Chapter 5

Question 1

FISMA

Answer 1

Federal Information Security Management Act

Question 2

IDS

Answer 2

Intrusion Detection System

Question 3

IPS

Answer 3

Intrusion Prevention System

Question 4

SCAP

Answer 4

Security Content Automation Protocol
Effort by the security community led by NIST to create standardized approach to communicating security related info

Question 5

CCE

Answer 5

Common Configuration Enumeration

Question 6

CPE

Answer 6

Common Platform Enumeration

Question 7

CVE

Answer 7

Common Vulnerabilities and Exposures

Question 8

CVSS

Answer 8

Common Vulnerability Scoring System

Question 9

XCCDF

Answer 9

Extensible Configuration Checklist Description Format

Question 10

OVAL

Answer 10

Open Vulnerability and Assessment Language

Question 11

XSS

Answer 11

Cross Site Scripting

Question 12

CSRF

Answer 12

Cross Site Request Forgery

Question 13

Attack Vector Metric - P

Answer 13

Physical

Question 14

Attack Vector Metric - L

Answer 14

Local

Question 15

Attack Vector Metric - A

Answer 15

Adjacent Network

Question 16

Attack Vector Metric - N

Answer 16

Network

Question 17

SOC

Answer 17

Security Operations Centers

Question 18

RoE

Answer 18

Rules of Engagement