Acronyms (Page 17)

Question 1

SOW

Answer 1

Statement of Work

A document routinely employed in the field of project management. It defines project-specific activities, deliverables, and timelines for a vendor providing services to the client.

Question 2

SPF

Answer 2

Sender Policy Framework

An email authentication method designed to detect forging sender addresses during the delivery of the email.

Question 3

SPIM

Answer 3

Spam over Internet Messaging

Unsolicited messages sent via an instant messaing (IM) system.

Question 4

SQL

Answer 4

Structured Query Language

A domain-specific language used in programming and designed for managing data held in a relational database management system.

Question 5

SQLi

Answer 5

SQL Injection

A code injection technique used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution.

Question 6

SRTP

Answer 6

Secure Real-Time Protocol

A profile of the Real-Time Transport Protocol (RTP) intended to provide encryption, message authentication, and integrity, and replay protection to the RTP data in both unicast and multicast applications.

Question 7

SSD

Answer 7

Solid State Drive

A storage device containing nonvolatile flash memory, used in place of a hard disk because of its much greater speed.

Question 8

SSH

Answer 8

Secure Shell

A cryptographic network protocol for establishing an encrypted link between a web server and a browser.

Question 9

SSL

Answer 9

Secure Sockets Layer

The standard security technology for establishing an encrypted link between a web server and a browser.

Question 10

SSO

Answer 10

Single Sign-on

A property of access control of multiple related, yet independent, software systems. With this property, a user logs in with a single ID and password to gain access to any of several related systems.

Question 11

STIX

Answer 11

Structured Threat Information eXchange

A language and serialization format used to exchange cyber threat intelligence.

Question 12

SWG

Answer 12

Secure Web Gateway

Solutions that filter unwanted software/malware from user-initiated web/internet traffic and enforce corporate and regulatory policy compliance.

Question 13

TACACS+

Answer 13

Terminal Access Controller Access Control Systems

A security application that provides centralized validation of users attempting to gain access to a router or network access server.

Question 14

TAXII

Answer 14

Trusted Automated eXchange of Indicator Information

An application layer protocol for the communication of cyber threat information in a simple and scalable manner.

Question 15

TCP/IP

Answer 15

Transmission Control Protocol/Internet Protocol

A set of communication protocols used to interconnect network devices on the internet.

Question 16

TGT

Answer 16

Ticket Granting Ticket

A part of the Kerberos protocol used for authenticating requests for service tickets within the network.

Question 17

TKIP

Answer 17

Temporal Key Integrity Protocol

A security protocol used in the IEEE 802.11 wireless networking standard.