

AES

Answer 2

Advanced Encryption Standard

Question 3

API

Answer 3

Application Programming Interface

Question 4

APT

Answer 4

Advanced Persistent Threat

Question 5

ARP

Answer 5

Address Resolution Protocol

Question 6

ASLR

Answer 6

Address Space Layout Randomization

Address space layout randomization (ASLR) is a memory-protection process for operating systems (OSes) that guards against buffer-overflow attacks by randomizing the location where system executables are loaded into memory.

Question 7

AV

Answer 7

Antivirus

Question 8

BCP

Answer 8

Business Continuity Planning

Question 9

BIOS

Answer 9

Basic Input/Output System

Question 10

CA

Answer 10

Certificate Authority

Question 11

CAPTCHA

Answer 11

Completely Automated Public Turing Test to Tell Computers and Humans Apart

Question 12

CER

Answer 12

Certificate

Question 13

CIA

Answer 13

Confidentiality, Integrity, and Availability

Question 14

CIRT

Answer 14

Computer Incident Response Team

Question 15

CISO

Answer 15

Chief Information Security Officer

Question 16

CMS

Answer 16

Content Management System

Question 17

CPU

Answer 17

Central Processing Unit

Question 18

CRC

Answer 18

Cyclic Redundancy Check

Question 19

CSRF

Answer 19

Cross-Site Request Forgery

Question 20

CSS

Answer 20

Cascading Style Sheets

Question 21

CPT

Answer 21

Certified Penetration Tester

Question 22

DAC

Answer 22

Discretionary Access Control

Question 23

DBMS

Answer 23

Database Management System

Question 24

DEP

Answer 24

Data Execution Prevention

Question 25

DES

Answer 25

Data Encryption Standard

Question 26

DHCP

Answer 26

Dynamic Host Configuration Protocol

Question 27

DMZ

Answer 27

Demilitarized Zone

Question 28

DNS

Answer 28

Domain Name System

Question 29

DoS

Answer 29

Denial of Service

Question 30

DDoS

Answer 30

Distributed Denial of Service

Question 31

DRM

Answer 31

Digital Rights Management

Question 32

ECC

Answer 32

Elliptic Curve Cryptography

Question 33

EFS

Answer 33

Encrypting File System

Question 34

EMI

Answer 34

Electromagnetic Interference

Question 35

EULA

Answer 35

End User License Agreement

Question 36

FDE

Answer 36

Full Disk Encryption

Question 37

FTP

Answer 37

File Transfer Protocol

Question 38

GPG

Answer 38

GNU Privacy Guard

Question 39

GPS

Answer 39

Global Positioning System

Question 40

GRE

Answer 40

Generic Routing Encapsulation

Question 41

GRC

Answer 41

Governance, Risk, and Compliance

Question 42

HMAC

Answer 42

Hashed Message Authentication Code

Here’s a concise explanation of HMAC:

Purpose: HMAC is used to verify the integrity and authenticity of a message or data by generating a fixed-size hash value (digest) based on the message and a secret key.

Process: HMAC utilizes a cryptographic hash function (e.g., SHA-256) and a secret key known only to the sender and receiver. The message is combined with the secret key, and the hash function is applied to this combination to generate the HMAC.

Properties: HMAC provides two main security properties - integrity and authenticity. Integrity ensures that the data has not been altered in transit, and authenticity ensures that the data comes from the expected sender.

Keyed Hashing: The use of a secret key distinguishes HMAC from regular hash functions. It prevents unauthorized parties from tampering with the message and generating valid HMACs.

Applications: HMAC is commonly used in various security protocols, such as SSL/TLS, IPsec, and SSH, as well as in applications like digital signatures and message authentication in web services.

Strengths: HMAC is resistant to known cryptographic attacks when using a secure hash function. It is computationally efficient and provides a high level of security.

Key Management: Proper key management is crucial for the effectiveness of HMAC. Keys must be kept secret and should be changed regularly for enhanced security.

In summary, HMAC is a widely used mechanism for ensuring the integrity and authenticity of data by generating a fixed-size hash value based on a message and a secret key. It provides a strong security foundation for many security protocols and applications, making it a fundamental tool in modern secure communication.

Question 43

HTML

Answer 43

Hypertext Markup Language

Question 44

HTTP

Answer 44

Hypertext Transfer Protocol

Question 45

HTTPS

Answer 45

Hypertext Transfer Protocol Secure

Question 46

ICMP

Answer 46

Internet Control Message Protocol

Question 47

IDS

Answer 47

Intrusion Detection System

Question 48

IPS

Answer 48

Intrusion Prevention System

Question 49

IPsec

Answer 49

Internet Protocol Security

Question 50

ISO

Answer 50

International Organization for Standardization

Question 51

ITIL

Answer 51

Information Technology Infrastructure Library

Question 52

JIT

Answer 52

Just-In-Time

Question 53

LAN

Answer 53

Local Area Network

Question 54

LDAP

Answer 54

Lightweight Directory Access Protocol

Question 55

MAC

Answer 55

Mandatory Access Control

Strict and uses predefined based on documented security labels or classifications. like TOP Secretor Confidential.

Question 56

MBR

Answer 56

Master Boot Record

Question 57

MDM

Answer 57

Mobile Device Management

Question 58

MFA

Answer 58

Multi-Factor Authentication

Question 59

MITM

Answer 59

Man-In-The-Middle

Question 60

NAC

Answer 60

Network Access Control

Question 61

NAS

Answer 61

Network-Attached Storage

Question 62

NAT

Answer 62

Network Address Translation

Question 63

NIDS

Answer 63

Network Intrusion Detection System

Question 64

NIPS

Answer 64

Network Intrusion Prevention System

Question 65

NIST

Answer 65

National Institute of Standards and Technology

Question 66

NTFS

Answer 66

New Technology File System

Question 67

OAUTH

Answer 67

Open Authorization

Question 68

OTP

Answer 68

One-Time Password

Question 69

PaaS

Answer 69

Platform-as-a-Service

Question 70

PAT

Answer 70

Port Address Translation

Question 71

PBKDF2

Answer 71

Password-Based Key Derivation Function 2

Question 72

PCI

Answer 72

Payment Card Industry

Question 73

PII

Answer 73

Personally Identifiable Information

Question 74

PKI

Answer 74

Public Key Infrastructure

Question 75

POP3

Answer 75

Post Office Protocol version 3

Question 76

PPP

Answer 76

Point-to-Point Protocol

Question 77

PPTP

Answer 77

Point-to-Point Tunneling Protocol

1723 TCP

Question 78

RAID

Answer 78

Redundant Array of Independent Disks

Question 79

RAS

Answer 79

Remote Access Service

Question 80

RDP

Answer 80

Remote Desktop Protocol

Question 81

RF

Answer 81

Radio Frequency

Question 82

RFI

Answer 82

Radio Frequency Interference

Question 83

RFID

Answer 83

Radio Frequency Identification

Question 84

RIS

Answer 84

Remote Installation Service

Question 85

RTO

Answer 85

Recovery Time Objective

Question 86

UTM

Answer 86

Unified Threat Manager

In cybersecurity, UTM stands for Unified Threat Management. It is a type of security solution that combines multiple security technologies into a single, integrated platform to protect against a wide range of threats.

UTM solutions typically include features such as firewall, intrusion prevention, anti-virus and anti-malware, virtual private network (VPN), content filtering, and application control. These technologies work together to provide comprehensive protection against threats like viruses, malware, phishing attacks, and unauthorized access.

By consolidating multiple security functions into one platform, UTM solutions offer several benefits, including simplified management and administration, reduced complexity and costs, and improved security posture. They are often used by small and medium-sized businesses that need comprehensive security but may not have the resources to manage multiple security products separately.

Question 87

Cn

Answer 87

Common name

Question 88

Idp

Answer 88

Identity Ptovider