Studied by 2 people
Looks like no one added any tags here yet for you.
mount point
The location within the file structure where a file system is attached
raw disk
Direct access to a secondary storage device as an array of blocks with no file system.
bootstrap loader
The small program that loads the kernel as part of the bootstrap procedure.
dual-booted
A term describing a computer that can boot one of two or more installed operating systems.
root partition
The storage partition that contains the kernel and the root file system; the one mounted at boot.
new technology file system (NTFS)
Microsoft-designed file system, successor to FAT32, supports 64-bit volume sizes, provides journaling for reliability, file-based data compression
EXT2
second extended file system, no journaling, and recommended for flash drives and USB drives.
EXT3
third extended file system, supports journaling, and reduces file system corruption risk
EXT4
fourth extended file system supports large file and system sizes, and new features like multiblock allocation, delayed allocation, and journal checksum
master file table (MFT)
contains file records like inodes, organized in a B-Tree structure, managed like any other file
metafiles
special files managed like regular files, including log file, volume file, attribute definition file, bitmap file, boot file, bad cluster file, and root directory
volume bitmap
identifies free space within the volume, can grow dynamically
file record
entry in MFT containing attributes such as file name, creation date, permissions, can contain small files and directories, or pointers to file data for large files
data streams
multiple data streams can be associated with a file, default is the mainstream
directories
contain file names and references, organized as a sorted B+ tree for large directories, redundant data for optimization.
EXT2/EXT3/EXT4 file systems
Linux file systems, each with distinct features and capabilities
security
the protection of computer systems and data from unauthorized access, corruption, and breaches, ensuring data integrity, confidentiality, and proper user authentication
protection
rules and tools used to control who can access and use system resources, making sure only authorized users and processes can interact with files and data
attacker
a person trying to harm or gain unauthorized access to a computer system
attack
an attempt to harm or gain unauthorized access to a computer system
threat
a potential danger to the security of a system
security violations
unauthorized actions or breaches that compromise the confidentiality, integrity, or availability of a system, data, or network
denial-of-service (DoS)
blocking the normal use of a system by overwhelming it with requests that slow or stop its normal functions
masquerading
pretending to be someone else to gain unauthorized access
replay attack
repeating a valid data transmission to trick a system
man-in-the-middle attack
when an attacker secretly intercepts and alters the communication between two parties
session hijacking
taking control of a communication session between two parties
privilege escalation
gaining more privileges than a person or system should have
secure
The state of a system whose resources are used and accessed as intended under all circumstances.
intruder
Someone attempting to breach security.
hacker
Someone attempting to breach computer security.
attacker
Someone attempting to breach a computer system's security.
threat
The potential for a security violation.
attack
An attempt to break a computer system's security.
denial-of-service
Preventing legitimate use of a system.
masquerading
A practice in which a participant in a communication pretends to be someone else (another host or another person).
authentication
The process of correctly identifying a person or device. In cryptography, constraining the set of potential senders of a message.
replay attack
The malicious or fraudulent repetition of a valid transmission.
man-in-the-middle attack
An attack in which the attacker sits in the middle of the data flow of a communication, masquerading as the sender to the receiver and vice versa
session hijacking
The interception of a communication.
privilege escalation
The enabling of more privileges than an entity (process, system, person) should have.
attack surface
The sum of the methods available to attack a system (e.g., all of the network ports that are open, plus physical access).
social engineering
A practice in which an attacker tricks someone into performing some task for the attacker (such as sending the attacker confidential information).
phishing
A class of social engineering attacks in which a legitimate-looking e-mail or website tricks a user into breaching confidentiality or enabling privilege escalation.
malware
software created to harm, exploit, or take control of computer systems
logic bomb
malware that activates when specific conditions are met
ransomware
malware that locks or encrypts your computer files and demands payment to unlock them
spyware
a type of malware that secretly collects information about a person or organization
trap door
a hidden way into a computer system left by an attacker for future access
back door
a secret method of accessing a computer system, often left by an attacker after a successful hack
Trojan Horse
a program that appears harmless but performs harmful actions
code-injection attack
an attack where harmful code is added to a good program
virus
a harmful piece of code that copies itself and can damage or change files and programs
worm
malware that spreads itself between computers without human help
secure by default
Describes a system or computer whose initial configuration decreases its attack surface.
zombie systems
Compromised systems that are being used by attackers without the owners' knowledge
sniffing
An attack in which the attacker monitors network traffic to obtain useful information.
spoof
The imitation of a legitimate identifier (such as an IP address) by an illegitimate user or system.
distributed denial-of-service attack (DDoS)
An attack from multiple sources (frequently a botnet of zombies) with the purpose of denying legitimate use of the attacked resource.
cryptography
A tool used to constrain the potential senders and/or receivers of a message (or stored data).
keys
In the context of protection, unique bit patterns held by domains corresponding with unique bit patterns (locks) held by objects. Generally, secrets used in cryptography.
encryption
The use of cryptography to limit the receivers of a message or access to data.
cryptography
A tool used to constrain the potential senders and/or receivers of a message (or stored data)
keys
In the context of protection, unique bit patterns held by domains corresponding with unique bit patterns (locks) held by objects. Generally, secrets used in cryptography.
encryption
The use of cryptography to limit the receivers of a message or access to data.
symmetric encryption algorithm
A cryptography algorithm in which the same keys are used to encrypt and decrypt the message or data.
data-encryption standard (DES)
A cipher (algorithm for doing encryption and decryption) provided by the U.S. National Institute of Standards and Technology (NIST).
block cipher
A cipher that works on blocks of data (rather than bits).
triple DES
A modification of DES that uses the same algorithm three times and uses two or three keys to make the encryption more difficult to break.
advanced encryption standard (AES)
The NIST cipher designed to replace DES and triple DES.
stream cipher
A cipher that encrypts or decrypts a stream of bits or bytes (rather than a block).
keystream
An infinite set of bits used to encrypt a plain-text stream through an XOR operation in a stream cipher.
asymmetric encryption algorithm
A cipher algorithm in which different keys are used for encryption and decryption.
public key encryption
A cipher algorithm in which different keys are used for encryption and decryption.
RSA
The most widely used public key cipher.
public key
In asymmetric encryption algorithm, a key that can be distributed for encrypting and decrypting.
private key
In an asymmetric encryption algorithm, a key that must be kept private for use in authenticating, encrypting, and decrypting.
hash function
A function that takes data as its input, performs a numeric operation on the data, and returns a numeric value. Also, an algorithm for creating a hash (a small, fixed-size block of data calculated from a larger data set, used to determine if a message has been changed).
message digest
The calculation resulting from a hash function
hash value
The calculation resulting from a hash function.
SHA-1
An algorithm for creating a hash (a small, fixed-size block of data calculated from a larger data set, used to determine if a message has been changed).
message-authentication code (MAC)
A cryptographic checksum calculated in symmetric encryption; used to authenticate short values.
digital-signature algorithm
A cryptographic checksum calculated in asymmetric encryption; used to authenticate a message.
digital signature
The authenticator produced by a digital-signature algorithm
code signing
The use of a digital signature to authenticate a program
nonrepudiation
Proof that an entity performed an action (frequently performed by digital signatures).
out-of-band
In networking, a term describing data delivered in a manner independent of the main data stream (e.g., delivery of a symmetric key in a paper document).
digital certificate
A public key digitally signed by a trusted party
certificate authority
A trusted signer of digital certificates
Internet protocol security (IPSec)
A network protocol suite providing authentication and symmetric-key encryption of packets of network data.
Internet key exchange (IKE)
A protocol that uses public key encryption to allow secure symmetric key exchange for IPSec.
virtual private network (VPN)
An encrypted tunnel between two systems, commonly using IPSec, allowing secure remote access.
transport layer security (TLS)
A cryptographic protocol that enables two computers to communicate securely; the standard protocol by which web browsers communicate to web servers.
session key
The TLS symmetric key, used for a web communication session, exchanged via asymmetric cryptography.
user authentication
The identification of a user of a computer.
password
A secret key, usually used to authenticate a user to a computer.
shoulder surfing
Attempting to learn a password or other secret information by watching the target user at the keyboard.
sniff
In network communication, to capture information by recording data as it is transmitted.
paired password
In authentication, a challenge-response set of secret keys, where only the correct response to the challenge provides authentication
one-time password
A password that is only valid once.
