Security+ Acronyms

Question 1

NAT

Answer 1

Network Address Translation

Question 2

APIPA

Answer 2

Automatic Private IP Addressing

Question 3

VLAN

Answer 3

Virtual LAN

Question 4

OSI

Answer 4

Open Systems Interconnect

Question 5

Mbps

Answer 5

Megabits Per Second

Question 6

UTP

Answer 6

Unshielded Twisted Pair

Question 7

BNC

Answer 7

British Naval Connector

Question 8

AUI

Answer 8

Adapter Unit Interface

Question 9

STP

Answer 9

Shield Twisted Pair

Question 10

ST

Answer 10

Straight-tip

Question 11

SC

Answer 11

Subscriber Connector

Question 12

TCP/IP

Answer 12

Transmission Control Protocol/Internet Protocol

Question 13

DHCP

Answer 13

Dynamic Host Configuration Protocol

Question 14

ACK

Answer 14

Acknowledgment

Question 15

ISN

Answer 15

I

Question 16

ISN

Answer 16

Initial Sequence Number

Question 17

SYN

Answer 17

Sequence Number

Question 18

SCP

Answer 18

Secure copy

Question 19

802.1x

Answer 19

A port-based authentication protocol. Wireless can use 802.1x.

Question 20

3DES

Answer 20

Triple Data Encryption Standard - A symmetric algorithm used to encrypt data and provide confidentiality. It is a block cipher that encrypts data in 64-bit blocks.

Question 21

AAA

Answer 21

Authentication, Authorization, and Accounting -nAAA

Question 22

ACE

Answer 22

Access Control Entry - Identifies a user or group that is granted permission to a resource. ACEs are contained with in DACL in NTFS.

Question 23

ACK

Answer 23

Acknowledge - A packet in a TCP handshake. In a SYN flood attack, attackers send the SYN packet, but don’t complete the handshake after receiving the SYN/ACK packet.

Question 24

ACL

Answer 24

Access Control List - Routers and packet- filtering firewalls perform basic filtering using and ACL to control traffic based on networks, subnets, IP addresses, ports, and some protocols.

In NTFS, a list of ACEs make up the ACL for a resource.

Question 25

AES

Answer 25

Advanced Encryption Standard - A Symmetric algorithm used to encrypt data and provide confidentiality.

AES is a block cipher and it encrypts data in 128-bit blocks. It is quick, highly secure, and used in wide assortment of Cryptography schemes.

It includes key sizes of 128 bits, 192 bits, and 256 bits.

Question 26

AES-256

Answer 26

Advanced Encryption Standard 256 bits.

AES sometimes includes the number of bits used in the encryption keys and AES-256 uses 256-bit encryption keys.

Blowfish is quicker than AES-256.

Question 27

AH

Answer 27

Authentication Header - IPsec includes both AH and ESP. AH provides authentication and integrity using HMAC.

ESP provides confidentiality, integrity, and authentication using HMAC, and AES or 3DES.

AH is identified with Protocol ID number 51.

Question 28

ALE

Answer 28

Annual Loss Expectancy - The ALE identifies the expected annual loss and is used to measure risk with ARO and SLE in a quantitative risk assessment.

SLE x ARO = ALE

Question 29

AP

Answer 29

Access Point - short for wireless access point (WAP). Apps provide access to a wired network to wireless clients. Many APs support Isolation mode to segment wireless users from other wireless users.

Question 30

API

Answer 30

Application Programming Interface - A software module or component that identifies inputs and outputs for an application.

Question 31

APT

Answer 31

Advanced persistent threat - A group that has both the capability and intent to launch sophisticated and targeted attacks.

Question 32

ARO

Answer 32

Annual rate of occurrence - The ARO identifies how many times a loss is expected to occur in a year and is used to measure risk with ALE and SLE in a quantitative risk assessment.

The calculation is SLE x ARO =ALE

Question 33

ARP

Answer 33

Address Resolution Protocol - Resolves IPv4 addresses to MAC addresses.

ARP poisoning attacks can redirect traffic through an attacker’s system but sending false MAC address updates.

NDP is used with IPv6 instead of ARP.

Question 34

ASCII

Answer 34

American Standard Code for Information Interchange. Code used to display characters.

Question 35

ASP

Answer 35

Application Service Provider - Provides an application as a service over a network.

Question 36

AUP

Answer 36

Acceptable Use Policy - An AUP defines proper system usage. It will often describe the purpose of computer systems and networks, how users can access them, and the responsibilities of users when accessing the systems.

Question 37

BAC

Answer 37

Business Availability Center - An application that shows availability and performance of applications used or provided by a business.

Question 38

BCP

Answer 38

Business Continuity Plan - A plan that helps an organization predict and plan for potential outages of critical services or functions. It includes disaster recovery element that provide the steps used to return critical functions to operations after an outage.

A BIA is part of a BCP and the BIA drives decisions to create redundancies such as failover clusters or alternate sites.

Question 39

BIA

Answer 39

Business Impact Analysis- The BIA identifies systems and components that are essential to the organization’s success. It identifies various scenarios that can impact these systems and components, maximum downtime limits, and potential losses from an incident.

The BIA helps identify RTOs and RPOs.

Question 40

BIND

Answer 40

Berkeley Internet Name Domain. BIND is DND software that runs on Linux and Unix servers. Most Internet-based DNS servers use BIND.

Question 41

BIOS

Answer 41

Basic Input/Output System - A computer firmware used to manipulate different settings such as the date and time, boot drive, and access password.

UEFI is the designated replacement for BIOS.

Question 42

BPA

Answer 42

Business Partner agreement - A written agreement that details the relationship between business partners, including their obligations towards the partnership.

Question 43

BYOD

Answer 43

Bring Your Own Device - A policy allowing employees to connect personally owned devices to company networks.

Data security is often the concern with BYOD and organization often use VKANS to isolate mobile devices.

Question 44

CA

Answer 44

Certificate Authority - An organization that manages, issues, and sign certificates and is part of a PKI. Certificates are an important part of asymmetric encryption. Certificates included public keys along with details on the owner of the certificate and on the CA that issued the certificate. Certificate owners share their public key by sharing a copy of their certificate.

Question 45

CAC

Answer 45

Common access card - a specialized type of smart card used by the U.S. Department o Defense.
-Provides confidentiality, integrity, authentication, and Non-repudiation for the users. It is similar to a PIV.

Question 46

CAN

Answer 46

Controller Area Network - A standard that allows microcontrollers and devices to communicate with each other without a host computer.

Question 47

CAPTCHA

Answer 47

Completely Automated Public Turing test to tell Computers and Humans apart. Technique used to prevent automated tools from interacting with a web site. User must type in text, often from a slightly distorted image.

Question 48

CAR

Answer 48

Corrective Action Report - A report used to document action taken to correct an event, incident, or outage.

Question 49

CCMP

Answer 49

Counter Mode with Cipher Authenictes block Channing Message Authentication Code Protocol. It’ is more secure than TKIP, which used with original release of WPA.

Question 50

CCTV

Answer 50

Closed-circuit Television. This is a detective control that provides video surveillance. Video surveillance provides reliable proof of a person’s location and activity.

It is also a physical security controls and it increase the safely of an organizations assets

Question 51

CERT

Answer 51

Computer emergency Response Team. A computer of experts who respond to security incidents.

Also know as CIRT, SIRT, IRT

Question 52

CHAP

Answer 52

Challenge Handshake Authentication Protocol.

Authentication mechanism where a server challenges a client. More secure then PAP and usesPPP> MS-CHAPv2 is an improvement CHAP and uses Mutual Authentication.

Question 53

CIA

Answer 53

Confidentiality, Integrity, and Availability. These form the Security triad.

Confidentiality helps prevent the unauthorized disclosure of data.

Integrity provides assurances that the data has not been modified, tamper with, or corrupted.

Availability indicates that data and services are available when needed.

Question 54

CIO

Answer 54

Chief Information Officer. - A “C” level executive position in some organizations. A CIO focuses on using methods within the organization to answer relevant questions and solve programs.

Question 55

COOP

Answer 55

Continuity of operations planning - COOP sites provide an alternate location for operations after a critical outage.

Hot Site - includes personnel, equipment, software, and communication capabilities of the primary site with all the data up to date.

Cold Site - will have power and connectivity needed for COOP activation but little else.

Warm site - is a compromise between a hot site and a cold site. Mobile sites do not have dedicated location, but can provide temporary support during a disaster.

Question 56

CP

Answer 56

Contingency Planning - Plans for contingencies in the event of a disaster to keep an organization operational.

Question 57

CRC

Answer 57

Cyclical Redundancy Check - An error detection code used to detect accidental changes that can affect the integrity of data.

Question 58

CRL

Answer 58

Certification Revocation list - A list of certificates that a CA has revoked. The CA that issued the certificate publishes a CRL, and a CRL is public.

Question 59

CSR

Answer 59

Control Status Register. A register in a processor used for temporary storage of data.

Question 60

CSR

Answer 60

Certificate signing request - A method of requesting a certificate from a CA. It starts by creating an RSA-based private/public key pair and then including the public key in the CSR.

Question 61

CSU

Answer 61

Channel Service Unit - A line bridging device used with T1 and similar lines. It typically connects with a DSU as a CSU/DSU.

Question 62

CTO

Answer 62

Chief Technology Officer. A “C” level executive position in some organizations. CTOs Focus on technology and evaluate new technologies.

Question 63

CVE

Answer 63

Common Vulnerability and Exposures - a dictionary of publicly known security vulnerabilities and exposures.

Question 64

DAC

Answer 64

Discretionary Access Control - An access control model where all objects have owners and owners can modify permissions for the objects (files and folders).

Microsoft NTFS uses the DAC model.

Question 65

DACL

Answer 65

Discretionary Access Control List - List of access controls entries (ACEs in Microsoft NTFS. Each ACE includes a security identifier (SID) and a permission.

Question 66

DBA

Answer 66

Database Administrator - A DBA administers databases on database servers.

Question 67

DDoS

Answer 67

Distributed denial-of-service - An attack on a system launched from multiple sources intended to make a computer’s resources or services unavailable to users. DDoS attacks typically include sustained, abnormally high network traffic. Compared to DoS.