CompTIA Security+ Vocabulary List Flashcards

Question 1

Q

Active Directory

Answer

A

Directory service by Microsoft for Windows domain networks.

Question 2

Q

AES (Advanced Encryption Standard)

Answer

A

Symmetric encryption algorithm.

Question 3

Q

Application Layer

Answer

A

Layer 7 of the OSI model, providing network services to applications.

Question 4

Q

Anomaly Detection

Answer

A

Identifying unusual patterns that do not conform to expected behavior.

Question 5

Q

Attack Surface

Answer

A

Total points where an attacker can try to enter data into or extract data from an environment.

Question 6

Q

Audit Trail

Answer

A

Record of activities to ensure integrity and track changes.

Question 7

Q

Biometrics

Answer

A

Authentication using physical characteristics, like fingerprints or facial recognition.

Question 8

Q

Authentication Header (AH)

Answer

A

IPsec protocol providing connectionless integrity and data origin authentication.

Question 9

Q

Black Box Testing

Answer

A

Testing without knowledge of the internal workings of the application.

Question 10

Q

Blue Team

Answer

A

Group responsible for defending an organization from cyber attacks.

Question 11

Q

Bollard

Answer

A

Physical security device to prevent vehicle-based attacks.

Question 12

Q

CCTV (Closed-Circuit Television)

Answer

A

Video surveillance system.

Question 13

Q

Compensating Controls

Answer

A

Security controls that provide alternative measures.

Question 14

Q

Certificate Revocation List (CRL)

Answer

A

List of certificates that have been revoked by the Certificate Authority.

Question 15

Q

Chain of Custody

Answer

A

Documentation showing the seizure, custody, control, transfer, analysis, and disposition of evidence.

Question 16

Q

Ciphertext

Answer

A

Encrypted text transformed from plaintext.

Question 17

Q

Confidentiality

Answer

A

Ensuring that information is only accessible to those authorized to have access.

Question 18

Q

Control Diversity

Answer

A

Using different types of controls (administrative, technical, physical) to achieve security.

Question 19

Q

Data-at-Rest

Answer

A

Inactive data stored physically in any digital form.

Question 20

Q

Data-in-Transit

Answer

A

Data actively moving from one location to another.

Question 21

Q

Degaussing

Answer

A

Process of reducing or eliminating a magnetic field, often used to erase data from magnetic storage.

Question 22

Q

Digital Forensics

Answer

A

Process of uncovering and interpreting electronic data.

Question 23

Q

Elliptic Curve Cryptography (ECC)

Answer

A

Encryption algorithm based on elliptic curves over finite fields.

Question 24

Q

Demilitarized Zone (DMZ)

Answer

A

Physical or logical subnetwork that contains and exposes an organization’s external-facing services.

Question 25

Q

Dumpster Diving

Answer

A

Searching through waste to find confidential information.

Question 26

Q

EAP (Extensible Authentication Protocol)

Answer

A

Framework for transporting authentication protocols.

Question 27

Q

Evil Twin

Answer

A

Rogue wireless access point mimicking a legitimate one.

Question 28

Q

EMI (Electromagnetic Interference)

Answer

A

Disturbance affecting an electrical circuit due to electromagnetic radiation.

Question 29

Q

Escrowed Encryption

Answer

A

Encryption process where decryption keys are held in escrow.

Question 30

Q

File Integrity Monitoring

Answer

A

Process of validating the integrity of operating system and application software files.

Question 31

Q

Federated Identity Management

Answer

A

Linking a user’s electronic identity and attributes, stored across multiple distinct identity management systems.

Question 32

Q

Geofencing

Answer

A

Creating a virtual boundary for a geographic area.

Question 33

Q

Hashcat

Answer

A

Popular password cracking tool.

Question 34

Q

Identity Federation

Answer

A

Linking a single identity across multiple systems.

Question 35

Q

HIPS (Host-based Intrusion Prevention System)

Answer

A

System designed to protect a host from malicious attacks.

Question 36

Q

Hybrid Attack

Answer

A

Combining dictionary and brute-force attacks to crack passwords.

Question 37

Q

HIDS (Host-based Intrusion Detection System)

Answer

A

System that monitors and analyzes the internals of a computing system.

Question 38

Q

Incident Response Plan

Answer

A

Organized approach to addressing and managing the aftermath of a security breach or attack.

Question 39

Q

IDS (Intrusion Detection System)

Answer

A

System that monitors network or system activities for malicious activities.

Question 40

Q

IMAP (Internet Message Access Protocol)

Answer

A

Protocol used by email clients to retrieve messages from a mail server.

Question 41

Q

Kerberos

Answer

A

Network authentication protocol using tickets.

Question 42

Q

IoC (Indicators of Compromise)

Answer

A

Artifacts observed on a network or in an operating system that with high confidence indicate a computer intrusion.

Question 43

Q

KDE (Kernel Density Estimation)

Answer

A

Non-parametric way to estimate the probability density function of a random variable.

Question 44

Q

Least Privilege

Answer

A

Principle of limiting access rights for users to the bare minimum.

Question 45

Q

Key Escrow

Answer

A

Secure storage and recovery of encryption keys.

Question 46

Q

IP Spoofing

Answer

A

Creating IP packets with a forged source IP address.

Question 47

Q

Logic Bomb

Answer

A

Code inserted into a system that sets off a malicious function when specified conditions are met.

Question 48

Q

LDAP (Lightweight Directory Access Protocol)

Answer

A

Protocol for accessing and maintaining distributed directory information services.

Question 49

Q

MAC (Mandatory Access Control)

Answer

A

Access control policy determined by the system.

Question 50

Q

Mantrap

Answer

A

Physical security device that monitors and controls two interlocking doors to a small room.

Question 51

Q

Malware

Answer

A

Software intentionally designed to cause damage.

Question 52

Q

MD5 (Message Digest Algorithm 5)

Answer

A

Widely used cryptographic hash function.

Question 53

Q

MitM (Man-in-the-Middle)

Answer

A

Attack where the attacker secretly intercepts and relays messages.

Question 54

Q

Multi-Tenancy

Answer

A

Architecture where a single instance of software serves multiple customers.

Question 55

Q

NAC (Network Access Control)

Answer

A

Solutions to define and implement a security policy that grants access to network resources.

Question 56

Q

Non-Repudiation

Answer

A

Assurance that someone cannot deny the validity of their actions.

Question 57

Q

Netflow

Answer

A

Network protocol for collecting IP traffic information.

Question 58

Q

NIDS (Network Intrusion Detection System)

Answer

A

System for monitoring and analyzing network traffic.

Question 59

Q

NTLM (NT LAN Manager)

Answer

A

Suite of Microsoft security protocols for authentication.

Question 60

Q

Obfuscation

Answer

A

Making something obscure or unclear.

Question 61

Q

OID (Object Identifier)

Answer

A

Identifier used to name an object.

Question 62

Q

One-Time Pad

Answer

A

Encryption technique that cannot be cracked.

Question 63

Q

OAuth (Open Authorization)

Answer

A

Open standard for access delegation.

Question 64

Q

PAP (Password Authentication Protocol)

Answer

A

Authentication protocol that uses a two-way handshake.

Answer 65

A

Decentralized authentication protocol.

Answer 66

A

Online community creating freely available security-related resources.

Answer 67

A

Using one compromised system to attack others.

Answer 68

A

Redirecting website traffic to another, fraudulent website.

Answer 69

A

Property ensuring that the compromise of one session key does not affect others.

Answer 70

A

Group playing the role of an adversary to test security.

Answer 71

A

Precomputed table for reversing cryptographic hash functions.

Answer 72

A

Executing code remotely on a different system.

Answer 73

A

Camera that can be remotely controlled to pan, tilt, and zoom.

Answer 74

A

DDoS attack using IP spoofing and ICMP.

Answer 75

A

Stack of compatible software programs enabling security operations teams to streamline and standardize activities.

Answer 76

A

Isolated environment for running untrusted programs.

Answer 77

A

Risk remaining after security measures have been applied.

Answer 78

A

Secure version of FTP using SSH.

Answer 79

A

Unauthorized wireless access point.

Answer 80

A

Adding random data to a hash function to ensure unique outputs.

Answer 81

A

Solution for real-time analysis of security alerts.

Answer 82

A

Targeted phishing attack.

Answer 83

A

Single sign-on (SSO) solution for web resources.

Answer 84

A

Network management approach enabling programmatically efficient network configuration.

Answer 85

A

Software that secretly monitors user activity.

Answer 86

A

Standard for message logging.

Answer 87

A

Concealing messages within other non-secret text or data.

Answer 88

A

Attack sending a series of SYN requests to consume resources.

Answer 89

A

Proactively searching for cyber threats.

Answer 90

A

Replacing sensitive data with unique identification symbols.

Answer 91

A

Analyzing user behavior to detect anomalies.

Answer 92

A

Phishing conducted through phone calls.

Answer 93

A

Tool for identifying security weaknesses.

Answer 94

A

Simple symmetric encryption algorithm.

Answer 95

A

Searching for Wi-Fi networks by moving around.

Answer 96

A

Self-replicating malware.

Answer 97

A

Tool for identifying and classifying malware.

Answer 98

A

Security concept assuming no implicit trust.

Answer 99

A

Exploiting a vulnerability that is not yet known to the vendor.

Answer 100

A

Dividing a storage area network (SAN) into logical segments.

Brainscape's Knowledge GenomeTM

CompTIA Security+ Vocabulary List Flashcards

Brainscape's Knowledge Genome^TM