Vocab 2

Question 1

Extranet

Answer 1

controlled private network that allows access to partners, vendors and suppliers or an authorized set of customers

Question 2

Intranet

Answer 2

An intranet is a computer network for sharing information, collaboration tools, operational systems, and other computing services within an organization, usually to the exclusion of access by outsiders

Question 3

Zero Trust

Answer 3

security concept centered on the belief that organizations should not automatically trust anything inside or outside its perimeters

Question 4

EAP-Fast

Answer 4

EAP with Flexible Authentication via Secure Tunneling

Question 5

EAP-TLS

Answer 5

uses the TLS public key certificate authentication mechanism within EAP to provide mutual authentication of client to server and server to client

Question 6

EAP-TTLS

Answer 6

EAP with Tunneled TLS

Question 7

IEEE 802.1x

Answer 7

standard framework for encrypting and authenticating a user who is trying to associate to a wired or wireless network

Question 8

Pinning

Answer 8

process of associating a host with their expected X.509 certificate or public key.

Question 9

Stapling

Answer 9

standard for checking the revocation status of X.509 digital certificates.

Question 10

Tabletop Exercise

Answer 10

A security incident preparedness activity, taking participants through the process of dealing with a simulated incident scenario and providing hands-on training for participants that can then highlight flaws in incident response planning

Question 11

ISO 27001

Answer 11

How to manage information security

Question 12

ISO 27002

Answer 12

code of practice for information security

Question 13

ISO 27701

Answer 13

outlines a framework for Personally Identifiable Information (PII) Controllers and PII Processors to manage data privacy.

Question 14

ISO 31000

Answer 14

Risk management framework