The act of ensuring that an individual or element is genuine.

The steps that ensure that the individual is who they claim to be.

Security actions that ensure that data is accessible to authorized users.

California’s Database Security Breach Notification Act

The first state law that covers any

state agency, person, or company that does business in California.

Security actions that ensure only authorized parties can view the

information.

Targeted attacks against financial networks,

unauthorized access to

information, and the theft of personal information.

 A network of attackers, identity thieves, spammers, and financial fraudsters.

A premeditated, politically motivated

attack against information, computer

systems, computer programs,

and data that results in violence.

Attackers whose motivation may be

defined as ideology, or attacking for

the sake of their principles or beliefs.

Gramm-Leach-Bliley Act (GLBA)

A law that requires banks and financial institutions to

alert customers of their policies and practices in disclosing customer information.

Hacker

A term used to refer to a person

who uses advanced computer skills to attack

computers.

Health Insurance Portability and Accountability Act (HIPAA)

A law designed to guard

protected health information and implement policies and procedures to safeguard it.

Stealing another person’s

personal information, such as a Social Security

number, and then using the

information to impersonate the victim,

generally for

financial gain.

The tasks of securing information that is in a digital format

actions that ensure that the information is correct and no unauthorized

person or malicious software has altered the data.

The likelihood that a threat agent will exploit the vulnerability.

Sarbanes-Oxley Act (Sarbox) A law designed to fight corporate corruption.

kiddies Individuals who want to

break into computers to create damage, yet lack the

advanced knowledge of computers

and networks needed to do so.

A person who has been hired to break into a computer and steal information.

A person or element that has the power to carry out a threat.

A flaw or weakness that allows a threat agent to bypass security.

A software program that delivers

advertising content in a manner that is

unexpected and unwanted by the user.

Software code that gives access to a

program or a service that circumvents

normal security protections.

A logical computer network of zombies under the control of an attacker.

A malicious computer code that, like its biological counterpart,

reproduces itself on the same computer.

The act of digging through trash

receptacles to find information that can

be useful in an attack.

attack that creates a fictitious character

and then plays out the role of

that person on a victim.

Captures and stores each

keystroke that a user types

on the computer’s

keyboard.

Computer code that lies dormant

until it is triggered by a specific logical event.

Software that enters a computer

system without the user’s knowledge or consent

and then performs an unwanted—and usually harmful—action.

A phishing attack that automatically

redirects the user to a fake site.

Sending an e-mail or displaying a

Web announcement that falsely claims to be

from a legitimate enterprise in an

attempt to trick the user into surrendering private

information.

 A set of software tools used

by an attacker to hide the actions or presence of other

types of malicious software.

A means of gathering information for an attack by relying on the

weaknesses of individuals.

A phishing attack that targets only specific users.

A general term used to describe

software that spies on users by gathering

information without consent, thus violating their privacy.

The act of unauthorized individuals

entering a restricted-access building by

following an authorized user.

An executable program advertised

as performing one activity, but

actually does something else

(or it may perform both the advertised and malicious

activities).

A phishing attack that uses a

telephone call instead of using e-mail.

A phishing attack that targets

only wealthy individuals.

word splitting Horizontally

separating words so that

they can still be read by the

 human eye.

A malicious program designed to

take advantage of a vulnerability in an application or

an operating system in order

to enter a computer and then

self-replicate to other computers.

Part of the TCP/IP protocol for determining the MAC

addess based on the IP adress

An attack that corrupts the ARP cache.

An attack that targets vulnerabilities in client applications that interact with a compromised server or processes malicious data.

A file on a local computer in which a server stores user-specific information.

Injecting and executing commands to execute on a server.

An attack that injects scripts

into a Web application server to

direct attacks at clients.

An attack that attempts to

prevent a system from performing its

normal functions.

An attack that takes advantage

of a vulnerability in the

Web application program or

the Web server software

so that a user can move

from the root directory to

other restricted directories

An attack that uses multiple

zombie computers (even

hundreds or thousands)

in a botnet to flood a device with requests.

A hierarchical name system for matching computer names

and numbers.

A cookie that is created from

the Web site that currently is being

viewed.

A cookie named after the Adobe Flash player. Also known as local shared                                     

objects (LSOs). _______ cannot be deleted through the browser’s normal configuration

settings as regular cookies can. Typically, they are saved in multiple locations on the hard

drive and can be take up as much as 100,000 bytes of storage per cookie (about 25 times

the size of a normal cookie). ______ can also be used to reinstate regular cookies that

a user has deleted or blocked.

A list of the mappings of names to computer numbers.

Part of HTTP that is composed

of fields that contain the different

characteristics of the data that is being transmitted.

An attack that intercepts legitimate communication and forges a ficticious response to the sender

A cookie that is recorded on the hard drive of the

computer and does not expire when the browser closes.

An attack that uses the Internet Control Message Protocol (ICMP) to flood a

victim with packets.

An attack that exploits a

vulnerability in software to gain access to

 resources that the user

would normally be restricted from obtaining.

An attack that makes a

copy of the transmission before sending it to the

recipient.

A cookie that is only used when a browser is visiting a server using a secure

connection.

A cookie that is stored in

Random Access Memory (RAM), instead of on

the hard drive, and only lasts for the duration of visiting a Web site.

An attack in which an

attacker attempts to

impersonate the user by using

his session token.

A form of verification used when accessing a secure Web application.

An attack that broadcasts a

ping request to all computers on the network yet

changes the address from which the request came to that of the target.

An attack that targets SQL servers by injecting commands to be manipulated

by the database.

An attack that takes

advantage of the procedures for initiating a TCP

session.

A cookie that was created by a third party that is different from the

primary Web site.

An attack involving using a

third party to gain access rights.

XML (Extensible Markup Language)

A markup language that is designed to carry data

instead of indicating how to display it.

Attacks that exploit previously

unknown vulnerabilities, so victims have

no time (______) to prepare or defend against the attacks.

The expected monetary loss that can be expected for an

asset due to a risk over a one-year period.

The probability that a risk will occur in a particular year.

architectural design The process of defining a collection of hardware and software components

along with their interfaces in order to create the framework for software development.

The code that can be executed

by unauthorized users in a software program.

baseline reporting A comparison of the present state of a system compared to its baseline.

 A test in which the tester has no prior knowledge of the network infrastructure

that is being tested.

A comparison of the present

state of a system compared to its baseline.

Presenting the code to

multiple reviewers in order

to reach agreement about

its security.

An analysis of the design

of a software program by key personnel from

 different levels of the project.

The proportion of an asset’s

value that is likely to be destroyed by a

particular risk (expressed as a percentage).

A control that errs on the

side of security in the event of a failure.

A test where some limited

information has been provided to the tester.

The process of eliminating

as many security risks as

possible and making the

system more secure.

A network set up with intentional vulnerabilities.

A computer typically

located in an area with limited security and loaded with 

software and data files that appear to be authentic, yet they are actually imitations of real

data files, to trickattackers

into revealing their attack techniques.

A test by an outsider to actually

exploit any weaknesses in systems

that are vulnerable.

Hardware or software that

captures packets to decode and

analyze the contents.

The expected monetary loss every time a risk occurs.

vulnerability assessment A systematic and methodical evaluation of the exposure of assets

to attackers, forces of nature, or any other entity that is a potential harm.

An automated software

search through a system for any known security

weaknesses that then creates a report of those potential exposures.

Generic term for a range of products that look for vulnerabilities in

networks or systems.

A test where the tester has an in-depth knowledge of the network and systems being

tested, including network diagrams, IP addresses, and even the source code of custom applications.

Sending a packet with every

option set on for whatever protocol is in

use to observe how a host responds.

A record or list of individuals

who have permission to enter a secure area, the

time that they entered, and the time they left the area.

A log that can provide details

regarding requests for specific files on a system.

anti-spyware Software that helps prevent computers from becoming infected by different

types of spyware.

Software that can examine a computer for any infections as well as monitor

computer activity and scan new documents that might contain a virus.

Logs that are the second common type of security-related operating system logs.

Spam filtering software that

analyzes the contents of every word in an e-

mail and determines how frequently a word occurs in order to determine if it is spam.

A device that can be inserted into the security slot of a portable device and

rotated so that the cable lock is secured to the device to prevent it from being stolen.

Using video cameras to

transmit a signal to a specific and

limited set of receivers used for surveillance in areas that require security monitoring.

An attack that uses the user’s Web browser settings to

impersonate the user.

A system that can identify

critical data, monitor how it is being

accessed, and protect it from unauthorized users.

Logs that can document any

unsuccessful events and the most significant

successful events.

Hardware or software

that is designed to prevent malicious packets

from entering or leaving computers.

A software testing technique

that deliberately provides invalid,

unexpected, or random data as inputs to a computer program.

Creating a virtualized environment

to simulate the central processing

unit (CPU) and memory of the computer to check for the presence of a virus.

software firewall A firewall

that runs as a program on a local system to

protect it against attacks.

Software that addresses a specific

customer situation and often may not be

distributed outside that customer’s organization.

Verifying a user’s input to an application.

A general software security update intended to cover vulnerabilities that have been

discovered.

A device that detects an emitted signal in order to identify the owner.

A document or series of

documents that clearly defines the defense

mechanisms an organization will employ to keep information secure.

Software that is a cumulative package of all security updates plus additional

features.

A sequence of bytes (a string) found in the virus as a virus signature.

Using encryption to mask the content of voice communications.