Lesson 11 - Application Security Capabilities Flashcards

1
Q

TLS

A

Transport Layer Security
- Security protocol that uses certificates for authentication and encryption to protect web communications and other application protocols.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

HKDF

A

Hash Key Derivation Function
- a cryptographic tool used to derive strong, unique keys from a master key or input keying material (IKM), ensuring secure key management and data protection

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

SASL

A

Simple Authentication and Security Layer
- a framework that provides mechanisms for authentication, data integrity, and encryption in Internet protocols, enabling secure communication by allowing clients and servers to negotiate authentication methods

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

LDAPS

A

Lightweight Directory Access Protocol Secure
- A method of implementing LDAP using SSL/TLS encryption.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

SNMP

A

Simple Network Management Protocol
- Application protocol used for monitoring and managing network devices. SNMP works over UDP ports 161 and 162 by default.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

MIB

A

Management Information Base
- a hierarchical database used by network management protocols like SNMP to store and access information about managed network devices, enabling monitoring, control, and troubleshooting.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

FTP

A

File Transfer Protocol
- Application protocol used to transfer files between network hosts. Variants include S(ecure)FTP, FTP with SSL (FTPS and FTPES), and T(rivial)FTP. FTP utilizes ports 20 and 21.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

SFTP

A

Secure File Transfer Protocol
- A secure version of the File Transfer Protocol that uses a Secure Shell (SSH) tunnel as an encryption method to transfer, access, and manage files.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

SMTP

A

Simple Mail Transfer Protocol
- Application protocol used to send mail between hosts on the Internet. Messages are sent between servers over TCP port 25 or submitted by a mail client over secure port TCP/587.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

POP3

A

Post Office Protocol v3
- Application protocol that enables a client to download email messages from a server mailbox to a client over port TCP/110 or secure port TCP/995.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

IMAP

A

Internet Message Access Protocol
- Application protocol providing a means for a client to access and manage email messages stored in a mailbox on a remote server. IMAP4 utilizes TCP port number 143, while the secure version IMAPS uses TCP/993.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

SPF

A

Sender Policy Framework
- A DNS record identifying hosts authorized to send mail for the domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

DKIM

A

DomainKeys Identified Mail
- A cryptographic authentication mechanism for mail utilizing a public key published as a DNS record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

DMARC

A

Domain-Based Message Authentication, Reporting and Conformance
- Framework for ensuring proper application of SPF and DKIM, utilizing a policy published as a DNS record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

S/MIME

A

Secure/Multipurpose Internet Mail Extensions
- a cryptographic standard used for securing email communications, offering encryption for confidentiality and digital signatures for authentication and integrity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

RPZ

A

Response Policy Zone
- a DNS (Domain Name System) feature that allows administrators to control DNS resolution based on predefined policies, enabling them to block or redirect users to specific locations based on domain reputation or other criteria.

17
Q

BIND

A

Berkley Internet Name Domain
- a key component of the DNS, performing crucial operations such as translating human-readable domain names into IP addresses that can be read by machines

18
Q

DNSSEC

A

DNS Secure Extensions
- Security protocol that provides authentication of DNS data and upholds DNS data integrity.

19
Q

SEH

A

Structured Exception Handler
- A mechanism to account for unexpected error conditions that might arise during code execution. Effective error handling reduces the chances that a program could be exploited.

20
Q

HSTS

A

HTTP Strict Transport Security
- a web security policy that forces browsers to only interact with a website using HTTPS, preventing protocol downgrade attacks and cookie hijacking by ensuring secure connections.