Glossary S

Question 1

S/MIME (Secure/Multipurpose Internet Mail Extensions)

Answer 1

An email encryption standard that adds digital signatures and public key cryptography to traditional MIME communications.

Question 2

SaaS (Software as a Service)

Answer 2

A computing method that uses the cloud to provide application services to users.

Question 3

SAE (Simultaneous Authentication of Equals)

Answer 3

Personal authentication mechanism for Wi-Fi networks introduced with WPA3 to address vulnerabilities in the WPA-PSK method.

Question 4

salt

Answer 4

A security countermeasure that mitigates the impact of a rainbow table attack by adding a random value to (“salting”) each plaintext input.

Question 5

SAML (Security Assertion Markup Language)

Answer 5

An XML-based data format used to exchange authentication information between a client and a service.

Question 6

SAN (subject alternative name)

Answer 6

Field in a digital certificate allowing a host to be identified by multiple host names/subdomains.

Question 7

sandbox

Answer 7

A computing environment that is isolated from a host system to guarantee that the environment runs in a controlled, secure fashion. Communication links between the sandbox and the host are usually completely prohibited.

Question 8

sanitization

Answer 8

The process of thorough and completely removing data from a storage medium so that file remnants cannot be recovered.

Question 9

SAS (Serial Attached Small Computer Systems Interface)

Answer 9

Developed from parallel SCSI, SAS represents the highest performing hard disk interface available.

Question 10

SCADA (Supervisory Control and Data Acquisition)

Answer 10

A type of industrial control system that manages large-scale, multiple-site devices and equipment spread over geographically large areas.

Question 11

scalability

Answer 11

The property by which a computing environment is able to gracefully fulfill its ever-increasing resource needs.

Question 12

scanless

Answer 12

Utility that runs port scans through third-party websites to evade detection.

Question 13

SCAP (Security Content Automation Protocol)

Answer 13

A NIST framework that outlines various accepted practices for automating vulnerability scanning.

Question 14

screened host

Answer 14

A dual-homed proxy/gateway server used to provide Internet access to other network nodes, whileprotecting them from external attack.

Question 15

script kiddie

Answer 15

An inexperienced, unskilled attacker that typically uses tools or scripts created by others

Question 16

SDK (software development kit)

Answer 16

Coding resources provided by a vendor to assist with development projects that use their platform or API.

Question 17

SDN (software defined networking)

Answer 17

APIs and compatible hardware/virtual appliances allowing for programmable network appliances and systems.

Question 18

SDV (software defined visibility)

Answer 18

APIs for reporting configuration and state data for automated monitoring and alerting.

Question 19

SE (secure erase)

Answer 19

A method of sanitizing a drive using the ATA command set.

Question 20

SEAndroid (Security-Enhanced Android)

Answer 20

Since version 4.3, Android has been based on Security-Enhanced Linux, enabling granular permissions for apps, container isolation, and storage segmentation.

Question 21

SECaaS (Security as a Service)

Answer 21

A computing method that enables clients to take advantage of information, software, infrastructure, and processes provided by a cloud vendor in the specific area of computer security.

Question 22

secure boot

Answer 22

A UEFI feature that prevents unwanted processes from executing during the boot operation.

Question 23

security control

Answer 23

A technology or procedure put in place to mitigate vulnerabilities and risk and to ensure the confidentiality, integrity, and availability (CIA) of information.

Question 24

SED (self-encrypting drive)

Answer 24

A disk drive where the controller can automatically encrypt data that is written to it.

Question 25

segment

Answer 25

A portion of a network where all attached hosts can communicate freely with one another.

Question 26

SEH (structured exception handler)

Answer 26

A mechanism to account for unexpected error conditions that might arise during code execution. Effective error handling reduces the chances that a program could be exploited.

Question 27

self-signed certificate

Answer 27

A digital certificate that has been signed by the entity that issued it, rather than by a CA.

Question 28

sentiment analysis

Answer 28

Devising an AI/ML algorithm that can describe or classify the intention expressed in natural language statements.

Question 29

separation of duties

Answer 29

A concept that states that duties and responsibilities should be divided among individuals to prevent ethical conflicts or abuse of powers.

Question 30

server certificate

Answer 30

A digital certificate that guarantees the identity of e-commerce sites and other websites that gather and store confidential information.

Question 31

serverless

Answer 31

A software architecture that runs functions within virtualized runtime containers in a cloud rather than on dedicated server instances.

Question 32

server-side

Answer 32

In a web application, input data that is executed or validated as part of a script or process running on the server.

Question 33

service account

Answer 33

A host or network account that is designed to run a background service, rather than to log on interactively.

Question 34

session affinity

Answer 34

A scheduling approach used by load balancers to route traffic to devices that have already established connections with the client in question. Also known as source IP affinity.

Question 35

session hijacking

Answer 35

A type of spoofing attack where the attacker disconnects a host then replaces it with his or her own machine, spoofing the original host’s IP address. sflow Web standard for using sampling to record network traffic statistics.

Question 36

SFTP (Secure File Transfer Protocol)

Answer 36

A secure version of the File Transfer Protocol that uses a Secure Shell (SSH) tunnel as an encryption method to transfer, access, and manage files.

Question 37

SHA (Secure Hash Algorithm)

Answer 37

A cryptographic hashing algorithm created to address possible weaknesses in MDA. The current version is SHA-2.

Question 38

shadow IT

Answer 38

Computer hardware, software, or services used on a private network without authorization from the system owner.

Question 39

shared account

Answer 39

An account with no credential (guest) or one where the credential is known to multiple persons.

Question 40

shellcode

Answer 40

Lightweight block of malicious code that exploits a software vulnerability to gain initial access to a victim system.

Question 41

shimming

Answer 41

The process of developing and implementing additional code between an application and the operating system to enable functionality that would otherwise be unavailable.

Question 42

shoulder surfing

Answer 42

A social engineering tactic to obtain someone’s password or PIN by observing him or her as he or she types it in.

Question 43

SID (security identifier)

Answer 43

The value assigned to an account by Windows and that is used by the operating system to identify that account.

Question 44

SIEM (security information and event management)

Answer 44

A solution that provides real-time or near-real-time analysis of security alerts generated by network hardware and applications.

Question 45

signature-based detection

Answer 45

A network monitoring system that uses a predefined set of rules provided by a software vendor or security personnel to identify events that are unacceptable.

Question 46

SIM (subscriber identity module)

Answer 46

A small chip card that identifies the user and phone number of a mobile device, via an International Mobile Subscriber Identity (ISMI).

Question 47

sinkhole

Answer 47

A DoS attack mitigation strategy that directs the traffic that is flooding a target IP address to a different network for analysis.

Question 48

SIP (Session Initiation Protocol)

Answer 48

Used to establish, disestablish, and manage VoIP and conferencing communications sessions. It handles user discovery (locating a user on the network), availability advertising (whether a user is prepared to receive calls), negotiating session parameters (such as use of audio/ video), and session management and termination.

Question 49

SLA (service level agreement)

Answer 49

Operating procedures and standards for a service contract.

Question 50

SLE (single loss expectancy)

Answer 50

The amount that would be lost in a single occurrence of a particular risk factor.

Question 51

smart card

Answer 51

A device similar to a credit card that can store authentication information, such as a user’s private key, on an embedded microchip.

Question 52

smart meter

Answer 52

A utility meter that can submit readings to the supplier without user intervention.

Question 53

SMiShing

Answer 53

A form of phishing that uses SMS text messages to trick a victim into revealing information.

Question 54

sn1per

Answer 54

software utility designed for penetration testing reporting and evidence gathering that can also run automated test suites.

Question 55

SNMP (Simple Network Management Protocol)

Answer 55

Protocol for monitoring and managing network devices. SNMP works over UDP ports 161 and 162 by default.

Question 56

SOA (service-oriented architecture)

Answer 56

A software architecture where components of the solution are conceived as loosely coupled services not dependent on a single platform type or technology.

Question 57

SOAP (Simple Object Access Protocol)

Answer 57

An XML-based web services protocol that is used to exchange messages.

Question 58

SOAR (security orchestration, automation, and response)

Answer 58

A class of security tools that facilitates incident response, threat hunting, and security configuration by orchestrating automated runbooks and delivering data enrichment.

Question 59

SoC (system-on-chip)

Answer 59

A processor that integrates the platform functionality of multiple logical controllers onto a single chip.

Question 60

spear phishing

Answer 60

An email-based or web-based form of phishing which targets specific individuals

Question 61

SPIM (spam over internet messaging)

Answer 61

A spam attack that is propagated through instant messaging rather than email.

Question 62

split tunnel

Answer 62

VPN configuration where only traffic for the private network is routed via the VPN gateway.

Question 63

SPoF (single point of failure)

Answer 63

A component or system that would cause a complete interruption of a service if it failed.

Question 64

SQL injection (Structured Query Language injection)

Answer 64

An attack that injects a database query into the input data directed at a server by accessing the client side of the application.

Question 65

SSAE SOC (Statements on Standards for Attestation Engagements Service Organization Control)

Answer 65

Audit specifications designed to ensure that cloud/hosting providers meet professional standards. A SOC2 Type II report is created for a restricted audience, while SOC3 reports are provided for general consumption.

Question 66

SSH (Secure Shell)

Answer 66

A remote administration and file-copy program that supports VPNs by using port forwarding, and that runs on TCP port 22.

Question 67

SSID (service set identifier)

Answer 67

A character string that identifies a particular wireless LAN (WLAN)

Question 68

SSO (single sign-on)

Answer 68

An authentication technology that enables a user to authenticate once and receive authorizations for multiple services.

Question 69

SSTP (Secure Socket Tunneling Protocol)

Answer 69

A protocol that uses the HTTP over SSL protocol and encapsulates an IP packet with a PPP header and then with an SSTP header.

Question 70

standard naming convention

Answer 70

Applying consistent names and labels to assets and digital resources/identities within a configuration management system.

Question 71

stapling

Answer 71

Mechanism used to mitigate performance and privacy issues when requesting certificate status from an OCSP responder.

Question 72

state actor

Answer 72

A type of threat actor that is supported by the resources of its host country’s military and security services. Also known as nation state actor.

Question 73

state table

Answer 73

Information about sessions between hosts that is gathered by a stateful firewall.

Question 74

stateful inspection

Answer 74

A technique used in firewalls to analyze packets down to the application layer rather than filtering packets only by header information, enabling the firewall to enforce tighter and more security.

Question 75

steganography

Answer 75

A technique for obscuring the presence of a message, often by embedding information within a file or other entity.

Question 76

STIX (Structured Threat Information eXpression)

Answer 76

A framework for analyzing cybersecurity incidents.

Question 77

stored procedure

Answer 77

One of a set of pre-compiled database statements that can be used to validate input to a database.

Question 78

STP (Spanning Tree Protocol)

Answer 78

A switching protocol that prevents network loops by dynamically disabling links as needed.

Question 79

stream cipher

Answer 79

A type of symmetric encryption that combines a stream of plaintext bits or bytes with a pseudorandom stream initialized by a secret key.

Question 80

stress test

Answer 80

A software testing method that evaluates how software performs under extreme load.

Question 81

supplicant

Answer 81

In EAP architecture, the device requesting access to the network.

Question 82

SWG (secure web gateway)

Answer 82

An appliance or proxy server that mediates client connections with the Internet by filtering spam and malware and enforcing access restrictions on types of sites visited, time spent, and bandwidth consumed.

Question 83

symmetric encryption

Answer 83

A two-way encryption scheme in which encryption and decryption are both performed by the same key. Also known as shared-key encryption.

Question 84

syslog

Answer 84

A protocol enabling different appliances and software applications to transmit logs or event records to a central server.