Boson Test Cissp

Can be measured by the amount of time the authentication process takes

Clear text format

Encrypts only the data sent over the IPSec VPN tunnel

Encrypts the entire packet including headers

Combines data and functions in a code-accessible framework

Documentation

Short as possible

Indicate the severity of the vulnerability and have largest influence on the final CVSS score

Indicate the urgency fo the vulnerability and can change over time

Optional and indicate how much an environment or end-user organization is affected by a vulnerability

Required to connect a data terminal equipment device such as a router to a digital circuit

Linux system file that contains secure user account info and can only be read by root

Permission assigned to a user at the user account level

Data at rest stored on the device

ACM based methodology that enables the viewing of an architecture from six different perspectives

Requires that data collected by an organization that monitors its employees be used for a specific, explicit, and legitimate purpose

Focused on information integrity

Combination of the proprietary security guard system and the contract security guard system

Each user must have security clearance, access approval, and a valid need to know for all information processed by a system

A user must have a security clearance and access approval for all info processed by the system. They must also have a valid need to know for the information they will access on the system

A user must have security clearance for all info processed by the system. They must also have access approval and a valid need to know for the information they will access on the system

A user must have a security clearance, access approval, and a valid need to know that permits only the info they will access on the system

Passive attacks that are intended to glean info from a device by observing how the device operates under given conditions

Requires that the receiving device send acknowledgements

Includes walkthroughs, sanity checks, syntax checks, and logical reviews of code

Enables attacker to steal file contents from locations outside the web server's publicly accessible home directory on the server

When an assessment identifies a business requirement as a vulnerability

Physical and Data Link

Network

Transport

Session, Presentation, and Application

Device Drivers

OS Components that are not the kernel

Buffer overflow protection

10.0.0.0 through 10.255.255.255; 172.16.0.0 through 172.31.255.255; 192.168.0.0 through 192.168.255.255

Feature of WPA that helps protect against man-in-the-middle attacks

Output from a one-way hash function

Vulnerability Scanning

Emits a beam of light to another sensor across a path that is monitored by the sensor

Detects energy that is generated by body heat

Application (Layer 7)

Not assigned by IANA; Private/dynamic ports

Attempts to find two passwords with matching hashes

Point to point encryption solution to prevent cardholder data theft

Process of taking a person's photograph and comparing it to identified photographs in a database

Contains single copper conductor at the cable core surrounded by shielding to mitigate data emanation from eh core

Contains one or more glass or plastic fibers that are used to transmit data by using light signals

DNS cache poisoning attacks that attempt to modify a DNS cache by providing invalid information to a DNS server

have a low false positive rate

Star