Chapter 10 Key Terms

Question 1

Secure Sockets Layer

Answer 1

A protocol that secures messages being transmitted on the internet.

Question 2

Transport Layer Security

Answer 2

A protocol that secures messages being transmitted on the internet. It is the successor to SSL 3.0.

Question 3

Secure Shell

Answer 3

A protocol that allows for secure interactive control of remote systems.

Question 4

Hyper Text Transfer Protocol Secure

Answer 4

A secure form of HTTP that uses either SSL or TLS to encrypt sensitive data before it is transmitted.

Question 5

Secure Hypertext Transfer Protocol

Answer 5

An alternate protocol that is not widely used because it is not as secure as HTTPS.

Question 6

Internet Protocol Security

Answer 6

A set of protocols that provides secure data transmission over unprotected TCP/IP networks.

Question 7

Authentication Header

Answer 7

A protocol within IPsec that provides authenticity, non-repudiation, and integrity.

Question 8

Encapsulating Security Payload

Answer 8

A protocol within IPsec that provides all the security of AH plus confidentiality.

Question 9

Security Association

Answer 9

The establishment of shared security information between two network entities to support secure communications.

Question 10

Data loss prevention (DLP)

Answer 10

A system that attempts to detect and stop breaches of sensitive data within an organization.

Question 11

Network DLP

Answer 11

A software or hardware solution that is typically installed near the network perimeter that analyzes network traffic in an attempt to detect transmission of sensitive data in violation of an organization’s security policies.

Question 12

Endpoint DLP

Answer 12

DLP Software that runs on end-user workstations and servers.

Question 13

File-level DLP

Answer 13

DLP software that is used to identify sensitive files in a file system and then to embed the organization’s security policy within the file so that it travels with the a moved or copied file.

Question 14

Cloud DLP

Answer 14

A software solution that analyzes traffic to and from cloud systems in an attempt to detect sensitive data that is being transmitted in violation of an organization’s security policies.

Question 15

Masking

Answer 15

The process of replacing sensitive data with realistic fictional data.

Question 16

Encryption

Answer 16

The process of changing plain text through an algorithm into unreadable ciphertext.

Question 17

Tokenization

Answer 17

The process of replacing original data with a randomly generated alphanumeric character set called a token.

Question 18

Rights management

Answer 18

A system of data protection at the file level that uses various forms of permissions, rules, and security policies.

Question 19

Privilege escalation

Answer 19

The exploitation of a misconfiguration, a bug, or design flaw to gain unauthorized access to resources.

Question 20

Pointer/object dereferencing

Answer 20

An attack that retrieves a value stored in memory that can be exploited through a NULL pointer dereference.

Question 21

Buffer overflow

Answer 21

An attack that exploits an operating system or an application that does not properly enforce boundaries for inputting data such as the amount of data or the type of data.

Question 22

Resource exhaustion

Answer 22

An attack that focuses on depleting the resources of a network to create a denial of service to legitimate users.

Question 23

Memory Leak

Answer 23

A leak that happens when dynamic memory is allocated in a program, but no pointers are connected to it causing it to never be returned when requested.

Question 24

Race conditions

Answer 24

A sequence of events with dependencies that a system is programmed to run in a certain order which can lead to a time-of-check to time-of-use bug vulnerability.

Question 25

Error handling

Answer 25

The procedures in a program that respond to irregular input or conditions.

Question 26

Improper input handling

Answer 26

The lack of validation, sanitization, filtering, decoding, or encoding of input data.

Question 27

Replay attack

Answer 27

An attack that happens when network traffic is intercepted by an unauthorized person who then delays or replays the communication to its original receiver, acting as the original sender. The original sender is unaware of this occurrence.

Question 28

Pass the hash

Answer 28

An attack in which an attacker obtains a hashed password and uses it to gain unauthorized access.

Question 29

API attacks

Answer 29

A malicious use of an API (application programming interface).

Question 30

SSL stripping

Answer 30

An attack that focuses on stripping the security from HTTPS-enabled websites.

Question 31

Driver manipulation

Answer 31

An attack that focuses on device drivers. The attack uses refactoring or shimming.

Question 32

Normalization

Answer 32

Data reorganized in a relational database to eliminate redundancy by having all data stored in one place and storing all related items together.

Question 33

Stored procedures

Answer 33

One or more database statements stored as a group in a database’s data dictionary, which when called, executes all the statements in the collection.

Question 34

Code obfuscation

Answer 34

The deliberate act of creating source or machine code that is difficult for humans to understand. In other words, the code is camouflaged.

Question 35

Code reuse

Answer 35

Using the same code multiple times.

Question 36

Dead code

Answer 36

Code that is non-executable at run-time, or source code in a program that is executed but is not used in any other computation.

Question 37

Memory management

Answer 37

A resource management process applied to computer memory. It allows your computer system to assign portions of memory, called blocks, to various running programs to optimize overall system performance.

Question 38

Third-party libraries

Answer 38

A library where the code is not maintained in-house.

Question 39

Software Development Kits

Answer 39

A set of software development tools that can be installed as one unit.

Question 40

Data exposure

Answer 40

Unintended exposure of personal and confidential data.

Question 41

Fuzz testing

Answer 41

A software testing technique that exposes security problems by providing invalid, unexpected, or random data to the inputs of an application.