D

Question 1

DAC

Answer 1

Discretionary Access Control

The creator has all control over an asset and access to it.
The default form of access for Windows.

Question 2

Data

custodian

Answer 2

Facilitates use

Exemplified by data center personnel who manage and
maintain systems.

Question 3

Data owner

Answer 3

Responsible for use

Determines logical controls, authorizes use and defines
required security.

Question 4

DBA

Answer 4

Database Administrator

This role is filled by personnel capable of managing
automated and large information repositories.

Question 5

DDoS

Answer 5

Distributed Denial of Service

This attack methodology involves a multitude of
remotely controlled devices focusing upon a single
target.

Question 6

DEP

Answer 6

Data Execution Prevention

And operating system memory management technique
that prevents user data from overlapping into computer
instructions.

Question 7

DER

Answer 7

Distinguished Encoding Rules

A commonly used method of encoding the data that
makes up the certificate using ASN.1.

Question 8

DES

Answer 8

Digital Encryption Standard

The first US government standard for symmetric
encryption. It has a 56 bit key.

Question 9

DHCP

Answer 9

Dynamic Host Configuration Protocol

This is an extension of BOOTP and is used to
dynamically allocate IPs.

Question 10

DHE

Answer 10

Diffie-Hellman Ephemeral

This is a key exchange algorithm that enhances
confidentiality by discarding the session keys after use.

Question 11

Dictionary

Answer 11

Dictionary attack

Performs hashing or encryption on an array of
predetermined candidate phrases, and compares it to the
secret.

Question 12

Differential

BU

Answer 12

Differential backup

-It backups files to alternative media that have the archive
bit set, and then it does not clear it.

Question 13

DKIM

Answer 13

Domain Keys Identified Mail

A messaging security standard designed to facilitate
non-repudiation between sender and receiver.

Question 14

DLL

Answer 14

Dynamic Link Library

These files are not directly executed, but are called up
by an application when certain additional functions or
libraries are needed.

Question 15

DLP

Answer 15

Data Loss Prevention

Strategies and applications that prevent data theft or
illicit access.

Question 16

DMARC

Answer 16

Domain Message Authentication Reporting
and Conformance

This is an email security standard designed to allow
domains to protect themselves from unauthorized use
and spoofing.

Question 17

DNAT

Answer 17

Destination Network Address Translation

The initial destination of a packet as it enters a NAT
system to be redirected to another destination.

Question 18

DMZ

Answer 18

Demilitarized Zone

The perimeter area where the outside world may access
certain services.

Question 19

DNS

Answer 19

Domain Name Service

An application that handles symbolic name to address
mappings, as well as the reverse.

Question 20

DNSSEC

Answer 20

Domain Name System
Security Extensions

An array of tools devised by the IETF to secure DNS
transactions.

Question 21

DoS

Answer 21

Denial of Service

A one on one attack that causes access or utility to
cease.

Question 22

DPO

Answer 22

Data Protection Officer

A senior officer responsible for an organization’s data
protection strategies and compliance.

Question 23

DRP

Answer 23

Disaster Recovery Plan

The immediate plans for recovery of operations or
services in the event of a catastrophic incident.

Question 24

DSA

Answer 24

Digital Signature Algorithm

An algorithm created by the NSA to implement non-
repudiation.

Question 25

DSL

Answer 25

Digital Subscriber Line

High-speed Internet conductivity based upon existing
infrastructure for telephones.