Security+ Study Guide

2017-07-07 02:10:07

handshake: The process of agreeing to communicate and share data. TCP uses a three-way handshake to establish connections, and part of this process can be exploited by SYN attacks.
hardening: The process of making an entity, usually an operating system, more secure by closing known holes and addressing known security issues.
hash value: A single number used to represent the original piece of data.
hash/hashing: The process of transforming characters into other characters that represent (but are not) the originals. Traditionally, the results are smaller than the original, and they are more secure.
H-IDS: A method of Intruder Detection that is host-based. The alternative is network-based.
high availability: A clustering solution to provide resource reliability and availability.
hijacking (TCP/IP hijacking): See man in the middle attack.
HIPAA: The Health Insurance Portability and Accountability Act addresses security and privacy of health-related data.
Keyed-Hash Message Authentication Code (HMAC): Addressed in RFC 2104, this is "a mechanism for message authentication using cryptographic hash functions" per the draft of the Federal Information Processing Standard (FIPS) publication.
hoax: Typically an e-mail message warning of something that is not true, such as the outbreak of a new virus. The hoax can send users into a panic and cause more harm than the virus could.
honey pot: A bogus system set up to attract and slow down a hacker.
Host-based IDS: See H-IDS.
host: Any network device with a TCP/IP network address.
hostile code: Any code that behaves in a way other than in the best interest of the user and the security of data.
host-to-host: Communication that occurs between hosts.
hot fix/hotfix: Another word for a patch. When Microsoft rolls a bunch of them together, they become known as a Service Pack.
hot site: A location that can provide operations within hours of a failure.
HTML: See Hypertext Markup Language.
HTTP: See Hypertext Transfer Protocol.
HTTPS: Hypertext Transfer Protocol over Secure Sockets layer is a combination of HTTP with SSL to make for a secure connection. It uses Port 443 by default.
Hypertext Markup Language (HTML): A set of codes used to format text and graphics that will be displayed in a browser. The codes define how data will be displayed.
Hypertext Transfer Protocol (HTTP): The protocol used for communication between a web server and a web browser.

Категории