A dedicated network device that can direct requests to different servers based on a variety of factors.
What is a load balancer?
100
An agreement between parties intended to minimize security risks for data transmitted across a network.
What is an Interconnection Security Agreement (ISA)
100
A combination of public and private clouds.
What is a hybrid cloud?
100
The process of changing ciphertext into plaintext.
What is decryption?
100
Data that has been encrypted.
What is ciphertext?
200
A separate network that rests outside the secure network perimeter. Unverified outside users can access this area but cannot enter the secure network.
What is a demilitarized zone (DMZ)?
200
A systematic and methodical evaluation of the exposure of assets to attackers, forces of nature, and any other entity that could cause potential harm.
What is a Vulnerability assessment
200
A TCP/IP protocol that is used by devices to communicate updates or error information to other devices.
What is Internet Control Message Protocol (ICMP)?
200
A mathematical value entered into a cryptographic algorithm to produce encrypted data.
What is a key?
200
A chip on the motherboard of the computer that provides cryptographic services.
What is a Trusted Platform Module (TPM)?
300
A technique that allows private IP addresses to be used on the public Internet.
What is network address translation (NAT)?
300
A penetration test where some limited information has been provided to the tester.
What is gray box testing?
Bonus: define white box and black box testing.
300
A cloud in which the services and infrastructure are offered to all users with access provided remotely through the Internet.
What is a public cloud?
300
The science of transforming information into a secure form so that unauthorized persons cannot access it.
What is cryptography?
300
Exchanging secure information outside the normal communication channels.
What is out-of-band?
400
A defense that uses multiple types of security
devices to protect a network.
What is layered security or "defense in depth"?
400
The process of eliminating as many security risks as possible to make the system more secure.
What is hardening?
400
A feature that controls a device’s tolerance for unanswered service requests and helps to prevent a DoS or DDoS attack.
What is a flood guard?
400
Unencrypted data.
What is cleartext?
400
An asymmetric encryption key that does have to be protected.
What is a private key?
500
A computer or an application program that intercepts user requests from the internal secure network and then processes those requests on behalf of the users.
What is a proxy server?
500
The code that can be executed by unauthorized
users in a software program.
What is its attack surface?
500
A TCP/IP protocol that exchanges management information between networked devices. It allows network administrators to remotely monitor, manage, and configure devices on the
network.
What is Simple Network Management Protocol
(SNMP)?
500
An electronic verification of the sender.
What is a digital signature?
500
The process of proving that a (specific) user performed an action.