Test your basic knowledge |

Comptia Security +: Vocab

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. When a DNS server goes out to resolve a name - and gets the wrong response back - it caches the wrong address for the default DNS time period - thus poisoning the cache for that period of time






2. A component in the Wireless Application Protocol (WAP) protocol stack. It sits between the WTP and WDP layers in the WAP communications stack.






3. Internet Architecture Board. This board is responsible for protecting the Internet.






4. Network devices that operate at layer 2. Every port on a switch is a separate collision domain






5. A network that uses standard protocols (TCP/IP)






6. An arrangement in which the keys needed to decrypt encrypted data are held in escrow by a third party - so that someone else (typically government agencies) can obtain them to decrypt messages which they suspect to be relevant to national security.






7. Defines the objects and their attributes that exist in a database.






8. The art of breaking code. Testing the strength of an algorithm.






9. A network entity that provides a single entrance / exit point to the Internet.






10. Project initiation - functional design analysis and planning - system design specifications - software development - installation/implementation - operational/maintenance - disposal






11. Attack which does not result in an unauthorized state change - such as an attack that only monitors and/or records data.






12. The illegal practice of stealing money repeatedly in extremely small quantities - usually by taking advantage of rounding to the nearest cent (or other monetary unit) in financial transactions. Salami slicing is most often performed by employees of t






13. Encompasses Risk Analysis and Risk Mitigation






14. Method of authenticating to a system. Something that you supply and something you know.






15. The Teardrop attack involved sending IP fragments with overlapping payloads to the target machine.






16. An organization that got their fame from telling the Senate Judiciary Committee that they could bring down the Internet in 30 minutes. Black hat....






17. In cryptography - encryption is the process of obscuring information to make it unreadable without special knowledge.






18. The process of certifying a system that has been built to ensure that it meets the security standards that you have said you will use.






19. The process of reducing your risks to an acceptable level based on your risk analysis






20. Distributed Component Object Model. Microsoft's implementation of CORBA.






21. A type of circuit switched telephone network system - designed to allow digital transmission of voice and data over ordinary telephone copper wires - resulting in better quality and higher speeds than available with analog systems.






22. In the context of computer software - a Trojan horse is a malicious program that is disguised as or embedded within legitimate software.






23. A hash function (or hash algorithm) is a way of creating a small digital 'fingerprint' from any kind of data. The function chops and mixes the data to create the fingerprint - often called a hash value. The hash value is commonly represented as a sho






24. The intercepting of conversations by unintended recipients






25. The process of developing a planned approach to change in an organization. Typically the objective is to maximize the collective benefits for all people involved in the change and minimize the risk of failure of implementing the change.






26. Random Number Base






27. Provides a means to obtain passwords or encryption keys and thus bypass other security measures. This can be accomplished through hardware or software means.






28. Class A (1-126.x.x.x) - Class B (128-191.x.x.x) - Class C (192-223.x.x.x)






29. Same as a block cipher except that it is applied to a data stream one bit at a time






30. In the broadest sense - a fraud is a deception made for personal gain






31. A hidden value or set of values that allows access to a program - computer system - or data. It is sometimes erroneously confused with a backdoor - which (in a computer system) is a method of bypassing normal authentication or securing remote access






32. Network device that operates at layer 1. Concentrator.






33. An international standard defining security assurance and functionality profiles. Replaced the TCSEC - ITSEC - etc.






34. In risk assessment - the average monetary value of losses per year. SLE x ARO = ALE






35. a.k.a. The Chinese wall. Nash Bridges - Bridge wall - Chinese wall. Dynamically changes access control to prevent unauthorized access.






36. Something used to put out a fire. Can be in Classes A - B - C - D - or H






37. When you have a certain amount of access and you change jobs and you keep that access from the previous position. Also known as enlargement of permission and privilege escalation.






38. The real cost of acquiring/maintaining/developing a system






39. Relating to quality or kind. This assigns a level of importance to something.






40. In computer terminology - a honeypot is a trap set to detect - deflect or in some manner counteract attempts at unauthorized use of information systems. Generally it consists of a computer - data or a network site that appears to be part of a network






41. White hat l0pht






42. In computing - it is software that is embedded in a hardware device. It is often provided on flash ROMs or as a binary image file that can be uploaded onto existing hardware by a user.






43. Accepting all packets






44. In a computer system (or cryptosystem or algorithm) these are methods of bypassing normal authentication or securing remote access to a computer - while attempting to remain hidden from casual inspection.






45. In cryptography - it is one of the simplest and most widely-known encryption techniques. It is a type of substitution cipher in which each letter in the plaintext is replaced by a letter some fixed number of positions further down the alphabet.






46. A name given to a system implemented by the FBI that is analogous to wiretapping except in this case - e-mail and other communications are being tapped instead of telephone conversations. Carnivore was essentially a customizable packet sniffer that c






47. Issued by the United States National Computer Security Center (NCSC - an arm of the NSA) as 'Trusted Computer System Evaluation Criteria' - a DOD standard 5200.23-STD in December 1985 superseding CSC-STD-001-83 - the TCSEC (frequently referred to as






48. Refers to the formal acceptance by organization executive management that they accept the residual risk associated with using a formally certified information system.






49. In computer science - it means allowing a single definition to be used with different types of data (specifically - different classes of objects). For instance - a polymorphic function definition can replace several type-specific ones - and a single






50. ('rotate by 13 places' - sometimes hyphenated ROT-13) Is a simple Caesar cipher used for obscuring text by replacing each letter with the letter thirteen places down the alphabet