Chapter 9 Key Terms

Question 1

Physical machine

Answer 1

The physical computer with hardware, such as the hard disk drive(s), optical drive, RAM, and motherboard.

Question 2

Virtual machine

Answer 2

A software implementation of a computer that executes programs like a physical machine.

Question 3

Virtual hard disk (VHD)

Answer 3

A file that is created within the host operating system and simulates a hard disk for the virtual machine.

Question 4

Hypervisor

Answer 4

A thin layer of software that resides between the guest operating system and the hardware. It creates and runs virtual machines.

Question 5

Load balancing

Answer 5

A technique that disperses a workload between two or more computers or resources to achieve optimal resource utilization, throughput, or response time.

Question 6

Virtual network

Answer 6

A computer network consisting of virtual and physical devices.

Question 7

Virtual area network

Answer 7

A virtual LAN running on top of a physical LAN.

Question 8

Virtual private network

Answer 8

A secure tunnel to another network that connects multiple remote end-points.

Question 9

Virtual machine

Answer 9

A virtual computer that functions like a physical computer.

Question 10

Virtual switch

Answer 10

Software that facilitates the communication between virtual machines by checking data packets before moving them to a destination.

Question 11

Virtual router

Answer 11

Software that replicates the functionality of a physical router.

Question 12

Virtual firewall appliance

Answer 12

Software that functions as a network firewall device. A virtual firewall appliance provides packet filtering and monitoring functions.

Question 13

Virtual machine monitor

Answer 13

Software, firmware, or hardware that creates and runs virtual machines.

Question 14

Software-defined network

Answer 14

An architecture that allows network and security professionals to manage, control, and make changes to a network.

Question 15

Cloud

Answer 15

A metaphor for the internet.

Question 16

Cloud computing

Answer 16

Software, data access, computation, and storage services provided to clients through the internet.

Question 17

Public cloud

Answer 17

Platforms, applications, storage, or other resources that are mad available to the general public by a cloud service provider.

Question 18

Private cloud

Answer 18

Platforms, applications, storage, or other resources that are made available to a single organization.

Question 19

Community cloud

Answer 19

Platforms, applications, storage, or other resources that are shared by several organizations.

Question 20

Hybrid cloud

Answer 20

A combination of public, private and community cloud resources from different service providers.

Question 21

Cloud access security broker (CASB)

Answer 21

An on-premises cloud-based software tool or service that sits between an organization and a cloud service provider.

Question 22

Virtual networks

Answer 22

Virtual machines and devices connected through software.

Question 23

Segmentation

Answer 23

The division of a network into smaller networks through a virtual local area network (VLAN) and firewalls.

Question 24

Security group

Answer 24

A security group works like a firewall to control traffic to and from network resources.

Question 25

Virtual private cloud (VPC) endpoint

Answer 25

A virtual device that provides a private connection between virtual private clouds and a cloud provider’s services. A VPC endpoint keeps traffic secure with a private link resource.

Question 26

Container

Answer 26

A standard unit of software that holds the complete runtime environment including an application, all application dependencies, libraries, binaries, and configuration files.

Question 27

Cloud-based firewall

Answer 27

A software network device that is deployed in the cloud that protects against unwanted access to a private network.

Question 28

App whitelisting

Answer 28

The process of identifying apps that users are allowed to have on mobile devices.

Question 29

Geotagging

Answer 29

The process of embedding GPS coordinates within mobile device files, such as image or video files created with the device’s camera.

Question 30

Data exfiltration

Answer 30

The unauthorized copy, transfer, or retrieval of data from a computer, server, or network.

Question 31

Sandboxing

Answer 31

The isolation of an app so that it can’t affect other areas of a computer or network.

Question 32

Jailbreaking

Answer 32

The process of removing inherent protections placed by the device manufacturer.

Question 33

Sideloading

Answer 33

Installing an app on a mobile device via a method other than the manufacturer’s app repository.

Question 34

Windows information protection

Answer 34

A technology that helps protect against data leakage on company-owned and personal devices without disrupting the user experience.

Question 35

Network fencing

Answer 35

Location compliance, known as network fencing, allows you to keep devices outside your corporate network from accessing network resources.

Question 36

Mobile device management

Answer 36

The administration of mobile devices. MDM software generally allows for tracking devices; pushing apps and updates; managing security settings; and remotely wiping the device.

Question 37

Mobile application management

Answer 37

The administration of applications on a mobile device. MAM software allows a system administrator to remotely install or remove organizational apps and to disable certain functions within the apps.

Question 38

Enterprise mobility management

Answer 38

A combination of MDM and MAM solutions in one package. EMM allows a system administrator to remotely manage hardware and applications on a mobile device.

Question 39

Unified endpoint management

Answer 39

An all-in-one device management solution. UEM allows a system administrator to manage local and mobile devices, including Internet of Things devices.

Question 40

Bring your own device (BYOD)

Answer 40

The practice of having employees use their own personal mobile devices for business related tasks.

Question 41

Bring your own device

Answer 41

A BYOD policy allows employees to use personal devices for work related tasks.

Question 42

Acceptable use policy

Answer 42

An AUP determines the rules for using corporate resources, such as internet access, computers, etc.

Question 43

Virtual desktop infrastructure

Answer 43

VDI is a technology that uses virtual machines and virtual desktops.

Question 44

choose your own device

Answer 44

In a CYOD system, the company provides a list of approved devices for an employee to choose from. The ownership and management of devices varies by organization.

Question 45

Corporate owned, personally enabled

Answer 45

In a COPE system, the company provides a list of approved devices for an employee to choose from. The company owns the device; the employee uses and manages the device.

Question 46

Supervisory control and data acquisition (SCADA)

Answer 46

SCADA is an industrial computer system that monitors and controls a process.

Question 47

Internet of Things

Answer 47

The network of physical devices such as vehicles, home appliances, etc. that are embedded with electronics, software, sensors, actuators, and connectivity that enable them to connect, collect, and exchange data through the internet.

Question 48

Arduino

Answer 48

Arduino is an open-source hardware and software platform for building electronic projects.

Question 49

Raspberry Pi

Answer 49

Raspberry Pi is a low-cost device the size of a credit card that’s powered by the Python programming language. It’s manufactured into a single system on a chip (SoC).

Question 50

Field Programmable Gate Array (FPGA)

Answer 50

FPGA is an integrated circuit that the customer configures.

Question 51

Subscriber identity module (SIM) card

Answer 51

A SIM card encrypts data transmission and stores information.

Question 52

Zigbee

Answer 52

Zigbee is a radio protocol that creates low-rate private area networks