C90.07A: Fundamental Cloud Security (only abbreviations)

Question 1

A I C T

Answer 1

Availability | Integrity | Confidentiality | Trust

= Cloud Security Basics

Question 2

I A M

Answer 2

Identify and Access Management

= Identity in the cloud, User management, Authentication and Authorization

Question 3

D o S

Answer 3

Denial Of Service

= Access oriented cloud threat

Question 4

S T R I D E

Answer 4

Spoofing | Tempering | Repudiation | Information disclosure | Denial of service | Elevation of Privilege

= Security threat categories

Question 5

A D C

Answer 5

Application Delivery Controller

Question 6

N P E

Answer 6

Non Person Entities

Question 7

P E

Answer 7

Person Entities

Question 8

A P I

Answer 8

Application Programm Interface

= an NPE

Question 9

D L P

Answer 9

Data Loss Protection

= part of ADC mechanism

Question 10

T L S

Answer 10

Transport Layer Security

= part of ADC mechanism

Question 11

D D o S

Answer 11

Distributed Denial Of Service

= part of ADC mechanism

Question 12

D N S

Answer 12

Domain Name Service

= mapping network of servers domain names to IP address

Question 13

I D P S

Answer 13

Intrusion Detection and Prevention System

= automated process
monitoring, identify incidents, log information, stop processes and report to administrators

Question 14

P K I

Answer 14

Public Key Infrastructure

= data file, binding information user id, signature from issuing authority and have corresponding private key.
Also called: digital certificate, X.509 certificate or public key certificate

Question 15

C R L

Answer 15

Certificate Revocation List

Question 16

C A

Answer 16

Certificate Authority

= part of Certificate Trust Store mechanism

Question 17

V P N

Answer 17

Virtual Private Network

Question 18

L 2 T P

Answer 18

Layer Two Tunneling Protocol

= used to ensure privacy with VPN, data is encrypted at sending side and decrypted and receiving side

Question 19

V P C

Answer 19

Virtual Private Cloud

= segmentation of public cloud service provider’s multi-tenant environment to support private cloud computing.
combined with VPN p[rovides secure data trabnsfer between on-premise and public cloud, ensuring isolated boundaries

Question 20

C C G

Answer 20

Cloud Consumer Gateway

= hard- or software appliance on consumer premises that serves as a bridge between local and remote networks

Question 21

V M

Answer 21

Virtual Machine

Question 22

V I M

Answer 22

Virtual Infrastructure Manager

Question 23

L U N

Answer 23

Logical Unit Number

= a unique identifier for designating an individual or collection of physical or virtual storage devices that execute input/output (I/O) commands

Question 24

S I E M

Answer 24

Security Information and Event Management

Question 25

D M Z

Answer 25

DeMilitarized Zone

Question 26

V P G

Answer 26

Virtual Private Gateway

Question 27

A D P

Answer 27

Automatically Defined Perimeter

Question 28

C K M S

Answer 28

Cryptographic Key Management System

Question 29

I S P

Answer 29

Internet Service Provider

Question 30

B G P

Answer 30

Border Gateway Protocol

Question 31

A G S

Answer 31

Authentication Gateway Service

Question 32

C V S

Answer 32

Certificate Validation Service

Question 33

C R L

Answer 33

Certificate Revocation List

Question 34

H T T P S

Answer 34

HyperText Transport Protocol Secure

Question 35

S T S

Answer 35

Secure Token Service

Question 36

T P M

Answer 36

Trusted Platform Module = tamper-resistent integrated circuit build into some computer motherboards.

Question 37

E T D R

Answer 37

Endpoint Threat Detection and Response

Question 38

N F M

Answer 38

Network Forensics Monitor

Question 39

P C A P

Answer 39

Parse Packet Capture