Devices and Infrastructure

Question 1

Access control list (ACL)

Answer 1

Data file that specified whether a user has access to a specific resource on a computer or network

Question 2

ACL

Answer 2

access control list

Question 3

Access point (AP)

Answer 3

The point at which access to a network is accomplished

Question 4

AP

Answer 4

access point

Question 5

Active response

Answer 5

A response generated in real time

Question 6

Alarm

Answer 6

A notification that an unusual condition exists and should be investigated

Question 7

Alert

Answer 7

An indication that an unusual condition COULD exist and should be investigated

Question 8

all-in-one

Answer 8

An appliance that performs multiple functions

Question 9

Analyzer

Answer 9

The component or process that analyzes the data collected by the sensor

Question 10

Anomalies

Answer 10

Variations from normal operations

Question 11

Anomaly-detection intrusion detection system (AD-IDS)

Answer 11

Works by looking for deviations from a pattern of normal network traffic

Question 12

AD-IDS

Answer 12

anomaly-detection intrusion detection system

Question 13

Application-level proxy

Answer 13

A device or software that recognizes application-specific commands and offers gradual control over them

Question 14

Authentication header (AH)

Answer 14

An IPSec header used to provide connectionless integrity and data origin authentication; provides protection against replays

Question 15

AH

Answer 15

authentication header

Question 16

Compensating controls

Answer 16

Gap controls that fill in the coverage between the other types of vulnerability mitigation techniques

“Where there are holes in coverage, we compensate for them”

Question 17

Data loss prevention (DLP)

Answer 17

Any systems that monitor and protect data to prevent it from unauthorized use, modification, or destruction

Question 18

DLP

Answer 18

data loss prevention

Question 19

Encapsulating Security Payload (ESP)

Answer 19

IPSec header used to provide a mix of security services in IPv4 and IPv6; can be used with IP authentication header (AH)

Question 20

ESP

Answer 20

encapsulating security payload

Question 21

Encapsulation

Answer 21

The process of enclosing data in a packet

Question 22

Host-based IDS (HIDS)

Answer 22

An intrusion detection system that is just based (as opposed to network based)

Question 23

HIDS

Answer 23

host-based intrusion detection system

Question 24

Hardware security module (HSM)

Answer 24

A software or appliance stand-alone used to enhance security; commonly used with PKI systems

Question 25

Implicit deny

Answer 25

A condition that states that u less otherwise given, the permission will be denied

Question 26

Internet Protocol Security (IPSec)

Answer 26

A set of protocols that enable encryption, authentication, and integrity over IP; commonly used with VPN

Question 27

HSM

Answer 27

hardware security module

Question 28

IPSec

Answer 28

Internet Protocol Security

Question 29

Key management

Answer 29

Management of all aspects of cryptographic keys in a cryptosystem (key generation, storage, etc)

Question 30

Load balancing

Answer 30

Dividing a load for greater efficiency of management among multiple devices

Question 31

Network access control (NAC)

Answer 31

The set of standards defined by the network for clients attempting to access it

Question 32

NAC

Answer 32

network access control

Question 33

Network intrusion prevention systems (NIPS)

Answer 33

An intrusion prevention system that is network based

Question 34

NIPS

Answer 34

network intrusion prevention system

Question 35

Network-based IDS (NIDS)

Answer 35

An approach to an intrusion detection system; placed at a point in the network where it can monitor and report on all network traffic

Question 36

Passive response

Answer 36

A nonactive response

Ex: logging, monitoring, etc

Question 37

NIDS

Answer 37

network-based intrusion detection system

Question 38

Proxy

Answer 38

A type of system that prevents direct communication between a client and a host by acting as an intermediary

Question 39

Proxy firewall

Answer 39

A proxy server that also acts as a firewall, blocking network access from external networks

Question 40

Secure Sockets Layer (SSL)

Answer 40

A protocol that secures messages by operating between the Application later (HTTP) and the transport layer

Question 41

SSL

Answer 41

Secure Sockets Layer

Question 42

SIEM

Answer 42

Security Information and Event Management

Question 43

Security Information and Event Management (SIEM)

Answer 43

Combines security information management (SIM) and security event management (SEM) functions to provide real-time analysis of security alerts

Question 44

Signature-based system

Answer 44

A system that acts based on the digital signature it sees and offers no repudiation to increase the integrity of a message

Question 45

SSID broadcast

Answer 45

An access point’s broadcasting of the network name

Question 46

Switch

Answer 46

A network device network that can replace a router in a local network