Vocab 2 Flashcards
Extranet
controlled private network that allows access to partners, vendors and suppliers or an authorized set of customers
Intranet
An intranet is a computer network for sharing information, collaboration tools, operational systems, and other computing services within an organization, usually to the exclusion of access by outsiders
Zero Trust
security concept centered on the belief that organizations should not automatically trust anything inside or outside its perimeters
EAP-Fast
EAP with Flexible Authentication via Secure Tunneling
EAP-TLS
uses the TLS public key certificate authentication mechanism within EAP to provide mutual authentication of client to server and server to client
EAP-TTLS
EAP with Tunneled TLS
IEEE 802.1x
standard framework for encrypting and authenticating a user who is trying to associate to a wired or wireless network
Pinning
process of associating a host with their expected X.509 certificate or public key.
Stapling
standard for checking the revocation status of X.509 digital certificates.
Tabletop Exercise
A security incident preparedness activity, taking participants through the process of dealing with a simulated incident scenario and providing hands-on training for participants that can then highlight flaws in incident response planning
ISO 27001
How to manage information security
ISO 27002
code of practice for information security
ISO 27701
outlines a framework for Personally Identifiable Information (PII) Controllers and PII Processors to manage data privacy.
ISO 31000
Risk management framework