1/32
This set of vocabulary flashcards covers backup methodologies, secure data erasure categories, masking techniques, virtualization, cloud delivery models, and common cyber attack types discussed in the lecture.
Name | Mastery | Learn | Test | Matching | Spaced | Call with Kai | Chat |
|---|
No analytics yet
Send a link to your students to track their progress
Local Backups
The use of physical storage devices like HDDs, tapes, DVDs, and CDs for backing up data on-site.
Server Backups
Data that is backed up to a local or centralized server, often utilizing protocols like FTP over a LAN to move and store data.
Enterprise Backup
A large-scale scaling solution where clients automatically move data to a dedicated backup server or drive, often using automated libraries to handle multiple streams in parallel.
Serverless Backup
A system using a dedicated backup network, such as a Storage Area Network (SAN) or fiber channel, separated from the main server network for high speed.
Full Backup
A process where every piece of data on the system is backed up; it is simple to restore but inefficient and slow to perform.
Differential Backup
A backup type that only copies files modified since the last full backup without changing the archive bit.
Incremental Backup
A backup type that only copies files changed since the last full or incremental backup and sets the archive bit to 0.
Archive Bit
A tracking bit that marks a file as not yet backed up; it is changed once the backup is completed to note the status.
Retention Period
A rotation concept referring to how far back in time an organization needs to be able to restore data from.
Electronic Vaulting
An off-site backup method by a third party where modified files are copied and transmitted to a remote location at defined periods.
Clearing
A data erasure category that protects against a keyboard attack by overwriting the data.
Purging
A secure data erasure process that protects against laboratory attacks by performing a deep erasure of hardware firmware.
Data Masking
The process of hiding original sensitive data by replacing it with realistic but different values using the same format.
Substitution
A masking technique that replaces real values with authentic-looking values from a lookup table or reference dataset.
Shuffling
A masking technique where values are randomly reordered within the same column; it is often used for financial data where order does not impact statistical meaning.
Masking Out
A technique that partially obscures a field, such as displaying only the last four digits of a credit card number while replacing the rest with asterisks.
Static Data Masking
The creation of a separate, risk-free test dataset generated from original data, allowing sharing with external vendors without exposing production data.
Dynamic Data Masking
A masking approach where sensitive information remains in the current database and is masked at the point of operation rather than needing a separate offline database.
Virtual Memory
Disk space used to extend system memory; it is slower than RAM and can pose security risks if decrypted data remains on the disk after power-off.
Virtual Machine
Software like VMware or VirtualBox that allows a single physical machine to run multiple different operating systems simultaneously.
Cloud Computing
A model combining hardware, software, and networking to deliver on-demand computing resources via the Internet or a private network.
Public Cloud
A cloud environment owned by a provider like Amazon Web Services (AWS) that manages data for billions of different customers.
Private Cloud
A cloud infrastructure dedicated to one single organization, providing high control but requiring the organization to manage its own security.
Hybrid Cloud
A combination of infrastructure types, such as using an on-premises data center for regulated data and a public cloud for non-critical services.
Infrastructure as a Service (IaaS)
A cloud service where the provider supplies virtualization, servers, storage, and networking, while the user manages the OS and applications.
Platform as a Service (PaaS)
A cloud service providing a ready-made development environment; the user manages applications and data while the provider handles the OS and hardware.
Software as a Service (SaaS)
A cloud service, such as Moodle or Google Docs, where the user has zero security responsibility for the software and uses pre-configured applications.
Hypervisor
The bridge between hardware and the operating system that sits between the host machine and the guest virtual machines.
SQL Injection
An attack that executes malicious code in a database by injecting structured query language commands to read, update, or delete records.
Cross-site Scripting (XSS)
An attack where a malicious script is posted to a site and then executed by a victim's browser to steal information like user cookies.
Phishing
An attack that uses social engineering and trust to trick users into clicking malicious links or revealing passwords.
Denial of Service (DoS)
An attack that attempts to make a system unavailable by flooding it with requests beyond its bandwidth capacity.
Data Exfiltration
The unauthorized extraction and access of confidential data from a system.