Comprehensive guide Chat GPT

Question 1

Acronym

Answer 1

Definition

Question 2

AAL

Answer 2

Authentication Assurance Level - AAL levels define the strength of authentication methods used in systems.

Question 3

AAA

Answer 3

Authentication, Authorization, and Accounting - A framework for managing user access and accounting for resource usage.

Question 4

AES

Answer 4

Advanced Encryption Standard - AES is used to encrypt sensitive data stored in cloud services.

Question 5

ACL

Answer 5

Access Control List - A router has an ACL that allows only specific IP addresses to access certain network resources.

Question 6

APT

Answer 6

Advanced Persistent Threat - APTs are sophisticated attacks that gain unauthorized access and remain undetected.

Question 7

BYOD

Answer 7

Bring Your Own Device - A BYOD policy allows employees to use personal devices for work purposes.

Question 8

BIA

Answer 8

Business Impact Analysis - Identifies critical business functions and the impact of disruptions.

Question 9

CIA Triad

Answer 9

Confidentiality, Integrity, and Availability - The three core principles of information security.

Question 10

CASB

Answer 10

Cloud Access Security Broker - A software tool that acts as a mediator between cloud service users and providers.

Question 11

CCL

Answer 11

Common Control Line - CCL is used to define shared controls within organizations to manage risk.

Question 12

CISO

Answer 12

Chief Information Security Officer - The CISO is responsible for developing and implementing the company’s information security strategy.

Question 13

CI/CD

Answer 13

Continuous Integration/Continuous Deployment - Practices that enhance software development and deployment security.

Question 14

CVE

Answer 14

Common Vulnerabilities and Exposures - CVE identifiers help track vulnerabilities in software.

Question 15

CVSS

Answer 15

Common Vulnerability Scoring System - CVSS scores help prioritize vulnerabilities based on their severity.

Question 16

DNSSEC

Answer 16

Domain Name System Security Extensions - A suite of extensions that add security to the DNS protocol.

Question 17

DLP

Answer 17

Data Loss Prevention - A DLP system detects and prevents the transfer of sensitive data outside the organization.

Question 18

DDoS

Answer 18

Distributed Denial of Service - An attack that overwhelms a server with traffic, making it unavailable.

Question 19

EAP

Answer 19

Extensible Authentication Protocol - An authentication framework frequently used in wireless networks.

Question 20

EDR

Answer 20

Endpoint Detection and Response - EDR solutions provide real-time monitoring and data collection from endpoints.

Question 21

FIM

Answer 21

File Integrity Monitoring - FIM detects unauthorized changes to files and alerts administrators.

Question 22

FIPS

Answer 22

Federal Information Processing Standards - FIPS are mandatory for federal agencies to ensure security in IT systems.

Question 23

Fuzzing

Answer 23

A technique used to discover vulnerabilities by inputting random data into software.

Question 24

GPO

Answer 24

Group Policy Object - A feature in Windows that allows for centralized management of user and computer settings.

Question 25

GDPR

Answer 25

General Data Protection Regulation - GDPR requires organizations to protect personal data and privacy for EU citizens.

Question 26

HIDS

Answer 26

Host Intrusion Detection System - HIDS checks a host for signs of malicious activity and reports them to the admin.

Question 27

HIPS

Answer 27

Host Intrusion Prevention System - HIPS protects individual devices from attacks by monitoring system behavior.

Question 28

HSM

Answer 28

Hardware Security Module - A physical device used to manage and secure digital keys and perform encryption.

Question 29

IMSI

Answer 29

International Mobile Subscriber Identity - A unique identifier for a mobile user, used in cellular networks.

Question 30

Incident Response Steps

Answer 30

1. Preparation 2. Detection 3. Containment 4. Eradication 5. Recovery 6. Lessons Learned

Question 31

ISO

Answer 31

International Organization for Standardization - ISO 27001 outlines requirements for establishing an information security management system.

Question 32

IDS

Answer 32

Intrusion Detection System - An IDS monitors network traffic for suspicious activities and alerts administrators.

Question 33

IPS

Answer 33

Intrusion Prevention System - An IPS can block malicious traffic in real time, preventing attacks.

Question 34

MDM

Answer 34

Mobile Device Management - MDM solutions allow organizations to manage and secure employees' mobile devices.

Question 35

MITM

Answer 35

Man-In-The-Middle - MITM attacks intercept communications between two parties to eavesdrop or alter messages.

Question 36

NAC

Answer 36

Network Access Control - A solution that enforces security policies on devices accessing the network.

Question 37

NIDS

Answer 37

Network Intrusion Detection System - NIDS monitors network traffic and alerts on suspicious behavior.

Question 38

NIPS

Answer 38

Network Intrusion Prevention System - NIPS actively blocks potentially harmful traffic on the network.

Question 39

NIST

Answer 39

National Institute of Standards and Technology - NIST provides guidelines for improving the security of information systems across various industries.

Question 40

PSTN

Answer 40

Public Switched Telephone Network - The traditional circuit-switched telephone network used for public telecommunication.

Question 41

PKI

Answer 41

Public Key Infrastructure - PKI is used to issue digital certificates that validate user identities.

Question 42

RAT

Answer 42

Remote Access Trojan - Malware that allows unauthorized remote access to a victim's computer.

Question 43

RPO

Answer 43

Recovery Point Objective - A business aims for an RPO of one hour, meaning data loss should not exceed one hour’s worth of transactions.

Question 44

RTO

Answer 44

Recovery Time Objective - The RTO defines how quickly a system should be restored after a failure.

Question 45

RADIUS

Answer 45

Remote Authentication Dial-In User Service - RADIUS is used to manage access for remote users connecting to a network.

Question 46

Ransomware

Answer 46

A type of malware that encrypts files and demands payment for the decryption key.

Question 47

Replay Attack

Answer 47

An attack where valid data transmission is maliciously or fraudulently repeated or delayed.

Question 48

SAML

Answer 48

Security Assertion Markup Language - A standard for exchanging authentication and authorization data.

Question 49

Sandboxing

Answer 49

Running untested code or applications in a controlled environment to prevent harm to the host system.

Question 50

SHA

Answer 50

Secure Hash Algorithm - SHA is used to ensure data integrity by generating a unique hash for data.

Question 51

SIEM

Answer 51

Security Information and Event Management - SIEM systems aggregate and analyze log data to detect security incidents.

Question 52

SOC

Answer 52

Security Operations Center - A SOC monitors and analyzes security events in real-time to respond to incidents.

Question 53

SOAR

Answer 53

Security Orchestration, Automation, and Response - Integrates security tools and processes to improve response times.

Question 54

SPF

Answer 54

Sender Policy Framework - An email authentication method to prevent spoofing.

Question 55

SSL

Answer 55

Secure Sockets Layer - SSL certificates secure web traffic between a user’s browser and a web server.

Question 56

SSL/TLS

Answer 56

Secure Sockets Layer/Transport Layer Security - Protocols that encrypt data sent over the internet.

Question 57

TACACS+

Answer 57

Terminal Access Controller Access-Control System Plus - TACACS+ provides centralized authentication for network devices.

Question 58

TFA

Answer 58

Two-Factor Authentication - An extra layer of security requiring two forms of verification.

Question 59

TLS

Answer 59

Transport Layer Security - TLS encrypts data transmitted over the internet, securing online communications.

Question 60

TPM

Answer 60

Trusted Platform Module - A hardware chip that provides cryptographic functions to secure hardware.

Question 61

TTT

Answer 61

Tactics, Techniques, and Procedures - Understanding an attacker’s TTP helps in designing better defenses.

Question 62

USB

Answer 62

Universal Serial Bus - A standard for connecting devices that may pose security risks if not managed properly.

Question 63

VLAN

Answer 63

Virtual Local Area Network - A subgroup within a network that combines multiple physical networks.

Question 64

WAF

Answer 64

Web Application Firewall - A WAF protects web applications from common attacks like SQL injection.

Question 65

WEP

Answer 65

Wired Equivalent Privacy - An outdated wireless security protocol that is no longer considered secure.

Question 66

WPA

Answer 66

Wi-Fi Protected Access - A security protocol for wireless networks that is more secure than WEP.

Question 67

WPA2

Answer 67

Wi-Fi Protected Access 2 - An enhancement to WPA that uses AES encryption for improved security.

Question 68

XSS

Answer 68

Cross-Site Scripting - A vulnerability allowing attackers to inject scripts into web pages viewed by users.

Question 69

XSRF

Answer 69

Cross-Site Request Forgery - An attack that tricks a user into executing unwanted actions on a web application.

Question 70

Zero-Day

Answer 70

A vulnerability that is unknown to the vendor, with no patch available at the time of discovery.