Term 511
Public Key Infrastructure
Public Key Infrastructure is a system of policies, roles, hardware, and software that manages digital certificates and public-key encryption to secure communications and verify identities online.
Acronym study
Terms 511–540 of 754 ISC2 CC acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 511
Public Key Infrastructure is a system of policies, roles, hardware, and software that manages digital certificates and public-key encryption to secure communications and verify identities online.
Term 512
A public subnet is a segment of a cloud Virtual Private Cloud (VPC) or traditional network that has a direct route to the internet via an Internet Gateway, allowing resources within it to send and receive traffic from the public internet.
Term 513
A purple team is a collaborative approach in cybersecurity where the offensive (red) and defensive (blue) teams work together to improve an organization's security posture by sharing insights and tactics.
Term 514
Qualitative risk analysis is a subjective, scenario-based approach to prioritizing information security risks by evaluating their likelihood and potential impact using predefined scales rather than numerical calculations.
Term 515
Quantitative risk analysis is a structured process that uses numerical data and statistical methods to calculate the potential financial impact of risks on an organization's assets and projects.
Term 516
Quarantine is a security process that isolates a potentially malicious file, email, or device from the rest of the system to prevent harm while it is analyzed or remediated.
Term 517
Radio Frequency Identification (RFID) is a wireless technology that uses radio waves to automatically identify and track tags attached to objects, people, or animals without requiring direct line-of-sight.
Term 518
RADIUS is a network protocol that provides centralized authentication, authorization, and accounting management for users who connect and use a network service.
Term 519
Ransomware is a type of malicious software that encrypts a victim's files or locks them out of their system, demanding payment, usually in cryptocurrency, to restore access.
Term 520
A Rapid Security Response is an emergency software patch from Apple that fixes critical security flaws in iOS, iPadOS, macOS, and other Apple operating systems without requiring a full system update.
Term 521
RBAC is a method of restricting network access based on the roles of individual users within an organization, where permissions are assigned to roles rather than to individuals directly.
Term 522
A Reader role is a predefined set of permissions in identity and governance systems that allows a user to view resources and data but not create, modify, or delete anything.
Term 523
Records management is the systematic control of an organization's records, from creation or receipt through processing, distribution, maintenance, storage, retrieval, and disposal, ensuring integrity, compliance, and availability.
Term 524
Recovery is the process of restoring systems, data, and operations after a security incident, failure, or disaster to return to normal functioning.
Term 525
A recovery key is a unique code or physical device used to regain access to an encrypted system or account when the primary authentication method, such as a password or biometric, is lost or unavailable.
Term 526
A red team is a group of security professionals who simulate real-world attacks on an organization's systems, people, and facilities to test the effectiveness of its defenses.
Term 527
Redundancy is the practice of adding extra components or systems so that if one fails, another can take over without interruption.
Term 528
A trusted, always-active component of a computer's operating system that enforces security policies by checking every access request to files, memory, or devices before allowing it.
Term 529
A regulatory requirement is a rule issued by a government or industry authority that organizations must follow, often to protect data, ensure safety, or maintain fair practices.
Term 530
A remediation script is an automated set of instructions that detects and fixes common IT security or configuration issues without manual intervention.
Term 531
RADIUS is a network protocol that provides centralized authentication, authorization, and accounting for users trying to connect to a network service.
Term 532
A Reserved Instance is a billing discount applied to your usage of virtual machines or other compute resources when you commit to using a specific configuration for a one- or three-year term.
Term 533
Residual risk is the level of risk that remains after all security controls and countermeasures have been applied.
Term 534
A logical container in Microsoft Azure that holds related resources for an application or solution, enabling unified management, security, and billing.
Term 535
Resource hierarchy is the structured, parent-child ordering of cloud resources that governs access control, policy inheritance, and resource organization across a cloud platform.
Term 536
A resource lock is a cloud governance feature that prevents accidental deletion or modification of critical cloud resources by applying a read-only or delete-only restriction at the resource, resource group, or subscription level.
Term 537
A retention label is a tag applied to emails, documents, or files in Microsoft 365 that tells the system how long to keep the item and what to do with it when the time is up.
Term 538
A retention policy is a set of rules that determines how long an organization keeps its data and what happens to it when the retention period expires.
Term 539
Reverse engineering is the process of deconstructing a system, software, or hardware to understand its design, functionality, and operation, often for analysis, replication, or improvement.
Term 540
RFID uses radio waves to wirelessly identify and track tags attached to objects, enabling automatic data capture without line-of-sight.