Glossary- K

Question 1

key

Answer 1

See encryption key.

Question 2

keycard system

Answer 2

A physical access control system where personnel are able to enter a workspace by waving a keycard near a reader or inserting it into a reader, activating a door lock to briefly unlock the door.

Question 3

key compromise

Answer 3

Any unauthorized disclosure or damage to an encryption key. See also key management.

Question 4

key custody

Answer 4

The policies, processes, and procedures regarding the management of keys. See also key management.

Question 5

key disposal

Answer 5

The process of decommissioning encryption keys. See also key management.

Question 6

key exchange

Answer 6

A technique that is used by two parties to establish a symmetric encryp-
tion key when no secure channel is available.

Question 7

key fingerprint

Answer 7

A short sequence of characters that is used to authenticate a public key.

Question 8

key generation

Answer 8

The initial generation of an encryption key. See also key management.

Question 9

key length

Answer 9

This refers to the size (measured in bits) of an encryption key. Longer en- cryption keys mean that it takes greater effort to successfully attack a cryptosystem.

Question 10

key logger

Answer 10

A hardware device or a type of malware where a user’s keystrokes and, op- tionally, mouse movements and clicks are recorded and sent to the key logger’s owner.

Question 11

key management

Answer 11

The various processes and procedures used by an organization to generate, protect, use, and dispose of encryption keys over their lifetime.

Question 12

key protection

Answer 12

All means used to protect encryption keys from unauthorized disclo- sure and harm. See also key management.

Question 13

key rotation

Answer 13

The process of issuing a new encryption key and re-encrypting data pro- tected with the new key. See also key management.

Question 14

known error

Answer 14

An incident that has been seen before and its root cause is known.

Question 15

laptop computer

Answer 15

A portable computer used by an individual user.

Question 16

Layer 2 Tunneling Protocol (L2TP)

Answer 16

A TCP/IP tunneling protocol.

Question 17

layer 3 switch

Answer 17

A device that routes packets between different TCP/IP networks.

Question 18

layer 4 switch

Answer 18

A device used to route packets to destinations based on TCP and UDP port numbers.

Question 19

layer 4-7 switch

Answer 19

A device that routes packets to destinations based on their internal content.

Question 20

least privilege

Answer 20

The concept where an individual user should have the lowest privilege possible that will still enable them to perform their tasks.

Question 21

Lightweight Directory Access Protocol (LDAP)

Answer 21

A TCP/IP application layer protocol used as a directory service for people and computing resources.

Question 22

link

Answer 22

Layer 1 of the TCP/IP network model. The purpose of the link layer is the delivery of messages (usually called frames) from one station to another on a local network. See also TCP/IP network model.

Question 23

local area network (LAN)

Answer 23

A network that connects computers and devices together in a small building or a residence.

Question 24

logic bomb

Answer 24

A set of instructions that is designed to perform some damaging action when a specific event occurs; a popular example is a time bomb that alters or destroys data on a specified date in the future.

Question 25

logical network architecture

Answer 25

The part of network architecture concerned with the depiction of network communications at a local, campus, regional, and global level.

Question 26

loopback address

Answer 26

The IP address 127.0.0.1 (or any other address in the entire 127 ad- dress block). A packet sent to a loopback address is sent to the station that originated it.