Acronyms explained Flashcards
ACL
An Access Control List (ACL) is a set of rules used to control network traffic and reduce network attacks by limiting which users and systems can access certain resources. It specifies which users or system processes are granted access to objects, as well as what operations are allowed on given objects. ACLs are critical in network security for managing permissions and ensuring that only authorized entities can access specific resources.
AAA
Authentication Authorization and Accounting (AAA) is a security framework used to control access to computer resources, enforce policies, and audit usage. It ensures that users are who they claim to be (Authentication), grants or denies access to resources (Authorization), and keeps track of user activity (Accounting). This framework is essential for managing and securing network environments, providing a comprehensive approach to access control and user management.
AES
The Advanced Encryption Standard (AES) is a symmetric encryption algorithm widely used across the globe to secure data. It encrypts data in fixed block sizes using key sizes of 128, 192, or 256 bits, providing a robust security mechanism that is both fast and highly secure. AES is the standard chosen by the U.S. government and many other organizations for encrypting sensitive information.
AES-256
Advanced Encryption Standard 256-bit (AES-256) is a version of the AES encryption algorithm that uses a 256-bit key length for encrypting and decrypting data. This provides an extremely high level of security, making it ideal for encrypting sensitive data in governmental, financial, and other high-security environments. AES-256 is known for its resistance to all known practical attacks, ensuring the confidentiality and integrity of the data it protects.
AH
The Authentication Header (AH) is a key component within the IPsec suite, providing crucial security features for data traveling across networks. It acts like a digital fingerprint and seal, verifying the sender’s identity, ensuring data integrity (no tampering), and preventing replay attacks (reusing old packets). By inserting AH into the data packets themselves, AH safeguards communication between devices and networks that require strong data protection and sender authentication.
AIS
Automated Indicator Sharing (AIS) is a program by the U.S. Department of Homeland Security designed to facilitate the sharing of cyber threat indicators between the government and private sector. It helps organizations quickly share and receive information about cybersecurity threats to improve defensive measures. AIS supports a real-time exchange of threat data to enhance collective cybersecurity posture.
ALE
Annualized Loss Expectancy (ALE) is a metric used in risk management to estimate the potential financial loss from a specific risk over the course of a year. It is calculated by multiplying the Single Loss Expectancy (SLE) by the Annual Rate of Occurrence (ARO). ALE helps organizations quantify and prioritize risks based on their potential impact on the business.
Ale = Sle x Aro
AP
Access Point (AP) is a device that allows wireless devices to connect to a wired network using Wi-Fi or other wireless protocols. It acts as a central transmitter and receiver of wireless radio signals, enabling devices to communicate with the network and with each other. APs are essential components in wireless local area networks (WLANs).
API
Application Programming Interface (API) is a set of rules and protocols for building and interacting with software applications. APIs allow different software systems to communicate with each other, enabling integration and interaction. In cybersecurity, secure API management is crucial to prevent unauthorized access and data breaches.
APT
Advanced Persistent Threat (APT) refers to a prolonged and targeted cyberattack in which an intruder gains access to a network and remains undetected for an extended period. The goal is to steal data rather than cause damage. APTs are often associated with state-sponsored or highly skilled threat actors targeting specific organizations.
ARO
, Annualized Rate of Occurrence (ARO) is a measure used in risk management to estimate how often a particular risk is expected to occur within a year. It is used in calculating the Annualized Loss Expectancy (ALE) by providing the frequency of potential loss events. ARO helps organizations assess and prioritize risks based on their likelihood.
ARP
Address Resolution Protocol (ARP) is a protocol used for mapping an IP address to a physical machine address (MAC address) on a local area network. ARP operates at the OSI model’s Network layer and is essential for communication between devices on the same network. ARP spoofing attacks can be used to intercept or alter network traffic.
ASLR
Address Space Layout Randomization (ASLR) is a security technique used to prevent exploitation of memory corruption vulnerabilities by randomizing the memory addresses used by system and application processes. ASLR makes it difficult for attackers to predict the location of specific functions or memory segments, thereby reducing the success rate of certain types of attacks.
ATT&CK
Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) is a framework developed by MITRE that provides a detailed catalog of cyber adversary behavior. It describes the various techniques and tactics used by attackers throughout the lifecycle of an intrusion. ATT&CK is widely used for threat modeling, red teaming, and improving security operations.
AUP
Acceptable Use Policy (AUP) is a set of rules and guidelines that define acceptable behavior and usage of an organization’s IT resources. It outlines what users are and are not allowed to do with company-owned equipment and network resources. AUPs are essential for ensuring compliance, security, and proper use of technology within an organization.
AV
Antivirus (AV) software is a program designed to detect, prevent, and remove malware from computers and networks. AV solutions use various techniques, such as signature-based detection, heuristic analysis, and behavioral analysis, to identify and mitigate threats. Regular updates and scans are crucial for maintaining effective protection against evolving cyber threats.
BASH
Bourne Again Shell (BASH) is a command language interpreter for Unix and Linux operating systems. It provides a user interface for entering and executing commands, scripts, and programs. BASH is widely used for system administration, automation, and scripting tasks in cybersecurity and IT operations.
BCP
Business Continuity Plan (BCP) is a strategy and set of procedures to ensure that critical business functions continue during and after a disaster or disruption. BCP includes plans for data backup, recovery, and maintaining operations in the face of various threats. It is essential for minimizing downtime and ensuring organizational resilience.
BGP
Border Gateway Protocol (BGP) is a standardized exterior gateway protocol used to exchange routing information between autonomous systems on the internet. BGP helps determine the best paths for data to travel across the complex web of networks that make up the internet. BGP security is crucial to prevent route hijacking and ensure reliable internet connectivity.
BIA
Business Impact Analysis (BIA) is a process used to assess the potential effects of an interruption to critical business operations. It identifies critical functions, assesses the impact of disruptions, and helps prioritize recovery strategies. BIA is a key component of business continuity planning and risk management.
BIOS
Basic Input/Output System (BIOS) is firmware used to perform hardware initialization and provide runtime services for operating systems and programs. It is the first software to run when a computer is powered on, enabling the system to boot. Secure BIOS configurations are crucial for preventing unauthorized access and ensuring system integrity.
BPA
Business Partnership Agreement (BPA) is a formal agreement between two or more parties that outlines the terms and conditions of their business relationship. It defines responsibilities, expectations, and processes for managing the partnership. BPAs are important for establishing clear communication, governance, and accountability.
BPDU
Bridge Protocol Data Unit (BPDU) is a type of network message used in the Spanning Tree Protocol (STP) to prevent loops in network topologies. BPDUs are exchanged between switches to determine the network’s structure and establish a loop-free path. Proper BPDU management is essential for maintaining stable and efficient network operations.
BYOD
Bring Your Own Device (BYOD) refers to a policy that allows employees to use their personal devices (such as smartphones, tablets, and laptops) for work purposes. BYOD can increase productivity and flexibility but also introduces security challenges. Implementing strong security measures and policies is crucial to protect organizational data on personal devices.
CA
Certificate Authority (CA) is a trusted organization that issues digital certificates used to verify the identity of entities and to facilitate secure communication over networks. CAs play a critical role in public key infrastructure (PKI) by ensuring that the parties involved in a digital transaction are who they claim to be. This helps maintain the integrity and security of online communications
CAPTCHA
Completely Automated Public Turing test to tell Computers and Humans Apart (CAPTCHA) is a type of challenge-response test used to determine whether the user is human. It helps prevent automated bots from accessing websites and performing malicious activities such as spamming or data scraping. CAPTCHAs often involve recognizing distorted text or selecting images that meet certain criteria.”
CAR
Corrective Action Report (CAR) is a document outlining the steps taken to address and correct issues or non-conformities identified during audits or incident investigations. CARs help organizations improve their processes, prevent recurrence of issues, and ensure compliance with standards and regulations. They are an essential part of continuous improvement and quality management systems
CASB
Cloud Access Security Broker (CASB) is a security policy enforcement point placed between cloud service users and cloud applications. It provides visibility, compliance, data security, and threat protection for cloud-based services. CASBs help organizations secure their cloud environments by enforcing policies and monitoring user activities
CBC
Cipher Block Chaining (CBC) is a mode of operation for block ciphers that enhances the security of encrypted data. In CBC mode, each plaintext block is XORed with the previous ciphertext block before being encrypted, ensuring that identical plaintext blocks produce different ciphertext blocks. This adds an additional layer of security by making patterns in the plaintext less discernible
CCMP
Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP) is an encryption protocol used in wireless security standards such as WPA2. CCMP provides data confidentiality, authentication, and integrity by using AES encryption. It is more secure than its predecessor TKIP and is widely used to protect Wi-Fi communications
CCTV
Closed-Circuit Television (CCTV) is a surveillance system that uses video cameras to transmit a signal to a specific, limited set of monitors. CCTV is commonly used for security monitoring in various settings such as businesses, public spaces, and homes. It helps deter criminal activity, monitor for suspicious behavior, and collect evidence for investigations
CERT
Computer Emergency Response Team (CERT) is a group of experts who handle computer security incidents. CERTs are responsible for identifying, assessing, and responding to cybersecurity threats and vulnerabilities. They provide support and guidance to organizations during incidents and help improve overall cybersecurity posture through training and awareness programs
CFB
Cipher Feedback (CFB) is a mode of operation for block ciphers that allows encryption of smaller units of data than the block size. CFB turns a block cipher into a self-synchronizing stream cipher, enabling encryption of data streams and ensuring that identical plaintext segments produce different ciphertext. It is useful for encrypting data of varying lengths.”
CHAP
Challenge-Handshake Authentication Protocol (CHAP) is a security protocol used to authenticate users or devices in network connections. CHAP periodically verifies the identity of the client by using a three-way handshake and a shared secret. This method helps prevent unauthorized access and protects against replay attacks by using different challenge values for each authentication
CIA
Confidentiality, Integrity, and Availability (CIA) is a fundamental model in information security that ensures the protection of data. Confidentiality means protecting data from unauthorized access, integrity ensures data is accurate and unaltered, and availability ensures that data and systems are accessible when needed. The CIA triad is a cornerstone of cybersecurity practices and policies
CIO
Chief Information Officer (CIO) is an executive responsible for managing and overseeing an organization’s information technology (IT) strategy and operations. The CIO ensures that IT systems support the organization’s goals, manages IT budgets, and leads initiatives to improve technology infrastructure. They play a critical role in aligning IT with business objectives and ensuring cybersecurity
CIRT
Computer Incident Response Team (CIRT) is a group of professionals dedicated to responding to and managing computer security incidents. CIRT members are responsible for identifying, analyzing, and mitigating cybersecurity threats. They help organizations recover from incidents, improve security measures, and reduce the risk of future attacks
CMS
Content Management System (CMS) is software used to create, manage, and modify digital content on websites. CMS platforms provide tools for users to design, publish, and maintain web content without requiring extensive technical knowledge. Popular CMSs include WordPress, Joomla, and Drupal, which are widely used for creating and managing websites
COOP
Continuity of Operations Plan (COOP) is a strategy that ensures the continuation of essential functions during and after a disaster or disruption. COOP outlines procedures for maintaining operations, recovering critical systems, and ensuring that vital services remain available. It is crucial for organizational resilience and disaster recovery planning
COPE
Corporate-Owned, Personally-Enabled (COPE) is a policy that provides employees with company-owned devices that they can use for both work and personal purposes. COPE offers better control over security and management of devices while still allowing employees the flexibility to use the devices for personal tasks. It helps organizations maintain security while supporting employee productivity
CP
Contingency Plan (CP) is a set of procedures and guidelines designed to help an organization respond to unexpected events and disruptions. CPs outline steps to take in emergencies, such as natural disasters, cyberattacks, or system failures, to ensure that critical functions can continue or be quickly restored. Effective contingency planning is essential for minimizing downtime and impact on operations.”
CRC
Cyclic Redundancy Check (CRC) is an error-detecting code used to detect accidental changes to raw data. It is commonly used in digital networks and storage devices to ensure data integrity. CRC generates a checksum based on the data, which is compared at the receiving end to verify that the data has not been altered or corrupted during transmission
CRL
Certificate Revocation List (CRL) is a list of digital certificates that have been revoked by the issuing Certificate Authority (CA) before their expiration dates. CRLs are used to check the validity of a certificate and ensure that it is not used for malicious purposes. Regularly updating and checking CRLs is crucial for maintaining the security of public key infrastructure (PKI).”
CSO
Chief Security Officer (CSO) is an executive responsible for an organization’s security, including physical security, cybersecurity, and risk management. The CSO develops and implements security policies, oversees security operations, and ensures compliance with regulations. They play a key role in protecting the organization’s assets, personnel, and information
CSP
Cloud Service Provider (CSP) is a company that offers cloud computing services, such as infrastructure, platforms, and software, to other businesses and individuals. CSPs provide scalable and flexible resources over the internet, allowing organizations to manage workloads and applications without investing in physical hardware. Common CSPs include Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).”
CSR
Certificate Signing Request (CSR) is a block of encoded text submitted to a Certificate Authority (CA) to apply for a digital certificate. A CSR contains information such as the organization’s name, domain, and public key. The CA uses the CSR to create and issue a digital certificate that can be used for secure communications and authentication
CSRF
Cross-Site Request Forgery (CSRF) is a web security vulnerability that allows an attacker to induce users to perform actions that they do not intend to perform. By exploiting the trust that a website has in a user’s browser, attackers can make unauthorized requests on behalf of the user. Implementing anti-CSRF tokens and verifying request origins are common defenses against CSRF attacks
CSU
Channel Service Unit (CSU) is a device used to connect a digital communication line, such as a T1 line, to a network router or other data terminal equipment. CSUs perform signal regeneration, loopback testing, and line conditioning to ensure reliable data transmission. They are essential components in telecommunications networks for maintaining signal integrity
CTM
Counter-Mode/CBC-MAC Protocol (CTM) is a cryptographic protocol that combines Counter Mode encryption with Cipher Block Chaining Message Authentication Code (CBC-MAC) for securing data. CTM provides both confidentiality and data integrity, making it suitable for protecting sensitive information in various applications. It is used in protocols like IEEE 802.11i for securing wireless communications
CTO
Chief Technology Officer (CTO) is an executive responsible for overseeing the development and implementation of technology within an organization. The CTO focuses on technology strategy, innovation, and aligning technological advancements with business goals. They play a crucial role in driving technological growth, ensuring competitive advantage, and managing tech-related risks.”
CVE
Common Vulnerabilities and Exposures (CVE) is a list of publicly disclosed information security vulnerabilities and exposures. Each CVE entry contains an identifier, a description, and references to vulnerability reports and patches. CVEs help organizations identify and address security flaws in software and hardware, improving overall cybersecurity posture.”
CVSS
Common Vulnerability Scoring System (CVSS) is a standardized framework for rating the severity of security vulnerabilities. CVSS provides a numerical score that reflects the potential impact of a vulnerability, helping organizations prioritize their response and remediation efforts. The scoring system considers factors like exploitability, impact, and the complexity of attacks
CYOD
Choose Your Own Device (CYOD) is a policy that allows employees to select from a range of company-approved devices for work purposes. CYOD provides a balance between user preference and organizational control over device security. It helps ensure that devices meet security standards while offering employees some flexibility in their choice of technology
DAC
Discretionary Access Control (DAC) is a type of access control system where the owner of a resource determines who can access it and what permissions they have. It provides flexible and fine-grained control but can be less secure than other access control models if not managed properly
DBA
Database Administrator (DBA) is responsible for the installation, configuration, upgrading, administration, monitoring, maintenance, and security of databases in an organization. DBAs ensure that databases run efficiently and securely, supporting data management and storage requirements
DDoS
Distributed Denial of Service (DDoS) attack is a malicious attempt to disrupt normal traffic of a targeted server, service, or network by overwhelming it with a flood of internet traffic from multiple sources. DDoS attacks can cause significant downtime and disruption for online services.”
DEP
Data Execution Prevention (DEP) is a security feature that helps prevent code execution from non-executable memory regions. It protects against certain types of exploits by marking areas of memory as non-executable, thereby preventing malicious code from running in those areas
DES
Data Encryption Standard (DES) is an older symmetric-key block cipher encryption algorithm that encrypts data in 64-bit blocks using a 56-bit key. DES is considered insecure due to its short key length and vulnerability to brute-force attacks, leading to its replacement by more secure algorithms like AES
DHCP
Dynamic Host Configuration Protocol (DHCP) is a network management protocol used to dynamically assign IP addresses and other network configuration parameters to devices on a network. DHCP simplifies network administration by automating the assignment of IP addresses
DHE
Diffie-Hellman Ephemeral (DHE) is a key exchange protocol that provides forward secrecy by generating a unique session key for each communication session. It is used in secure communications to ensure that even if a session key is compromised, past sessions remain secure
DKIM
DomainKeys Identified Mail (DKIM) is an email authentication method that uses digital signatures to verify that an email message was sent from an authorized domain. DKIM helps prevent email spoofing and ensures the integrity of email messages
DLL
Dynamic Link Library (DLL) is a file that contains code and data that can be used by multiple programs simultaneously. DLLs help modularize applications, making them easier to update and maintain, but they can also be a vector for malware if not properly secured
DLP
Data Loss Prevention (DLP) refers to strategies and tools designed to prevent sensitive data from being lost, stolen, or accessed by unauthorized users. DLP solutions monitor, detect, and block the unauthorized transmission of sensitive information
DMARC
Domain-based Message Authentication, Reporting & Conformance (DMARC) is an email authentication protocol that builds on SPF and DKIM to detect and prevent email spoofing. DMARC allows domain owners to publish policies on how to handle unauthenticated emails and provides reporting capabilities
DNAT
Destination Network Address Translation (DNAT) is a type of NAT used to change the destination IP address of incoming traffic. It is commonly used in load balancing and to direct traffic to specific servers within a private network
DNS
Domain Name System (DNS) is a hierarchical and decentralized naming system for computers, services, or other resources connected to the internet or a private network. DNS translates human-readable domain names (e.g., www.example.com) into IP addresses (e.g., 192.0.2.1)
DoS
Denial of Service (DoS) attack is an attempt to make a machine or network resource unavailable to its intended users by overwhelming it with a flood of requests. Unlike DDoS, DoS attacks typically originate from a single source.”
DPO
Data Protection Officer (DPO) is an organizational role required under the GDPR responsible for overseeing data protection strategy and implementation to ensure compliance with data protection laws. The DPO acts as a liaison between the organization and regulatory authorities
DRP
Disaster Recovery Plan (DRP) is a documented process or set of procedures to recover and protect a business IT infrastructure in the event of a disaster. DRPs include strategies for restoring hardware, applications, and data to ensure business continuity.
DSA
Digital Signature Algorithm (DSA) is a Federal Information Processing Standard for digital signatures. It is used to generate and verify digital signatures, providing authentication and integrity for electronic documents and communications
DSL
Digital Subscriber Line (DSL) is a family of technologies that provide internet access by transmitting digital data over the wires of a local telephone network. DSL is widely used for broadband internet connections
EAP
Extensible Authentication Protocol (EAP) is an authentication framework used in wireless networks and point-to-point connections. EAP supports multiple authentication methods, including passwords, digital certificates, and token cards
ECB
Electronic Codebook (ECB) is a simple mode of operation for block ciphers that encrypts each block of data independently. ECB is not recommended for use because it can reveal patterns in the plaintext, making it vulnerable to certain types of attacks
ECC
Elliptic Curve Cryptography (ECC) is a public key encryption technique that uses elliptic curve theory to provide the same level of security as other encryption methods with smaller key sizes. ECC is widely used for secure communication and digital signatures.”
ECDHE
Elliptic Curve Diffie-Hellman Ephemeral (ECDHE) is a key exchange protocol that provides forward secrecy using elliptic curve cryptography. ECDHE generates a unique session key for each communication session, enhancing security for encrypted connections
ECDSA
Elliptic Curve Digital Signature Algorithm (ECDSA) is a variant of the Digital Signature Algorithm (DSA) that uses elliptic curve cryptography. ECDSA provides a high level of security with shorter key lengths, making it efficient for digital signatures.”
EDR
Endpoint Detection and Response (EDR) is a cybersecurity technology that monitors and responds to threats on endpoints, such as computers and mobile devices. EDR solutions provide real-time visibility, detection, and automated response to security incidents
EFS
Encrypting File System (EFS) is a feature of Windows that provides file-level encryption. EFS helps protect sensitive data by encrypting files on disk, making them inaccessible to unauthorized users without the decryption key.
ERP
Enterprise Resource Planning (ERP) is a type of software used by organizations to manage and integrate the important parts of their businesses. ERP software systems integrate planning, purchasing, inventory, sales, marketing, finance, and human resources
ESN
Electronic Serial Number (ESN) is a unique identifier assigned to mobile devices such as cell phones. ESNs are used to identify devices on mobile networks and to help prevent theft and fraud
ESP
Encapsulating Security Payload (ESP) is a component of the IPsec suite that provides encryption, authentication, and integrity for IP packets. ESP helps protect data transmitted over IP networks by ensuring that it is encrypted and tamper-proof
FACL
File Access Control List (FACL) is a list of permissions attached to a file or directory that specifies which users or system processes can access the file and what operations they can perform. FACLs provide fine-grained control over file access. It is used in Linux
FDE
Full Disk Encryption (FDE) is a security measure that encrypts all the data on a disk drive, ensuring that data cannot be read without the correct decryption key. FDE helps protect sensitive information in case the device is lost or stolen
FIM
File Integrity Monitoring (FIM) is a security process that involves checking files and directories for unauthorized changes. FIM solutions alert administrators to potential security breaches by monitoring critical system and application files
FPGA
Field-Programmable Gate Array (FPGA) is an integrated circuit that can be configured by the customer or designer after manufacturing. FPGAs are used in various applications for customizable hardware implementations, including security and encryption
FRR
False Rejection Rate (FRR) is the rate at which a biometric security system incorrectly rejects an authorized user. A high FRR indicates that the system is not user-friendly, as it fails to recognize legitimate users
FTP
File Transfer Protocol (FTP) is a standard network protocol used to transfer files from one host to another over a TCP-based network. FTP is commonly used for uploading and downloading files to and from a server. Insecure protocol
FTPS
File Transfer Protocol Secure (FTPS) is an extension to FTP that adds support for the Transport Layer Security (TLS) and the Secure Sockets Layer (SSL) cryptographic protocols. FTPS provides secure file transfer by encrypting the data and control channels
GCM
Galois/Counter Mode (GCM) is a mode of operation for symmetric key cryptographic block ciphers. It provides both data authenticity (integrity) and confidentiality, making it widely used in securing data transmissions.”
GDPR
General Data Protection Regulation (GDPR) is a comprehensive data protection law enacted by the European Union to safeguard personal data and ensure privacy. GDPR imposes strict regulations on data handling and grants individuals rights over their personal data
GPG
GNU Privacy Guard (GPG) is an encryption software that provides cryptographic privacy and authentication. It is used for securing data communications and ensuring the integrity of data, supporting encryption, decryption, and digital signatures.GnuPG allows you to encrypt and sign your data and communications
GPO
Group Policy Object (GPO) is a feature in Windows that allows administrators to manage and configure operating systems, applications, and user settings in an Active Directory environment. GPOs help enforce security policies and configurations across multiple devices
GPS
Global Positioning System (GPS) is a satellite-based navigation system that provides location and time information anywhere on Earth. GPS is widely used in various applications, including navigation, mapping, and timing
GPU
Graphics Processing Unit (GPU) is a specialized processor designed to accelerate graphics rendering and parallel processing tasks. GPUs are commonly used in gaming, professional visualization, and increasingly in scientific computing and machine learning
GRE
Generic Routing Encapsulation (GRE) is a tunneling protocol used to encapsulate various network layer protocols inside virtual point-to-point links. GRE is used to create VPNs and other secure connections over the internet.”
HA
High Availability (HA) refers to systems or components that are continuously operational for a long time. HA aims to minimize downtime and ensure that critical services and applications remain accessible even during failures or maintenance
HDD
Hard Disk Drive (HDD) is a data storage device that uses spinning disks coated with magnetic material to store and retrieve digital information. HDDs are widely used for storing large amounts of data in computers and servers
HIDS
Host-based Intrusion Detection System (HIDS) is a security system that monitors and analyzes the internals of a computing system to detect suspicious activity. HIDS helps identify potential threats and breaches on individual hosts or devices
HIPS
Host-based Intrusion Prevention System (HIPS) is a security system that monitors and potentially prevents malicious activities on a host. HIPS provides protection by blocking suspicious actions and ensuring system integrity
HMAC
Hash-based Message Authentication Code (HMAC) is a mechanism that combines a cryptographic hash function with a secret key to provide data integrity and authenticity. HMAC is used to verify the authenticity of a message or data
HOTP
HMAC-based One-Time Password (HOTP) is a one-time password algorithm based on HMAC. It is used for two-factor authentication, generating a unique password for each authentication attempt
HSM
Hardware Security Module (HSM) is a physical device that provides secure management, processing, and storage of cryptographic keys. HSMs are used to enhance security for sensitive cryptographic operations
HTML
HyperText Markup Language (HTML) is the standard language for creating and designing web pages and web applications. HTML defines the structure and layout of a web document by using various tags and elements
HTTP
HyperText Transfer Protocol (HTTP) is the foundation of data communication on the World Wide Web. HTTP defines how messages are formatted and transmitted, and how web servers and browsers should respond to various commands
HTTPS
HyperText Transfer Protocol Secure (HTTPS) is an extension of HTTP that uses encryption protocols, such as SSL or TLS, to secure data transfer over the internet. HTTPS ensures that data transmitted between a web server and a client is encrypted and secure
HVAC
Heating, Ventilation, and Air Conditioning (HVAC) systems control the climate and air quality in buildings. In data centers, HVAC systems are crucial for maintaining the optimal temperature and humidity levels for IT equipment
IaaS
Infrastructure as a Service (IaaS) is a cloud computing model that provides virtualized computing resources over the internet. IaaS allows organizations to rent virtual machines, storage, and networking resources on a pay-as-you-go basis.”
IaC
Infrastructure as Code (IaC) is the practice of managing and provisioning computing infrastructure using machine-readable configuration files. IaC enables automated deployment and consistent configuration of IT resources
IAM
Identity and Access Management (IAM) is a framework of policies and technologies that ensure the right individuals have access to the right resources at the right times for the right reasons. IAM helps secure and manage digital identities
ICMP
,”Internet Control Message Protocol (ICMP) is a network layer protocol used for error messages and operational information. ICMP is commonly used for network diagnostics and troubleshooting, such as the ping command.”
ICS
Industrial Control System (ICS) refers to systems and devices used to control industrial processes, such as manufacturing, energy production, and water treatment. ICS includes SCADA systems and DCS, which monitor and control industrial operations
IDEA
International Data Encryption Algorithm (IDEA) is a symmetric key block cipher used for data encryption. IDEA provides high security and is used in various cryptographic applications to protect sensitive information.
IDF
Intermediate Distribution Frame (IDF) is a distribution point for connecting and managing telecommunications cabling between the main distribution frame (MDF) and individual end devices in a building or campus
IdP
Identity Provider (IdP) is an entity in an identity management system that creates, maintains, and manages identity information. IdPs authenticate users and provide identity assertions to service providers for access control
IDS
Intrusion Detection System (IDS) is a security system that monitors network or system activities for malicious activities or policy violations. IDS alerts administrators to potential threats and breaches, helping protect IT infrastructure
IEEE
Institute of Electrical and Electronics Engineers (IEEE) is a professional association dedicated to advancing technology. IEEE develops standards for various technologies, including networking (e.g., IEEE 802.11 for Wi-Fi).”
IKE
Internet Key Exchange (IKE) is a protocol used to set up a secure, authenticated communications channel between two parties. IKE is part of the IPsec suite and helps establish security associations and key management.”
IM
Instant Messaging (IM) is a form of real-time communication between two or more people based on typed text. IM is commonly used in personal and business contexts for quick and direct communication
IMAP
Internet Message Access Protocol (IMAP) is a protocol for accessing and managing email messages on a mail server. IMAP allows users to view and manipulate their emails as if they were stored locally, enabling synchronization across multiple devices
IoC
Indicator of Compromise (IoC) is a piece of data that suggests that an endpoint or network may have been breached. IoCs are used in threat detection and incident response to identify potential security incidents.”
IoT
Internet of Things (IoT) refers to the network of physical objects embedded with sensors, software, and connectivity to collect and exchange data. IoT enables smart devices to communicate and interact with each other and with centralized systems
IP
Internet Protocol (IP) is the principal communications protocol for relaying packets of data across network boundaries. IP addresses are used to identify and locate devices on a network.”
IPS
Intrusion Prevention System (IPS) is a network security device that monitors network traffic for malicious activity and takes action to prevent the threat. IPS can block or reject harmful traffic to protect the network.”
IPSec
Internet Protocol Security (IPsec) is a suite of protocols used to secure Internet Protocol (IP) communications by authenticating and encrypting each IP packet in a communication session. IPsec is used to establish secure VPNs
IR
Incident Response (IR) refers to the process of identifying, investigating, and mitigating security incidents. IR involves a structured approach to handle breaches and minimize the impact of cyberattacks
IRC
Internet Relay Chat (IRC) is a protocol used for real-time text communication over the internet. IRC is used in various applications, including group chats, discussions, and collaboration.”
IRP
Incident Response Plan (IRP) is a predefined set of instructions and procedures for detecting, responding to, and recovering from security incidents. An IRP helps organizations manage and mitigate the impact of cybersecurity events.”
ISO
International Organization for Standardization (ISO) is an independent, non-governmental international organization that develops and publishes standards for a wide range of industries and technologies.
ISP
Internet Service Provider (ISP) is a company that provides individuals and organizations access to the internet. ISPs offer various services, including internet connectivity, email, and web hosting
