B(s)

Question 1

Backdoor

Answer 1

A shortcut in a system that allows a user to bypass security checks

Question 2

Background checks

Answer 2

Verification of a person’s background and experience, also called a pre-employment screening

Question 3

Backward chaining

Answer 3

Expert system mode that starts with begins with a premise, and works backwards

Question 4

Baseband

Answer 4

Network with one channel; can only send one signal at a time

Question 5

Baseline

Answer 5

Uniform ways to implement a safeguard,administrative control

Question 6

Baselining

Answer 6

The process of capturing a point in time understanding of the current system security configuration

Question 7

BIOS

Answer 7

Basic Input Output System, typically stored in firmware

Question 8

BRI

Answer 8

Basic Rate Interface, provides two 64 K digital ISDN channels

Question 9

Bastion host

Answer 9

Any host placed on the internet that is not protected by another device

Question 10

Bayesian filtering

Answer 10

Uses mathematical formulas to assign probabilities to make decisions such as identifying spam

Question 11

BCI

Answer 11

The business continuity Institute

Question 12

BCP

Answer 12

Business Continuity Plan. A long-term plan to ensure the continuity of business operations

Question 13

BCP/DRP project manager

Answer 13

The key point of contact for ensuring that a BCP/DRP is not only completed, but also routinely tested

Question 14

Bell-LaPadula

Answer 14

Security model focused on maintaining the confidentiality of objects

Question 15

Best evidence rule

Answer 15

Requires use of the strongest possible evidence

Question 16

Best practice

Answer 16

A consensus of the best way to protect the confidentiality, integrity and availability of assets

Question 17

BGP

Answer 17

Border Gateway Protocol, the routing protocol used on the Internet

Question 18

Biba

Answer 18

Security model focused on maintaining the integrity of of objects

Question 19

Big Bang testing

Answer 19

Integration testing that tests all integrated software components

Question 20

Binary image

Answer 20

Bit-level copy of memory

Question 21

Black box software testing

Answer 21

Gives the tester no internal details: the software is treated as a black box that receives inputs

Question 22

Black hat

Answer 22

Unethical hacker or researcher

Question 23

Blowfish

Answer 23

Block cipher using from 32 through 448 bit (the default is 128) keys to encrypt 64 bit of data

Question 24

Bluetooth

Answer 24

802.15 networking, a PAN wireless technology

Question 25

Bollard

Answer 25

A post designed to stop a car, typically deployed in front of building entrances

Question 26

Book cipher

Answer 26

Cryptographic method that uses whole words from a well-known text such as a dictionary as a one-to-one replacement for plaintext

Question 27

Boot sector virus

Answer 27

Virus that infects the boot sector of a PC, which ensures the virus loads upon system startup

Question 28

BOOTP

Answer 28

Bootstrap protocol, used for bootstrapping via a network by diskless systems

Question 29

Bot

Answer 29

A computer system running malware that is controlled via a botnet

Question 30

Botnet

Answer 30

A central bot command and control (C&C) Network, managed by humans called bot herders

Question 31

Bottom-Up programming

Answer 31

Starts with the low-level technical implementation details and works up to the concept of the complete program

Question 32

Breach notification

Answer 32

Notification of persons whose personal data has been, or is like to have been compromised

Question 33

Brewer-Nash

Answer 33

Or (Chinese wall model) model designed to avoid conflicts of interest by prohibiting one person, like a consultant, from accessing multiple conflict of interest categories (CoIs)

Question 34

Bridge

Answer 34

Layer 2 device that has two ports and connects network segments together

Question 35

Broadband

Answer 35

Network with multiple channels; can send multiple signals at a time, like cable TV

Question 36

Broadcast

Answer 36

Traffic that is sent to all stations in a LAN

Question 37

BRP

Answer 37

Business Recovery Plan, details the steps required to restore normal business operations after a recovering from a disruptive event. Also known as the Business Resumption Plan

Question 38

Brute force attack

Answer 38

Attack that attempts every possible key or combination

Question 39

BS-25999

Answer 39

Continuity standard by the British Standards Institute (BSI)

Question 40

Buffer overflow

Answer 40

Condition where an attacker can insert data beyond the end of a buffer variable

Question 41

Bus

Answer 41

Physical network topology that connects network nodes in a string

Question 42

Business interruption testing

Answer 42

Partial or complete failover to an alternate site

Question 43

Business Owners

Answer 43

Also called Mission Owners, members of senior management who create the information security program and ensure that is properly staffed, funded, and has organizational priority

Question 44

Bytecode

Answer 44

Machine-independent code, used by Java