vocabularyI2L

Question 1

IDEA

Answer 1

International Data Encryption Algorithm is a symmetric cryptographic algorithm developed as a stronger alternative to DES. IDEA is a block cipher that operates on 64-bit blocks, the key starts at 128 bits and is broken into 52 16-bit subkeys, and the subkeys are used to encrypt the plaintext.

Question 2

Identification

Answer 2

A claim to be a valid subject.

Question 3

IDS

Answer 3

An intrusion detection system inspects all network activity and identifies any suspicious patterns indicative of an attack.

Question 4

IEEE

Answer 4

The Institute of Electrical and Electronics Engineers is an organization composed of engineers, scientists, and students. The IEEE focuses on creating standards for the computer and electronics industry.

Question 5

Illegal Content

Answer 5

The transfer of data from or to a protected machine, or the storage of illegal content on a protected machine.

Question 6

IMAP

Answer 6

Internet Message Access Protocol is a protocol used by e-mail programs to gain access to e-mail and bulletin board messages that are stored on a mail server.

Question 7

Incident

Answer 7

Any actual or threatened violation of a security policy. An incident may or may not actually violate a statute or regulation.

Question 8

Incremental Backup

Answer 8

A backup type that includes all files whose time/date stamp has changed since the last backup.

Question 9

Inference

Answer 9

The ability to gain information about data at sensitivity levels for which a user is not cleared.

Question 10

Information Flow Model

Answer 10

A security model that controls all of the information flowing from object to subject.

Question 11

Information Warfare

Answer 11

The use of information or systems to deny or destroy an enemys information and systems.

Question 12

Infrastructure

Answer 12

Hardware including transmission media, telephone lines, cable, satellites, routers, and other devices that are used to control transmission paths. Infrastructure may also be the software used to manage transmission signals.

Question 13

Integrity

Answer 13

Part of the security triad that protects data from unauthorized modification by means of physical security or access control.

Question 14

Intellectual Property Law

Answer 14

Several types of laws which help to protect the intellectual property of individuals and organizations.

Question 15

Intrusion Detection Control

Answer 15

An automated system that recognizes unusual activity and then sounds an alarm. An intrusion detection control can use a signature database or behavior detection.

Question 16

IP Spoofing

Answer 16

An attack that replaces the true senders IP address with another IP address.

Question 17

IPSec

Answer 17

The Internet Protocol Security is an authentication and encryption algorithm that guarantees integrity and confidentiality of information.

Question 18

ISAKMP

Answer 18

Internet Security Association and Key Management Protocol is a protocol that provides background services for IPSec. It also provides a method to maintain security associations of IPSec machines.

Question 19

ISDN

Answer 19

Integrated Services Digital Network is the telephone company communication protocol that enables data, voice, and other traffic to travel across telephone networks.

Question 20

ISO

Answer 20

The International Organization for Standardization is an international organization that establishes global standards for protocols, communication, and information exchange. ISO is commonly and incorrectly referred to as the International Standards Organization.

Question 21

ISO/OSI Reference Model

Answer 21

The International Organization for Standardization Open Systems Interconnection reference model is a seven-layer network architecture model of communication for dissimilar machines. It is a multilayered system in which the protocols only speak to the upper or lower layer and each layer identifies specific network functions.

Question 22

ITSEC

Answer 22

Information Technology Security Evaluation Criteria is the criteria that preceded TCSEC and is used for evaluating functionality and assurance. ITSEC is only used in Europe.

Question 23

Java Applet

Answer 23

An applet that is a fully interpreted, multithreaded language written by Sun Microsystems in which distributed programs run on the client in a limited memory area called a sandbox.

Question 24

K1, K2, K3

Answer 24

The 3DES encryption keys.

Question 25

KDC

Answer 25

Key Distribution Center is a component of the Kerberos system which holds all cryptographic keys. The KDC must be communicated with at every phase in order to initiate any type of authentication.

Question 26

Kerberos

Answer 26

A product developed by MIT that provides authentication and message protection using one key to encrypt a message on one side and the same key to decrypt the message on the other side.

Question 27

Kernel

Answer 27

The core of the operating system that launches applications and manages memory, files, and time and date.

Question 28

Key

Answer 28

A value that is used by an algorithm to encrypt plaintext.

Question 29

Known Plaintext

Answer 29

A type of attack in which the attacker has a copy of the plaintext and ciphertext version of the protected file. These allow the user to analyze the relationship between the plaintext and ciphertext.

Question 30

L2F

Answer 30

Layer 2 Forwarding was designed by Cisco to enable VPDNs from home computers to the enterprise.

Question 31

L2TP

Answer 31

Layer 2 Tunneling Protocol is an extension of the PPTP. L2TP is used on the Internet to create private virtual circuits.

Question 32

LAN

Answer 32

A local area network is a data network covering a relatively small geographic area that is capable of high speeds and low occurrences of errors.

Question 33

Layering

Answer 33

A process of level isolation that defines several protection rings within a system. Each process or ring is assigned a specific level of access.

Question 34

Layering

Answer 34

A protection mechanism technique where layers of functionality are established with the most sensitive processes at the bottom layer. Each layer communicates with the other layers through well-defined, secure paths.

Question 35

Least Privilege

Answer 35

A concept that grants subjects only enough access for objects to perform the required tasks. The goal is to limit authorization creep.

Question 36

Lighting Control

Answer 36

The most basic and common physical control that is used for perimeter security. Lighting is illuminating an area and is best used in low-threat areas without jeopardizing other security controls.

Question 37

Local Environment

Answer 37

An environment in which the application or the application partition runs largely on one platform.

Question 38

Logic Bomb

Answer 38

An attack where a specific set of instructions is executed when a specific event occurs.

Question 39

Logical Data Flow

Answer 39

The manner in which data flows from a layer on the source machine to the same layer on the target machine.