Definitions

Question 1

IV

Answer 1

Initialization Vector

Question 2

MFDs

Answer 2

Multi-Functional Devices - Print / Scan / Copy

Question 3

MMS

Answer 3

Multimedia Messaging Service - Extention of SMS / Supports sending multimedia content

Question 4

NIDS

Answer 4

Network Based Intrusion Detection System

Question 5

MTBF

Answer 5

Mean Time Between Failures

Question 6

RADIUS

Answer 6

Remote Authentication Dial-In User Service - Central authentication service alternatives: TACACS+ and Diameter

Question 7

PKI

Answer 7

Public Key Infrastructure

Question 8

PSK

Answer 8

Pre-Shared Key

Question 9

NIPS

Answer 9

Network Based Intrusion Prevention System - Placed in-line or in-band

Question 10

POP3

Answer 10

Post Office Protocol Version 3

Question 11

IMAP4

Answer 11

Internet Message Protocol Version 4

Protocol used to store and manage email on servers
TCP 143

Question 12

CSR

Answer 12

Certificate Signing Request

Question 13

CTM

Answer 13

Counter Mode

Mode of operations used for encryption
Combines an IV with a Counter

Question 14

VPN

Answer 14

Virtual Private Network

Question 15

WAF

Answer 15

Web Application Firewall

Question 16

DLP

Answer 16

Data Loss Prevention

Question 17

DMZ

Answer 17

DeMilitarized Zone

Question 18

CHAP

Answer 18

Challenge Handshake Authentication Protocol

Question 19

DLL

Answer 19

Dynamic Link Library

Question 20

SOPs

Answer 20

Standard Operating Procedures

Question 21

NAC

Answer 21

Network Access Control

Two types - Permanent and Dissolvable

Question 22

NAT

Answer 22

Network Address Translation

Question 23

EAP

Answer 23

Extensible Authentication Protocol

Authentication frame work that provides general guidance for authentication methods.

Variations: PEAP, EAP-TLS, EAP–TTLS and EAP-FAST

Question 24

SLE

Answer 24

Single Loss Expectancy

Question 25

SLA

Answer 25

Service Level Agreement

Question 26

MDM

Answer 26

Mobile Device Management

Question 27

RAT

Answer 27

Remote Access Trojan

Control a system from a remote location

Question 28

RC4

Answer 28

Rivest Cipher version 4

A symetric stream cipher that can use between 40 and 2,048 bits

Known to be cracked (obsolete)

Question 29

DOS

Answer 29

Denial of Service

Disk Operating System

Question 30

MITM

Answer 30

Man in the Middle

Question 31

MD5

Answer 31

Message Digest 5

Hashing function for integrity
128 bit hashes referred as MD5 checksums

Question 32

HSM

Answer 32

Hardware Security Module

Question 33

HVAC

Answer 33

Heating Ventilation and Air Conditioning

Question 34

MTTR

Answer 34

Mean Time To Recover

The time it takes to restore a failed system

Question 35

SSL

Answer 35

Secure Socket Layer

Predecessor to TLS

Question 36

XOR

Answer 36

Logical operation used in some encryption schemes

Question 37

XML

Answer 37

Extensible Markup Language

Question 38

3DES

Answer 38

Triple Data Encryption Standard

Symetric Algorithm
Block Cipher
64 bit blocks

Question 39

SDN

Answer 39

Software Defined Networks

SDN’s separate the data and control planes

Question 40

HOTP

Answer 40

HMAC Based One Time Password

Question 41

WPS

Answer 41

WiFi Protected Setup

Question 42

RSA

Answer 42

Rivest Shamir and Adleman

Asymmetric algorithm used to encrypt data and digitally sign transmissions

Question 43

WPA2

Answer 43

WiFi Protected Access 2

Supports CCMP for encryption which is based on AES

Question 44

WPA

Answer 44

WiFi Protected Access

Superseded by WPA2
This is obsolete DO NOT USE

Question 45

ARP

Answer 45

Address Resolution Protocol

Question 46

BIOS

Answer 46

Basic Input Output System

Question 47

RFID

Answer 47

Radio Frequency Identification System

RFID Attacks:
Eavesdropping
Replay
DOS (Denial of Service)

Question 48

FAR

Answer 48

False Acceptance Rate

Question 49

SHA

Answer 49

Secure Hash Algorithm

Question 50

SFTP

Answer 50

Secure File Transfer Protocol

Extension of Secure Shell (SSH) used to encrypt FTP traffic.

Transmits data using TCP port 22

Question 51

STP

Answer 51

Spanning Tree Protocol

Question 52

SMS

Answer 52

Short Message Service

Question 53

AP

Answer 53

Access Point

Question 54

DH

Answer 54

Diffie-Hellman

Asymmetric Algorithm used to privately share symmetric keys.

Question 55

XSS

Answer 55

Cross Site Scripting

Question 56

TLS

Answer 56

Transport Layer Security

Question 57

FRR

Answer 57

False Reject Rate

Question 58

RAID

Answer 58

Redundant Array of Inexpensive Disks

Question 59

BYOD

Answer 59

Bring Your Own Device

Question 60

SSH

Answer 60

Secure Shell

Uses TCP Port 22

Question 61

NTLM

Answer 61

New Technology Lan Manager

Suite of protocols that provide confidentiality, integrity and authentication within windows systems.

Versions:
NTLM, NTLMv2 and NTLM2 Session

Question 62

FAR

Answer 62

False Acceptance Rate

Question 63

IaaS

Answer 63

Infrastructure as a Service

Question 64

NDA

Answer 64

Non Disclosure Agreement

Question 65

AES

Answer 65

Advanced Encryption Standard

Strong symmetric block cipher. Encrypts in 128 bit blocks
Key sizes of 128, 192 or 256

Question 66

ACL’s

Answer 66

Access Control Lists

Question 67

ISA

Answer 67

Interconnect Security Agreement

Question 68

RPO

Answer 68

Recovery Point Objective

Question 69

OFDMA

Answer 69

Orthogonal Frequency-Division Multiple Access

Question 70

MU-MIMO

Answer 70

Multiuser multiple input, multiple output

Question 71

USB OTG

Answer 71

Universal Serial Bus On The Go

Cable used to connect mobile devices to other devices

Question 72

UTM

Answer 72

Unified Threat Management

Question 73

VDI / VDE

Answer 73

Virtual Desktop Infrastructure / Virtual Desktop Environement

Question 74

VLAN

Answer 74

Virtual Local Areal Network

Question 75

GPO

Answer 75

Group Policy Object

Question 76

ROT-13

Answer 76

Rotate 13 letter spaces. A substitution cipher that uses a key of 13

Question 77

DAC

Answer 77

Discretionary Access Control

Microsoft NTFS uses this for authorization

Question 78

CYOD

Answer 78

Choose Your Own Device

Question 79

FAT AP

Answer 79

Fat Access Point

An AP that includes everything needed to connect wireless clients to a wireless network. Configured independantly.

Question 80

PII

Answer 80

Personally Identifiable Information

Question 81

GPS

Answer 81

Global Positioning System

Question 82

HIDS

Answer 82

Host Based Intrusion Detection System

Question 83

SED

Answer 83

Self Encrypting Drive

Question 84

IoT

Answer 84

Internet of Things

Question 85

SNMPv3

Answer 85

Simple Network Management Protocol version 3

Question 86

SIEM

Answer 86

Security Information and Event Management

Question 87

RTO

Answer 87

Recovery Time Objective

Question 88

PHI

Answer 88

Personal Health Information

Question 89

MS-CHAPv2

Answer 89

Microsoft Challenge Handshake Authentication Potocol Version 2

Provides mutual authentication. Compare to CHAP and PAP

Question 90

FTPS

Answer 90

File Transfer Protocol Secure

Extension of FTP that uses TLS to encrypt FTP traffic
TCP 989 and 990

Question 91

FRR

Answer 91

False Rejection Rate

Question 92

AUP

Answer 92

Acceptable Use Policy

Question 93

AAA

Answer 93

Authentication Authorization and Accounting

Question 94

ECB

Answer 94

Electronic Code Book

Legacy Mode of Operations used for encryption. It is weak and should not be used.

Question 95

EAP-TTLS

Answer 95

Extensible Authentication Protocol-Tunneled Transport Layer Security

Question 96

EAP-TLS

Answer 96

Extensible Authentication Protocol-Transport Layer Security

Question 97

NIST

Answer 97

National Institution of Standards and Technology

Part of the Department of Commerce and includes Information Technology Laboratory (ITL)

Question 98

DNSSEC

Answer 98

Domain Name System Security Extensions

A suite of extensions to DNS used to protect the integrity of DNS records

Question 99

SSO

Answer 99

Single Sign On

Question 100

EMP

Answer 100

ElectroMagnetic Pulse

Question 101

EMI

Answer 101

ElectroMagnetic Interference

Question 102

CA

Answer 102

Certificate Authority

Question 103

Firmware OTA Updates

Answer 103

Firmware Over The Air Updates

Question 104

APT

Answer 104

Advanced Persistent Threat

Question 105

ALE

Answer 105

Annualized Loss Expectancy

Quantitative Risk Assessment

Question 106

AH

Answer 106

Authentication Header

IPSEC (authentication and integrity)

Question 107

PEM

Answer 107

Privacy Enhanced Mail

A common format for PKI certificates. Can use either CER(ASCII) or DER(Binary). Can be used for almost any types of certificates

Question 108

CER (2)

Answer 108

Canonical Encoding Rules / Crossover Error Rate

Question 109

IRP

Answer 109

Incident Response Plan

Question 110

DER

Answer 110

Distinguished Encoding Rules

Base formation for PKI certificates
Base 64 binary encoded files

Question 111

GCM

Answer 111

Galios Counter Mode

Combines counter(CTM) mode with hashing techniques for data authenticity and confidentiality

Question 112

ABAC

Answer 112

Attribute Based Access Control

Question 113

EAP-FAST

Answer 113

Extensible Authentication Protocol-Flexible Authentication via Secure Tunnel

EAP-FAST supports certificates

Question 114

ESP

Answer 114

Encapsulating Security Payload

An option with IPSec to provide confidentiality, integrity and authentication

Question 115

Ephemeral Keys

Answer 115

Ephemeral Keys have a very short lifetime

Question 116

FDE

Answer 116

Full Disk Encryption

Question 117

PBKDF2

Answer 117

Password-Based Key Derivation Function 2

Key stretching technique

Question 118

PAP

Answer 118

Password Authentication Protocol

Older authentication protocol where passwords or pins sent across network in clear text

Question 119

S/MIME

Answer 119

Secure Multi-Purpose Internet Mail Extensions

Question 120

SoC

Answer 120

System on a Chip

Many mobile devices include an SoC

Question 121

DES

Answer 121

Data Encryption Standard

Legacy symmetric encryption standard. It has been compromised and AES and 3DES should be used instead.

Question 122

TOTP

Answer 122

Time Base One Time Password

Question 123

XSRF

Answer 123

Cross Site Request Forgery

Tricks users into performing actions on websites such as making purchases without their knowledge.

Question 124

TPM

Answer 124

Trusted Platform Module

TPM (Trusted Platform Module) is a computer chip (microcontroller) that can securely store artifacts used to authenticate the platform (your PC or laptop). These artifacts can include passwords, certificates, or encryption keys.

Question 125

UAVs

Answer 125

Unmanned Aerial Vehicles

Question 126

SRTP

Answer 126

Secure Real-Time Transport Protocol

RTP is used for audio/video streaming

Question 127

SSID

Answer 127

Service Set Identifier

Question 128

NONCE

Answer 128

A Number Used Once

Cryptography elements frequently use a none to add randomness

Question 129

UEFI

Answer 129

Unified Extensible Firmware Interface

Question 130

TACACS+

Answer 130

Terminal Access Controller Access - Control System Plus

Alternative to RADIUS

Question 131

TKIP

Answer 131

Temporal Key Integrity Protocol

Question 132

DEP

Answer 132

Data Execution Prevention

Question 133

PIV

Answer 133

Personal Identity Verification Card

Like our FOB. used by Federal Agencies

Question 134

P7B-PKCS#7

Answer 134

PKI Certificates CER Based (ASCII)

Commonly used to share public keys

Question 135

OCSP

Answer 135

Online Certification Status Protocol

Alternative to using CRL

Question 136

DSA

Answer 136

Digital Signature Algorithm

Encrypted hash of a message used for authentication, non-repudiation and integrity. The senders private key encrypts the hash of the message.

Question 137

HMAC

Answer 137

Hash Based Message Authentication Code

Algorithm used to verify integrity and authenticity of a message with the use of a shared secret. Typically combines with another hashing algorithm such as SHA

Question 138

RSTP

Answer 138

Rapid Spanning Tree Protocol

improvement of STP to prevent switching loop prolems

Question 139

CASB

Answer 139

Cloud Access Security Broker

Question 140

KDC

Answer 140

Key Distribution Center

Also knowns as a TGT Server

Question 141

SAML

Answer 141

Security Assertion Markup Language

Question 142

RIPEMD

Answer 142

Race Integrity Primitives Evaluation Message Digest

Hash function used for integrity. Fixed length hashes of 128,160, 256 or 320 bits

Question 143

Blowfish

Answer 143

Symmetric block cipher
64 Bit Blocks
keysize between 32 and 448

Question 144

PFX

Answer 144

Personal Information Exchange

Common format for PKI certificates
Predecessor to P12 Certificates

Question 145

BPA

Answer 145

Business Partners Agreement

Question 146

CBC

Answer 146

Cipher Block Chaining

Used by symmetric encryption ciphers
Uses IV for the first block and each subsequent block is combined with the previous block

Question 147

CCMP

Answer 147

Counter Mode with Cipher Block Chaining Message Authentication Code Protocol

Based on AES and used with WPA2 for wireless security

Question 148

ARO

Answer 148

Annualized Rate of Occurrence

Quantitative Risk Assessment

Question 149

CAC

Answer 149

Common Access Card

Used by Department of Defense

Question 150

NFC

Answer 150

Near Field Communication

Allows mobile devices to communicate with nearby mobile devices

Question 151

ICS

Answer 151

Industrial Control System

Controls large Systems (Power Plants)
SCADA system controls the ICS

Question 152

PEAP

Answer 152

Protected Extensible Authentication Protocol

Extension of EAP used with 802.1x
Requires a certificate on the 802.1x server

Question 153

SCADA

Answer 153

Supervisory Control and Data Aquisition

Question 154

LDAPS

Answer 154

Lightweight Directory Access Protocol Secure

Encrypts LDAP with TLS

Question 155

LDAP

Answer 155

Lightweight Directory Access Protocol

Question 156

SATCOM

Answer 156

Satellite Communications

Question 157

SaaS

Answer 157

Software as a Service

Question 158

MAC

Answer 158

Media Access Control / Mandatory Access Control

Question 159

MOU / MOA

Answer 159

Memorandum of Understanding and Memorandum of Agreement

Compare this with ISA

Question 160

DDoS

Answer 160

Distributed Denial of Service

Question 161

PaaS

Answer 161

Platform as a Service

Question 162

DNS

Answer 162

Domain Name System

DNS Poisoning corrupts DNS results. DNSSEC helps prevent DNS poisoning.

Question 163

COPE

Answer 163

Company Owned Personally Enabled

Question 164

CRL

Answer 164

Certificate Revocation List

Question 165

ROUS

Answer 165

Rodents of Unusual Size

Princess Bride

Question 166

RTOS

Answer 166

Real Time Operating System

Question 167

RBAC

Answer 167

Role Based Access Control

Question 168

RB-RBAC

Answer 168

Rule Based Access Control

Question 169

PVC

Answer 169

Permanent Virtual Cicuit