27 terms

CIW IBA lesson 8 vocab

STUDY
PLAY
"The Right to Be Forgotten"
an argument that asks "Do people have the right to remove damaging information about themselves on the Internet so the information can be forgotten?"
authentication
the process of verifying the identity of a user who logs on to a system, or the integrity of transmitted data
digital certificate
a password-protected, encrypted data file containing message encryption, user identification and message text; used to authenticate a program or a sender's public key, or to initiate SSL sessions; must be signed by a certificate authority (CA) to be valid
digital signature
an electronic stamp added to a message that uniquely identifies its source and verifies its contents at the time of the signature
non-repudiation
the security principle of providing proof that a transaction occurred between identified parties; occurs when one party in a transaction denies that the transaction took place
encryption
a security technique designed to prevent access to information by converting it into a scramble (unreadable) form of text
decryption
the process of converting encrypted data back to its original form
key
a variable value, such as a numeric code, that uses an algorithm to encrypt and decrypt data; some applications encrypt and decrypt with the same key, whereas other applications use a pair of keys
symmetric encryption
an encryption method in which the same key is used to encrypt and decrypt a message; also known as private-key encryption
asymmetric encryption
an encryption method in which two keys (a private key and a public key) are used to encrypt and decrypt a message; also known as public-key encryption
hash encryption
an encryption method in which hashes are used to verify the integrity of transmitted messages; also known as one-way encryption
hash
a number generated by an algorithm from a text string; also known as a message digest
Secure Sockets Layer (SSL)
a protocol that provides authentication and encryption, used by most servers for secure exchanges over the Internet; superseded by Transport Layer Security (TLS)
Transport Layer Security (TLS)
a protocol based on SSL 3.0 that provides authentication and encryption, used by most servers for secure exchanges over the Internet
malware
abbreviation for malicious software; software designed to harm computer systems
virus
a malicious program that replicates itself on computer systems, usually through executable software, and causes irreparable system damage
worm
a self-replicating program or algorithm that consumes system resources
trojan
a program disguised as a harmless application that actually produces harmful results
illicit server
an application that installs hidden services on systems; consist of "client" code and "server" code that enable the attacker to monitor and control the operation of the computer infected with the server code
anti-virus software
software that scans disks and programs for known viruses and eliminates them
spyware
a software application secretly places on user's system to gather information and relat it to outside parties, usually for advertising purposes
update
a file or collection of tools that resolves system liabilities and improves software performance
patch
programming code that provides a temporary solution to a known problem, or bug
screen saver
a graphic or moving image that appears on your screen when your computer is idle
typosquatting
the unethical practice of registering domain names very similar to those of high-volume sites in hopes of receiving traffic from users seeking the high-volume site who mistakenly enter an incorrect URL in their browsers
firewall
a security barrier that controls the flow of information between the Internet and a private network; prevents outsiders from accessing an enterprise's internal network, which access the Internet indirectly through a proxy server
Internet Control Messaging Protocol (ICMP)
a subset of Internet Protocol that is most often used to determine whether a computer can communicate with the rest of the network