Security+ Acronym

Question 1

A port based authentication protocol. It provides authentication when a user connects to a specific access point, or , in this context, a logical port.

It’s primary purpose is to secure the authentication process prior to a client actually gaining access to a network. While this protocol can be used in wired and wireless networks, it is often closely associated with wireless networks.

Answer 1

802.1x

Question 2

Symmetric block cipher designed as an improvement over the weaknesses of DES. It encrypts data using the DES algorithm in 3 separate passes and uses multple keys.

It uses multiple keys and multiple passes, not as efficient as AES but still used in some applications when hardware does not support AES. It has key sizes of 56 bits, 112bits, or 168 bits.

Answer 2

3DES

Question 3

Provides authentication, authorization and accounting. Authentication verifies a user’s identification. Authorization determines if a user should have access. Accounting tracks user access with logs.

RADIUS and TACACS+ are both considered this protocol because they provide all three services. They authenticate users who attempt remote access, determine if the user is authorized for remote access by checking a database, and then record the user’s activity. TACACS+ uses multiple challenges and responses during a session.

Answer 3

AAA

Question 4

Identifies a user or group that is granted permission to a resource. They are contained within a DACL in NTFS.

Answer 4

ACE (Access Control Entry)

Question 5

A strong symmetric block cipher it can use key sizes of 128bits, 192bits, or 256 bits. Because of its strengths, it has been adopted for a wide assortment of applications such as encrypting data on a USB drive. It is fast, and requires one pass to encrypt and decypt data.

Answer 5

AES (Advanced Encryption Standard)

Question 6

A list of rules used to grant access to a resource. It can define what is allowed based on permissions or based on traffic.

Answer 6

ACL (Access Control List)

Question 7

Identified with protocol ID number 51, being a part of IPSEC it provides authentication and integrity.

Answer 7

AH (Authentication Header)

Question 8

Used to measure risk with annualized rate of occurrence (ARO) and single loss expectancy (SLE). This identifies the total amount of loss expected for a given risk. The calculation is SLE x ARO = this.

Answer 8

ALE (Annualized Loss Expectancy)

Question 9

This provides access to a wired network to wireless clients. Many of these support isolation mode to segment wireless users from other wireless users.

Answer 9

AP (Access point or short for Wireless Access Point)

Question 10

Used to measure risk with annualized loss expectancy (ALE) and single loss expectancy (SLE). This identifies how many times a loss is expected to occur in a year. The calculation is SLE x this = ALE

Answer 10

ARO (Annualized rate of occurrence)

Question 11

Resolves IP addresses to MAC addresses.

Answer 11

ARP (Address Resolution Protocol)

Question 12

These type of attacks can redirect traffic through an attacker’s system by sending false MAC address updates. VLAN segregation helps prevent the scope of these type of attacks within a network.

Answer 12

ARP (Address Resolution Protocol) Poisoning

Question 13

Defines proper system usage. It will often describe the purpose of computer systems and networks, how users can access them, and the responsibilities of users when accessing the systems.

Answer 13

AUP (Acceptable Use Policy)

Question 14

A plan that helps an organization predict and plan for potential outages of critical services or functions.

Answer 14

BCP (Business Continuity Plan)

Question 15

Disaster recovery elements that provide the steps used to return critical functions to operation after an outage. The BIA is part of a this and the BIA drives decisions to create redundancies such as failover clusters or alternate sites.

Answer 15

BCP (Business Continuity Plan)

Question 16

This identifies critical business or mission requirements and includes elements such as Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs) but it does not identify solutions.

Answer 16

BIA (Business Impact Analysis)

Question 17

An automated program or system used to perform one or more tasks. A malicious this is a group of computers called zombies and controlled through a command and control server.

Answer 17

BOTS (or Network Robots)

Question 18

Attackers use malware to join computers to these. Zombies regularly check in with the command and control server and can launch DDoS attacks against other victims.

Answer 18

BOTS (or Network Robots)

Question 19

This kind of activity often includes hundreds of outbound connections, and some of these use IRC channels.

Answer 19

BOTS (or Network Robots)

Question 20

An organization that manages, issues, and signs certificates and is a part of PKI.

Answer 20

CA (Certificate Authority)

Question 21

A specialized type of smart card used by the US DOD. It includes photo identification and and provides confidentiality, integrity, authentication, and non-repudiation for the users. It is similar to a PIV.

Answer 21

CAC (Common Access Card)

Question 22

A standard that allows microcontrollers and devices to communicate with each other without a host computer.

Answer 22

CAN (Controller Area Network)

Question 23

An encryption protocol based on AES used with WPA2 for wireless security. It is more secure than TKIP, used with the original release of WPA.

Answer 23

CCMP (Counter Mode with Cipher Block Chaining Message Authentication Code Protocol)

Question 24

This is a detective control that provides video surveillance. Video survelliance provides reliable proof of a person’s location and activity. It can be used by an organization to verify if any equipment or data is being removed.

Answer 24

CCTV (Close Circuit Television)

Question 25

A group of experts that respond to security incidents.

Answer 25

CERT (Computer Emergency Response Team)

AKA CIRT, SIRT, or IRT

Question 26

Authentication mechanism where a server challenges a client.

Answer 26

CHAP (Challenge Handshake Authenticatation Protocol)

Question 27

These three form the security Triad. The first part helps prevent the unauthorized disclosure of data. The second part provides assurances that data has not been modified, tampered with, or corrupted. The third part indicates the data and services are there when needed.

Answer 27

CIA (Confidentiality, Integrity, Availability)

Question 28

Provides an alternate location for operations after a critical outage. A hot site includes personnel, equipment, software, and communications capabilities of the primary site with all the data up to date. A hot site can take over for a failed primary site within an hour. A cold site will have power and connectivity needed for this activation, but little else. A warm site is a compromise between a hot site and a cold site.

Answer 28

COOP (Continuity of Operations Plan)

Question 29

An error detection code used to detect accidental changes than can affect the integrity of data.

Answer 29

CRC (Cyclical Redundancy Check)

Question 30

An access control model where all objects have owners and owners can modify permissions for the objects (files and folders). NTFS uses this model.

Answer 30

DAC (Discretionary Access Control)

Question 31

A list of certificates that have been revoked. The CA that issued the certificate publishes this and this is public.

Answer 31

CRL (Certificate Revocation List)

Question 32

List of Access Control Entries (ACE) in Microsoft’s NTFS. Each ACE includes a SID and a permission.

Answer 32

DACL (Discretionary Access Control List)

Question 33

An attack on a system launched from multiple sources intended to make a computer’s resources or services unavailable to users. These attacks are often launched from Zombies in BotNets. These attacks are typically sustained, abnormally high network traffic. A performance baseline helps administrators detect these.

Answer 33

DDoS (Distributed Denial of Service)

Question 34

A security feature in some operating systems. It helps prevent an application or service from executing code from a nonexecutable memory region.

Answer 34

DEP (Data Execution Prevention)

Question 35

An older symmetric encryption standard used to provide confidentiality. This uses 56 bits and is considered cracked.

Answer 35

DES (Digital Encryption Standard)

Question 36

A compiled set of code that can be called from other programs.

Answer 36

DLL (Dynamic Link Library)

Question 37

A network based of this type of system can examine and analyze network traffic. It can detect if confidential company data or any PII data is included in e-mail and reduce the risk of internal users e-mailing sensitive data outside the organization.

Answer 37

DLP (Data Loss Protection)

Question 38

Area between two firewalls separating the internet and the internal network. This provides a layer of protection for internet facing servers. It allways access to a server or service for internet users while segmenting and protecting access to the internal network.

Answer 38

DMZ (Demilitarized Zone)

Question 39

Used to resolve host names to IP addresses. It is the primary name resolution service used on the internet and also internal networks

Answer 39

DNS (Domain Name System)

Question 40

Port 53

Answer 40

DNS (Domain Name System)

Question 41

Attemps to modify or corrupt cached DNS results.

Answer 41

DNS Poisoning

Question 42

DNS poisoning attack that redirects a website’s traffic to another website.

Answer 42

DNS Pharming attack

Question 43

An attack from a single source that attempts to disrupt the services provided by another system. Examples include SYN flood, smurf, and some buffer overflow attacks.

Answer 43

Denial of Service (DoS)

Question 44

A document designed to help a company respond to disasters, such as hurricanes, floods, and fires. It includes a hierarchical list of critical systems and often prioritizes services to restore after an outage. Testing validates the plan. Recovered systems are tested before returning them to operation, and this can include a comparison to baselines. The final phase of this includes a review to identify any lessons learned and may include an update of the plan.

Answer 44

Disaster Recovery Plan (DRP)

Question 45

This is an encrypted hash of a message. The sender’s private key encrypts the hash of the message to create this. The recipient decrypts the hash with the sender’s public key, and if successful, it provides authentication, non-repudiation, and integrity. Authentication identifies the sender. Integrity verifies the message has not been modified. Non-repudiation is used with online transactions and prevents the sender from later denying they sent the email.

Answer 45

DSA (Digital Signature Algorithm)

Question 46

An authentication framework that provides general guidance for authentication methods. There is a lightweight and protected version of this.

Answer 46

EAP (Extensible Authentication Protocol)

Question 47

An asymmetric encryption algorithm commonly used with smaller wireless devices such as PDAs and cell phones.

Answer 47

ECC (Elliptic Curve Cryptography)

Question 48

A feature within NTFS on Windows Systems that supports encrypting individual files or folders for confidentiality.

Answer 48

EFS (Encrypting File System)

Question 49

Interference caused by motors, power lines, and fluorescent lights. This type of shielding prevents signal emanation so it can prevent someone from capturing network traffic.

Answer 49

EMI (Electromagnetic Interference)

Question 50

IPSec includes both AH (authentication header) and this to encrypt the data and provide confidentiality, authentication, and integrity. IPSec uses this in tunnel mode when used with VPNs. This is often identified with protocol ID 50.

Answer 50

ESP (Encapsulating Security Payload)

Question 51

Protocol used to upload and download files. It utliizes port 20 and 21. It can use SSH for encryption over port 22.

Answer 51

FTP (File Transfer Protocol)

Question 52

Free software that is based on the OpenPGP standard. It is similar to PGP but avoids and conflict with existing licensing by using open standards.

Answer 52

GPG (GNU Privacy Guard)

Question 53

Used to upload and download files that uses SSL or TLS to encrypt traffic. Some implentations of this use ports 989 and 990.

Answer 53

FTPS (File Transfer Protocol Secure)

Question 54

Used within Microsoft Windows to manage users and computers. It is implemented on a domain controller and administrator’s use it to create password policies, lock down the GUI, configure host-based firewalls etc.

Answer 54

GPO (Group Policy Object)

Question 55

A tunneling protocol developed by Cisco Systems.

Answer 55

GRE (Generic Routing Encapsulation)

Question 56

An IDS used to monitor an individual server or workstation. It protects local resources on the host such as the operating system files.

Answer 56

HIDS (Host Based Intrusion Detection System)

Question 57

An extension of a host based IDS it is designed to react in real time to catch an attach in action.

Answer 57

HIPS (Host Based Intrusion Prevention System)

Question 58

This is a fixed length string of bits similar to other hashing algorithms such as MD5 and SHA-1, but it also uses a secret key to add some randomness to the result.

Answer 58

HMAC (Hash-based Message Authentication Code)

Question 59

A removable or external device that can generate, store, and manage RSA keys used in asymmetric encryption. High volume ecommerce sites use these to increase the performance of SSL sessions.

Answer 59

HSM (Hardware Security Module)

Question 60

This system increases availability by regulating airflow within datacenters and server rooms. They use hot and cold to regulate the cooling, thermostats to ensure a constant temperature, and humidity controls to reduce the potential for static discharges and damage from condensation.

Answer 60

HVAC (Heating Ventilation and Air Conditioning.)

Question 61

A cloud computing technology useful for heavily utilized systems and networks. Organizations can limit their hardware footprint and personnel costs by renting access to hardware such as servers.

Answer 61

IaaS (Infrastructure as a Service)

Question 62

Used for diagnostics such as ping. Many DoS attacks use this. It is common to block this at firewalls and routers. If this fails, but other connectivity to a server succeeds, it indicates that this is blocked.

Answer 62

ICMP (Internet Control Message Protocol)

Question 63

A detective control used to detect attacks after they occur. A signature based this uses a database of predefined traffic patterns. An anomaly based this starts with a performance baseline of normal behavior and compares network traffic against this baseline. This can be host-based or network-based.

Answer 63

IDS (Intrusion Detection System)

Question 64

International organization with a focus on electrical, electronics, and information technology topics.

Answer 64

IEEE (Institute of Electrical and Electronic Engineers)

Question 65

Used for multicasting. Computers belonging to a multicasting group have a multicasting IP address in addition to a standard unicast IP address.

Answer 65

IGMP (Internet Group Management Protocol)

Question 66

Used with IPsec to create a secure channel over port 500 in a VPN tunnel.

Answer 66

IKE (Internet Key Exchange)

Question 67

Used to store e-mail on servers and allow clients to manage on their email on the server. This uses port 143.

Answer 67

IMAP4 (Internet Message Access Protocol V4)

Question 68

A preventative control that will stop an attack in progress. It is placed in line with traffic. This can actively monitor data streams, detect malicious content, and stop attacks in progress.

Answer 68

IPS (Intrusion Prevention System)

Question 69

Used to encrypt traffic on the wire and can operate in both tunnel mode and transport mode. It uses tunnel mode for VPN traffic. This thing is built into IPv6, but can also work with IPv4 and it includes both AH and ESP. AH provides authentication and integrity, and ESP provides confidentiality, integrity, and authentication. This uses port 500 for IKE and VPN connections.

Answer 69

IPsec (Internet Protocol Security)

Question 70

Identifies hosts using a 32-bit IP address. IPs are expressed in dotted decimal format with decimal numbers separated by dots like this 192.168.1.1.

Answer 70

IPv4 (Internet Protocol version 4)

Question 71

Identifies hosts using a 128-bit address. IPs are expressed as eight groups of four hexadecimal characters (numbers and letters), such as this: FE80:0000:0000:0000:20D4:3FF7:003F:DE62

Answer 71

IPv6 (Internet Protocol version 6)

Question 72

A form of real-time internet text messaging often used with chat sessions. Some botnets have used these channels to control zombie computers through a command and control server.

Answer 72

IRC (Internet Relay Chat)

Question 73

Provides randomization of encryption keys to help ensure that keys are not reused. WEP was susceptible to these type of attacks because it used relatively small types of these. In this type of attack the attacker uses packet injection, increasing the number of packets to analyze, and discovers the encryption key.

Answer 73

IV (Initialization Vector)

Question 74

Part of the Kerberos protocol used for network authentication. This issues time-stamped tickets that expire.

Answer 74

KDC (Key Distribution Center)

Question 75

Tunneling protocol used with VPNs. Commonly used with IPsec it uses port 1701.

Answer 75

L2TP (Layer 2 Tunneling Protocol)

Question 76

Older authentication protocol used to provide backward compatibility to Windows 9x clients. These type of passwords are easily cracked due to how they are stored.

Answer 76

LANMAN (Local Area Network Manager)

Question 77

Language used to communicate with directories such as Active Directory. It provides a central location to manage user accounts and other directory objects. Uses port 389 when unencrypted and port 636 when encrypted.

Answer 77

LDAP (Lightweight Directory Access Protocol)

Question 78

A modified version of the Challenge Handshake Authentication Protocol created by Cisco. No longer secure.

Answer 78

LEAP (Lightweight Extensible Authentication Protocol)

Question 79

Access control model that uses sensitivity labels assigned to objects (files and folders) and subjects (users). SELinux (deployed in both Linux and Unix platforms) is a trusted operating system platform using this model. Other access control models are DAC and RBAC.

Answer 79

MAC (Mandatory Access Control)

Question 80

A 48-bit address used to uniquely identify NICs. It is also called a hardware address or a physical address.

Answer 80

MAC (Media Access Control)

Question 81

Method used to provide integrity for messages. This uses a secret key to encrypt the hash.

Answer 81

MAC (Message Authentication Code)

Question 82

A hashing function used to provide integrity. Uses 128 bits. A hash is simply a number created by applying the algorithm to a file or message at different times. The hashes are compared to each other to verify that integrity has been maintained.

Answer 82

MD5 (Message Digest 5)

Question 83

An attack that is a form of active interception allowing an attacker to intercept traffic and insert malicious code sent to other clients. Kerberos provides mutual authentication and helps prevent these type of attacks.

Answer 83

MITM (Man in the middle)

Question 84

This identifies the size of the data that can be transferred.

Answer 84

MTU (Maximum Transmission Unit)

Question 85

Inspects clients for health and can restrict network access to unhealthy clients to a remediation network. Clients run agents and these agents report status to this kind of server. This is used for VPN and internal clients. MAC filtering is a form of this___.

Answer 85

NAC (Network Access Control)

Question 86

A service that translates public IP addresses to private IP addresses and vice versa. It hides the addresses on an internal network.

Answer 86

NAT (Network Address Translation)

Question 87

Used to monitor a network, it can detect network-based attacks, such as smurf attacks. This ___ cannot monitor encrypted traffic, and cannot monitor traffic on individual hosts.

Answer 87

NIDS (Network-based intrusion detection system)

Question 88

This ____ monitors the network. It can actively monitor data streams, detect malicious content, and stop attacks in progress.

Answer 88

NIPS (Network based intrusion prevention system)

Question 89

This ____ is a part of the U.S. Department of Commerce, and it includes and Information Technology Laboratory (ITL). They have special publications related to security that are freely available for download.

Answer 89

NIST (National Institute of Standards and Technology)

Question 90

These _____ instructions are often used in a buffer overflow attack. An attacker often writes a large number of _____ instructions into memory followed with malicious code.

Answer 90

NOOP (No Operation)

Question 91

Software that runs on a server and enables the server to manage resources on a network.

Answer 91

NOS (Network Operating System)

Question 92

Authentication protocol intended to improve LANMAN. The LANMAN protocol stores passwords using a hash of the password by first dividing the password into two seven-character blocks, and then converting all lower-case letters to uppercase.

This makes LANMAN easy to creack. NTLM stores passwords in LANMAN format for backward compatibility unless the passwords are over 15 characters.

Answer 92

NTLM (New Technolgoy LANMAN)

Question 93

Protocol used to synchronize computer times.

Answer 93

NTP (Network time protocol)

Question 94

International standard proposed for vulnerability assessment scanners to follow.

Answer 94

OVAL (Open Vulnerability Assessment Language)

Question 95

Provides cloud customers with an easy-to-configure operating system and on-demand computing capabilities.

Answer 95

PaaS (Platform as a Service)

Question 96

An older authentication protocol where passwords are sent across the network in clear text. Rarely used today.

Answer 96

PAP (Password Authentication Protocol)

Question 97

A telephone switch used for telephone calls.

Answer 97

PBX (Private Brance Exchange)

Question 98

This _____ provides an extra layer of protection for EAP. It does by encrypting the authentication process by encapsulating and encrypting the EAP conversation in a transport layer security tunnel. Since TLS requires a certificate, this ______ requires a CA to issue certificate.

Answer 98

PEAP (Protected Extensible Authentication Protocol)

Question 99

Commonly used to secure e-mail communications between two individual but also used in companies. It provides confidentiality, integrity, authentication, and non-repudiation. It can digitally sign and encrypt email. It uses both asymmetric and symmetric encryption.

Answer 99

PGP (Pretty good Privacy)

Question 100

A specialized type of smart card used by U.S. Federal agencies. It includes a photo verification and provides confidentiality, integrity, authentication, and non-repudiation for the users. It is similar to a CAC.

Answer 100

PIV (Personal Identity Verification card)

Question 101

Group of technologies used to request, create, manage, store, distribute, and revoke digital certificates.

Certificates are an important part of asymmetric encryption. Certificates include public keys along with the details on the owner of the certificate and on the CA that issued the certificate.

Certificate owners share their public key by sharing a copy of their certificate.

Answer 101

PKI (Public Key Infrastructure)

Question 102

Used to transfer email from mail servers to clients. Uses port 110.

Answer 102

POP3 (Post Office Protocol v3)

Question 103

Tunneling protocol used with VPNs. Uses TCP port 1723.

Answer 103

PPTP (Point-to-Point Tunneling Protocol)

Question 104

A secret shared among different systems. Wireless networks support Personal Mode, where each device uses the same ____. In contrast Enterprise Mode uses an 802.1x or RADIUS server for authentication.

Answer 104

PSK (Pre-shared Key)

Question 105

A designated individual who can recover or restore cryptographic keys. In the context of a PKI, _______ can recover private keys to access encrypted data.

Answer 105

RA (Recovery Agent)

Question 106

Provides central authentication for remote access clients. It encrypts the password packets and uses UDP.

Answer 106

RADIUS (Remote Authentication Dial-In User Service)

Question 107

A server used to provide access to an internal network from an outside location.

Answer 107

RAS (Remote Access Service)

Question 108

An access control model that uses rules to define access. This _______ access control is based on a set of approved instructions, such as an access control list.

Answer 108

RBAC (Rule-based Access Control)

Question 109

Symmetric encryption algorithm that includes versions __2, __4,__5,__6. __4 is a secure stream cipher, and __5 and __6 are block ciphers.

Answer 109

RC (Ron’s Code)

Question 110

A hash function used for integrity. It creates fixed length hashes of 128, 160, 256, or 320 bits.

Answer 110

RIPEMD (RACE Integrity Primitives Evaluation Message Digest)

Question 111

This ______ identifies a point in time where data loss is acceptable.

Answer 111

RPO (Recovery Point Objective)

Question 112

An asymmetric algorithm used to encrypt data and digitally sign transmissions. This ____ relies on the mathematical properties of prime numbers when creating public and private keys.

Answer 112

RSA (Rivest, Shamir, Adleman)

Question 113

This protocol are enabled on most switches and protect against switching loops, such as those caused when two ports of a switch are connected together.

Answer 113

RSTP (Rapid Spanning Tree Protocol)

Question 114

This _____ identifies the maximum amount of time it can take to restore a system after an outage.

Answer 114

RTO (Recovery Time Objective)

Question 115

A standard used for delivering audio and video over an IP network.

Answer 115

RTP (Real-time Transport Protocol)

Question 116

Used to secure e-mail, this provides confidentiality, integrity, authentication, and non-repudiation. It can digitally sign and encrypt email, including the encryption of email at rest (stored on a drive) and in transit. It uses RSA, with public and private keys for encryption and decryption, and depends on PKI for certificates.

Answer 116

S/MIME (Secure/Multipurpose Internet Mail Extensions)

Question 117

Applications provided over the internet. Webmail is example of a cloud-based technology.

Answer 117

SaaS (Software as a service)

Question 118

A method with automated vulnerability management, measurement, and policy compliance evaluation tools.

Answer 118

SCAP (Security Content Automation Protocol)

Question 119

Based on SSH. This allows users to copy encrypted files over a network port 22.

Answer 119

SCP (Secure Copy)

Question 120

A trusted operating system platform that prevents malicious or suspicious code from executing on both Linux and UNIX systems. It is one of the few systems that use the MAC model.

Answer 120

SELinux

Question 121

A hashing function to provide integrity. It uses 160bit and 256 bits.

Answer 121

SHA (Secure Hash Algorithm)

Question 122

Used to measure risk with annualized loss expectancy (ALE) and annualized rate of occurrence (ARO). The identifies the expected dollar amount for a single event resulting in a loss. The calculation is ____ x ARO=ALE.

Answer 122

SLE (Single Loss Expectancy)

Question 123

Used to transfer email between clients and servers and other servers. Uses port 25.

Answer 123

SMTP (Simple mail transfer protocol)

Question 124

Used to manage network devices such as routers and switches.

Answer 124

SNMP (Simple Network Management Protocol)

Question 125

A multiplexing protocol used to transfer data over optical fiber.

Answer 125

SONET (Synch

Question 126

A form of spam using instant messaging that targets instant messaging users.

Answer 126

SPIM (Spam over Instant Messaging)

Question 127

Port 1433

Answer 127

SQL (Structered Query Language)

Question 128

Port 443

Answer 128

SSL (Secure Sockets Layer)

Question 129

A tunneling protocol that encrypts VPN traffic using SSL over Port 443

Answer 129

SSTP (Secure Socket Tunneling Protocol)

Question 130

Protocol enabled on most switches that protects against switching loops.

Answer 130

STP (Spaning Tree Protocol)

Question 131

The first packet in a TCP handshake. In this type of flood attack, attackers send this packet, but do not complete the handshake.

Answer 131

SYN (Synchronize)

Question 132

An older remote authentication protocol that was commonly used in Unix networks. Uses UDP Port 49.

Answer 132

TACACS (Terminal Access Controller Access - Control System)

Question 133

Provides central authentication for remote access clients and used as an alternative to RADIUS. Uses TCP port 49. It encrypts the entire authentication process, compared with RADIUS, which only encrypts the password. IT uses multiple challenges and responses.

Answer 133

TACACS+

Question 134

A factor considered when purchasing new products and services. TCO attempts to identify the cost of a product or service over its lifetime.

Answer 134

TCO (Total Cost of ownership)

Question 135

Provides guaranteed delivery of IP traffic using a 3-way handshake.

Answer 135

TCP (Transmission Control Protocol)

Question 136

Used to transfer small amounts of data with UDP port 69. In contrast, FTP is used to transfer larger files using TCP ports 20 and 21.

Answer 136

TFTP (Trivial File Transfer Protocol)

Question 137

Wireless security protocol introduced to address the problems with WEP. This ___ was used with WPA but many implementations now support CCMP.

Answer 137

TKIP (Temporal Key Integrity Protocol)

Question 138

Used the encrypt traffic on the wire. ____ is the replacement for SSL and like SSL, it uses certificates issued by CAs. PEAP-____ uses ___ to encrypt the authentication process and PEAP-___ requires a CA to issue certificates.

Answer 138

TLS (Transport Layer Security)

Question 139

This is a hardware chip on the motherboard included on many newer laptops. A ___ includes a unique RSA asymmetric key, and it can generate and store other keys used for encryption, decryption, and authentication. ____ provides full disk encryption.

Question 140

One of the last phases of testing an application before its release.

Answer 140

UAT (User Acceptance Testing)

Question 141

Used instead of TCP when guaranteed delivery of each packet is not necessary. ___ uses a best effort delivery mechanism.

Answer 141

UDP (User Datagram Protocol)

Question 142

A firewall specifically designed to protect a web application, such as a web server. A ___ inspects the contents of traffic to a web server, can detect malicious content, and block it.

Answer 142

WAF (Web Application Firewall)

Question 143

Original wireless security protocol. Had significant security flaws and was replaced with WPA, and ultimately WPA2. ___ used RC4 incorrectly making it susceptible to IV attacks.

Answer 143

WEP (Wired Equivalency Privacy)

Question 144

An IDS used for wireless networks.

Answer 144

WIDS (Wireless Intrusion Detection System)

Question 145

An IPS used for wireless networks.

Answer 145

WIPS (Wireless Intrusion Prevention System)

Question 146

Used to encrypt traffic for smaller wireless devices.

Answer 146

WTLS (Wireless Transport Layer Security)

Question 147

Used by many databases for inputting or exporting data.

Answer 147

XML (Extensible Markup Language)

Question 148

An attack that causes users to perform actions on websites without their knowledge. In some cases, attackers use header manipulation to steal cookies and harvest passwords.

Answer 148

XSRF (Cross-site request forgery)

Question 149

Scripting allows an attacker to redirect useres to malicious websites and steal cookies.

Answer 149

XSS (Cross-Site scripting)