| Terms |
Definitions |
|
Chargen Port?
|
19
|
|
HTTP Port?
|
80
|
|
TwoFish
|
Symmetric Key Gregg, p.132
128 block size
Key Size 256
|
|
ESP
|
Encapsulating Security Payload
|
|
IPSec Port(s)?
|
50, 51
|
|
ARO
|
Annualized Rate of Occurence
|
|
Rijndael
|
A symmetric encryption algorithm chosen to be the Advanced Encryption Standard (AES).
|
|
A two-factor authentication for remote access clients
|
TACACS+
|
|
Biba, Clark Wilson, and Non-Interference models cover what aspect of security
|
Integrity
|
|
Which communication method is characterized by very high speed transmission rates that are governed by electronic clock timing signals?
|
Synchronous Communication
|
|
Middleware
|
Software that “glues together” two or more types of software (for example, two applications, their operating systems, and the network on which everything works) by translating information between them and exchanging this information over a network without both interacting applications being aware of the middleware.
|
|
Policy
|
A high-level document that dictates management intentions toward security.
|
|
Benchmark
|
A standard test or measurement compares the performance of similar components or systems.
|
|
Security controls
|
Policies, standards, procedures, and guideline definitions for various security control areas or topics.
|
|
Accountability
|
The traceability of actions performed on a system to a specific system entity or user.
|
|
Entity to which access is requested
|
Object
|
|
Programming technique used to encapsulate methods and data in an object
|
Information Hiding
|
|
Legal, Regulations, Compliance and Investigations
|
Self evident
|
|
An agreement between two companies with like equipments and processing needs provides an inexpensive alternative to other off-site facilities.
|
Reciprocal agreement
|
|
An entity that issues digital certificates (especially X.509 certificates) and vouches for the binding between the data items in a certificate.
|
Certification authority
|
|
Dumb terminal
|
A computer workstation or terminal that consists of a keyboard and screen, but with no processor of its own. It sends and receives its data to and from a large central computer or server.
|
|
Gap analysis
|
The analysis of the differences between two different states, often for the purpose of determining how to get from point A to point B. Thus the aim is to look at ways to bridge the gap.
|
|
Flooding
|
The process of overloading the network with traffic so that no legitimate traffic or activity can occur.
|
|
Buffer overflow
|
In computer programming, this occurs when a software application somehow writes data beyond the allocated end of a buffer in memory. Buffer overflow is usually caused by software bugs and improper syntax and programming, thus opening or exposing the application to malicious code injections or other targeted attack commands.
|
|
Asymmetric encryption
|
In cryptography, an asymmetric key algorithm uses a pair of cryptographic keys to encrypt and decrypt. The two keys are related mathematically: A message encrypted by the algorithm using one key can be decrypted by the same algorithm using the other. In a sense, one key “locks” a lock (encryption), but a different key is required to unlock it (decryption).
|
|
TCP handshake
|
A three-step process computers go through when negotiating a connection with one another. The process is a target of attackers and others with malicious intent.
|
|
Asset
|
Anything of value owned or possessed by an individual or business.
|
|
Copyright
|
The legal protection given to authors or creators that protects their expressions on a specific subject against unauthorized copying. It is applied to books, paintings, movies, literary works, and any other medium of use.
|
|
Packet filter
|
A form of stateless inspection performed by some firewalls and routers.
|
|
Network administrator
|
The individual responsible for the installation, management, and control of a network. When problems with the network arise, this is the person to call.
|
|
Quantitative risk assessment
|
A methodical, step-by-step calculation of asset valuation, exposure to threats, and the financial impact or loss in the event of the threat being realized.
|
|
There are two approaches to shutting down non-essential services and protocols. The _____ approach says open a port when it has been specifically justified as required.
|
pessimistic
|
|
Mechanism by which a person proves their identity to a system?
|
Authentication
|
|
Execution and memory space assigned to each process is called a _______ _______
|
Protection Domain
|
|
Operators are given varying assignments for a time period, then their assignment changes. This is called
|
Rotation of duties
|
|
Vulnerability Assessment
|
Focuses on financial and operational loss impact information for use in a business impact analysis.
|
|
A) backgroundB) Scope StatementC) Audit RequirementsD) Enforcement
|
B) Scope statement
|
|
TCP/IP layer provides for reliable end-to-end communications, ensures the data's error-free delivery, handles the data's packet sequencing, and maintains the data's integrity. It is comparable to the transport layer of the OSI model.
|
Host-to-host transport layer
|
|
Rotation of assignment
|
A security mechanism that moves employees from one job to another so that one person does not stay in one position forever. This makes it harder for an employee to hide malicious activity.
|
|
Risk assessment
|
A process for evaluating the exposure or potential loss or damage to the IT and data assets for an organization.
|
|
Broadcast
|
A type of transmission used on local and wide area networks in which all devices are sent the information from one host.
|
|
Public key infrastructure (PKI)
|
Infrastructure used to facilitate e-commerce and build trust. PKI consists of hardware, software, people, policies, and procedures; it is used to create, manage, store, distribute, and revoke public key certificates. PKI is based on publickey cryptography.
|
|
Vulnerability
|
The absence or weakness of a safeguard in an asset.
|
|
Compensating control
|
An internal control designed to reduce risk or weakness in an existing control.
|
|
Artificial intelligence
|
Computer software that can mimic the learning capability of a human, such as reasoning and learning.
|
|
Synchronous transmission
|
A method of communication in which data is sent in blocks, without the need for start and stop bits between each byte. Synchronization is achieved by sending a clock signal along with the data and by sending special bit patterns to denote the start of each block.
|
|
Security bulletin
|
A memorandum or message from a software vendor or manufacturer documenting a known security defect in the software or application itself. Security bulletins are typically accompanied with instructions for loading a software patch to mitigate the security defect or software vulnerability.
|
|
Software vulnerability standard
|
A standard that accompanies an organization’s vulnerability assessment and management policy. This standard typically defines the organization’s vulnerability window definition and how the organization is to provide software vulnerability management and software patch management throughout the enterprise.
|
|
User datagram protocol (UDP)
|
A connectionless protocol that provides very few error recovery services, but offers a quick and direct way to send and receive datagrams.
|
|
Exposure factor
|
A value calculated by determining the percentage of loss to a specific asset due to a specific threat.
|
|
Defense in depth
|
The process of multilayered security. The layers may be administrative, technical, or logical.
|
|
Moore’s law
|
The belief that processing power of computers will double about every 18 months due to the rise in the number of transistors doubling per square inch.
|
|
End-user computing
|
The use or development of information systems by the principal users of the systems’ outputs or by their staffs.
|
|
Editing
|
To review for possible errors and make final changes, if necessary, to information in a database.
|
|
Dumpster diving
|
The practice of rummaging through the trash of a potential target or victim to gain useful information.
|
|
Modulation
|
Used by modems to convert a digital computer signal into an analog telecommunications signal.
|
|
Dropper
|
A Trojan horse or program designed to drop a virus to the infected computer and then execute it.
|
|
File server
|
A high-capacity disk storage device or a computer that each computer on a network can use or access and retrieve files that can be shared among attached computers. Such computer programs can be set up to accept (or not accept) different programs running on other computers, to access the files of that computer.
|
|
Insecure computing habits
|
The bad habits that employees, contractors, and third-party users have accumulated over the years can be attributed to the organization’s lack of security awareness training, lack of security controls, and lack of any security policies or acceptable use policies (AUPs) .
|
|
Hot site
|
A fully prepared and configured site that is ready for use.
|
|
Ping sweep
|
The process of sending ping requests to a series of devices or to the entire range of networked devices.
|
|
Hashing algorithm
|
Hashing is used to verify the integrity of data and messages. A well-designed hashing algorithm will examines every bit of the data while it is being condensed, and even a slight change to the data will result in a large change in the message hash. It is considered a one-way process.
|
|
Data owner
|
Usually a member of senior management of an organization who is ultimately responsible for ensuring the protection and use of the organization’s data.
|
|
Fourth-generation language (4GL)
|
Programming languages that are easier to use than lower-level languages such as BASIC, Assembly, or FORTRAN. 4GL languages such as SQL and Python are also known as nonprocedural, natural, or very high-level languages.
|
|
Identify theft
|
An attack in which an individual’s personal, confidential, banking, and financial identify is stolen and compromised by another individual or individuals. Use of your Social Security number without your consent or permission could result in identify theft.
|
|
An example of something you have for authentication
|
Smartcard
|
|
Common Government or military MAC hierarchies
|
UnclassifiedSensitive but unclassifiedConfidentialSecretTop secret
|
|
Design where a failure causes non-critical processes to terminate, and system runs in a degraded state
|
Fail-soft or Resilient
|
|
Required tracking of changes to a system under B2, B3, and A1 is called
|
Configuation Management
|
|
Warm Site
|
Site with heat, air, power, and hardware but not pre-configured for business.
|
|
Separation of Duties
|
Breaking a job into different responsibilities. No one person should have total control.
|
|
Access Control
|
Access control is a system which enables an authority to control access to areas and resources in a given physical facility or computer-based information system.
|
|
A covert channel that involves writing to a storage location by one process and the direct or indirect reading of the storage location by another process. Covert storage channels typically involve a resource (for example, sectors on a disk) that is shared
|
Covert Storage Channel
|
|
Utility programs
|
A standard set of routines that assist in the operation of a computer system by performing some frequently required process, such as copying, sorting, or merging.
|
|
Cookies
|
A message from a website given to an individual’s web browser on the workstation device. The workstation browser stores this text message in a text file. The message is sent back to the web server each time that the browser goes to that website.
|
|
Gray box testing
|
Testing that occurs with only partial knowledge of the network or is performed to see what internal users have access to.
|
|
Due care
|
The standard of conduct taken by a reasonable and prudent person. When you see the term due care, think of the first letter of each word and remember “do correct” because due care is about the actions that you take to reduce risk and keep it at that level.
|
|
Data encryption standard (DES)
|
A symmetric encryption standard based on a 64-bit block. DES processes 64 bits of plain text at a time to output 64-bit blocks of cipher text. DES uses a 56-bit key and has four modes of operation. Because DES has been broken, 3DES is more commonly used.
|
|
Asynchronous transmission
|
The method whereby data is sent and received 1 byte at a time.
|
|
Demilitarized zone (DMZ)
|
The middle ground between a trusted internal network and an untrusted, external network. Services that internal and external users must use are typically placed there such as HTTP.
|
|
Clipping level
|
The point at which an alarm threshold or trigger occurs.
|
|
Civil law
|
A law that usually pertains to the settlement of disputes between individuals, organizations, or groups, and having to do with the establishment, recovery, or redress of private and civil rights. Civil law is not criminal law. It is also called tort law and is mainly for redress or recovery related to wrongdoing.
|
|
SYN packets are sent to the victim with source and destination addresses spoofed as the victim’s address
|
Land attack
|
|
Two operators are needed to perform a function. This is called
|
Dual Control
|
|
Qualitative Loss Criteria
|
Loss impact from loss of competitive advantage, market share, or credibility.
|
|
Mandatory Access Control
|
Access control is based on information sensitivity such as security labels and data classifications. Every entry is given an access level. Entries: users,object. User can only access an object if they have correct access elvel. Access is enforced by the system and cannot be overridden.
|
|
Which protocol makes USE of an electronic wallet on a customer's PC and sends encrypted credit card information to merchant's Web server, which digitally signs it and sends it on to its processing bank?
|
SET (Secure Electronic Transaction)
|
|
Heuristic scanning
|
A from of virus scanning that looks at irregular activity by programs. As an example a heuristic scanner would flag a word processing program that attempted to format the hard drive as that is not normal activity.
|
|
Frequency-hopping spread spectrum (FHSS)
|
One of the basic modulation techniques used in spread-spectrum signal transmission. FHSS is another technique used to make wireless communication harder to intercept and more resistant to interference.
|
|
Initial sequence number
|
A number defined during a TCP startup session.
|
|
Acceptable use policy (AUP)
|
A policy that defines what employees, contractors, and third parties are authorized to do on the organization’s IT infrastructure and its assets. AUPs are common for access to IT resources, systems, applications, Internet access, email access, and so on.
|
|
Transmission Control Protocol/Internet Protocol (TCP/IP)
|
A collection of protocols used to provide the basis for Internet and World Wide Web services.
|
|
Terminal Access Controller Access Control System (TACACS)
|
A UDPbased access control protocol that provides authentication, authorization, and accountability.
|
|
4 Phases of DITSCAP and NIACAP accreditation
|
1. Definition2. Verification3. Validation4. Post Accreditation
|
|
A) Identifies major functional areas of Information.
|
Information security policies are high-level plans that describe the goals of the procedures. Polices are not guidelines or standards, nor are they procedure or controls. Policies describe security in general terms, not specifics.
|
|
What is a difference between a Quantitative Analysis versus a Qualitative Risk Analysis?
|
quantitative analysis provides formal cost/benefit analysis and qualitative does not
|
|
Central processing unit (CPU)
|
One of the central components of a system, the CPU carries out the vast majority of the calculations performed by a computer. It can be thought of as the “brain” of a computer. The CPU is like a manager or boss, telling what the other components of the system should be doing at a given moment.
|
|
Voice over IP (VolP)
|
The capability to convert voice or fax calls into data packets for transmission over the Internet or other IP-based networks.
|
|
First in First out (FIFO)
|
A method of data and information storage in which the data stored for the longest time will be retrieved first.
|
|
Radio frequency identification (RFID)
|
A set of components that include a reader and a small device referred to as a tag. The tag can be used to hold information for inventory, management, tracking, or other purposes. RFID provides a method to transmit and receive data over a short range from one point to another.
|
|
Hardware keystroke logger
|
A form of key logger that is a hardware device. When placed in the system it is hard to detect without a physical inspection. It may be plugged into the keyboard connector or can be built into the keyboard.
|
|
False rejection rate (FRR)
|
This is a biometric device error that is considered a type error. It is a biometric system measurement that indicates the percentage of authorized individuals who are incorrectly denied access.
|
|
The ITSEC subject of an evaluation is called the ___ __ _____
|
Target of Evaluation (TOE)
|
|
What is a TFTP server most useful for?
|
Transferring configurations to and from network devices.
|
|
Kilo lines of code (KLOC)
|
A technique used to determine the cost of software development based solely on the length of code.
|
|
Business Continuity and Disaster Recovery
|
is the creation and validation of a practiced logistical plan for how an organization will recover and restore partially or completely interrupted critical (urgent) functions within a predetermined time after a disaster or extended disruption. The logisti
|
|
Just a bunch of disks (JBOD)
|
A technique that is somewhat like RAID in that two or more hard drives are combined into one storage array. However, JBOD offers none of the fault tolerance advantages of RAID.
|
|
Access control list (ACL)
|
An ACL is a table or list stored by a router to control access to and from a network by helping the device determine whether to forward or drop packets that are entering or exiting it.
|
|
Which of the following would be the first step in establishing an information security program?
|
A) Adoption of a corporate information security policy statementB) Development and implementation of an information security standards ManualC) Development of a security awareness-training programD) Purcahse of a security access control software
|
|
courteous
|
keqi
|
|
Zhuo1zi
|
Table
|
|
new
|
xin1
|
|
CHUANGPU
|
BED
|
|
Bowl
|
wan3
|
|
pia4oliang
|
pretty
|
|
zhibu
|
weave
|
|
shengwu
|
biology
|
|
shenzhi
|
...
|
|
鍵盤
|
jiànpán(N)
keyboard
|
|
question, problem
|
wenti
|
|
waiguo
|
foreign country
|
|
renminbi
|
Chinese currency
|
|
Hao xiang
|
Seems
|
|
la2i
|
to come
|
|
natalie
|
kuang lina
|
|
san yue
|
march
|
|
你
|
Nǐ (you)
|
|
收穫
|
shōuhuò (N)
harvest
|
|
風格
|
fēnggé (N)style
|
|
題材
|
tícái(N)
subject matter
|
|
廣大
|
guǎngdà(VS)
numerous; vast
|
|
Shang4bian1
|
On top of
|
|
马
|
mǎ • horse
|
|
Restaurant
|
Pinyin: can1guan3r
Traditional: 餐館兒
Simplified: 餐馆儿
|
|
Liang
|
MW for vehicles
|
|
貌
|
mào - appearance
|
|
tiao
|
M.C. for rivers
|
|
duile
|
by the way
|
|
名單
|
míngdān(N)
list (of names)
|
|
交友
|
jiāoyǒu(VA)
to make friends
|
|
水準
|
shuǐzhǔn(N)
horizontal / level
|
|
綠豆
|
lǜdòu (N)mung bean
|
|
服
|
fú
- clothes; comfortable
|
|
时候
|
shíhou • time; moment
|
|
是誰
|
shìshú - who is
|
|
to put pressure on
|
Government.
|
|
zhengzai
|
in the middle of
|
|
體力
|
tǐlì(N)
physical strength / physical power
|
|
正好
|
zhènghǎo(VS/Adv)
just (in time) / just right / just enough / to happen to / to chance to / by chance / it just so happens that
|
|
參考
|
cānkǎo (VA)consultation / reference / to consult / to refer
|
|
一生
|
yìshēng(N)lifetime; all one's life
|
|
sleep in accidentally
|
shui guo tou
|
|
补充
|
Bǔchōng
v.
to supplement; to replenish
|
|
常
|
cháng - usually / often
|
|
吃饭
|
chīfàn
to eat;to have meals
|
|
分佈/佈
|
fēnbù (VS)distributed / to distribute
|
|
操場
|
cāochǎng (N) playground; sports ground
|
|
攀
|
pān (VA)climb up / pull
|
|
題目
|
tímù (N) title, subject, topic
|
|
遷
|
qiān(VA) move, shift, change; transfer
|
|
合乎
|
héhū(VS)to accord with / conforming to
|
|
招牌
|
zhāopai (N)signboard / shop sign / reputation of a business
|
|
視野
|
shìyě(N)
field of view / horizon
|
|
刚才
|
gāng cái (just) a moment ago
|
|
shi... de
|
Action already hapened
Answer who where how when
|
|
刚
|
gāng-just; only a short while ago
|
|
半數
|
bànshù (Det)half the number / half
|
|
掩蓋
|
yǎngài(VA)
to conceal / to hide behind / to cover up
|
|
發出
|
fāchū(VA) to send out; to issue
|
|
彼此
|
bǐcǐ (N)each other / one another
|
|
趁
|
chèn (Prep)avail oneself of / take advantage of
|
|
不但
|
bù dàn not only (... but also...)
|
|
Bei jing kao ya
|
Bei jing roast duck
|
|
不一定
|
bùyídìng ~ uncertain, not for sure, not necessarily
|
|
请客
|
qǐng kè (to invite someone to dinner; to be host)
|
|
交往
|
jiāo wǎng (VA)to associate / to contact / association / contact
|
|
Commissioner Lin
|
1839 emperor appoints Lin to stop Opium trade forever. Lin is tough; punishes smokers, eventually destroys 3 million pounds raw opium from ships, tells queen Victoria to never trade opium again (she never gets letter)
|
|
Taiwan
|
Was able to build a successful economy based on international trade and the production of consumer goods.
|
|
安心
|
ānxīn (VS) feel at ease / be relieved / set one's mind at rest / keep one's mind on something
|
|
多么
|
duō me how (wonderful, etc) / what (a great idea, etc) / however (difficult it may be, etc)
|
|
酒
|
jiǔ - wine / liquor / spirits / alcoholic beverage
|
|
造
|
zào (VA)to make / to build / to invent / to manufacture
|
|
带
|
dài band / belt / girdle / ribbon / tire / area / zone / region / to wear / to carry / to lead / to bring / to look after / to raise
|
|
yesterdays dishes were delicious!
|
zuo tian de cai ren hao chi
|
|
肯
|
kěn - to agree / to consent / to be ready (to do sth) / willing
|
