Glossary- D

Question 1

damage assessment

Answer 1

The process of examining assets after a disaster to determine the extent of damage.

Question 2

data acquisition

Answer 2

The act of obtaining data for later use in a forensic investigation.

Question 3

data classification policy

Answer 3

Policy that defines sensitivity levels and handling proce-

dures for information.

Question 4

data control language

Answer 4

A procedural language used to control access to a database.

Question 5

data definition language (DDL)

Answer 5

A procedural language used to describe the struc- ture of data contained in a database.

Question 6

data dictionary (DD)

Answer 6

A set of data in a database management system that describes the structure of databases stored there.

Question 7

data file controls

Answer 7

Controls that ensure the security and integrity of data files and their contents.

Question 8

data flow architecture

Answer 8

The part of network architecture that is closely related to ap- plication and data architecture. See also data flow diagram.

Question 9

data flow diagram

Answer 9

A diagram that illustrates the flow of data within and between systems.

Question 10

data link

Answer 10

Layer 2 of the OSI network model. See also OSI network model.

Question 11

data management utility

Answer 11

A type of utility software used to manipulate, list, trans-

form, query, compare, encrypt, decrypt, import, or export data. See also utility software.

Question 12

data manipulation language (DML)

Answer 12

A procedural language used to insert, delete,

and modify data in a database.

Question 13

data-oriented system development (DOSD)

Answer 13

A software development life cycle pro- cess that starts with a design of data and interfaces to databases and then moves on to program design.

Question 14

data restore

Answer 14

The process of copying data from backup media to a target system for the purpose of restoring lost or damaged data.

Question 15

database management system (DBMS)

Answer 15

A software program that facilitates the storage and retrieval of potentially large amounts of structured or unstructured information.

Question 16

database

Answer 16

A collection of structured or unstructured information.

Question 17

database server

Answer 17

A server that contains and facilitates access to one or more databases.

Question 18

debugging

Answer 18

The activity of searching for the cause of malfunctions in programs or systems.

Question 19

decryption

Answer 19

The process of transforming ciphertext into plaintext so that a recipient can read it.

Question 20

default gateway

Answer 20

A station on a network (usually a router) that is used to forward mes- sages to stations on distant networks.

Question 21

default password

Answer 21

A password associated with a user account or system account that retains its factory default setting.

Question 22

deluge

Answer 22

A fire sprinkler system that has dry pipes and all of the sprinkler heads are open. When the system is operated (for instance, when an alarm is triggered), water flows into the pipes and out of all of the sprinkler heads. See also fire sprinkler system.

Question 23

denial of service (DoS)

Answer 23

An attack on a computer or network with the intention of causing disruption or malfunction of the target.

Question 24

desktop computer

Answer 24

A computer used by an individual end user and located at the user’s workspace.

Question 25

detection risk

Answer 25

The risk that an IS auditor will overlook errors or exceptions during an audit.

Question 26

detective control

Answer 26

A control that is used to detect events.

Question 27

deterrent control

Answer 27

A control that is designed to deter people from performing un-
wanted activities.

Question 28

development

Answer 28

The process where software code is created.

Question 29

diameter

Answer 29

An authentication standard that is the successor to RADIUS. See also RADIUS.

Question 30

Diffie-Hellman

Answer 30

A popular key exchange algorithm. See also key exchange.

Question 31

digital certificate

Answer 31

An electronic document that contains an identity that is signed with the public key of a certificate authority (CA).

Question 32

digital envelope

Answer 32

A method that uses two layers of encryption. A symmetric key is used to encrypt a message; then a public or private key is used to encrypt the sym- metric key.

Question 33

digital private branch exchange (DPBX)

Answer 33

A private branch exchange (PBX) that sup- ports digital technologies such as Voice over IP (VoIP) and Session Initiation Protocol (SIP). See also private branch exchange (PBX), Voice over IP (VoIP), and Session Initiation Protocol (SIP).

Question 34

digital rights management (DRM)

Answer 34

Any technology used to control the distribution and use of electronic content.

Question 35

digital signature

Answer 35

The result of encrypting the hash of a message with the originator’s private encryption key, used to prove the authenticity and integrity of a message.

Question 36

digital subscriber line (DSL)

Answer 36

A common carrier standard for transporting data from the Internet to homes and businesses.

Question 37

directory

Answer 37

A structure in a file system that is used to store files and, optionally, other directories. See also file system.

Question 38

directory system (DS)

Answer 38

See data dictionary.

Question 39

disaster

Answer 39

An unexpected and unplanned event that results in the disruption of busi-
ness operations.

Question 40

disaster declaration criteria

Answer 40

The conditions that must be present to declare a disaster, triggering response and recovery operations.

Question 41

disaster declaration procedure

Answer 41

Instructions to determine whether to declare a disas- ter and trigger response and recovery operations. See also disaster declaration criteria.

Question 42

disaster recovery and business continuity requirements

Answer 42

Formal statements that de- scribe required recoverability and continuity characteristics that a system must support.

Question 43

disaster recovery plan

Answer 43

The activities required to restore critical IT systems and other critical assets, whether in alternate or primary locations. See also response document.

Question 44

disaster recovery planning (DRP)

Answer 44

Activities related to the assessment, salvage, repair, and restoration of facilities and assets.

Question 45

discovery sampling

Answer 45

A sampling technique where at least one exception is sought in a population. See also sampling.

Question 46

discretionary access control (DAC)

Answer 46

An access model where the owner of an object is able to determine how and by whom the object may be accessed. The discretion of the owner determines permitted accesses by subjects.

Question 47

disk array

Answer 47

A chassis in which several hard disks can be installed and connected to a server. The individual disk drives can be “hot swapped” in the chassis while the array is still operating.

Question 48

disk management system (DMS)

Answer 48

An information system that is used to manage disk media, usually for the purpose of performing information backup. See also backup.

Question 49

distributed denial of service (DDoS)

Answer 49

A denial of service (DoS) attack that originates from many computers. See also denial of service (DoS).

Question 50

document review

Answer 50

A review of some or all disaster recovery and business continuity plans, procedures, and other documentation. Individuals typically review these docu- ments on their own, at their own pace, but within whatever time constraints or dead- lines that may have been established.

Question 51

documentation

Answer 51

The inclusive term that describes charters, processes, procedures, standards, requirements, and other written documents.

Question 52

domain name service (DNS)

Answer 52

A TCP/IP application layer protocol used to translate domain names (such as www.isecbooks.com) into IP addresses.

Question 53

dropout

Answer 53

A momentary loss of power that lasts from a few milliseconds to a few seconds.

Question 54

dry pipe

Answer 54

A fire sprinkler system used where ambient temperatures often drop below freezing. In this type of system, pipes are filled with compressed air. When sufficient heat causes one of the sprinkler head fuses to break, a control valve releases water into the piping. See also fire sprinkler system.

Question 55

dual power feeds

Answer 55

The use of two physically separate electric power feeds into a facility.

Question 56

dynamic host configuration protocol (DHCP)

Answer 56

A TCP/IP application layer protocol used to assign an IP address, subnet mask, default gateway, IP address of DNS servers, and other information to a workstation that has joined the network.

Question 57

dynamic random access memory (DRAM)

Answer 57

The most common form of semiconduc- tor memory, where data is stored in capacitors that require periodic refreshing.