vocabularyC

Question 1

CA

Answer 1

A certificate authority is a neutral third party that offers notarization services for digital certificates.

Question 2

Cable Modem

Answer 2

A high-speed Internet access technology that uses the same physical medium as cable TV delivery.

Question 3

Cache Memory

Answer 3

Small, high-speed area of memory on the CPU which briefly keeps accessed memory, but does not require multiple clock cycles.

Question 4

Candidate Key

Answer 4

A collection of fields that can uniquely identify a record in a table.

Question 5

CBC

Answer 5

Cipher Block Chaining is a DES mode that takes each block and performs an XOR operation with it, and with the preceding block, before encryption.

Question 6

CCTV

Answer 6

Closed Circuit Television is a security device that records the physical movement of users through the system.

Question 7

Centralized Authentication

Answer 7

Authentication type where a single identity controls all access to certain objects. It is a strict control with a single point of failure that allows for easy administration.

Question 8

CER

Answer 8

Crossover Error Rate is the value or system based upon the point at which the FRR and the FAR cross if it were graphed. The CER allows two different biometric methods to be compared.

Question 9

CFB

Answer 9

Cipher Feedback is a DES mode that takes the previous block of ciphertext, which is encrypted, and performs an XOR operation with the results and with current plaintext.

Question 10

Checklist Test

Answer 10

The simplest test in which a DRP team member follows each step from the DRP checklist and provides feedback on their findings. It functions both as a test and an awareness training exercise.

Question 11

Chosen Ciphertext

Answer 11

An attack in which the attacker decrypts portions of the encrypted message, analyzing the decrypted fragments of the message to possibly discover the key.

Question 12

Chosen Plaintext

Answer 12

An attack in which the attacker encrypts the plaintext message, making it ciphertext, then compares it to another encrypted message to find similarities or matches.

Question 13

CIA

Answer 13

The security triad consisting of three tenants, Confidentiality, Integrity, and Availability, combined together to make a secure system.

Question 14

Cipher

Answer 14

The process of altering or rearranging plaintext so that it is unreadable and generating ciphertext.

Question 15

Ciphertext

Answer 15

The message after it has been encrypted; it is only readable after it has been decrypted.

Question 16

CIS

Answer 16

CompuServe Information Service is one of the largest online services to provide e-mail services and connection to many different database systems.

Question 17

CISC

Answer 17

Complex instruction set computing is an instruction set design where each instruction performs multiple steps. The compilers may be simple, but performance can suffer.

Question 18

CISSP

Answer 18

Certified Information Systems Security Professional is a vendor-neutral certification that covers ten different domains. Develops interest and proficiency in many different areas of security.

Question 19

Civil Law

Answer 19

A body of laws that are intended to settle disputes between individuals and organizations.

Question 20

Clark-Wilson Model

Answer 20

A security model designed in 1987 for commercial applications. It enforces integrity.

Question 21

Client

Answer 21

A computer that requests information from servers.

Question 22

Clock

Answer 22

A simple circuit that emits pulses at a standard frequency.

Question 23

Cold Site

Answer 23

A data center alternative facility with basic utilities that may be used after a disaster. It is the least expensive option, but requires the most work and about 24 hours to restore operations.

Question 24

Column

Answer 24

A group of fields positioned vertically on a datasheet.

Question 25

Companion Virus

Answer 25

A file infector that uses the same file name as the file being attacked, but with a different extension that has a higher priority.

Question 26

Computer Fraud and Abuse Act

Answer 26

The original law set forth by the U.S. government to address computer crime that crosses state lines. This law constitutes a crime as any unauthorized access to classified or financial information on a federal system, unauthorized access to a federal system, the use of a federal system to commit fraud, and other similar acts.

Question 27

Computer Security Act

Answer 27

The law set forth by the U.S. government that assigns responsibility for developing standards and guidelines, provides for the promulgation of those standards, requires security plans for federal systems containing sensitive data, and requires mandatory periodic training for users of machines containing sensitive data.

Question 28

Confidential

Answer 28

Information that requires the individual to access specific information, but requires a clearance first.

Question 29

Confidentiality

Answer 29

Part of the security triad that protects data from unauthorized disclosure by means such as physical security or access control.

Question 30

Control

Answer 30

A safeguard that lessens risk once a high probability of a loss has been realized.

Question 31

Copyright Law

Answer 31

A law that protects the exclusive right of a creator to control publication and distribution of original works of authorship.

Question 32

Covert Channels

Answer 32

A method for passing information that is not normally used for communication.

Question 33

CPU

Answer 33

The central processing unit is the computing part of the computer, made up of the control unit and the arithmetic logic unit. It is also referred to as the processor.

Question 34

Cracker

Answer 34

A person who attempts to compromise a system for an unauthorized purpose.

Question 35

Criminal Law

Answer 35

A body of laws that preserve the peace and keep society safe. Criminal cases are prosecuted by the state.

Question 36

Critical Path Analysis

Answer 36

An analysis that defines relationships between mission critical applications. This type of analysis is performed to show what must happen to stay in business.

Question 37

CSMA/CD

Answer 37

Carrier Sense Multiple Access with Collision Detection is a protocol used to handle situations in which more than one node is transmitting at the same time, causing a collision.

Question 38

CU

Answer 38

The control unit is outside of the CPU. It accesses and interrupts the actual instructions and directs what happens from those instructions.