Security+ SYO-501 - Acronyms Flashcards

Question 1

Q

3DES

Answer

A

Triple Digital Encryption Standard

About the name: AES applies the DES cipher algorithm three times to each data block. 
Type:  Symmetric-key block cipher
Key sizes: 168, 112 or 56 bits (keying option 1, 2, 3 respectively)
Block sizes: 64 bits
Rounds: 48 DES-equivalent rounds
Structure: Feistel network
First published: 1998 (ANS X9.52)
Retired:  2018 (replaced by AES)

Question 2

Q

AAA

Answer

A

Authentication, Authorization, and Accounting

Question 3

Q

ABAC

Answer

A

Attribute-Based Access Control

Defined by NIST 800-162
A logical access control methodology where authorization to perform a set of operations is determined by evaluating attributes associated with the subject, object, requested operations, and, in some cases, environment conditions against policy, rules, or relationships that describe the allowable operations for a given set of attributes.

Question 4

Q

ACL

Answer

A

Access Control List

Question 5

Q

AES

Answer

A

Advanced Encryption Standard

Original name: Rijndael
Type:  Symmetric-key block cipher
Key sizes: 128, 192 or 256 bits
Block sizes: 128 bits
Rounds: 10, 12 or 14 (depending on key size)
Designers: Vincent Rijmen, Joan Daemen
Structure: Substitution–permutation network
First published: 1998 (NIST)

Question 6

Q

AES256

Answer

A

Advanced Encryption Standard 256-bit

Question 7

Q

AH

Answer

A

Authentication Header

IPsec is composed of two separate (mutually exclusive) protocols:Authentication Header (AH)andEncapsulating Security Payload (ESP). AH provides the authentication and integrity checking for data packets, and ESP provides encryption services.

Question 8

Q

ALE

Answer

A

Annualized Loss Expectancy

$$$ how much loss you could expect in a year.
ALE = SLE x ARO

Question 9

Q

AP

Answer

A

Access Point

An AP works at Layer 2 (the data link layer) of the OSI model, and it can operate as a bridge connecting a standard wired network to wireless devices or as a router passing data transmissions from one access point to another.

Question 10

Q

API

Answer

A

Application Programming Interface

Question 11

Q

APT

Answer

A

Advanced Persistent Threat

Often nation-states (e.g. China). Hackers with skill , resources and TIME

Question 12

Q

ARO

Answer

A

Annualized Rate of Occurrence

### the number of times an event is expected to occur each year
ALE = SLE x ARO

Question 13

Q

ARP

Answer

A

Address Resolution Protocol

Protocol used to map known IP addresses to unknown physical addresses.

Question 14

Q

ASLR

Answer

A

Address Space Layout Randomization

Randomizes the location where system executables are loaded into memory.
Therefore, it is a memory-protection process for operating systems (OSes) that guards against BUFFER-OVERLOW attacks

Question 15

Q

ASP

Answer

A

Application Service Provider

Question 16

Q

AUP

Answer

A

Acceptable Use Policy

defines what is and what is not acceptable activity, practice, or use for company equipment an resources

Question 17

Q

AV

Answer

A

Antivirus OR Asset Value (in $$)

Question 18

Q

BAC

Answer

A

Business Availability Center

Question 19

Q

BCP

Answer

A

Business Continuity Planning

Assess organizational risks and create policies, plans, and procedures to minimize impact.

Question 20

Q

BIA

Answer

A

Business Impact Analysis

The process of performing risk assessment on business tasks and processes rather than on assets. The purpose of BIA is to determine the risks to business processes and design protective and recovery solutions. The goal is to maintain business continuity, prevent and/or minimize downtime, and prepare for fast recovery and restoration in the event of a disaster.

Question 21

Q

BIOS

Answer

A

Basic Input/Output System

Question 22

Q

BPA

Answer

A

Business Partners Agreement

An agreement between partners in a business that outlines their responsibilities, obligations, and sharing of profits and losses.

Question 23

Q

BPDU

Answer

A

Bridge Protocol Data Unit

Frames that contain information about the Spanning tree protocol. A switch sends BPDUs using a unique MAC address from its origin port and a multicast address as destination MAC.

Question 24

Q

BYOD

Answer

A

Bring Your Own Device

Question 25

Q

RIP
BGP
OSPF

Answer

A

Routers usually communicate routing and other information using one of three standard protocols:

RIP - Routing Information Protocol
BGP - Border Gateway Protocol
OSPF - Open Shortest Path First

Question 26

Q

CA

Answer

A

Certificate Authority

Question 27

Q

CAC

Answer

A

Common Access Card

Question 28

Q

CAN

Answer

A

Controller Area Network

Question 29

Q

CAPTCHA

Answer

A

Completely Automated Public Turing Test to Tell Computers and Humans Apart

Question 30

Q

CAR

Answer

A

Corrective Action Report

Question 31

Q

CASB

Answer

A

Cloud Access Security Broker

Security policy enforcement solution. Ensures proper security measures and ensures that they are implemented between a cloud solution and a customer organization. CASBsare on-premise or cloud-based security policy enforcement points. They exist between the cloud service users and the cloud service providers for the purpose of combining (and adding) enterprise security policies as resources are accessed.
The brokers can consolidate lots of different types of security policy enforcement (single sign-on, authorization, credential mapping, encryption, and so forth) while acting like a gatekeeper. They essentially allow the organization to extend the reach of their own security policies beyond the confines of their own infrastructure.

Question 32

Q

CBC

Answer

A

Cipher Block Chaining

Question 33

Q

CCMP

Answer

A

Counter-Mode/CBC-Mac Protocol

Question 34

Q

CCTV

Answer

A

Closed-circuit TV

Question 35

Q

CER

Answer

A

Certificate
OR
Cross-over Error Rate

Cross-over Error Rate. See Biometrics, FAR, and FRR. The point at which FRR and FAR are equal. Aim for a LOW CER

Question 36

Q

CERT

Answer

A

Computer Emergency Response Team

Carnegie Mellon University standards for secure coding. CERT standards cover many of the same issues as OWASP, but they also have complete language-specific standards for Java, Perl, C, and C++ and exception handling.

Question 37

Q

CFB

Answer

A

Cipher Feedback

Question 38

Q

CHAP

Answer

A

Challenge Handshake Authentication Protocol

Authentication method supported by PPP (can be used by PPTP).

(1) user authenticates to the server;
(2) server directs the client to generate a random number (often a cryptographic hash) and send it to the server;
(3) server periodically challenges the client to reproduce the number/hash;
(4) if the client can’t, the server terminates the session.

Question 39

Q

CIO

Answer

A

Chief Information Officer

Question 40

Q

CIRT

Answer

A

Computer Incident Response Team

Question 41

Q

CMS

Answer

A

Content Management System

Question 42

Q

COOP

Answer

A

Continuity of Operations Plan

Question 43

Q

COPE

Answer

A

Corporate Owned, Personally Enabled

Question 44

Q

CP

Answer

A

Contingency Planning

Question 45

Q

CRC

Answer

A

Cyclical Redundancy Check

Question 46

Q

CRL

Answer

A

Certificate Revocation List

Question 47

Q

CSIRT

Answer

A

Computer Security Incident Response Team

Question 48

Q

CSO

Answer

A

Chief Security Officer

Question 49

Q

CSP

Answer

A

Cloud Service Provider

Question 50

Q

CSR

Answer

A

Certificate Signing Request

Question 51

Q

CSRF

Answer

A

Cross-site Request Forgery

Question 52

Q

CSU

Answer

A

Channel Service Unit

See also DSU. Routers, in conjunction with achannel service unit/data service unit (CSU/DSU), are also used to translate from LAN framing to WAN framing (for example, a router that connects a 100BaseT network to a T1 network).

Question 53

Q

CTM

Answer

A

Counter-Mode

Question 54

Q

CTO

Answer

A

Chief Technology Officer

Question 55

Q

CTR

Question 56

Q

CYOD

Answer

A

Choose Your Own Device

Question 57

Q

DAC

Answer

A

Discretionary Access Control

Question 58

Q

DBA

Answer

A

Database Administrator

Question 59

Q

DDoS

Answer

A

Distributed Denial of Service

Question 60

Q

DEP

Answer

A

Data Execution Prevention

When an application tries to launch, the user must approve the execution before it can proceed or, at the least, the system logs when an application tries to launch

Question 61

Q

DER

Answer

A

Distinguished Encoding Rules

Question 62

Q

DES

Answer

A

Digital Encryption Standard

Question 63

Q

DFIR

Answer

A

Digital Forensics and Investigation Response

Question 64

Q

DHCP

Answer

A

Dynamic Host Configuration Protocol

Answer 64

A

Data-Handling Electronics
OR
Diffie-Hellman Ephemeral

Answer 65

A

Dynamic Link Library

Answer 66

A

Data Loss Prevention

Answer 67

A

Demilitarized Zone

Answer 68

A

Destination Network Address Transaction

Answer 69

A

Domain Name Service (Server)

Answer 70

A

Denial of Service

Answer 71

A

Disaster Recovery Plan

Disaster recovery is an expansion of BCP. Basically, when business continuity is interrupted, a disaster has occurred.

Answer 72

A

Digital Signature Algorithm

Answer 73

A

Digital Subscriber Line

Answer 74

A

Data Service Unit

See also CSU.
Routers, in conjunction with achannel service unit/data service unit (CSU/DSU), are also used to translate from LAN framing to WAN framing (for example, a router that connects a 100BaseT network to a T1 network).

Answer 75

A

Extensible Authentication Protocol

Authentication method supported by PPP (can be used by PPTP)

Answer 76

A

Electronic Code Book

Answer 77

A

Elliptic Curve Cryptography

Asymmetric system designed to work with smaller processors (like hand-held devices)

Answer 78

A

Elliptic Curve Diffie-Hellman Ephemeral

Answer 79

A

Elliptic Curve Digital Signature Algorithm

Answer 80

A

Exposure Factor

%%% the percentage of the asset value that is threatened with each threat occurrence

Answer 81

A

Encrypted File System

Answer 82

A

Electromagnetic Interference

Answer 83

A

Electro Magnetic Pulse

Answer 84

A

End of Life

Answer 85

A

Enterprise Resource Planning

Answer 86

A

Electronic Serial Number

Answer 87

A

Encapsulated Security Payload

IPsec is composed of two separate (mutually exclusive) protocols:Authentication Header (AH)andEncapsulating Security Payload (ESP). AH provides the authentication and integrity checking for data packets, and ESP provides encryption services.

Answer 88

A

End User License Agreement

Answer 89

A

File System Access Control List

Answer 90

A

False Acceptance Rate

See Biometircs, FRR, and CER

Answer 91

A

Full Disk Encryption

Answer 92

A

False Rejection Rate

See Biometrics, FAR and CER

Answer 93

A

File Transfer Protocol

Answer 94

A

Secured File Transfer Protocol

Answer 95

A

Galois Counter Mode

Answer 96

A

Gnu Privacy Guard

Answer 97

A

Group Policy Object

Answer 98

A

Global Positioning System

Answer 99

A

Graphic Processing Unit

Answer 100

A

Generic Routing Encapsulation

Answer 101

A

High Availability

Refers to measures such as redundancy, failover, and mirroring, used to keep services and systems operational during an outage.

Answer 102

A

Hard Disk Drive

Answer 103

A

Host-based Intrusion Detection System

IDS runs as software on a host system. Examines machine logs, system events and application interactions, but normally doesn’t monitor incoming network traffic. Popular on servers that use encrypted channels. See also HIPS

Answer 104

A

Host-based Intrusion Prevention System

See HIDS

Answer 105

A

Hashed Message Authentication Code

Answer 106

A

HMAC-based One-Time Password

Answer 107

A

Hardware security module

Devices that handle digital keys. Performs a similar function as TPM. Aka PCSM, SAM, Hardware cryptographic device, or cryptographic module. Often a plug in device.

Provides encryption, digital signatures, hashing, and message authentication codes.
Manages cryptographic keys

Answer 108

A

Hypertext Markup Language

Answer 109

A

Hypertext Transfer Protocol

Answer 110

A

Hypertext Transfer Protocol over SSL/TLS

Answer 111

A

Heating, Ventilation and Air Conditioning

Answer 112

A

Infrastructure as a Service

Answer 113

A

Internet Control Message Protocol

Answer 114

A

Industrial Control Systems

Answer 115

A

Identification OR Intrusion Detection

Answer 116

A

International Data Encryption Algorithm

Answer 117

A

Intermediate Distribution Frame

Answer 118

A

Identity Provider

Answer 119

A

Intrusion Detection System

Answer 120

A

Institute of Electrical and Electronic Engineers

Answer 121

A

Internet Information System

Answer 122

A

Internet Key Exchange

Answer 123

A

Internet Message Access Protocol v4

Answer 124

A

Internet of Things

Answer 125

A

Internet Protocol Security

Answer 126

A

Internet Relay Chat

Answer 127

A

Incident Response Plan

Answer 128

A

Interconnection Security Agreement

Answer 129

A

Internet Service Provider

Answer 130

A

Information Systems Security Officer

Answer 131

A

IT Contingency Plan

Answer 132

A

Initialization Vector

Answer 133

A

Key Distribution Center

Answer 134

A

Key Encryption Key

Answer 135

A

Layer 2 Tunneling Protocol

Answer 136

A

Local Area Network

See also: CAN, MAN, SAN, WAN

Answer 137

A

Lightweight Directory Access Protocol

Answer 138

A

Lightweight Extensible Authentication Protocol

Answer 139

A

Monitoring as a Service

Answer 140

A

Mandatory Access Control OR Media Access Control OR Message Authentication Code

Answer 141

A

Metropolitan Area Network

Answer 142

A

Master Boot Record

Answer 143

A

Message Digest 5

Answer 144

A

Master Distribution Frame

Answer 145

A

Mobile Device Management

Answer 146

A

Multifactor Authentication

Answer 147

A

Multi-function Device

Answer 148

A

Multipurpose Internet Mail Exchange

Answer 149

A

Man-in-the-Middle

Answer 150

A

Multimedia Message Service

Answer 151

A

Memorandum of Agreement

Answer 152

A

Message of the Day

Answer 153

A

Memorandum of Understanding

Answer 154

A

Multi-Protocol Label Switching

Answer 155

A

Microsoft Challenge Handshake Authentication Protocol

Answer 156

A

Managed Service Provider

Answer 157

A

Mean Time Between Failures

Answer 158

A

Mean Time To Failure

Answer 159

A

Mean Time to Repair or Restore

Answer 160

A

Maximum Transmission Unit

Answer 161

A

Network Access Control

Answer 162

A

Network Address Translation

Answer 163

A

Nondisclosure Agreement

Answer 164

A

Near Field Communication

Answer 165

A

Next Generation Access Control

Answer 166

A

Network-based Intrusion Detection System

Answer 167

A

Network-based Intrusion Prevention System

Answer 168

A

National Institute of Standards & Technology

Answer 169

A

New Technology File System

Answer 170

A

New Technology LAN Manager

Answer 171

A

Network Time Protocol

Answer 172

A

Open Authorization

Answer 173

A

Online Certificate Status Protocol

Answer 174

A

Object Identifier

Answer 175

A

Operating System

Answer 176

A

Over The Air

Answer 177

A

Open Vulnerability Assessment Language

Answer 178

A

Peer to Peer

Answer 179

A

Platform as a Service.

Answer 180

A

Proxy Auto Configuration

Answer 181

A

Password Authentication Protocol

Answer 182

A

Port Address Translation

Answer 183

A

Password-based Key Derivation Function 2

Key Stretching Algorithm. Key stretching makes a possibly weak key, typically a password or passphrase, more secure against a brute-force attack by increasing the time it takes to test each possible key. PBKDF2 applies some function (like a hash or HMAC) to the password or passphrase along with Salt to produce a derived key. Bcrypt is another method of key stretching.

Answer 184

A

Private Branch Exchange

Answer 185

A

Packet Capture

Answer 186

A

Protected Extensible Authentication Protocol

Answer 187

A

Personal Electronic Device

Answer 188

A

Privacy-enhanced Electronic Mail

Answer 189

A

Perfect Forward Secrecy

Answer 190

A

Personal Exchange Format

Answer 191

A

Pretty Good Privacy

Answer 192

A

Personal Health Information

Answer 193

A

Personally Identifiable Information

Answer 194

A

Public Key Infrastructure

Answer 195

A

Padding Oracle on Downgrade Legacy Encryption

Answer 196

A

Post Office Protocol

Answer 197

A

Plain Old Telephone Service

Answer 198

A

Point-to-Point Protocol

Answer 199

A

Point-to-Point Tunneling Protocol

Answer 200

A

Pre-shared Key

Answer 201

A

Pan-Tilt-Zoom

Answer 202

A

Personal Identity Verification

Answer 203

A

Recovery Agent OR Registration Authority

Answer 204

A

Rapid Application Development

Answer 205

A

Remote Authentication Dial-in User Server

Answer 206

A

Rudundant Array of Independent/Inexpensive Disks

Answer 207

A

Remote Access Server

Answer 208

A

Remote Access Trojan

Answer 209

A

Role-based Access Control OR Rule-based Access Control

Answer 210

A

Rivest Cipher version 4

Answer 211

A

Remote Desktop Protocol

Answer 212

A

Representational State Transfer

Answer 213

A

Radio Frequency Identifier

Answer 214

A

RACE Integrity Primitives Evaluation Message Digest

Answer 215

A

Risk Management Framework

Answer 216

A

Return on Investment

Answer 217

A

Recovery Point Objective

Answer 218

A

Rivest, Shamir, and Adleman

Answer 219

A

Remotely Triggered Black Hole

Answer 220

A

Recovery Time Objective

Answer 221

A

Real-time Operating System

Answer 222

A

Real-time Transport Protocol

Answer 223

A

Secure/Multipurpose Internet Mail Extensions

Answer 224

A

Software as a Service

Answer 225

A

Security Assertions Markup Language

Answer 226

A

Storage Area Network

Answer 227

A

System/Supervisory Control and Data Acquisition

Answer 228

A

Security Content Automation Protocol

Answer 229

A

Simple Certificate Enrollment Protocol

Answer 230

A

Secure Copy

Answer 231

A

Small Computer System Interface

Answer 232

A

Software Development Kit

Answer 233

A

Software Development Life Cycle

Answer 234

A

Software Development Life Cycle Methodology

Answer 235

A

Software-Defined Networking

Answer 236

A

Software-Defined Networking

Answer 237

A

Self-encrypting drive

Answer 238

A

Secured File Transfer Protocol

Answer 239

A

Secure Hashing Algorithm

Answer 240

A

Structured Exception Handler

Answer 241

A

Secure Hypertext Transfer Protocol

Answer 242

A

Security Information and Event Management

Answer 243

A

Subscriber Identity Module

Answer 244

A

Session Initiation Protocol

Answer 245

A

Session Initiation Protocol Secure

Answer 246

A

Service Level Agreement

Answer 247

A

Single Loss Expectancy

Answer 248

A

Server Message Block

Answer 249

A

Short Message Service

Answer 250

A

Simple Mail Transfer Protocol

Answer 251

A

Simple Mail Transfer Protocol Secure

Answer 252

A

Simple Network Management Protocol

Answer 253

A

Simple Object Access Protocol

Answer 254

A

System on Chip

Answer 255

A

Sender Policy Framework

Answer 256

A

Spam over Internet Messaging

Answer 257

A

Single Point of Failure

Answer 258

A

Structured Query Language

Answer 259

A

Secure Real-Time Protocol

Answer 260

A

Solid State Drive

Answer 261

A

Secure Shell

Answer 262

A

Service Set Identifier

Answer 263

A

Secure Sockets Layer

Answer 264

A

Single Sign-on

Answer 265

A

System Security Plan

Answer 266

A

Shielded Twisted Pair OR Spanning Tree Protocol

Answer 267

A

Spanning Tree Protocol

Answer 268

A

Terminal Access Controller Access Control System Plus

Answer 269

A

Total Cost of Ownership

Answer 270

A

Transmission Control Protocol/Internet Protocol

Answer 271

A

Ticket Granting Ticket

Answer 272

A

Temporal Key Integrity Protocol

Answer 273

A

Transport Layer Security

Answer 274

A

Time-based One-time Password

Answer 275

A

Trusted platform modules

Answer 276

A

Transaction Signature

Answer 277

A

User Acceptance Testing

Answer 278

A

Unmanned Aerial Vehicle

Answer 279

A

User Datagram Protocol

Answer 280

A

Unified Extensible Firmware Interface

Answer 281

A

Uninterruptible Power Supply

Answer 282

A

Uniform Resource Identifier

Answer 283

A

Universal Resource Locator

Answer 284

A

Universal Serial Bus

Answer 285

A

USB On The Go

Answer 286

A

Unified Threat Management

Answer 287

A

Unshielded Twisted Pair

Answer 288

A

Virtual Desktop Environment

Answer 289

A

Virtual Desktop Infrastructure

Answer 290

A

Virtual Local Area Network

Answer 291

A

Variable Length Subnet Masking

Answer 292

A

Virtual Machine

Answer 293

A

Voice over IP

Answer 294

A

Virtual Private Network

Answer 295

A

Video Teleconferencing

Answer 296

A

Web Application Firewall

Answer 297

A

Wireless Access Point

Answer 298

A

Wired Equivalent Privacy

Answer 299

A

Wireless Intrusion Detection System

Answer 300

A

Wireless Intrusion Prevention System

Answer 301

A

Write Once Read Many

Answer 302

A

WiFi Protected Access 2

Answer 303

A

WiFi Protected Setup

Answer 304

A

Wireless TLS

Answer 305

A

Extensible Markup Language

Answer 306

A

Exclusive Or

Answer 307

A

Cross-site Request Forgery

Answer 308

A

Cross-site Scripting

Brainscape's Knowledge GenomeTM

Security+ SYO-501 - Acronyms Flashcards

Brainscape's Knowledge Genome^TM