Chapter 5 Sec +

Question 1

VM

Answer 1

Virtual Machine
Typically hosted on the host

Question 2

ROI

Answer 2

Return On Investment

Question 3

VDI

Answer 3

Virtual Desktop Infrastructure
Host a users desktop operating system on a server
Users can connect to the server and access applications

Question 4

IoT

Answer 4

Internet of Things
Includes devices that interact with networks, smartphones, computer,servers, virtual machines etc.

Question 5

EDR

Answer 5

Endpoint Detection and Response

Is a security technology focused on Detecting and Responding to that’s at endpoint level.

Question 6

XDR

Answer 6

Extended Detection and Response

Is a next generation security technology that goes beyond endpoint devices and works with network devices.

Question 7

HIPS

Answer 7

Host-based Intrusion Prevention System
Used on a host system
Uses behavioral analysis, file integrity monitoring, and application control

Question 8

TCO

Answer 8

Total Cost of Ownership

Question 9

FDE

Answer 9

Full Disk Encryption

Encrypts the Entire Disk
Can be done using technology built in the OS system like Windows using Bit Locker or use Third-Party Applications

Question 10

SED

Answer 10

Self-Encryptiom Drives
Includes Encryption Circuitry built into the drive
-typically allows users to enter credentials when they set up the drive
-can be configured to used without user interaction

Question 11

BIOS

Answer 11

Basic Input/Output System

Includes Software that provides the computer with Basic instructions on starting.

Bios is a hardware Chip you can touch

Question 12

UEFI

Answer 12

Unified Extensible Firmware Interface

Provides many of the functions BIOS does with some Enhancements

-Can boot with larger dishes
-CPU - Independent

Question 13

TPM

Answer 13

Trusted Platform Module

Is a hardware Chip on the computers motherboard that stores crypto graphic keys for encryption
-Ships with unique key burned into it

-Supports Secure Boot Attestation
-Supports Remote Attestation

Question 14

HSM

Answer 14

Hardware Security Module

Is a security device you can add to the system to manage, generate, and securely store Cryptographic keys
-is usually a removable device

Question 15

EOL

Answer 15

End of Life

Refers to hardware that has reached its end of usefulness life
either because it is no longer supported by manufacturer or too outdated for current standards

Question 16

DLP

Answer 16

Data Lost Prevention System
Is used to prevent Data Exfiltration
Can be configured to look for certain phrases.

Question 17

TEE

Answer 17

Trusted Execution Environment or Secure Enclave

Is a type fo Security Technology that provides a Secure and isolated area within the system or application for processing sensitive data
-used hardware-based Security mechanisms such as Software Guard Extension(SGX)

Question 18

Saas

Answer 18

Software as a Service

Includes any Software or application provided to users
-normally used with web browsers
Gmail,Yahoo Mail,Google drive

Question 19

Paas

Answer 19

Platform as a Service

Provides customers with a pre-configured computing platform they can use as needed

-upload code and the cloud provider runs it.

Question 20

Iaas

Answer 20

Infrastructure as a Service

Allows an organization to outsource it’s equipment requirements, including the hardware.
-Referes to as self-managed Solution
-organizations are responsible for all operating systems updates and patches
CSP will lend out physical or virtual systems

Question 21

API

Answer 21

Application Programming Interface

Is a software component that gives developers access to features or data within another application, a service, or an operating system.

Question 22

MSSP

Answer 22

Managed Security Service Provider

Is a Third-Party vendor that provides security services for companies

Question 23

MSP

Answer 23

Managed Service Provider

Provides any information IT services that an organization needs

Question 24

CSP

Answer 24

Cloud Service Provider

Offers cloud services to users or organizations

Question 25

CASB

Answer 25

Cloud Access Security Broker

Is a software solution or service deployed between an organization network and the cloud provider
-provides Security by Monitoring traffic and enforcing Security Policies

Question 26

SWG

Answer 26

Secure Web Gateway

Is a combination of a proxy server and a stateless firewall
-is typically a cloud-based service but can be on an on-site appliance
-performs same functions as proxy server

Question 27

IaC

Answer 27

Infrastructure as Code

Refers to managing and provisioning data centers with code to define VMs and virtual networks by allowing admins to run a script to create them

Question 28

SDN

Answer 28

Software Defined Networks

Uses virtualization Technologies to Route Traffic instead of using hardware routers and switches

An SDN separates the data and control plane

Question 29

OSPF

Answer 29

Open Shortest Path First-Routing Protocol

Help routers determine the best path to route traffic on the control plane

Used with SDN

Question 30

BGP

Answer 30

Border Gateway Protocol

Help routers determine the best path to route traffic on the control plane

Used with SDN

Question 31

COPE

Answer 31

Corporate Owned Personally Enabled

Organization buy device for employees and employees can use them for personal activities

Question 32

COPE

Answer 32

Corporate Owned Personally Enabled

Organization buy device for employees and employees can use them for personal activities

Question 33

BYOD

Answer 33

Bring Your Own Device

Employees being there own devices to attach to the network

Organizations use Policies to protect devices

Question 34

CYOD

Answer 34

Choose your own Device

Organization creates a list of acceptable devices and published the list in a CYOD policy.Employees can purchase these devices and bring them to work

Question 35

LTE

Answer 35

Long-Term Evolution

Question 36

MDM

Answer 36

Mobile Device Management
Includes technologies to manage mobile devices to keep them secure

Uses application allow lists
-full device encryption
-storage segmentation
-geofencing
-gps tagging
-geo lcation

Question 37

MAM

Answer 37

Mobile Application Management
Tools are typically built into MDM tools

Question 38

OTA

Answer 38

Over-the-Air

Question 39

APK

Answer 39

Application Packet Kit

Side loading is the process of copying an APK format to device then activating it

-used with android deviced

Question 40

WANET

Answer 40

Wireless AD Hoc Network

Is a type of LAN that is built spontaneously to enable two or more wireless devices to be connected to each other without requiring typical network infrastructure information

Question 41

UAV

Answer 41

Unmanned Aerial Vehicles

Question 42

ICs

Answer 42

Industrial Control System

Typically refers to systems with large facilities such as power plants or water treatment facilities.

SCADA systems typically control an ICs by monitoring it and sending it commands

Question 43

SoC

Answer 43

System on Chip

-customized for specific applications for particular embedded systems

Integrates many components of a computer system onto a Single Chip, including a processor, memory, in-put/output interfaces, and other components

Question 44

RTOS

Answer 44

Real Time Operating System

Is specialized operating System designed for Embedded systems that require precise timing and deterministic behavior