Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Security+ SY0-701/Acronyms/Part 1

Acronym study

SY0-701 Acronyms — Part 1 of 21

Terms 1–30 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

Part 1 of 21Part 2 →

Term 1

2FA

Two-factor authentication (2FA) is a security method that requires two different types of proof before granting access to an account or system.

Full entry →
Full 2FA glossary entry →

Term 2

802.1X

802.1X is a network access control standard that authenticates devices before they are allowed to connect to a wired or wireless network.

Full entry →
Full 802.1X glossary entry →

Term 3

AAA

AAA (Authentication, Authorization, and Accounting) is a security framework that controls who can access a network, what they are allowed to do, and tracks what they did.

Full entry →
Full AAA glossary entry →

Term 4

ABAC

ABAC (Attribute-Based Access Control) is a method of controlling access to resources by evaluating a set of attributes (such as user role, time, location, and device) against policy rules, rather than using static roles or identities.

Full entry →
Full ABAC glossary entry →

Term 5

Acceptable use policy

An acceptable use policy is a set of rules that an organization creates to define how employees and other users may use its computer systems, networks, and data.

Full entry →
Full Acceptable use policy glossary entry →

Term 6

Access control

Access control is the security practice of determining who or what is allowed to view, use, or enter a resource, and under what conditions.

Full entry →
Full Access control glossary entry →

Term 7

Access Control List

An Access Control List is a set of rules that decides which traffic is allowed or denied entry to a network or device.

Full entry →
Full Access Control List glossary entry →

Term 8

Access key

An access key is a unique identifier and secret code pair used to authenticate requests to cloud storage services, ensuring only authorized users or applications can access data.

Full entry →
Full Access key glossary entry →

Term 9

Access port

An access port is a switch port that connects to a single end device, like a computer or printer, and carries traffic for only one VLAN.

Full entry →
Full Access port glossary entry →

Term 10

Access review

An access review is a periodic audit process where administrators check and confirm which users have permissions to what resources, ensuring only authorized people retain access.

Full entry →
Full Access review glossary entry →

Term 11

Access token

A digital key that a computer system gives you to prove your identity and grant you permission to access specific resources or perform actions.

Full entry →
Full Access token glossary entry →

Term 12

Account lifecycle

The account lifecycle is the complete process of creating, managing, maintaining, and eventually removing a user account in an IT system.

Full entry →
Full Account lifecycle glossary entry →

Term 13

Accounting

Accounting in IT identity and access management is the process of tracking and logging what authenticated users do on a system or network.

Full entry →
Full Accounting glossary entry →

Term 14

ACL

An Access Control List is a set of rules that determines who or what can access specific network resources or data.

Full entry →
Full ACL glossary entry →

Term 15

Active reconnaissance

Active reconnaissance is the process of directly interacting with a target system or network to gather information, often through scanning and probing.

Full entry →
Full Active reconnaissance glossary entry →

Term 16

Advanced Encryption Standard

Advanced Encryption Standard (AES) is a widely used symmetric encryption algorithm that protects electronic data by converting readable information into a scrambled format that can only be unscrambled with the correct secret key.

Full entry →
Full Advanced Encryption Standard glossary entry →

Term 17

Adversary simulation

A cybersecurity exercise where a team mimics the tactics, techniques, and procedures of a real attacker to test an organization's defenses without causing actual harm.

Full entry →
Full Adversary simulation glossary entry →

Term 18

Adware

Adware is software that automatically displays or downloads unwanted advertisements, often bundled with free programs, and may track user behavior without clear consent.

Full entry →
Full Adware glossary entry →

Term 19

AES

AES is a fast and secure encryption standard used worldwide to protect sensitive data by scrambling it so only authorized parties can read it.

Full entry →
Full AES glossary entry →

Term 20

AH

AH (Authentication Header) is an IPsec protocol that provides connectionless integrity, data origin authentication, and anti-replay protection for IP packets.

Full entry →
Full AH glossary entry →

Term 21

AH

AH (Authentication Header) is an IPsec protocol that provides connectionless integrity, data origin authentication, and anti-replay protection for IP packets.

Full entry →
Full AH glossary entry →

Term 22

Alerting policy

An alerting policy is a set of rules that defines when to send notifications about a system condition that needs attention.

Full entry →
Full Alerting policy glossary entry →

Term 23

Anti-malware

Anti-malware is software that detects, prevents, and removes malicious software from computers, networks, and devices.

Full entry →
Full Anti-malware glossary entry →

Term 24

Anti-malware policy

An anti-malware policy is a set of rules and procedures that an organization enforces to prevent, detect, and remove malicious software from its computers and networks.

Full entry →
Full Anti-malware policy glossary entry →

Term 25

Anti-phishing policy

An anti-phishing policy is a set of rules and technical controls that organizations use to detect, block, and respond to email or message-based attacks that trick users into revealing sensitive information.

Full entry →
Full Anti-phishing policy glossary entry →

Term 26

Anti-spam policy

An anti-spam policy is a set of rules and filters used by email systems to automatically detect and block unwanted, unsolicited, or harmful messages before they reach a user's inbox.

Full entry →
Full Anti-spam policy glossary entry →

Term 27

API security

API security is the practice of protecting application programming interfaces from attacks by ensuring only authorized users and applications can access data and functions.

Full entry →
Full API security glossary entry →

Term 28

App protection policy

An app protection policy is a set of rules that controls how data is handled and secured within mobile applications, ensuring corporate information stays safe even on personal devices.

Full entry →
Full App protection policy glossary entry →

Term 29

AppArmor

AppArmor is a Linux kernel security module that restricts programs to a predefined set of resources using mandatory access control (MAC) policies.

Full entry →
Full AppArmor glossary entry →

Term 30

Application Gateway

An Application Gateway is a network device or cloud service that manages and secures traffic between users and web applications by applying rules, routing requests, and offloading tasks like SSL encryption.

Full entry →
Full Application Gateway glossary entry →
Part 2 →

Acronym parts

Part 1currentPart 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21

Study resources

All SY0-701 Acronyms→SY0-701 Practice Tests→SY0-701 Study Guide→Exam Domains→