SY0-701: Objective 4.0

Question 1

SNMP

Answer 1

Simple Network Management Protocol (SNMP)
- an internet standard protocol used to monitor and manage network devices connected over an IP

Question 2

API

Answer 2

Application Programming Interface (API)

Question 3

RSH

Answer 3

Remote Shell (RSH)
- a tool for remotely running a command on a remote computer

Question 4

FTP

Answer 4

File Transfer Protocol (FTP)

Question 5

OAuth

Answer 5

Open Authorization (OAuth)
- a widely adopted authorization framework that allows you to consent to an application interacting with another on your behalf without having to reveal your password

Question 6

WPA

Answer 6

Wi-Fi Protected Access (WPA)

Question 7

WEP

Answer 7

Wired Equivalent Privacy (WEP)
- a type of wireless security algorithm designed to encrypt and protect all data transmitted over a secure network

Question 8

BYOD

Answer 8

Bring Your Own Device (BYOD)

Question 9

COPE

Answer 9

Corporate Owned, Personally Enabled (COPE)

Question 10

CYOD

Answer 10

Choose Your Own Device (CYOD)

Question 11

POP

Answer 11

Post Office Protocol (POP)

Question 12

LDAP

Answer 12

Lightweight Directory Access Protocol (LDAP)
- a vendor-neutral software protocol used to lookup information or devices within a network

Question 13

VPC

Answer 13

Virtual Private Cloud (VPC)
- a private cloud computing environment contained within a public cloud

Question 14

ATT&CK

Answer 14

Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK)
- a knowledge base and framework that helps organizations understand how cyber attackers operate and improve their cybersecurity strategies

Question 15

CVSS

Answer 15

Common Vulnerability Scoring System (CVSS)
- a free and open industry standard for assessing the severity of computer system security vulnerabilities

Question 16

SCAP

Answer 16

Security Content Automation Protocol (SCAP)
- a protocol currently consisting of a suite of seven specifications that standardize the format and nomenclature by which security software communicates information about software flaws and security configurations

Question 17

PAM

Answer 17

Privileged Access Management (PAM)
- a cybersecurity system that monitors, detects, and prevents unauthorized access to critical resources

Question 18

SAE

Answer 18

Simultaneous Authentication of Equals (SAE)
- a secure key exchange protocol used in Wi-Fi networks to prevent man-in-the-middle attacks by simultaneously authenticating both parties

Question 19

CCMP

Answer 19

Counter Mode/CBC-MAC Protocol (CCMP)
- Counter Mode with Cipher Block Chaining Message Authentication Code Protocol (CCMP) is an encryption protocol based on the U.S. federal government’s Advanced Encryption Standard (AES) algorithm and uses the Counter Mode with CBC-MAC (CCM) mode of operation.

Question 20

GCMP

Answer 20

Galois/Counter Mode Protocol (GCMP)
- a type of encryption used in the Wireless Protected Access 3 (WPA3) protocol

Question 21

SLA

Answer 21

Service Level Agreement (SLA)
- a contract between a service provider and a client that defines the level of service to be provided

Question 22

CVE

Answer 22

Common Vulnerabilities and Enumeration (CVE)

Question 23

SLE

Answer 23

Single Loss Expectancy (SLE)
- a calculation used in cybersecurity to estimate the monetary loss that could result from a security incident affecting an asset

Question 24

ALE

Answer 24

Annualized Loss Expectancy (ALE)
- a metric used to estimate the financial impact of a security incident over a year

Question 25

OVAL

Answer 25

Open Vulnerability Assessment Language (OVAL)
- a standard for identifying and communicating security issues on computer systems

Question 26

SOAP

Answer 26

Simple Object Access Protocol (SOAP)
- an XML-based messaging protocol used to exchange structured information between web services

Question 27

IdP

Answer 27

Identity Provider (IdP)

Question 28

IAM

Answer 28

Identity Access Management (IAM)
- a framework of policies, processes, and technologies that help organizations manage digital identities and control user access to critical information

Question 29

NFC

Answer 29

Near Field Communication (NFC)

Question 30

BCP

Answer 30

Business Continuity Plan (BCP)
- prevention and recovery systems for potential threats, such as natural disasters or cyber-attacks

Question 31

DRP

Answer 31

Disaster Recovery Plan (DRP)
- a documented strategy that helps organizations recover from a cyber attack or other incident