Day 11

Question 1

A nongovernmental security standard that regulates the implementation and security of web payment gateways.

Answer 1

PCI DSS

Payment Card Industry Data Security Standard

Question 2

This is a multiple output device that regulates the power supply and its quality to multiple devices within a rack of devices in a data center.

Answer 2

PDU

Power Distribution Unit

Question 3

This is a format for code run by Windows systems and 32 or 64 bit mode.

Answer 3

PE

Portable Executable

Question 4

An EAP form that sends MSCHAP credentials secured within a TLS envelope.

Answer 4

PEAP

Protected Extensible Authentication Protocol

Question 5

Small electronics, such as beepers, calendars and note applications used prior to smartphones.

Answer 5

PED

Portable Electronic Device

Question 6

This is one of the oldest formats of certificates and uses Base64.

Answer 6

PEM

Privacy-enhanced Electronic Mail

Question 7

This is the property of Key management where in the loss of one key is not in danger data encrypted with earlier session keys.

Answer 7

PFS

Perfect Forward Secrecy

Question 8

A binary format for storing or sending server certificates and private keys.

Answer 8

PFX

Personal Exchange Format

Question 9

A widely used cryptosystem initially used for securing email by encryption and digital signatures.

Answer 9

PGP

Pretty Good Privacy

Question 10

Typically sensitive information regarding the health of an individual.

Answer 10

PHI

Personal Health Information

Question 11

Bogus messaging sent to a wide array of potential targets.

Answer 11

Phishing

Malicious Spam

Question 12

This is data or pieces of data that uniquely correspond to or identify one individual and requires special handling.

Answer 12

PII

Personally Identifiable Information

Question 13

Knowledge-based authentication using a single value or number.

Answer 13

PIN

Personal Identification Number

Question 14

An identification card that contains a photograph, RFID, barcode, and cryptographically stored PKI information.

Answer 14

PIV

Personal Identity Verification

Question 15

Gaining control of one application or host in order to manipulate a secondary target.

Answer 15

Pivot

Staging New Attack

Question 16

Public-key encryption standards developed by RSA Security.

Answer 16

PKCS

Public Key Cryptography Standards

Question 17

The processes and management associated with the identification and validation of certificates and public keys.

Answer 17

PKI

Public Key Infrastructure

Question 18

An implementation of an idea or theory that establishes its validity commonly associated with vulnerabilities and exploits.

Answer 18

PoC

Proof of Concept

Question 19

An attack technique that could subvert confidentiality in an SSL connection.

Answer 19

POODLE

Padding Oracle on Downgrade Legacy Encryption

Question 20

This protocol listens on TCP/110 and downloads messages from the server.

Answer 20

POP

Post Office Protocol

Question 21

Performing address and host discovery, along with identifying listening applications.

Answer 21

Port Scan

Network mapping and Service Enumeration

Question 22

The old form of telephony that implemented dedicated copper connections vs. packet advised voice transmission.

Answer 22

POTS

Plain Old Telephone Service

Question 23

This is a layer 2 technology implemented to facilitate communication between endpoints or routers.

Answer 23

PPP

Point-to-Point Protocol

Question 24

A largely deprecated protocol used for establishing tunnels and securing packet ice communication.

Answer 24

PPTP

Point-to-Point Tunneling Protocol

Question 25

Managing key establishment and management by using pre-established relationships and non-automatic exchange methods.

Answer 25

PSK

Pre-shared Key

Question 26

Defined by policy, this is software that provides functionality in violation of authorized use.

Answer 26

PUP

Potentially Unwanted Program