Test your basic knowledge |

Comptia Security +: Vocab

Instructions:
  • Answer 50 questions in 15 minutes.
  • If you are not ready to take this test, you can study here.
  • Match each statement with the correct term.
  • Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. An audit trail is a chronological sequence of audit records - each of which contains evidence directly pertaining to and resulting from the execution of a business process or system function. Audit records typically result from activities such as tra






2. The key that is used to encrypt a file or message is the same key that is used to decrypt the file or message






3. When a DNS server goes out to resolve a name - and gets the wrong response back - it caches the wrong address for the default DNS time period - thus poisoning the cache for that period of time






4. An AAA (Authentication - Authorization - and Accounting) protocol for applications such as network access or IP mobility. It is intended to work in both local and roaming situations.






5. A compact disc that contains data only accessible by a computer. All modern CD-ROM drives can also read audio CDs. It is possible to produce composite CDs containing both data and audio with the latter capable of being played on a CD player - whilst






6. Also known as a tunnel)






7. Provides for less data leakage. Longer distance. Uses light instead of electrical impulse.






8. Continuation of Operations Plan






9. Component Object Model.






10. The user






11. A type of circuit switched telephone network system - designed to allow digital transmission of voice and data over ordinary telephone copper wires - resulting in better quality and higher speeds than available with analog systems.






12. In cryptography - it is one of the simplest and most widely-known encryption techniques. It is a type of substitution cipher in which each letter in the plaintext is replaced by a letter some fixed number of positions further down the alphabet.






13. Enticing people to hit your honeypot to see how they try to access your system.






14. The practice of following someone with a security code or keycard through a security door - generally in workplaces.






15. Must be in place for you to use a biometric system






16. Communications that don't take the natural course of email (when you don't want eavesdropping to happen)






17. After implementing countermeasures - accepting risk for the amount of vulnerability left over






18. A remote authentication protocol that is used to communicate with an authentication server commonly used in UNIX networks. TACACS allows a remote access server to communicate with an authentication server in order to determine if the user has access






19. Virtual LANs. Separating broadcast domains on a single network. A way of partitioning communications channels.






20. Among the most common types of viruses and the least damaging - these are hidden within applications that must be executed in order to execute the virus.






21. A network that uses proprietary protocols






22. Internet Architecture Board. This board is responsible for protecting the Internet.






23. Demilitarized Zone. A part of the network that is neither part of the internal network nor directly part of the Internet. Basically a network sitting between two networks.






24. The effort made by an ordinarily prudent or reasonable party to avoid harm to another party or himself. Deals with liability.






25. Closed Circuit Television






26. Good for distance - longer than 100M






27. Threat to physical security.






28. Signal degradation as it moves farther from its source






29. A SSO technology that extends Kerberos functionality and improve upon its weaknesses.






30. Network devices that operate at layer 2. Every port on a switch is a separate collision domain






31. A set of rules applied by many transit networks which restrict the ways in which the network may be used.






32. A hidden communications channel on a system that allows for the bypassing of the system security policy






33. Personal - Network - and Application






34. In a computer system (or cryptosystem or algorithm) these are methods of bypassing normal authentication or securing remote access to a computer - while attempting to remain hidden from casual inspection.






35. Dialing fixed sets telephone numbers looking for open modem connections to machines






36. Refers to any of the various programs by which a computer controls aspects of its operations - such as those for translating data from one form to another - as contrasted with hardware - which is the physical equipment comprising the installation.






37. Grabs an image of the finger which is then stored in a database and then works in a one-to-many database






38. A method of encrypting text to produce cipher text in which a cryptographic key and algorithm are applied to a block of data as a group instead of one bit at a time






39. Motivational tools for employee awareness to get them to report security flaws in an organization






40. A computer program (or set of programs) that translates text written in a computer language (the source language) into another computer language (the target language).






41. Basic Input/Output System






42. A form of network attack in which a valid data transmission is maliciously or fraudulently repeated or delayed. This is carried out either by the originator or by an adversary who intercepts the data and retransmits it - possibly as part of a masquer






43. In cryptography - a substitution cipher is a method of encryption by which units of plaintext are substituted with ciphertext according to a regular system; the 'units' may be single letters (the most common) - pairs of letters - triplets of letters






44. Same as a block cipher except that it is applied to a data stream one bit at a time






45. ('rotate by 13 places' - sometimes hyphenated ROT-13) Is a simple Caesar cipher used for obscuring text by replacing each letter with the letter thirteen places down the alphabet






46. When security is managed at a central point in an organization






47. An organization that got their fame from telling the Senate Judiciary Committee that they could bring down the Internet in 30 minutes. Black hat....






48. Rolling command center with UPS - satellite - uplink - power - etc.






49. Emanations from one wire coupling with another wire






50. 1 - 1024 are the ports registered to Internet applications. Ones on the test include: 20 - ftp 21 - ftp 22 - ssh 23 - telnet 25 - smtp 53 - dns 69 - tftp 80 - http 161 - snmp 443 - ssl