IS 414 CH. 9 (VOCAB)

Question 1

Information rights management (IRM)

Answer 1

Software that offers the capability not only to limit access to specific files or documents, but also to specify the actions (read, copy, print, download, etc.) that individuals who are granted access to that resource can perform. Some IRM software even has the capability to limit access privileges to a specific period of time and to remotely erase protected files

Question 2

Data loss prevention (DLP)

Answer 2

Software which works like antivirus programs in reverse, blocking outgoing messages (email, instant messages, etc.) that contain key words or phrases associated with intellectual property or other sensitive data the organization wants to protect

Question 3

Digital watermark

Answer 3

Code embedded in documents that enables an organization to identify confidential information that has been disclosed

Question 4

Data masking

Answer 4

A program that protects privacy by replacing personal information with fake values

Question 5

Spam

Answer 5

Unsolicited email that contains either advertising or offensive content

Question 6

Identity theft

Answer 6

Assuming someone’s identity, usually for economic gain

Question 7

Cookie

Answer 7

A text file created by a website and stored on a visitor’s hard drive. Cookies store information about who the user is and hat the user has done on the site

Question 8

Encryption

Answer 8

The process of transforming normal text, called plaintext, into unreadable gibberish, called ciphertext

Question 9

Plaintext

Answer 9

Normal text that has not been encrypted

Question 10

Ciphertext

Answer 10

Plaintext that was transformed into unreadable gibberish using encryption

Question 11

Decryption

Answer 11

Transforming ciphertext back into plaintext

Question 12

Symmetric encryption systems

Answer 12

Encryption systems that use the same key both to encrypt and to decrypt

Question 13

Asymmetric encryption systems

Answer 13

Encryption systems that use two keys (one public, the other private); either key can encrypt, but only the other matching key can decrypt

Question 14

Public key

Answer 14

One of the keys used in asymmetric encryption systems. It is widely distributed and available to everyone

Question 15

Private key

Answer 15

One of the keys used in asymmetric encryption systems. It is kept secret and known only to the owner of that pair of public and private keys

Question 16

Key escrow

Answer 16

The process of storing a copy of an encryption key in a secure location

Question 17

Hashing

Answer 17

Transforming plaintext of any length into a short code called a hash

Question 18

Hash

Answer 18

Plaintext that has been transformed into short code

Question 19

Nonrepudiation

Answer 19

Creating legally binding agreements that cannot be unilaterally repudiated by either party

Question 20

Digital signature

Answer 20

A hash encrypted with the hash creator’s private key

Question 21

Digital certificate

Answer 21

An electronic document that certifies the identity of the owner of a particular public key and contains that party’s public key

Question 22

Certificate authority

Answer 22

An organization that issues public and private keys and records the public key in the digital certificate

Question 23

Public key infrastructure (PKI)

Answer 23

The system for issuing pairs of public and private keys and corresponding digital certificates

Question 24

Virtual private network (VPN)

Answer 24

Using encryption and authentication to securely transfer information over the internet, thereby creating a “virtual” private network