Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Security+ SY0-701/Acronyms/Part 13

Acronym study

SY0-701 Acronyms — Part 13 of 21

Terms 361–390 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 12Part 13 of 21Part 14 →

Term 361

Personal Identity Verification

Personal Identity Verification, or PIV, is a US federal government standard for using smart cards to securely verify a person's identity for access to physical and digital resources.

Full entry →
Full Personal Identity Verification glossary entry →

Term 362

PHI

PHI stands for Protected Health Information, which is any health data that can identify an individual and is protected by the Health Insurance Portability and Accountability Act (HIPAA).

Full entry →
Full PHI glossary entry →

Term 363

Phishing

Phishing is a type of cyber attack where criminals impersonate legitimate organizations or individuals to trick victims into revealing sensitive information such as passwords, credit card numbers, or personal data.

Full entry →
Full Phishing glossary entry →

Term 364

Piggybacking

Piggybacking is the act of an unauthorized person following an authorized person into a restricted area or system by taking advantage of their access.

Full entry →
Full Piggybacking glossary entry →

Term 365

PII

PII stands for Personally Identifiable Information, which is any data that can be used to identify a specific individual.

Full entry →
Full PII glossary entry →

Term 366

Pivoting

Pivoting is a post-exploitation technique where an attacker uses a compromised system as a relay to access other systems on a network that were not directly reachable.

Full entry →
Full Pivoting glossary entry →

Term 367

PKI

Public Key Infrastructure (PKI) is a framework of policies, hardware, software, and procedures that creates, manages, distributes, uses, stores, and revokes digital certificates to enable secure communications over networks.

Full entry →
Full PKI glossary entry →

Term 368

Playbook

A playbook is a documented set of predefined steps, scripts, and decision trees used by IT teams to automate, standardize, and respond consistently to common tasks or incidents.

Full entry →
Full Playbook glossary entry →

Term 369

PMKID attack

A PMKID attack is a wireless network attack that exploits a vulnerability in the RSN IE (Robust Security Network Information Element) of Wi-Fi Protected Access (WPA/WPA2) networks to recover the Pre-Shared Key (PSK) without needing to capture the full four-way handshake.

Full entry →
Full PMKID attack glossary entry →

Term 370

Point-to-point OSPF

Point-to-point OSPF is a network configuration where Open Shortest Path First routing protocol operates over a direct link between exactly two routers, treating the link as a simple connection without the need for a designated router or backup designated router.

Full entry →
Full Point-to-point OSPF glossary entry →

Term 371

Policy

A policy is a set of rules or guidelines that defines how an organization manages, secures, and operates its IT systems and services.

Full entry →
Full Policy glossary entry →

Term 372

Policy as code

Policy as code is the practice of representing and managing security, compliance, and governance rules as executable code, enabling automated validation and enforcement across infrastructure and software development workflows.

Full entry →
Full Policy as code glossary entry →

Term 373

Policy assignment

Policy assignment is the process of attaching a set of rules or permissions to a specific resource, user, or group so that those rules are enforced in a cloud or IT environment.

Full entry →
Full Policy assignment glossary entry →

Term 374

Policy definition

A policy definition is a formal rule or set of rules that specifies allowed or denied actions on resources within an IT environment, often used for governance, compliance, and security control.

Full entry →
Full Policy definition glossary entry →

Term 375

Policy enforcement

Policy enforcement is the process of implementing and ensuring compliance with defined security rules and configurations across an IT environment.

Full entry →
Full Policy enforcement glossary entry →

Term 376

Policy inheritance

Policy inheritance is the mechanism by which policies applied to a parent container in a hierarchical system automatically apply to all child objects within that container, unless explicitly blocked or overridden.

Full entry →
Full Policy inheritance glossary entry →

Term 377

Port security

Port security is a network switch feature that restricts which devices can connect to a port based on the device's MAC address, preventing unauthorized access.

Full entry →
Full Port security glossary entry →

Term 378

Post-exploitation

Post-exploitation is the phase of a penetration test that begins after an attacker has gained initial access to a system, focusing on maintaining access, escalating privileges, moving laterally, and achieving the test's objectives.

Full entry →
Full Post-exploitation glossary entry →

Term 379

Post-quantum cryptography

Post-quantum cryptography refers to cryptographic algorithms designed to resist the computational power of future quantum computers, which could break current public-key systems.

Full entry →
Full Post-quantum cryptography glossary entry →

Term 380

Potentially Unwanted Program

A Potentially Unwanted Program (PUP) is software that you did not intend to install and that can cause unwanted behavior on your system, such as showing excessive ads or slowing down performance.

Full entry →
Full Potentially Unwanted Program glossary entry →

Term 381

Power over Ethernet

Power over Ethernet (PoE) is a technology that allows electrical power and data to be transmitted over a single Ethernet cable to devices like IP cameras, wireless access points, and VoIP phones.

Full entry →
Full Power over Ethernet glossary entry →

Term 382

PPTP

PPTP is an outdated VPN protocol that encapsulates PPP frames in IP packets for secure remote access, but is now considered insecure.

Full entry →
Full PPTP glossary entry →

Term 383

Pre-shared Key

A secret password or passphrase that two devices share beforehand to prove they are allowed to connect and communicate securely.

Full entry →
Full Pre-shared Key glossary entry →

Term 384

Pretexting

Pretexting is a social engineering attack where the attacker fabricates a believable scenario or false identity to trick a victim into revealing sensitive information or performing an action.

Full entry →
Full Pretexting glossary entry →

Term 385

Privacy and security

Privacy and security refer to the practices and technologies used to protect sensitive data from unauthorized access while ensuring individuals' rights over their personal information are respected.

Full entry →
Full Privacy and security glossary entry →

Term 386

Privacy risk management

Privacy risk management is the ongoing process of identifying, assessing, and responding to risks that could compromise the confidentiality, integrity, or availability of personal data.

Full entry →
Full Privacy risk management glossary entry →

Term 387

Private DNS zone

A private DNS zone is a hosted DNS namespace that is only resolvable from within specific virtual networks or private environments, not from the public internet.

Full entry →
Full Private DNS zone glossary entry →

Term 388

Private Google Access

Private Google Access lets virtual machines in a Google Cloud VPC reach Google APIs and services using private IP addresses, without needing public internet access.

Full entry →
Full Private Google Access glossary entry →

Term 389

Private IP address

A private IP address is a non-internet-routable address used within a local network to identify devices and allow them to communicate with each other without direct exposure to the public internet.

Full entry →
Full Private IP address glossary entry →

Term 390

Private subnet

A private subnet is a segmented portion of a cloud or on-premises network that is not directly accessible from the public internet, used to host internal resources securely.

Full entry →
Full Private subnet glossary entry →
← Part 12Part 14 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13currentPart 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21

Study resources

All SY0-701 Acronyms→SY0-701 Practice Tests→SY0-701 Study Guide→Exam Domains→