Term 181
End-of-support
End-of-support means a company will no longer provide updates, security patches, or technical help for a product, leaving it open to risks.
Acronym study
Terms 181–210 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 181
End-of-support means a company will no longer provide updates, security patches, or technical help for a product, leaving it open to risks.
Term 182
An End-user License Agreement (EULA) is a legal contract between a software creator and the person who installs or uses the software, outlining what the user can and cannot do with it.
Term 183
An endpoint security baseline is a set of minimum security configurations and controls applied to devices like laptops, servers, and mobile devices to protect against threats.
Term 184
An endpoint security policy is a set of rules that controls how devices like laptops, phones, and servers connect to a network and what security protections they must have to keep data safe.
Term 185
Endpoint telemetry is the automated collection and transmission of security-relevant data from devices like laptops, servers, and phones to a central monitoring system for threat detection and analysis.
Term 186
Enterprise Mobility and Security is a Microsoft 365 suite of cloud services that secures and manages mobile devices, apps, and data within an organization.
Term 187
Enterprise risk management is the systematic process of identifying, assessing, and responding to risks that could affect an organization’s ability to achieve its objectives.
Term 188
Eradication is the phase in incident response where the root cause of a security breach is completely removed from the system to prevent the attack from happening again.
Term 189
An error budget is the maximum amount of acceptable downtime or failure a system can experience within a specified period while still meeting its Service Level Objective (SLO).
Term 190
An escalation path is a predefined process that determines how an incident or issue is raised to higher-level support or management when it cannot be resolved at the current level.
Term 191
An event is any identifiable occurrence or action in a computer system, network, or application that can be logged, monitored, or analyzed for security or operational purposes.
Term 192
An event log is a file or record that stores a chronological list of events, changes, errors, or security incidents occurring on a computer system or network.
Term 193
Evidence preservation is the process of protecting and maintaining digital data in its original state so it can be used in legal or investigative proceedings without being altered or corrupted.
Term 194
An exam domain is a major topic area or category of knowledge that a certification exam tests, like a chapter in a study guide.
Term 195
An exploit is a piece of code, a sequence of commands, or a technique that takes advantage of a vulnerability in a system or software to cause unintended behavior, often for malicious purposes.
Term 196
Exploitability is a measure of how easy or difficult it is for an attacker to take advantage of a vulnerability in a system or software.
Term 197
Exploitation is the act of using a vulnerability or weakness in a system, network, or application to gain unauthorized access, cause damage, or extract data.
Term 198
Exposure factor is the percentage of an asset's value that would be lost if a specific threat event occurs, used to calculate the single loss expectancy in risk analysis.
Term 199
Failover is the automatic switching to a backup system when the primary system fails, ensuring continuous operation and minimal downtime.
Term 200
A false negative is when a security tool fails to detect a real threat, mistakenly treating it as harmless.
Term 201
A false positive is an alert or result that indicates a security threat or vulnerability exists when in fact there is no real issue.
Term 202
A false positive validation occurs when a security tool incorrectly identifies a legitimate activity, file, or user as a threat.
Term 203
Feature telemetry is the automatic collection and transmission of usage data about specific software features to help organizations understand how those features are being used, identify issues, and improve performance.
Term 204
A feature update policy is a set of rules that controls how and when new features and capabilities are deployed to software, ensuring consistency, security, and minimal disruption across an organization.
Term 205
A feedback loop is a process where the output of a system is returned as input to guide and adjust future behavior, helping maintain stability or improve performance.
Term 206
Fileless malware is a type of malicious activity that uses legitimate system tools and memory to execute attacks, leaving no traditional file on the hard drive.
Term 207
A firewall is a network security system that monitors and controls incoming and outgoing traffic based on predetermined security rules to protect trusted internal networks from untrusted external networks.
Term 208
A firewall log is a record of network traffic that a firewall has allowed or denied, used by IT professionals to monitor security events and troubleshoot connectivity issues.
Term 209
A firewall rule is a set of conditions that tells a firewall which network traffic to allow or block based on attributes like source, destination, port, and protocol.
Term 210
Full packet capture is the process of recording every single data packet that travels across a network segment, including headers and payload, for later analysis.