Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

ISC2 Certified in Cybersecurity CC/Acronyms/Part 8

Acronym study

ISC2 CC Acronyms — Part 8 of 26

Terms 211–240 of 754 ISC2 CC acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 7Part 8 of 26Part 9 →

Term 211

DNS over TLS

DNS over TLS encrypts DNS queries using the Transport Layer Security protocol to prevent eavesdropping and tampering.

Full entry →
Full DNS over TLS glossary entry →

Term 212

DNS poisoning

DNS poisoning is a cyberattack that corrupts a DNS resolver's cache with false information, redirecting users to malicious websites without their knowledge.

Full entry →
Full DNS poisoning glossary entry →

Term 213

DNSSEC

DNSSEC adds cryptographic signatures to DNS records to ensure data authenticity and integrity, preventing cache poisoning and spoofing attacks.

Full entry →
Full DNSSEC glossary entry →

Term 214

DoH

DoH encrypts DNS queries within HTTPS traffic to prevent eavesdropping and manipulation of domain name resolution.

Full entry →
Full DoH glossary entry →

Term 215

Domain Name System Security Extensions

A set of protocols that add digital signatures to DNS data to verify its authenticity and integrity.

Full entry →
Full Domain Name System Security Extensions glossary entry →

Term 216

Domain-based Message Authentication Reporting and Conformance

DMARC is an email authentication protocol that helps prevent spoofing and phishing by verifying that incoming email really comes from the domain it claims to be from and tells receiving servers what to do if verification fails.

Full entry →
Full Domain-based Message Authentication Reporting and Conformance glossary entry →

Term 217

DomainKeys Identified Mail

DomainKeys Identified Mail is an email authentication method that allows a domain to cryptographically sign its outgoing messages so receiving servers can verify the sender's domain is legitimate and the message was not tampered with.

Full entry →
Full DomainKeys Identified Mail glossary entry →

Term 218

DoS

A cyberattack that floods a target with traffic or requests to exhaust its resources, making it unavailable to legitimate users.

Full entry →
Full DoS glossary entry →

Term 219

DoT

DNS over TLS (DoT) encrypts DNS queries using TLS, ensuring privacy and integrity between clients and resolvers.

Full entry →
Full DoT glossary entry →

Term 220

Due care

Due care is the legal and ethical duty of an organization to take reasonable steps to protect sensitive information and IT systems from harm.

Full entry →
Full Due care glossary entry →

Term 221

Due diligence

Due diligence is the process of systematically reviewing and verifying information, policies, and procedures to identify and manage risks before making a decision or taking an action in an IT or security context.

Full entry →
Full Due diligence glossary entry →

Term 222

Dumpster diving

Dumpster diving is the practice of searching through trash to find discarded information or equipment that can be used to compromise security.

Full entry →
Full Dumpster diving glossary entry →

Term 223

Dynamic ARP Inspection

Dynamic ARP Inspection is a security feature that validates ARP packets on a network to prevent man-in-the-middle attacks by ensuring that only legitimate ARP messages are forwarded.

Full entry →
Full Dynamic ARP Inspection glossary entry →

Term 224

Dynamic group

A dynamic group is a group in Microsoft Entra ID (Azure AD) whose membership is automatically updated based on user or device attributes, rather than being manually assigned.

Full entry →
Full Dynamic group glossary entry →

Term 225

Dynamic NAT

Dynamic NAT is a method of mapping multiple private IP addresses to a pool of public IP addresses automatically, allowing many devices to share a limited number of public addresses.

Full entry →
Full Dynamic NAT glossary entry →

Term 226

EAL

EAL, or Evaluation Assurance Level, is a numeric rating from 1 to 7 that measures how thoroughly a computer product has been tested for security, with higher numbers indicating more rigorous testing.

Full entry →
Full EAL glossary entry →

Term 227

EAP

EAP is a flexible authentication framework used in network access control, supporting multiple methods like passwords, certificates, and tokens.

Full entry →
Full EAP glossary entry →

Term 228

EAPoL

EAPoL is a network authentication protocol that encapsulates EAP frames over IEEE 802 LANs, enabling port-based access control.

Full entry →
Full EAPoL glossary entry →

Term 229

eDiscovery

eDiscovery is the process of identifying, collecting, and producing electronic information for legal cases or investigations.

Full entry →
Full eDiscovery glossary entry →

Term 230

EDR

Endpoint Detection and Response (EDR) is a cybersecurity technology that continuously monitors endpoint devices to detect, investigate, and respond to advanced threats.

Full entry →
Full EDR glossary entry →

Term 231

EDR alert

An EDR alert is a notification generated by Endpoint Detection and Response software when it detects potentially malicious activity or an anomaly on a device like a laptop, server, or workstation.

Full entry →
Full EDR alert glossary entry →

Term 232

enable secret

A Cisco IOS command that sets a password to protect privileged EXEC mode (enable mode) using a strong, one-way cryptographic hash (MD5 by default), replacing the weaker 'enable password' command.

Full entry →
Full enable secret glossary entry →

Term 233

Encrypting File System

The Encrypting File System (EFS) is a Windows feature that encrypts individual files and folders on an NTFS volume so that only authorized users can read them.

Full entry →
Full Encrypting File System glossary entry →

Term 234

Encryption

Encryption is the process of converting readable data into a secret code to prevent unauthorized access.

Full entry →
Full Encryption glossary entry →

Term 235

Encryption at rest

Encryption at rest is the practice of securing stored data by converting it into an unreadable format using cryptographic algorithms, so that even if physical or digital access to the storage medium is obtained, the data remains confidential.

Full entry →
Full Encryption at rest glossary entry →

Term 236

Encryption in transit

Encryption in transit is the process of scrambling data as it moves between two points over a network so that anyone who intercepts it cannot read it.

Full entry →
Full Encryption in transit glossary entry →

Term 237

Encryption key

An encryption key is a string of random characters used by an algorithm to lock (encrypt) and unlock (decrypt) data, ensuring only authorized parties can read it.

Full entry →
Full Encryption key glossary entry →

Term 238

End-of-life

End-of-life means a product or service is no longer being sold, updated, or supported by the manufacturer, and users should plan to upgrade or replace it.

Full entry →
Full End-of-life glossary entry →

Term 239

End-of-support

End-of-support means a company will no longer provide updates, security patches, or technical help for a product, leaving it open to risks.

Full entry →
Full End-of-support glossary entry →

Term 240

End-user License Agreement

An End-user License Agreement (EULA) is a legal contract between a software creator and the person who installs or uses the software, outlining what the user can and cannot do with it.

Full entry →
Full End-user License Agreement glossary entry →
← Part 7Part 9 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8currentPart 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26

Study resources

All ISC2 CC Acronyms→ISC2 CC Practice Tests→ISC2 CC Study Guide→Exam Domains→