M-T

Question 1

Media access control (MAC) address

Answer 1

A unique identifier assigned to network interfaces for communications on the physical network segment.

Question 2

MAC header

Answer 2

represents the hardware address of an network interface controller (NIC) inside a data packet.

Question 3

Mail relay server

Answer 3

An electronic mail (email) server that relays messages so that neither the sender nor the recipient is a local user.

Question 4

Mandatory access control (MAC)

Answer 4

a means of restricting access to data based on varying degrees of security requirements for information contained in the objects and the corresponding security clearance of users or programs acting on their behalf.

Question 5

Man-in-the-middle attack

Answer 5

an attack strategy in which the attacker intercepts the communication stream between two parts of the victim system and then replaces the traffic between the 2 components with the intruder’s own, eventually assuming control of the communication.

Question 6

masking

Answer 6

a computerized technique of blocking of the display of sensitive information, such as passwords, on a computer terminal or report.

Question 7

Message authentication code

Answer 7

An American National Standards Institute (ANSI) standard checksum that is computed using Data Encryption Standard (DES).

Question 8

Message digest

Answer 8

A smaller extrapolated version of the original message created using a message digest algorithm.

Question 9

Message digest algorithm

Answer 9

Message digest algorithms are SHA1, MD2, MD4, and MD5. These algorithms are one-way functions unlike private and public key encryption algorithms. All digest algorithms take a message of arbitrary length and produce a 128-bit message digest.

Question 10

Metropolitan area network (MAN)

Answer 10

A data network intended to serve an area the size of a large city.

Question 11

Miniature fragment attack

Answer 11

Using this method, an attacker fragments the IP packet into smaller ones and pushes it through the firewall, in the hope that only the first of the sequence of fragmented packets would be examined and the others would pass without review.

Question 12

Mirrored site

Answer 12

An alternate site that contains the same information as the original. Mirrored sites are set up for backup and disaster recovery and to balance the traffic load for numerous download requests. Such download mirrors are often placed in different locations throughout the Internet.

Question 13

Multifactor authentication

Answer 13

A combination of more than one authentication method

Question 14

National Institute for Standards and Technology (NIST)

Answer 14

Develops tests, test methods, reference data, proof-of concept implementations, and technical analyses to advance the development and productive user of IT. NIST is a US govt entity that creates mandatory standards that are followed by federal agencies and those doing business with them.

Question 15

Network basic input/out system (NetBIOS)

Answer 15

A program that allows applications on different computers to communicate within a local area network (LAN)

Question 16

Network address translation (NAT)

Answer 16

A methodology of modifying network address information in datagram packet headers while they are in transit across a traffic routing device for the purpose of remapping one IP address space into another.

Question 17

Network interface card (NIC)

Answer 17

A communication card that when inserted into a computer, allows it to communicate with other computers on a network. Most NICs are designed for a particular type of network or protocol.

Question 18

Network news transfer protocol (NNTP)

Answer 18

Used for the distribution, inquiry, retrieval, and posting of Netnews articles using a reliable stream-based mechanism. For news-reading clients, nnTP enables retrieval of news articles that are stored in a central database, giving subscribers the ability to select only those articles they wish to read.

Question 19

Network segmentation

Answer 19

A common technique to implement network security is to segment an organization’s network into separate zones that can be separately controlled, monitored and protected.

Question 20

Network traffic analysis

Answer 20

Identifies patterns in network communications. Traffic analysis does not need to have the actual content of the communication but analyzes where traffic is taking place, when and for how long communications occur and the size of information transferred.

Question 21

Nonintrusive monitoring

Answer 21

use of transported probes or traces to assemble information, track traffic and identify vulnerabilities.

Question 22

Nonrepudiation

Answer 22

Assurance that a party cannot later deny originating data; provision of proof of the integrity and origin of the data that can be verified by a third party. A digital signature can provide nonrepudiation.

Question 23

Normalization

Answer 23

elimination of redundant data

Question 24

Obfuscation

Answer 24

Deliberate act of creating source or machine code that is difficult for humans to understand.

Question 25

Open Systems Interconnect (OSI) model

Answer 25

Model for the design of a network. The open systems interconnect (OSI) model defines groups of functionality required to network computers into layers. Each layer implements a standard protocol to implement its functionality. There are 7 layers in the OSI model.

Question 26

Operating System (OS)

Answer 26

A master control program that runs the computer and acts as a scheduler and traffic controller.

Question 27

Open Web Application Security Project (OWASP)

Answer 27

An open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted.

Question 28

Outcome measure

Answer 28

Represents the consequences of actions previously taken; often referred to as a lag indicator. Outcome measures frequently focus on result at the end of a time period and characterize historic performance. Also referred to as a key goal indicator (KGI)/ “lag indicators” and used to indicate whether goals have been met.

Question 29

Packet filtering

Answer 29

COntrolling access to a network by analyzing the attributes of the incoming and outgoing packets and either letting them pass, or denying them, based on a list of rules.

Question 30

Packet switching

Answer 30

Process of transmitting messages in convenient pieces that can be reassembled at the destination.

Question 31

Passive response

Answer 31

A response option in intrusion detection in which the system simply reports and records the problem detected, relaying on the user to take subsequent action.

Question 32

Payload

Answer 32

The section of fundamental data in a transmission, section containing the harmful data/code.

Question 33

Platform as a Service

Answer 33

Offers the capability to deploy onto the cloud infrastructure customer- created or acquired applications that are created using programming languages and tools supported by the provided.

Question 34

Policy

Answer 34

A document that records a high-level principle or course of action that has been decided on. Intended purpose is to influence and guide both present and future decision making to be in line with the philosophy, objectives and strategic plans established by the enterprise’s mgmt teams.

Question 35

Principle of least privilege/access

Answer 35

controls used to allow the least privilege access needed to complete a task.

Question 36

Procedure

Answer 36

A document containing a detailed description of the steps necessary to perform specific operations in conformance with applicable standards. Procedures are defined as part of processes.

Question 37

Proxy server

Answer 37

A server that acts on behalf of a user. Typical proxies accept a connection from a user, make a decision as to whether the user or client IP address is permitted to use the proxy, perhaps perform additional authentication, and complete a connection to a remote destination on behalf of the user.

Question 38

Public key encryption

Answer 38

A cryptographic system that uses 2 keys: one is public key, which is known to everyone, and the second is a private/ secret key, which is only known to the recipient of the message.

Question 39

Public key infrastructure (PKI)

Answer 39

A series of processes and technologies for the association of cryptographic keys with the entity to whom those keys were issued.

Question 40

Public switched telephone network (PSTN)

Answer 40

A communications system that sets up a dedicated channel (or circuit) between 2 points for the duration of the transmission.

Question 41

Reciprocal agreement

Answer 41

Emergency processing agreement between 2 or more enterprises with similar equipment or applications. Typically, participants of a reciprocal agreement promise to provide processing time to each other when an emergency arises.

Question 42

Recovery

Answer 42

phase in the incident response plan that ensures that affected systems or services are restored to a condition specified in the service delivery objectives (SDOs) or business continuity plan (BCP).

Question 43

Recovery point objective (RPO)

Answer 43

Determined based on the acceptable data loss in case of a disruption of operations. Indicates the earliest point in time that is acceptable to recover the data. RPO effectively quantifies the permissible amount of dat loss in case of interruption.

Question 44

Registration authority (RA)

Answer 44

The individual institution that validates an entity’s proof of identity and ownership of a key pair.

Question 45

Repeaters

Answer 45

Physical layer device that regenerates and propagates electrical signals between 2 network segments. Repeaters receive signals from 1 network segment and amplify (regenerate) the signal to compensate for signal (analog or digital) distorted by transmission loss due to reduction of signal strength during transmission

Question 46

Return-oriented attacks

Answer 46

An exploit technique in which the attacker uses control of the call stack to indirectly execute cherry-picked machine instructions immediately prior to the return instruction in subroutines within the existing program code.

Question 47

Rootkit

Answer 47

A software suit designed to aid an intruder in gaining unauthorized administrative access to a computer system.

Question 48

Secure Multipurpose Internet Mail Extensions (S/MIME)

Answer 48

Provides cryptographic security services for electronic messaging applications: authentication, message integrity and nonrepudiation of origin (using digital signatures) and privacy and data security (using encryption) to provide a consistent way to send and receive MIME data.

Question 49

Secure Shell

Answer 49

Network protocol that uses cryptography to secure communication, remote command line login and remote command execution between 2 networked computer.

Question 50

Security as a Service (SecaaS)

Answer 50

Next generation of managed security services dedicated to the delivery, over the internet, of specialized information-security services.

Question 51

Service delivery objective (SDO)

Answer 51

Directly related to the business needs, SDO is the level of services to be reached during the alternate process mode until the normal situation is restored.

Question 52

SQL injection

Answer 52

Results from failure of the application to appropriately validate input When specially crafted user-controlled input consisting of SQL syntax is used without proper validation as part of SQL queries, it is possible to glean information from the database in ways not envisaged during application design.

Question 53

Stateful inspection

Answer 53

A firewall architecture that tracks each connection traversing all interfaces of the firewall and makes sure they are valid.