Quick Search

Term: One who uses programming skills to gain illegal access to a computer network or file. The attack involves malicious perpetrators preventing the network service from functioning properly. Where an attacker sets up a web page that, when simply viewed by the victim, attempts to change the settings on the victim's home broadband router. Software that performs illegal actions unanticipated by a user running the software. Malware is any malicious software designed to disrupt the working of a network. Virus, worms and Trojans fall under the category of Malware. Specifies a U.S. Government approved cryptographic algorithm that can be used to protect electronic data. A program that monitors a computer or network to identify all major types of malware and prevent or contain malware incidents. Two related keys, a public key and a private key that are used to perform complementary operations, such as encryption and decryption. A specific sequence of events indicative of an unauthorized access attempt. To confirm the identity of an entity when that identity is presented. Verifying the identity of a user, process, or device, often as a prerequisite to allowing access to resources in an information systems. Authentication information conveyed during an authentication exchange. Malicious code that uses multiple methods to spread. A symmetric key cryptographic algorithm that transforms a block of information at a time using a cryptographic key. A family of functions and their inverses that is parameterized by a cryptographic key. a virus that plants itself in a system's boot sector and infects the master boot record. A method of accessing an obstructed device through attempting multiple combinations of numeric and/or alphanumeric passwords. A condition at an interface under which more input can be placed into a buffer or data holding area than the capacity allocated, overwriting other information. A method of overloading a predefined amount of space in a buffer, which can potentially overwrite and corrupt data in memory. The documentation of a predetermined set of instructions or procedures that describe how an organization's business functions will be sustained if disrupted. Series of transformations that converts plaintext to ciphertext using the Cipher Key. Secret, cryptographic key that is used by the Key Expansion routine to generate a set of Round Keys. Negotiated algorithm identifiers. Data output from the Cipher or input to the Inverse Cipher. A party whose identity is to be verified using an authentication protocol. The unauthorized disclosure, modification, substitution or use of sensitive data. The practice of gathering, retaining, and analyzing computer-related data for investigative purposes in a manner that maintains the integrity of the data. A violation or imminent threat of violation of computer security policies, acceptable use policies, or standard computer security practices. A capability set up for the purpose of assisting in responding to computer security-related incidents. A computer program that can copy itself and infect a computer without permission or knowledge of the user. Preserving authorized restrictions on information access and disclosure, including means for protecting personal privacy and proprietary information. Actions, devices, procedures, techniques, or other measures that reduce the vulnerability of an information system. A well-defined computational procedure that takes variable inputs, including a cryptographic key, and produces an output. A function that maps a bit string of arbitrary length to a fixed length bit string. A value used to control cryptographic operations, such as decryption, encryption, signature generation or signature verification. A measure of the expected number of operations required to defeat a cryptographic mechanism. A token where the secret is a cryptographic key. Discipline that embodies methods for the transformation of data in order to hide content and prevent unauthorized use or modification of that content. The cryptographic engine that is used by the Triple Data Encryption Algorithm (TDEA). A U.S. Government-approved, symmetric cipher, encryption algorithm used by business and civilian government agencies. The property that data has not been altered in an unauthorized manner. Data integrity covers data in storage, during processing, and while in transit. The process of transforming ciphertext into plaintext. A network created by connecting two firewalls. The prevention of authorized access to resources or the delaying of time-critical operations. Asymmetric algorithms used for digitally signing data. A written plan for processing critical applications in the event of a major hardware or software failure or destruction of facilities. A Denial of Service technique that uses numerous hosts to perform the attack. A certificate that is intended for use with both digital signature and data encryption services. The process of blocking outgoing packets that use obviously false Internet Protocol (IP) addresses, such as source addresses from internal networks. The process of establishing confidence in user identities electronically presented to an information system. The entry of cryptographic keys into a cryptographic module using electronic methods such as a smart card. A cryptographic key that has been encrypted using an approved security function with a key encrypting key in order to disguise the value of the underlying plaintext key. A network on which messages are encrypted to prevent reading by unauthorized parties. The conversion of data into a form, called a ciphertext, which cannot be easily understood by unauthorized people. A certificate containing a public key that is used to encrypt electronic messages or files. Communications encryption in which data is encrypted when being passed through a network, but routing information remains visible. A measure of the amount of uncertainty that an attacker faces to determine the value of a secret. Short-lived cryptographic keys that are statistically unique to each execution of a key establishment process and meets other requirements of the key type. A code computed from data and comprised of redundant bits of information designed to detect, but not correct, unintentional changes in the data. A program that allows attackers to automatically break into a system. A virus that attaches itself to a program file, such as a word processor, spreadsheet applications, or game. Software that generates, stores, and compares message digests for files to detect changes to the files. A gateway that limits access between networks in accordance with local security policy. The component that controls a firewall's handling of a call. A collection of systems at a point on a network that together constitute a firewall implementation. The system device upon which a firewall is implemented. A table of instructions that the firewall uses for determining how packets should be routed between its interfaces. FISMA requires agencies to integrate IT security into their capital planning and enterprise architecture processes at the agency. An accurate bit-for-bit reproduction of the information contained on an electronic device or associated media, whose validity and integrity has been verified using an accepted algorithm. One of the two functions of the block cipher algorithm that is determined by the choice of a cryptographic key. A function that maps a bit string of arbitrary length to a fixed length bit string. A symmetric key authentication method using hash functions. The process of using a mathematical algorithm against data to produce a numeric value that is representative of that data. A host that is designed to collect data on suspicious activity and has no authorized users other than its administrators. A security policy based on the identities and/or attributes of the object (system resources) being accessed and of the subject (user, process or device) requesting access. IDSs which operate on information collected from within an individual computer system. IDSs which detect attacks by capturing and analyzing network packets. A violation or imminent threat of violation of computer security policies, acceptable use policies, or standard computer security practices. The mitigation of violations of security policies and recommended practices. Documentation of a predetermined set of instructions or procedures to detect, respond to, and limit consequences of a malicious cyber attacks against an organization's IT systems. Measures that protect and defend information and information systems by ensuring their availability, integrity, authentication, confidentiality, and non-repudiation. The protection of information and information systems from unauthorized access, use, ect to provide CIA. Aggregate of directives, regulations, rules, and practices that prescribes how an organization manages, protects, and distributes information. Individual assigned responsibility by the senior agency information security officer to ensure the appropriate operational security posture is maintained. The process of blocking incoming packets that use obviously false IP addresses, such as reserved source addresses. A vector used in defining the starting point of an encryption process within a cryptographic algorithm. The entity that initiates an authentication exchange. An entity with authorized access that has the potential to harm an information system through the modification of data, and/or denial of service. Guarding against improper information modification or destruction, and includes ensuring information non-repudiation and authenticity. Software that looks for suspicious activity and alerts administrators. Systems which can detect an intrusive activity and can also attempt to stop the activity, ideally before it reaches its targets. Series of transformations that converts ciphertext to plaintext using the Cipher Key. Protocol that provides security capabilities at the Internet Protocol (IP) layer of communications. A description of security principles and an overall approach for complying with the principles that drive the system design. Awareness presentations that are intended to allow individuals to recognize IT security concerns and respond accordingly. Explains proper rules of behavior for the use of agency IT systems and information. Seeks to integrate all of the security skills and competencies of the various functional specialties into a common body of knowledge. The five security goals are confidentiality, availability, integrity, accountability, and assurance. An IT application or system that is solely devoted to security. Metrics based on IT security performance goals and objectives. The "documentation of IT security decisions" in an organization. Training that seeks to produce relevant and needed security skills and competencies by practitioners of functional specialties other than IT security. A widely used authentication protocol developed at the Massachusetts Institute of Technology (MIT). A value used to control cryptographic operations, such as decryption, encryption, signature generation or signature verification. The three cryptographic keys (Key1, Key2, Key3) that are used with a Triple Data Encryption Algorithm mode. The processes of managing (e.g., auditing, generating) the two components of a cryptographic key by two key component holders. A public key and its corresponding private key. The process of exchanging public keys in order to establish secure communications. A self-contained unit that is capable of storing at least one plaintext or encrypted cryptographic key or key component that can be transferred, upon request, into a cryptographic module. The activities involving the handling of cryptographic keys and other related security parameters (e.g., passwords) during the entire life cycle of the keys. The process by which cryptographic keys are securely distributed among cryptographic modules using manual transport methods (e.g., key loaders). The secure transport of cryptographic keys from one cryptographic module to another module. A method of encrypting keys (along with associated integrity information) that provides both confidentiality and integrity protection using a symmetric key algorithm. The process used to view or record both the keystrokes entered by a computer user and the computer's response during an interactive session. The security objective of granting users only those accesses they need to perform their official duties. Encrypts all of the data along a communications path (e.g., T1 Line). A virus that attaches itself to documents and uses the macro programming capabilities of the document's application to execute and propagate. Software or firmware intended to perform an unauthorized process that will have adverse impact on the confidentiality, integrity, or availability (CIA) of an information system. An attack on the authentication protocol run in which the attacker positions himself in between the claimant and verifier so that he can intercept and alter data traveling between them. A cryptographic checksum on data that uses a symmetric key to detect both accidental and intentional modifications of the data. A cryptographic checksum, typically generated for a file that can be used to detect changes to the file. A measure of the difficulty that an attacker has to guess the most commonly chosen password used in a system. An algorithm for the cryptographic transformation of data that features a symmetric key block cipher algorithm. The security risks resulting from a mobile software agent visiting several platforms. An attack where the attacker obtains some data (e.g. by penetrating a system) that he/she is able to analyze in a system of his/her own choosing. An attack against an authenticated protocol where the attacker either assumes the role of a claimant with a genuine verifier. An on-line protocol used to determine the status of a public key certificate. Hash algorithms which map arbitrarily long inputs into a fixed-size output such that it is very difficult to find two different hash inputs that produce the same output. An on-line protocol used to determine the status of a public key certificate. An unauthorized entity from outside the domain perimeter that has the potential to harm an Information System through modification of data, and/or denial of service. Software that observes and records network traffic. An attack against an authentication protocol where the attacker intercepts data traveling along the network between the claimant and verifier, but does not alter the data. A secret that a claimant memorizes and uses to authenticate his or her identity. A program that is installed on a system to cause it to attack other systems. A self-replicating, self-propagating, self-contained program that uses networking mechanisms to spread itself. this is a test This is a test again.