Security
This cyber security glossary explains the meaning of terms about different types of computer security threats as well as words about application security, access control, network intrusion detection, security awareness training and computer forensics.
Anti-virus, antimalware
Terms related to spyware, including definitions about malware and words and phrases about online advertising, adware and online privacy.
-
Google Titan
Google Titan is a security chip designed to protect computers from firmware-based rootkits and other malware-infecting firmware. Titan as a key element in Google's security and allows the company to boast that security for its Google Cloud Platform services goes to the hardware root of trust level.
-
rootkit
A rootkit is a program or, more often, a collection of software tools that gives a threat actor remote access to and control over a computer or other system.
-
JavaScript
JavaScript is a programming language that started off simply as a mechanism to add logic and interactivity to an otherwise static Netscape browser.
Application security
Terms related to application security, including procedural definitions for preventing software vulnerabilities and words and phrases about secure code development.
-
log analytics
Log analytics is the assessment of a recorded set of information from one or more events, captured from a computer, network, application operating system (OS) or other IT ecosystem component.
-
counterfeit app (fake app)
A counterfeit app is an app that claims to fill a purpose while actually being fake, ineffective, useless or even harmful to a user's device.
-
Certified Cloud Security Professional (CCSP)
The Certified Cloud Security Professional (CCSP) certification is intended for experience IT professionals who have a minimum of five years of experience in the industry with three of those years being in information security and one year in one of the six CCSP domains.
Authentication, access control
Terms related to authentication, including security definitions about passwords and words and phrases about proving identity.
-
1Password
1Password is a password management application that stores sensitive information, including user passwords and software licenses, in an encrypted chain.
-
Universal 2nd Factor (U2F)
Universal 2nd Factor (U2F) is a type of physical authentication device that uses encryption and private keys to protect and unlock supported accounts.
-
perfect forward secrecy (PFS)
Perfect Forward Secrecy (PFS), also known as Forward Secrecy, is an encryption style known for producing temporary private key exchanges between clients and servers.
Malware
Terms related to malware, including definitions about viruses and Trojans and other words and phrases about malicious software.
-
WannaCry ransomware
The WannaCry ransomware is a worm that spreads by exploiting vulnerabilities in the Windows operating system.
-
email virus
An email virus consists of malicious code that is distributed in email messages, and it can be activated when a user clicks on a link in an email message, opens an email attachment or interacts in some other way with the infected email message.
-
unified threat management (UTM)
A unified threat management (UTM) system is a type of network hardware appliance, virtual appliance or cloud service that protects businesses from security threats in a simplified way by combining and integrating multiple security services and features.
Network security
Terms related to network security, including definitions about intrusion prevention and words and phrases about VPNs and firewalls.
-
ethical hacker
An ethical hacker, also referred to as a white hat hacker, is an information security expert who systematically attempts to penetrate a computer system, network, application or other computing resource on behalf of its owners -- and with their permission -- to find security vulnerabilities that a malicious hacker could potentially exploit.
-
asymmetric cyber attack
An asymmetric cyber attack refers to cyberwarfare that bypasses or sabotages a victim’s strengths while targeting their vulnerabilities.
-
two-factor authentication (2FA)
Two-factor authentication (2FA), sometimes referred to as two-step verification or dual factor authentication, is a security process in which the user provides two different authentication factors to verify themselves to better protect both the user's credentials and the resources the user can access.
Threat management
Terms related to security threats, including definitions about anti-virus programs or firewalls and words and phrases about malware, viruses, Trojans and other security attacks.
-
Have I Been Pwned (HIBP)
Have I Been Pwned (HIBP) is a website that allows users to search and find out if an email address’s password has been compromised. The service is a popular and commonly-used tool in IT security.
-
ethical hacker
An ethical hacker, also referred to as a white hat hacker, is an information security expert who systematically attempts to penetrate a computer system, network, application or other computing resource on behalf of its owners -- and with their permission -- to find security vulnerabilities that a malicious hacker could potentially exploit.
-
asymmetric cyber attack
An asymmetric cyber attack refers to cyberwarfare that bypasses or sabotages a victim’s strengths while targeting their vulnerabilities.