Day 10

Question 1

This protocol is used by the client to validate the status of a received certificate.

Answer 1

OCSP

Online Certificate Status Protocol

Question 2

This is a value, commonly associated with SNMP that is used to identify aspects of a managed device or system.

Answer 2

OID

Object Identifier

Question 3

The software on a system initially loaded that regulates access to resources and facilitates the execution of applications.

Answer 3

OS

Operating System

Question 4

A seven layer scheme that identifies commonly implemented features involved in networked applications and systems.

Answer 4

OSI

Open Systems Interconnection

Question 5

Accessing data stores of information that enable one to collect, analyze and discern useful information from publicly available resources.

Answer 5

OSINT

Open-source Intelligence

Question 6

An open standard routing protocol capable of dynamic routing and the secure transfer of routing table information.

Answer 6

OSPF

Open Shortest Path First

Question 7

Associated with industrial controls and processes, this refers to systems that identify changes, perform monitoring and control industrial equipment resources.

Answer 7

OT

Operational Technology

Question 8

A general technology category of systems that use wireless and cellular means to obtain new data or updates.

Answer 8

OTA

Over The Air

Question 9

A technical specification for USB devices that allow them to act as hosts and facilitate connections from other USB devices, such as mice and keyboards.

Answer 9

OTG

On-The-Go

Question 10

Implement the authentication with a secret that expires upon initial access.

Answer 10

OTP

One-time Password

Question 11

Involves a key that is as long as the message, but may only be used once.

Answer 11

OTP

One-time Pad

Question 12

A derivative of the SCAP program to automate vulnerability detection and management.

Answer 12

OVAL

Open Vulnerability Assessment Language

Question 13

A nonprofit international organization that facilitates education, secure development, documentation, tools and other technologies to enhance web applications.

Answer 13

OWASP

Open Web Application Security Project

Question 14

This format allows for the storage of both public and private keys in open or encrypted form.

Answer 14

P12

PKCS #12

Question 15

A headless file sharing system that has no centralized point of control and facilitates wide-open file sharing.

Answer 15

P2P

Peer to Peer

Question 16

A form of access that allows an organization to create and run its own applications on the cloud.

Answer 16

PaaS

Platform as a Service

Question 17

A JavaScript based technology that regulates the configuration of browsers and their use of web proxies.

Answer 17

PAC

Proxy Auto Configuration

Question 18

Dynamically, loadable authentication libraries used on Linux.

Answer 18

PAM

Pluggable Authentication Modules

Question 19

This is an insecure authentication protocol, sometimes used between routers.

Answer 19

PAP

Password Authentication Protocol

Question 20

Address translation that multiplexes many internal addresses through one or a few external address, linking connections based upon the source port.

Answer 20

PAT

Port Address Translation

Question 21

An application designed to identify compliance deviations and variance from a baseline, and then rectify it.

Answer 21

Patch Management

Configuration and baseline maintenance

Question 22

This cryptographic function, processes, and otherwise insecure secret through repeated rounds of hashing to create a longer key value.

Answer 22

PBKDF2

Password-based Key Derivation Function 2

Question 23

The point of interface between the public switched telephone network and an organization’s internal telephony.

Answer 23

PBX

Private Branch Exchange

Question 24

Sniffing and recording network data into a file for later analysis.

Answer 24

PCAP

Packet Capture