Tings to no

Question 1

OpenSSL

Answer 1

Software library used to implement secure connections

Question 2

TCPreplay

Answer 2

Capture, edit, replay packets

Question 3

TCPdump

Answer 3

Display packets on screen

Question 4

RMF

Answer 4

Risk management framwork, mandatory for US federal agencies

Question 5

CSF

Answer 5

Cybersecurity frameworks, High level plan for security

Question 6

IEEE ISO 27001

Answer 6

Standard for Information Security Management

Question 7

IEEE ISO 27002

Answer 7

Code of practice for security controls

Question 8

IEEE ISO 27701

Answer 8

Privacy information management system

Question 9

IEEE ISO 31000

Answer 9

International standards for risk management

Question 10

CSA

Answer 10

Cloud security alliance, non profit cloud security talk

Question 11

CCM

Answer 11

Cloud control matrix, Security standards for the cloud

Question 12

SLA

Answer 12

Minimum terms for services provided

Question 13

MOU, MOA

Answer 13

Memorandum of understanding, both sides agree

Question 14

MSA

Answer 14

T&C for current and future responsibilities and activities

Question 15

RTO

Answer 15

recovery time objective, time to get back to running after disaster

Question 16

RPO

Answer 16

recovery point objective, the maximum allowable data loss after a disruption. It represents the point in time to which data must be recovered to ensure minimal business impact

Question 17

MTTR

Answer 17

Minimum time to repair, time required to fix an issue

Question 18

MTBF

Answer 18

Mean time between failures, how often does this threat usually occur

Question 19

DRP

Answer 19

Disaster recovery plan

Question 20

PIA

Answer 20

Privacy impact assessment

Question 21

x.509

Answer 21

Standard for how certs are formatted

Question 22

DER, PEM, PFX, PKCS12, P7B

Answer 22

specific cert formats

Question 23

OCSP

Answer 23

Online cert status protocol

Question 24

CSR

Answer 24

Certificate signing request

Question 25

CRL

Answer 25

Cert revocation list

Question 26

OAuth

Answer 26

Determines your authorization, not authentication, used with OpenID

Question 27

OpenID

Answer 27

You provide authentication, and then can share that with apps

Question 28

TACACS+

Answer 28

Device authentication, Encrypts the entire payload

Question 29

RADIUS

Answer 29

Centralized authentication, encrypts only password

Question 30

802.1X

Answer 30

Authenticate some other service before accessing network

Question 31

PAP

Answer 31

Deprecated authentication protocol

Question 32

CHAP

Answer 32

Authentication protocol, uses a 3way handshake

Question 33

WPS

Answer 33

Wifi protected setup, several methods to sign in, insecure