Day 4

Question 1

An empirical scheme for rating vulnerability severity based upon specific aspects of the vulnerability, environment, and nature of threats.

Answer 1

CVSS

Common Vulnerability Scoring System

Question 2

In this mode of control and acquisition, an employee chooses a device from a company provided list. Ownership may be personal or organization.

Answer 2

CYOD

Choose Your Own Device

Question 3

The creator has all control over an asset and access to it. The default form of access for Windows.

Answer 3

DAC

Discretionary Access Control

Question 4

Exemplified by data center personnel who manage and maintain systems.

Answer 4

Data custodian

Facilitates use

Question 5

Determines logical controls, authorizes use and defines required security.

Answer 5

Data owner

Responsible for use

Question 6

This role is filled by personnel capable of managing automated and large information repositories.

Answer 6

DBA

Database Administrator

Question 7

This attack methodology involves a multitude of remotely controlled devices focusing upon a single target.

Answer 7

DDoS

Distributed Denial of Service

Question 8

And operating system memory management technique that prevents user data from overlapping into computer instructions.

Answer 8

DEP

Data Execution Prevention

Question 9

A commonly used method of encoding the data that makes up the certificate using ASN.1.

Answer 9

DER

Distinguished Encoding Rules

Question 10

The first US government standard for symmetric encryption. It has a 56 bit key.

Answer 10

DES

Digital Encryption Standard

Question 11

This is an extension of BOOTP and is used to dynamically allocate IPs.

Answer 11

DHCP

Dynamic Host Configuration Protocol

Question 12

This is a key exchange algorithm that enhances confidentiality by discarding the session keys after use.

Answer 12

DHE

Diffie-Hellman Ephemeral

Question 13

Performs hashing or encryption on an array of predetermined candidate phrases, and compares it to the secret.

Answer 13

Dictionary

Dictionary attack

Question 14

It moves files to alternative media that have the archive bit set, and then it does not clear it.

Answer 14

Differential BU

Differential backup

Question 15

A messaging security standard designed to facilitate non-repudiation between sender and receiver.

Answer 15

DKIM

Domain Keys Identified Mail

Question 16

These files are not directly executed, but are called up by an application when certain additional functions or libraries are needed.

Answer 16

DLL

Dynamic Link Library

Question 17

Strategies and applications that prevent data theft or illicit access.

Answer 17

DLP

Data Loss Prevention

Question 18

This is an email security standard designed to allow domains to protect themselves from unauthorized use and spoofing.

Answer 18

DMARC

Domain Message
Authentication Reporting
and Conformance

Question 19

The initial destination of a packet as it enters a NAT system to be redirected to another destination.

Answer 19

DNAT

Destination Network Address Translation

Question 20

The perimeter area where the outside world may access certain services.

Answer 20

DMZ

Demilitarized Zone

Question 21

An application that handles symbolic name to address mappings, as well as the reverse.

Answer 21

DNS

Domain Name Service

Question 22

An array of tools devised by the IETF to secure DNS transactions.

Answer 22

DNSSEC

Domain Name System Security Extensions

Question 23

A one on one attack that causes access or utility to cease.

Answer 23

DoS

Denial of Service

Question 24

A senior officer responsible for an organization’s data protection strategies and compliance.

Answer 24

DPO

Data Protection Officer

Question 25

The immediate plans for recovery of operations or services in the event of a catastrophic incident.

Answer 25

DRP

Disaster Recovery Plan