Acronyms

Question 1

3DES

Answer 1

Triple Digital Encryption Standard
- Deprecated and considered insecure. Replaced by AES
- Symmetric
- Applies the DES cipher algorithm 3 times to each data block

Question 2

AAA

Answer 2

-Authentication, Authorization, and Accounting)
- Often used to describe RADIUS, or some other form of networking protocol that provides Authentication, Authorization, and Accounting

Question 3

ABAC

Answer 3

Attribute Based Access Control

Rights granted through policies that combine attributes together

Question 4

Active Directory

Answer 4

Database and identity service used to provide identity management

Question 5

ACL

Answer 5

Access Control List

• Set of rules that allow/permit or deny any traffic flow through routers
• Looks at the packet to determine whether it should be allowed or denied
• Works at layer 3 toprovide security by filtering & controlling the flow of trafficfrom one router to another

Question 6

AES

Answer 6

Advanced Encryption Standard

• Industry-standard for data security
• 128-bit, 192-bit, or 256-bit (strongest) implementations

Question 7

AES256

Answer 7

Advanced Encryption Standard 256 bits

Question 8

AH

Answer 8

Authentication Header

• Used to authenticate origins of packets of data transmitted
• These headers don’t hide any data from attackers, but they do provide proof that the data packets are from a trusted source and that the data hasn’t been tampered with
• Helps protect against replay attacks

Question 9

AIS

Answer 9

Automated Indicator Sharing

• DHS and CISA free program
• Enables organizations to share and receive machine-readable cyber threat indicators (CTIs) and defensive measures (DMs) in real-time
• Useful to monitor and defend networks against known threats

Question 10

ALE

Answer 10

Annualized Loss Expectancy

ie: can expect x number of devices to fail per year

Question 11

AP

Answer 11

Access Point

Networking hardware device that provides Wi-Fi access, typically then connected via wire to the router, or directly integrated in the router itself

Question 12

APT

Answer 12

Advanced Persistent Threat

Stealthy threat actor (usually nation-state or state-sponsored group) that gains unauthorized access to a system and remains undetected for a period of time

Question 13

ARO

Answer 13

Annualized Rate of Occurrence

The calculated probability that a risk will occur in a given year

Question 14

ARP

Answer 14

Address Resolution Protocol

Connects IP address with MAC address

Question 15

ASLR

Answer 15

Address Space Layout Randomization

Prevent exploitation of memory corruption vulnerabilities

Question 16

ASP

Answer 16

Active Server Page

• Microsoft server-side scripting language and engine to create dynamic web pages
• Superseded by ASP.NET in 2002

Question 17

ATT&CK

Answer 17

Adversarial Tactics, Techniques, and Common Knowledge

Knowledge base framework of adversary tactics and techniques based on real-world observations

Question 18

AUP

Answer 18

Acceptable Use Policy

Terms that users must accept in order to use a network, system, website, etc…

Question 19

AV

Answer 19

Antivirus

• Antivirus software
• Typically uses signature-based detection
• Not effective against zero-days or polymorphic malware

Question 20

BASH

Answer 20

Born Again Shell

Powerful UNIX shell and command language

Question 21

BCP

Answer 21

Business Continuity Planning

• Plan used to create processes and systems of both prevention and recovery to deal with threats that a company faces
• This plan outlines how a business can continue delivering products and services if crap hits the fan

Question 22

BIA

Answer 22

Business Impact Analysis

Used to predict the consequences a business would face if there were to be a disruption

Question 23

BGP

Answer 23

Border Gateway Protocol

• “The postal service of the Internet”
• BGP finds the best route for data to travel to reach its destination

Question 24

BIOS

Answer 24

Basic Input Output System

• Firmware that performs hardware initialization when systems are booting up, and to provide runtime services for the OS and programs
• First software to run when you power on a device

Question 25

BPA

Answer 25

Business Partnership Agreement

Defines a contract between two or more parties as to how a business should run

Question 26

BPDU

Answer 26

Bridge Protocol Data Unit

• Frames that have spanning tree protocol information
• Switches send BPDUs with a unique source MAC address to a multicast address with a destination MAC

Question 27

BYOD

Answer 27

Bring your own device

Question 28

CA

Answer 28

Certificate Authority

An organization that validates the identities of entities through cryptographic keys by issuing digital certificates

Question 29

CAC

Answer 29

Common Access Card

Smart card for active duty personnel

Question 30

CAPTCHA

Answer 30

Completely Automated Public Turing Test to Tell Computers and Humans Apart

Question 31

CAR

Answer 31

Corrective Action Report

Lists defects that need to be rectified

Question 32

CASB

Answer 32

Cloud Access Security Broker

• Acts as an intermediary between the cloud and on-prem
• Monitors all activity
• Enforces security policies

Question 33

CBC

Answer 33

Cipher Block Chaining

• CBC is a mode of operation for block ciphers
• Block ciphers (for encryption) by themselves would only work for a single block of data…a mode of operation like CBC can be used to give instructions on how to apply encryption to multiple blocks of data
• CBC helps prevent issues of identical blocks, even if you have identical inputs. It does that by using an operation called XOR (exclusive-OR)

Question 34

CBT

Answer 34

Computer Based Training

Question 35

CCMP

Answer 35

Counter-Mode/CBC-Mac Protocol

Encryption protocol designed for Wireless LAN products

Question 36

CCTV

Answer 36

Closed Circuit Television

Question 37

CERT

Answer 37

Computer Emergency Response Team

Question 38

CIRT

Answer 38

Computer Incident Response Team

Question 39

CFB

Answer 39

Cipher Feedback

When a mode of operation uses the ciphertext from the previous block in the chain

Question 40

CHAP

Answer 40

Challenge Handshake Authentication Protocol

• Authenticates a user or network host to an authenticating entity
• Provides protection against replay attacks
• Requires that both the client and server know the plaintext of the secret, but it’s never sent over the network

Question 41

CIO

Answer 41

Chief Information Officer

Question 42

CTO

Answer 42

Chief Technology Officer

Question 43

CSO

Answer 43

Chief Security Officer

Question 44

CIS

Answer 44

Center of Internet Security

Question 45

CMS

Answer 45

Content Management System

Question 46

COOP

Answer 46

Continuity of Operation Planning

Effort for agencies to make sure they can continue operations during a wide range of emergencies

Question 47

COPE

Answer 47

Corporate Owned Personal Enabled

Organization provides its employees with mobile computing devices

Question 48

CP

Answer 48

Contingency Planning

Question 49

CRC

Answer 49

Cyclical Redundancy Check

Used to detect accidental changes in digital networks and storage devices

Question 50

CRL

Answer 50

Certificate Revocation List

Question 51

CSP

Answer 51

Cloud Service Provider

Question 52

CSR

Answer 52

Certificate Signing Request

• Contains information that the Certificate Authority (CA) will use to create your certificate
• Contains the public key for which the certificate should be issued, and other identifying information

Question 53

CSRF

Answer 53

Cross Site Request Forgery

Unauthorized actions are performed on behalf of a legitimate user

Question 54

CSU

Answer 54

Channel Service Unit

Device used for digital links to transfer data

Question 55

CTM

Answer 55

Counter Mode

• Converts a block cipher into a stream cipher

Question 56

CVE

Answer 56

Common Vulnerabilities Exposure

List of publicly disclosed computer security flaws

These security flaws get assigned a CVE ID number which people can use to reference them

Question 57

CVSS

Answer 57

Common Vulnerability Scoring System

Public framework used to rate the severity of security vulnerabilities

Question 58

CYOD

Answer 58

Choose your own device

Question 59

DAC

Answer 59

Directory Access Control

Restriction of access based upon the identity of subjects and the groups they belong to

Question 60

DBA

Answer 60

Database Administrator

Question 61

DEP

Answer 61

Data Exclusion Prevention

• Microsoft security feature
• Monitor and protects pages or regions of memory
• Prevents data regions from executing (potentially malicious) code

Question 62

DER

Answer 62

Distinguished Encoding Rules

Question 63

DES

Answer 63

Digital Encryption Standard

Question 64

DHE

Answer 64

Diffe Hellman Ephemeral

Way of securely exchanging cryptographic keys over public channels

Question 65

DKIM

Answer 65

Domain Key Identified Mail

Email authentication technique - applies signatures by the mail server of the sender’s domain

Question 66

DLL

Answer 66

Dynamic Link Library

• Library that contains code and data that can be used by programs to function in Windows
• DLL injections can run malicious code within an application by exploiting DLLs

Question 67

DMARC

Answer 67

Domain Message Authentication Reporting and Conformance

• Authenticates emails with SPF and DKIM
• Used to prevent phishing and spoofing

Question 68

DNAT

Answer 68

Destination Network Address Transcation

Question 69

DPO

Answer 69

Data Privacy Officer

Question 70

DRP

Answer 70

Disaster Recovery Plan

Question 71

DSA

Answer 71

Digital Signature Algorithm

Question 72

EAP

Answer 72

Extensible Authentication Protocol

Authentication framework used in LAN’s

Question 73

ECB

Answer 73

Electronic Code Book

Doesn’t hide data patterns well, so it wouldn’t work to encrypt images for example

Question 74

ECC

Answer 74

Elliptic Curve Cryptography

Good for mobile devices because it can use smaller keys

Question 75

ECDHE

Answer 75

(Elliptic Curve Diffie-Hellman Ephemeral)

Question 76

ECDSA

Answer 76

Elliptic Curve Digital Signature Algorithm

Question 77

EDR

Answer 77

Endpoint Detection and Response

Technology that continuously monitors endpoints to mitigate cyber threats

Question 78

EFS

Answer 78

Encrypted File System

Question 79

EOL

Answer 79

End of Life

Date set where manufacturer will no longer create the product

Question 80

EOS

Answer 80

End of Service

Original manufacturer no longer offers updates, support, or service

Question 81

ERP

Answer 81

Enterprise Resource Planning

Question 82

ESN

Answer 82

Electronic Serial Number

Question 83

ESP

Answer 83

Encapsulated Security Payload

• Member of IPsec set of protocols
• Encrypts and authenticates packets of data between computers using VPNs

Question 84

FACL

Answer 84

File System Access Control List

Question 85

FDE

Answer 85

Full Disk Encryption

Question 86

FPGA

Answer 86

FPGA (Field Programmable Gate Array)

Integrated circuit designed to be configured by a customer or designer after manufacturing

Question 87

FRR

Answer 87

False Rejection Rate

Likelihood that a biometric security system will incorrectly reject an access attempt by an authorized user

Question 88

GCM

Answer 88

Galois Counter Mode

• High speeds with low cost and low latency
• Provides authenticated encryption

Question 89

GPO

Answer 89

Group Policy Object

• Contains two nodes: a user configuration and computer configuration
• Collection of group policy settings

Question 90

GRE

Answer 90

Generic Routing Encapsulation

Tunneling Protocol

Question 91

HA

Answer 91

High Availability

Question 92

HIDS

Answer 92

Host-Based Intrusion Detection System

Question 93

HIPS

Answer 93

Host-Based Prevention Detection System

Question 94

HMAC

Answer 94

Hashed Message Authentication Code

combines shared secret key with hashing

Question 95

HOTP

Answer 95

HMAC based One Time Password

• One-time password algorithm based on hash-based message authentication codes

Question 96

HSM

Answer 96

Hardware Security Module

Question 97

ICS

Answer 97

Industrial Control System

Question 98

IDEA

Answer 98

International Data Encryption Algorithm

Question 99

IDF

Answer 99

Intermediate Distribution Frame

Cable rack in a central office that cross connects and manages IT or telecom cabling between a main distribution frame (MDF) and remote workstation devices

Question 100

IdP

Answer 100

Identity Provider

Service that stores and manages digital identities

Question 101

IEEE

Answer 101

Institute of Electrical and Electronics Engineers

Question 102

IKE

Answer 102

Internet Key Exchange

Question 103

IoC

Answer 103

Indicators of Compromise

Question 104

IR

Answer 104

Incident Response

Question 105

IRP

Answer 105

Incident Response Plan

Question 106

ISO

Answer 106

International Organization for Standardization

Question 107

ISSO

Answer 107

Information Systems Security Officer

Question 108

ITCP

Answer 108

IT Contingency Plan

Question 109

IV

Answer 109

Initialization Vector

• Used in cryptography is an input to a cryptographic primitive
• Used to provide the initial state

Question 110

KDC

Answer 110

Key Distribution Center

• Used to reduce risks in exchanging keys
• A user requests to use a service. The KDC will use cryptographic techniques to authenticate requesting users as themselves, and it will check whether a user has the right to access the service requested

Question 111

KEK

Answer 111

Key Encryption Key

Question 112

LEAP

Answer 112

Lightweight Extensible Authentication Protocol

• Wireless LAN authentication method
• Dynamic WEP keys and mutual authentication (b/t a wireless client and a RADIUS server)

Question 113

MaaS

Answer 113

Monitoring as a Service

Question 114

MAC

Answer 114

Mandatory Access Control

Question 115

MAM

Answer 115

Mobile Application Management

Question 116

MAN

Answer 116

Metropolitan Area Network

Question 117

MBR

Answer 117

Master Boot Record

• Special type of boot sector at the very beginning of partitioned storage
• Holds information about how logical partitions are organized

Question 118

MDM

Answer 118

Mobile Device Management

Question 119

MFD

Answer 119

Multi Function Device

Question 120

MFP

Answer 120

Multi Function Printer

Question 121

MITM

Answer 121

Man in the Middle

Question 122

MMS

Answer 122

Multimedia Message Service

Question 123

MOA

Answer 123

Memorandum of Agreement

Legally-binding agreement between two parties

Question 124

MOU

Answer 124

Memorandum of Understanding

• Non-legally binding agreement
• Used to signal willingness between parties to move forward with a contract

Question 125

MPLS

Answer 125

Multi-Protocol Label Switching

Routing technique to direct data from one note to the next based on the short path labels

Question 126

MSA

Answer 126

Measurement Systems Analysis

Mathematical method of determining the amount of variation that exists within a measurement process

Question 127

MSCHAP

Answer 127

Microsoft Challenge Handshake

Question 128

MSP

Answer 128

Managed Service Provider

Question 129

MSSP

Answer 129

Managed Security Service Provider

Question 130

MTBF

Answer 130

Mean Time Between Failures

Question 131

MTTF

Answer 131

Mean Time To Failure

Question 132

MTTR

Answer 132

Mean Time To Recover

Question 133

MTU

Answer 133

Maximum Transmission Unit

Largest packet or frame size that can be sent in a packet or frame-based network such as the Internet

Question 134

NAC

Answer 134

Network Access Control

Question 135

NAS

Answer 135

Network Attached Storage

Question 136

NAT

Answer 136

Network Address Translation

Question 137

NFC

Answer 137

Near Filed Communication

Question 138

NFV

Answer 138

Network Functions Virtualization

Virtualizes entire classes of network node functions into building blocks

Question 139

NIC

Answer 139

Network Interface Card

Question 140

NIDS

Answer 140

Network Based Intrusion Detection System

Question 141

NIPS

Answer 141

Network Based Intrusion Prevention System

Question 142

NTFS

Answer 142

New Technology File System

Question 143

NTLM

Answer 143

New Technology LAN Manager

Question 144

NTP

Answer 144

Network Time Protocol

port 123 udp

Question 145

OAUTH

Answer 145

Open Authorization

Question 146

OCSP

Answer 146

Online Certificate Status Protocol

Used by CAs to check the revocation status of an X.509 digital certificate

Question 147

OID

Answer 147

Object Identifier

Question 148

OSI

Answer 148

Open Systems Interconnection

Question 149

OSINT

Answer 149

Open Source Intelligence

Question 150

OSPF

Answer 150

Open Shortest Path First

Question 151

OT

Answer 151

Operational Technology

Question 152

OTA

Answer 152

Over the air

Question 153

OTG

Answer 153

On the go

Question 154

OVAL

Answer 154

Open Vulnerability Assessment Language

Question 155

OWASP

Answer 155

Open Web Application Security Project

Question 156

P2P

Answer 156

peer to peer

Question 157

PAC

Answer 157

Proxy Auto Configuration

• Used to define how web browsers and other user agents can automatically choose the appropriate proxy server for fetching URLs
• Contains a JavaScript function that returns a string with one or more access method specifications

Question 158

PAM

Answer 158

Privileged Access Management

Question 159

PAP

Answer 159

Password Authentication Protocol

Question 160

PBKDF2

Answer 160

Password Based Key Derivative Function 2

• Key derivation functions with a sliding computation cost, which is used to reduce vulnerabilities of brute-force attacks
• Applies a pseudorandom function (like HMAC) to the input password along with a salt value, and repeats this process multiple times to produce a derived key

Question 161

PBX

Answer 161

Private Branch Exchange

Question 162

PDU

Answer 162

Power Distribution Unit

Question 163

PEAP

Answer 163

Protected Extensible Authentication Protocol

Question 164

PED

Answer 164

Personal Electronic Device

Question 165

PEM

Answer 165

Privacy enhance mail

Question 166

PFS

Answer 166

Perfect Forward Security

Feature of specific key agreement protocols that give assurances that session keys will not be compromised, even if long-term secrets used in the session key exchange are compromised

Question 167

PHI

Answer 167

Personal Health Information

Question 168

PII

Answer 168

Personal Identity Information

Question 169

PKI

Answer 169

Public Key Infrastructure

Question 170

PSK

Answer 170

Pre Shared Key

Question 171

QoS

Answer 171

Quality of Service

Question 172

PUP

Answer 172

Potentially Unwanted Program

Question 173

RA

Answer 173

Recovery Agent

Question 174

RAD

Answer 174

Rapid Application Development

Question 175

RAS

Answer 175

Remote Access Server

Question 176

RAT

Answer 176

Remote Access Trojan

Question 177

RBAC

Answer 177

Role Based Access Control

Question 178

RPO

Answer 178

Recovery Point Objective

The maximum amount of data (measured by time) that can be lost after a recovery from a disaster or failure

Question 179

RTBH

Answer 179

Remote Triggered Black Hole

• Can be used to drop traffic before it enters a protected network
• A common use is to mitigate DDoS

Question 180

RTOS

Answer 180

Real Time Operating System

Question 181

RTP

Answer 181

Real Time Transport Protocol

Question 182

SAE

Answer 182

Simultaneous Authentication of Equals

Secure password-based authentication and password-authenticated key agreement method

Question 183

SAML

Answer 183

Security Assertions Markup Language

• XML-based markup language for security assertions
• Allows an IdP to authenticate users and then pass an auth token to another application (service provider)

Question 184

SAN

Answer 184

Storage Area Network

Question 185

SCADA

Answer 185

System Control and Data Acquisition

Question 186

SCEP

Answer 186

Simple Certificate Enrollment Protocol

Makes the request and issuing of digital certificates as simple as possible

Question 187

SDN

Answer 187

Software Defined Networking

Makes networking a bit more like cloud computing than traditional network management by defining network technology via software

Question 188

SED

Answer 188

Self Encrypting Drives

Question 189

SEH

Answer 189

Structured Exception Handler

Question 190

SLE

Answer 190

Single Loss Expectancy

Question 191

SOAP

Answer 191

Simple Object Access Protocol

Question 192

SoC

Answer 192

System on a chip

Question 193

STP

Answer 193

Shield Twisted Pair

Question 194

TTP

Answer 194

tactics techniques procedures

Question 195

UAT

Answer 195

user acceptance testing

Last phase of the software testing process

Question 196

UEFI

Answer 196

Unified Extensible Firmware Interface

Question 197

UPS

Answer 197

uninterruptible power supply

Question 198

URI

Answer 198

Uniform Resource Identifier

Question 199

URL

Answer 199

Uniform Resource Locator

Question 200

UTM

Answer 200

Unified Threat Management

• When a single hardware or software provides multiple security functions
• This is in contrast of having individual solutions for each security function

Question 201

UTP

Answer 201

unshielded twisted pair

Question 202

VDE

Answer 202

Virtual Desktop Environment

Question 203

VDI

Answer 203

Virtual Desktop Infrastructure

Question 204

VLSM

Answer 204

Variable Length Subnet Masking

Question 205

VTC

Answer 205

Virtual Teleconferencing

Question 206

WAF

Answer 206

Web Application Firewall

Question 207

WAP

Answer 207

Wireless Access Point

Question 208

WEP

Answer 208

Wired Equivalent Privacy

Question 209

WIDS

Answer 209

Wireless Intrusion Detection System

Question 210

WORM

Answer 210

write once read many

Data storage device where information, once written, can’t be modified

Question 211

WPS

Answer 211

WiFi Protected Setup

Question 212

XSRF

Answer 212

Cross site request forgery

Question 213

X.509

Answer 213

Standard for defining the format of public key sharing