Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 8

Acronym study

SC-900 Acronyms — Part 8 of 29

Terms 211–240 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 7Part 8 of 29Part 9 →

Term 211

Detective control

A detective control is a security measure that identifies and reports unwanted or suspicious activity after it has already occurred.

Full entry →
Full Detective control glossary entry →

Term 212

Deterrent control

A deterrent control is a security measure designed to discourage potential attackers from attempting to breach a system or commit a violation, relying on the perceived threat of consequences.

Full entry →
Full Deterrent control glossary entry →

Term 213

Device compliance

Device compliance is the process of ensuring that a device meets an organization's security and configuration policies before it can access network resources.

Full entry →
Full Device compliance glossary entry →

Term 214

Device risk

Device risk is the chance that a computer, phone, or other endpoint could cause a security problem or data leak because it is not properly managed or protected.

Full entry →
Full Device risk glossary entry →

Term 215

DevSecOps

DevSecOps is a software development practice that integrates security into every phase of the DevOps lifecycle, making security a shared responsibility from the start.

Full entry →
Full DevSecOps glossary entry →

Term 216

DHCP pool

A DHCP pool is a reserved set of IP addresses that a DHCP server can assign to devices on a network automatically when they request a connection.

Full entry →
Full DHCP pool glossary entry →

Term 217

DHCP server

A DHCP server is a network device or service that automatically assigns IP addresses and other network configuration parameters to devices on a network, eliminating the need for manual configuration.

Full entry →
Full DHCP server glossary entry →

Term 218

DHCP snooping

DHCP snooping is a network security feature that filters untrusted DHCP messages to prevent rogue DHCP servers from giving out false IP addresses.

Full entry →
Full DHCP snooping glossary entry →

Term 219

Diamond model

The Diamond model is a framework for analyzing cybersecurity intrusions by examining four key components: adversary, capability, infrastructure, and victim.

Full entry →
Full Diamond model glossary entry →

Term 220

Digital certificate

A digital certificate is an electronic document that verifies the identity of a person, device, or website and enables secure encrypted communication over the internet.

Full entry →
Full Digital certificate glossary entry →

Term 221

Digital identity

A digital identity is the online representation of a person, device, or entity used to authenticate and authorize access to digital resources.

Full entry →
Full Digital identity glossary entry →

Term 222

Digital Rights Management

Digital Rights Management (DRM) is a set of technologies used to control how digital content like music, movies, ebooks, or software is accessed, copied, or shared.

Full entry →
Full Digital Rights Management glossary entry →

Term 223

Direct Connect

AWS Direct Connect is a cloud service that lets you create a dedicated private network link from your on-premises data center to AWS, bypassing the public internet for more consistent and secure connectivity.

Full entry →
Full Direct Connect glossary entry →

Term 224

Disaster recovery plan

A Disaster Recovery Plan (DRP) is a documented, structured approach that outlines how an organization can quickly resume critical IT systems and operations after a disruptive event.

Full entry →
Full Disaster recovery plan glossary entry →

Term 225

Disk encryption

Disk encryption is the process of converting data on a storage device into a coded form that can only be read with the correct decryption key, protecting it from unauthorized access.

Full entry →
Full Disk encryption glossary entry →

Term 226

Distributed Denial-of-service

A cyberattack where many compromised computers flood a target system with traffic, making it unavailable to legitimate users.

Full entry →
Full Distributed Denial-of-service glossary entry →

Term 227

DLP

Data Loss Prevention — security technology that detects and prevents unauthorised transmission of sensitive data outside an organisation.

Full entry →
Full DLP glossary entry →

Term 228

DLP policy

A DLP policy is a set of rules that an organization uses to prevent sensitive data from being lost, stolen, or accidentally exposed, whether it is in use, in motion, or at rest.

Full entry →
Full DLP policy glossary entry →

Term 229

DMZ

A DMZ (demilitarized zone) is a network segment that sits between an internal private network and the public internet, hosting publicly accessible services while keeping the internal network isolated.

Full entry →
Full DMZ glossary entry →

Term 230

DNS

DNS is the system that translates human-friendly domain names like example.com into machine-readable IP addresses so computers can find each other on a network.

Full entry →
Full DNS glossary entry →

Term 231

DNS log

A DNS log is a record of all Domain Name System queries and responses that pass through a server, providing a trail of which domains were requested, by whom, and when.

Full entry →
Full DNS log glossary entry →

Term 232

DNS over HTTPS

DNS over HTTPS is a protocol that sends Domain Name System queries and responses over the encrypted HTTPS protocol to protect user privacy and prevent tampering.

Full entry →
Full DNS over HTTPS glossary entry →

Term 233

DNS over TLS

DNS over TLS encrypts DNS queries using the Transport Layer Security protocol to prevent eavesdropping and tampering.

Full entry →
Full DNS over TLS glossary entry →

Term 234

DNS poisoning

DNS poisoning is a cyberattack that corrupts a DNS resolver's cache with false information, redirecting users to malicious websites without their knowledge.

Full entry →
Full DNS poisoning glossary entry →

Term 235

DNS record

A DNS record is a set of instructions stored on a DNS server that tells clients how to interact with a domain, most commonly by mapping a human-readable domain name to an IP address.

Full entry →
Full DNS record glossary entry →

Term 236

DNSSEC

DNSSEC adds cryptographic signatures to DNS records to ensure data authenticity and integrity, preventing cache poisoning and spoofing attacks.

Full entry →
Full DNSSEC glossary entry →

Term 237

DoH

DoH encrypts DNS queries within HTTPS traffic to prevent eavesdropping and manipulation of domain name resolution.

Full entry →
Full DoH glossary entry →

Term 238

Domain Name System Security Extensions

A set of protocols that add digital signatures to DNS data to verify its authenticity and integrity.

Full entry →
Full Domain Name System Security Extensions glossary entry →

Term 239

Domain verification

Domain verification is the process of proving that you own or control a specific domain name so that you can use it with a service like Microsoft 365.

Full entry →
Full Domain verification glossary entry →

Term 240

Domain-based Message Authentication Reporting and Conformance

DMARC is an email authentication protocol that helps prevent spoofing and phishing by verifying that incoming email really comes from the domain it claims to be from and tells receiving servers what to do if verification fails.

Full entry →
Full Domain-based Message Authentication Reporting and Conformance glossary entry →
← Part 7Part 9 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8currentPart 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→