Google Cybersecurity Course 3

Bandwidth

Maximum data transmission capacity over a network

Cloud computing

Using remote servers and network services hosted on the internet

cloud network

Collection of servers or computers storing resources and data in remote data centers

Data packet

Basic unit of information that travels from one device to another within a network

Hub

Network device that broadcasts information to every device on the network

Internet Protocol (IP)

Set of standards used for routing and addressing data packets on a network

IP Address

Unique string of characters identifying the location of a device on the internet

Local Area Network (LAN)

Network that spans small areas like an office building, a school, or a home

Media Access Control (MAC) address

Unique alphanumeric identifier assigned to each physical device on a network

Modem

Device that connects a router to the internet and brings internet access to the LAN

Network

Group of connected devices

Open Systems Interconnection (OSI) model

Standardized concept that describes the seven layers computers use to communicate and send data over the network

Packet sniffing

Capturing and inspecting data packets across a network

Port

Software-based location that organizes the sending and receiving of data between devices on a network

Router

Network device that connects multiple networks together

Speed

Rate at which a device sends and receives data, measured by bits per second

Subnetting

Subdivision of a network into logical groups called subnets

Switch

Device that makes connections between specific devices on a network by sending and receiving data between them

TCP/IP model

A framework for network data transmission

TCP (Transmission Control Protocol)

A protocol for internet communication and data streaming

UDP

A connectionless protocol for data transmission

WAN

A network that spans a large geographic area

Active packet sniffing

A type of attack where data packets are manipulated in transit

Address Resolution Protocol (ARP)

Used to determine the MAC address of the next router or device to traverse

Baseline configuration

A documented set of specifications within a system that is used as a basis for future builds, releases, and updates

Bluetooth

Used for wireless communication with nearby physical devices

Botnet

A collection of computers infected by malware that are under the control of a single threat actor, known as the "bot herder"

Cloud-based firewalls

Software firewalls that are hosted by the cloud service provider

Cloud network

A collection of servers or computers that stores resources and data in remote data centers that can be accessed via the internet

Controlled zone

A subnet that protects the internal network from the uncontrolled zone

Denial of service (DoS) attack

An attack that targets a network or server and floods it with network traffic

Distributed denial of service (DDoS) attack

A type of denial or service attack that uses multiple devices or servers located in different locations to flood the target network with unwanted traffic

Domain Name System (DNS)

A networking protocol that translates internet domain names into IP addresses

Encapsulation

A process performed by a VPN service that protects your data by wrapping sensitive data in other data packets

File Transfer Protocol (FTP)

Used to transfer files from one device to another over a network

Firewall

A network security device that monitors traffic to or from your network

Forward proxy server

A server that regulates and restricts a person's access to the internet

Hardware

The physical components of a computer

Hypertext Transfer Protocol (HTTP)

An application layer protocol that provides a method of communication between clients and website servers

Hypertext Transfer Protocol Secure (HTTPS)

A network protocol that provides a secure method of communication between clients and servers

Identity and access management (IAM)

A collection of processes and technologies that helps organizations manage digital identities in their environment

IEEE 802.11 (Wi-Fi)

A set of standards that define communication for wireless LANs

Internet Control Message Protocol (ICMP)

An internet protocol used by devices to tell each other about data transmission errors across the network

Internet Control Message Protocol (ICMP) flood

A type of DoS attack performed by an attacker repeatedly sending ICMP request packets to a network server

Internet Protocol (IP) address

A unique string of characters that identifies the location of a device on the internet

IP spoofing

A network attack performed when an attacker changes the source IP of a data packet to impersonate an authorized system and gain access to a network

Local area network (LAN)

A network that spans small areas like an office building, a school, or a home

Multi-factor authentication (MFA)

A security measure that requires a user to verify their identity in two or more ways to access a system or network

Network log analysis

The process of examining network logs to identify events of interest

Network protocols

A set of rules used by two or more devices on a network to describe the order of delivery of data and the structure of data

Network segmentation

A security technique that divides the network into segments

Operating system (OS)

The interface between computer hardware and the user

Open systems interconnection (OSI) model

A standardized concept that describes the seven layers computers use to communicate and send data over the network

On-path attack

An attack where a malicious actor places themselves in the middle of an authorized connection and intercepts or alters the data in transit

Passive packet sniffing

A type of attack where a malicious actor connects to a network hub and looks at all traffic on the network

Patch update

A software and operating system update that addresses security vulnerabilities within a program or product

Penetration testing

A simulated attack that helps identify vulnerabilities in systems, networks, websites, applications, and processes

Ping of death

A type of DoS attack caused when a hacker pings a system by sending it an oversized ICMP packet that is bigger than 64KB

Port filtering

A firewall function that blocks or allows certain port numbers to limit unwanted communication

Proxy server

A server that fulfills the requests of its clients by forwarding them to other servers

Replay attack

A network attack performed when a malicious actor intercepts a data packet in transit and delays it or repeats it at another time

Reverse proxy server

A server that regulates and restricts the Internet's access to an internal server

Secure File Transfer Protocol (SFTP)

A secure protocol used to transfer files from one device to another over a network

Secure shell (SSH)

A security protocol used to create a shell with a remote system

Security hardening

The process of strengthening a system to reduce its vulnerabilities and attack surface

Security information and event management (SIEM)

An application that collects and analyzes log data to monitors critical activities for an organization

Security zone

A segment of a company's network that protects the internal network from the internet

Simple Network Management Protocol (SNMP)

A network protocol used for monitoring and managing devices on a network

Smurf attack

A network attack performed when an attacker sniffs an authorized user's IP address and floods it with ICMP packets

Stateful

A class of firewall that keeps track of information passing through it and proactively filters out threats

Stateless

A class of firewall that operates based on predefined rules and that does not keep track of information from data packets

Synchronize (SYN) flood attack

A type of DoS attack that simulates a TCP/IP connection and floods a server with SYN packets

Transmission Control Protocol (TCP)

An internet communication protocol that allows two devices to form a connection and stream data

Transmission control protocol (TCP) 3-way handshake

A three-step process used to establish an authenticated connection between two devices on a network

Uncontrolled zone

The portion of the network outside the organization

User Datagram Protocol (UDP)

A connectionless protocol that does not establish a connection between devices before transmissions

Virtual Private Network (VPN)

A network security service that changes your public IP address and masks your virtual location so that you can keep your data private when you are using a public network like the internet

Wide Area Network (WAN)

A network that spans a large geographic area like a city, state, or country

Wi-Fi Protected Access (WPA)

A wireless security protocol for devices to connect to the internet