acronyms A-DPO

Question 1

3DES

Answer 1

Triple DES

replacement for DES. It essentially applies DES three times with three different keys, thus the name 3DES.

In cryptography, Triple DES (3DES or TDES), officially the Triple Data Encryption Algorithm (TDEA or Triple DEA), is a symmetric-key block cipher, which applies the DES cipher algorithm three times to each data block.

Question 2

AAA

Answer 2

Authentication, Authorization, and Accounting

Device authentication methods: digital certificate, IP addresses, and MAC addresses. People authentication methods: UN/PW, Biometrics, MFA. TACACS+ and RADIUS also provide AAA functionality

Question 3

ABAC

Answer 3

Attribute-based Access Control

Policies that are driven by the attributes of the users. Complex to manage

Question 4

ACL

Answer 4

Access Control List
Allow or deny lists (time-based, dynamic)

Question 5

AES

Answer 5

Advanced Encryption Standards
For symmetric keys. It can have one of three key sizes: 128, 192, or 256 bits. Current version is 256 bit

Question 6

AFF

Answer 6

Advanced Forensics Format

The Advanced Forensic Format (AFF) is on-disk format for storing computer forensic information. Critical features of AFF include: AFF allows you to store both computer forensic data and associated metadata in one or more files.

Question 7

AH

Answer 7

Authentication Header

hashing + shared secret key = IP payload is secured

Question 8

AIS

Answer 8

Automated Indicator Sharing

Automated Indicator Sharing (AIS) is a service the Cybersecurity and Infrastructure Security Agency (CISA) provides to enable real-time exchange of machine-readable cyber threat indicators and defensive measures between public and private-sector organizations. AIS helps to protect the participants of the service and ultimately reduce the prevalence of cyberattacks.

Question 9

ALE

Answer 9

Annualized Loss Expectancy

SLE * ARO, amount of damage expected each year

Single loss expectancy*Average rate of occurrence.

Question 10

Amplified Dos

Answer 10

Amplified DoS Attacks

taking advantage of small query —> large result (ex: DNS query)

Question 11

API

Answer 11

Application Programmable Interface

Relies on rate limiting, inputting filtering, appropriate monitoring

Question 12

APT

Answer 12

Advanced Persistent Threat

Usually, nations state attackers

Question 13

ARO

Answer 13

Annualized Rate of Occurance

ARO 2.0 means 2X per year

Question 14

ARP

Answer 14

Address Resolution Protocol

Links MAC addresses with IP addresses

Question 15

ARPANET

Answer 15

Advanced Research Projects Agency Network

Started in 1966, the first wide-area packet-switched network with distributed control and one of the first computer networks to implement the TCP/IP protocol suite. Both technologies became the technical foundation of the Internet.

Question 16

ASLR

Answer 16

Address Space Layout Randomization

memory protection process for OSes that guards against buffer-overflow attacks by randomizing location for executables

Question 17

ASV

Answer 17

Approved Scanning Vendor

An Approved Scanning Vendor, often known simply as an ASV, is an organization that uses a set of data security services and tools to determine if a company is compliant with PCI DSS external scanning requirements.

Question 18

ATT&CK

Answer 18

Adverbial Tactics, Techniques, and Common Knowledge

Developed MITRE, Modern way of looking at cyberattacks

MITRE is a non-profit organization that provides engineering and technical guidance to the federal government, known for developing the MITRE ATT&CK framework, a knowledge base of adversarial tactics, techniques, and common knowledge (TTPs) used in cyberattacks.

Question 19

AUP

Answer 19

Acceptable Use Policy

Question 20

AV

Answer 20

Asset Value

Question 21

BASH

Answer 21

Bourne-Again Shell

a Unix shell and command language written by Brian Fox for the GNU Project as a free software replacement for the Bourne shell.[15][16] The shell’s name is an acronym for Bourne-Again SHell, a pun on the name of the Bourne shell that it replaces[17] and the notion of being “born again”.

Question 22

BC

Answer 22

Business Continuity.

making sure business can continue despite the incident, important for larger incidents

Question 23

BEC

Answer 23

Business Email Compromise

Compromised accounts, spoofed email, typo squatting domain, malware

Question 24

BGP

Answer 24

Border Gateway Protocol

Enables the internet exchange routing information between autonomous systems (insecure). Susceptible to BGP hijacking

Question 25

BIA

Answer 25

Business Impact Analysis

Question 26

BIAS

Answer 26

Bluetooth Impersonation AttackS Exploiting mutual authentication

Question 27

BIOS

Answer 27

Basic Input/Output System

Question 28

BPA

Answer 28

Business partner agreements when two organizations agree to do business together, could potentially specify responsibilities and division of profits

Question 29

BPDU

Answer 29

Bridge Protocol Data Unit Protects STP from sending messages it should not, prevents looping

Question 30

BYOD

Answer 30

Bring your own device

Question 31

C

Answer 31

Cipher Text In cryptography, ciphertext refers to the scrambled or encrypted form of plaintext (the original, readable message) that is produced by an encryption process, and can only be understood with the correct decryption key

Question 32

C2

Answer 32

Command & Control Servers C2 servers facilitate data exfiltration by instructing the compromised device to send specific data to the server. This data can include stolen credentials, sensitive documents, or other valuable information.

Question 33

CA

Answer 33

Certificate Authority Issues digital certificates to provide assurance people are who they claim to be

Question 34

CAM

Answer 34

Content-addressable memory AKA associative memory or associative storage, computer memory used in very high-speed searching applications

Question 35

CAPTCHA

Answer 35

Completely Automated Turing Test to Tell Computers and Humans Apart a type of challenge–response test used in computing to determine whether the user is human in order to deter bot attacks and spam.

Question 36

CAR

Answer 36

Corrective Action Report an official document issued when an element of a plan hasn't been implemented or executed properly

Question 37

CASB

Answer 37

Cloud Access Security Brokers

Question 38

CBC

Answer 38

Cipher Block Chaining Cipher block chaining (CBC) is a mode of operation for a block cipher -- one in which a sequence of bits are encrypted as a single unit, or block, with a cipher key applied to the entire block. Cipher block chaining uses what is known as an initialization vector (IV) of a certain length. By using this along with a single encryption key, organizations and individuals can safely encrypt and decrypt large amounts of plaintext.

Question 39

CCMP

Answer 39

Counter Mode/CBC-MAC Protocol uses AES to provide confidentiality. Provides authentication for user and access control capabilities

Question 40

CCTV

Answer 40

Closed-circuit Television

Question 41

CERT

Answer 41

Computer Emergency Response Team

Question 42

CFB

Answer 42

Cipher Feedback The cipher feedback (CFB) mode, in its simplest form uses the entire output of the block cipher. In this variation, it is very similar to CBC, turning a block cipher into a self-synchronizing stream cipher

Question 43

CHAP

Answer 43

Challenge Handshake Authentication Protocol

Question 44

CIA

Answer 44

Confidentiality, Integrity, Availability

Question 45

CIO

Answer 45

Chief Information Officer

Question 46

CIRT

Answer 46

Computer Incident Response Team

Question 47

CMS

Answer 47

Content Management System

Question 48

COOP

Answer 48

Continuity of Operation Planning

Question 49

COPE

Answer 49

Corporate Owned, Personally Enabled

Question 50

CP

Answer 50

Contingency Planning

Question 51

CRC

Answer 51

Cyclical Redundancy Check Error-detecting code used in digital networks to detect accidental changes to digital data

Question 52

CRL

Answer 52

Certificate Revocation List

Question 53

CSO

Answer 53

Chief Security Officer

Question 54

CSP

Answer 54

Cloud Service Provider

Question 55

CSR

Answer 55

Certificate Signing Request Providing CA with your public key to initiate the CSR

Question 56

CSRF

Answer 56

Cross-site Request Forgery Cross-site request forgery, also known as one-click attack or session riding and abbreviated as CSRF or XSRF, is a type of malicious exploit of a website or web application where unauthorized commands are submitted from a user that the web application trusts

Question 57

CSU

Answer 57

Channel Service Unit

Question 58

CTM

Answer 58

Counter Mode converts a block cipher into a stream cipher. It combines an IV with a counter and uses the result to encrypt each plaintext block. Each block uses the same IV, but CTM combines it with the counter value, resulting in a different encryption key for each block. Multiprocessor systems can encrypt or decrypt multiple blocks at the same time, allowing the algorithm to be quicker on multiprocessor or multicore systems. CTM is widely used and respected as a secure mode of operation.

Question 59

CTO

Answer 59

Chief Technology Officer

Question 60

CVE

Answer 60

Common Vulnerability Enumeration

Question 61

CVSS

Answer 61

Common Vulnerability Scoring System

Question 62

CYOD

Answer 62

Choose Your Own Device

Question 63

DAC

Answer 63

Discretionary Access Control More common, access control scheme to control home PCs (ex: Linux file permissions)

Question 64

DBA

Answer 64

Database Administrator

Question 65

DDoS

Answer 65

Distributed Denial of Service

Question 66

DEP

Answer 66

Data Execution Prevention

Question 67

DES

Answer 67

Digital Encryption Standard

Question 68

DHCP

Answer 68

Dynamic Host Configuration Protocol

Question 69

DHE

Answer 69

Diffie-Hellman Ephemeral When a key exchange uses Ephemeral Diffie-Hellman a temporary DH key is generated for every connection and thus the same key is never used twice. This enables Forward Secrecy (FS), which means that if the long-term private key of the server gets leaked, past communication is still secure.

Question 70

DKIM

Answer 70

DomainKeys Identified Mail Signature header to verify email sender and prevent email spoofing

Question 71

DLL

Answer 71

Dynamic Link Library

Question 72

DLP

Answer 72

Data Loss Prevention

Question 73

DMARC

Answer 73

Domain Message Authentication Reporting and Conformance determine whether you should refuse or accept email message

Question 74

DNAT

Answer 74

Destination Network Address Translation is a technique that translates destination IP address generally when connecting from public IP address to private IP address. It is generally used to redirect packets destined for specific IP address or specific port on IP address, on one host simply to a different address mostly on different host.

Question 75

DNS

Answer 75

Domain Name System

Question 76

DoS

Answer 76

Denial of Service

Question 77

DPO

Answer 77

Data Privacy Officer Official role required by GDPR The General Data Protection Regulation (GDPR)