Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Security+ SY0-701/Acronyms/Part 5

Acronym study

SY0-701 Acronyms — Part 5 of 21

Terms 121–150 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 4Part 5 of 21Part 6 →

Term 121

Designated Router

A router elected in an OSPF multi-access network to manage link-state updates and reduce routing protocol traffic.

Full entry →
Full Designated Router glossary entry →

Term 122

Device compliance

Device compliance is the process of ensuring that a device meets an organization's security and configuration policies before it can access network resources.

Full entry →
Full Device compliance glossary entry →

Term 123

Device risk

Device risk is the chance that a computer, phone, or other endpoint could cause a security problem or data leak because it is not properly managed or protected.

Full entry →
Full Device risk glossary entry →

Term 124

DHCP

Dynamic Host Configuration Protocol (DHCP) automatically assigns IP addresses and network settings to devices on a network, so they can communicate without manual configuration.

Full entry →
Full DHCP glossary entry →

Term 125

DHCP pool

A DHCP pool is a reserved set of IP addresses that a DHCP server can assign to devices on a network automatically when they request a connection.

Full entry →
Full DHCP pool glossary entry →

Term 126

DHCP relay

A network device or feature that forwards DHCP broadcast messages between clients and servers on different subnets so that IP address assignment works across multiple network segments without a separate DHCP server on each one.

Full entry →
Full DHCP relay glossary entry →

Term 127

DHCP server

A DHCP server is a network device or service that automatically assigns IP addresses and other network configuration parameters to devices on a network, eliminating the need for manual configuration.

Full entry →
Full DHCP server glossary entry →

Term 128

DHCP snooping

DHCP snooping is a network security feature that filters untrusted DHCP messages to prevent rogue DHCP servers from giving out false IP addresses.

Full entry →
Full DHCP snooping glossary entry →

Term 129

Dictionary attack

A dictionary attack is a cyberattack method where an attacker tries to break into a system by rapidly testing thousands of common passwords or passphrases from a precompiled list.

Full entry →
Full Dictionary attack glossary entry →

Term 130

Diffie-Hellman

Diffie-Hellman is a cryptographic protocol that allows two parties to securely exchange a shared secret key over an untrusted network like the internet.

Full entry →
Full Diffie-Hellman glossary entry →

Term 131

Digital certificate

A digital certificate is an electronic document that verifies the identity of a person, device, or website and enables secure encrypted communication over the internet.

Full entry →
Full Digital certificate glossary entry →

Term 132

Digital signature

A cryptographic technique used to verify the authenticity and integrity of a digital message or document, ensuring it came from the claimed sender and was not altered.

Full entry →
Full Digital signature glossary entry →

Term 133

Disaster recovery

Disaster recovery is a set of policies, procedures, and tools that help an organization restore critical IT systems and data after a disruptive event.

Full entry →
Full Disaster recovery glossary entry →

Term 134

Disk encryption

Disk encryption is the process of converting data on a storage device into a coded form that can only be read with the correct decryption key, protecting it from unauthorized access.

Full entry →
Full Disk encryption glossary entry →

Term 135

Distributed Denial-of-service

A cyberattack where many compromised computers flood a target system with traffic, making it unavailable to legitimate users.

Full entry →
Full Distributed Denial-of-service glossary entry →

Term 136

DLP

Data Loss Prevention — security technology that detects and prevents unauthorised transmission of sensitive data outside an organisation.

Full entry →
Full DLP glossary entry →

Term 137

DLP policy

A DLP policy is a set of rules that an organization uses to prevent sensitive data from being lost, stolen, or accidentally exposed, whether it is in use, in motion, or at rest.

Full entry →
Full DLP policy glossary entry →

Term 138

DMZ

A DMZ (demilitarized zone) is a network segment that sits between an internal private network and the public internet, hosting publicly accessible services while keeping the internal network isolated.

Full entry →
Full DMZ glossary entry →

Term 139

DNS

DNS is the system that translates human-friendly domain names like example.com into machine-readable IP addresses so computers can find each other on a network.

Full entry →
Full DNS glossary entry →

Term 140

DNS log

A DNS log is a record of all Domain Name System queries and responses that pass through a server, providing a trail of which domains were requested, by whom, and when.

Full entry →
Full DNS log glossary entry →

Term 141

DNS over HTTPS

DNS over HTTPS is a protocol that sends Domain Name System queries and responses over the encrypted HTTPS protocol to protect user privacy and prevent tampering.

Full entry →
Full DNS over HTTPS glossary entry →

Term 142

DNS over TLS

DNS over TLS encrypts DNS queries using the Transport Layer Security protocol to prevent eavesdropping and tampering.

Full entry →
Full DNS over TLS glossary entry →

Term 143

DNS poisoning

DNS poisoning is a cyberattack that corrupts a DNS resolver's cache with false information, redirecting users to malicious websites without their knowledge.

Full entry →
Full DNS poisoning glossary entry →

Term 144

DNS record

A DNS record is a set of instructions stored on a DNS server that tells clients how to interact with a domain, most commonly by mapping a human-readable domain name to an IP address.

Full entry →
Full DNS record glossary entry →

Term 145

DNS zone

A DNS zone is a distinct part of the global Domain Name System (DNS) namespace that is delegated to a specific administrator or organization for management, containing resource records for a domain.

Full entry →
Full DNS zone glossary entry →

Term 146

DNSSEC

DNSSEC adds cryptographic signatures to DNS records to ensure data authenticity and integrity, preventing cache poisoning and spoofing attacks.

Full entry →
Full DNSSEC glossary entry →

Term 147

DoH

DoH encrypts DNS queries within HTTPS traffic to prevent eavesdropping and manipulation of domain name resolution.

Full entry →
Full DoH glossary entry →

Term 148

Domain Name System Security Extensions

A set of protocols that add digital signatures to DNS data to verify its authenticity and integrity.

Full entry →
Full Domain Name System Security Extensions glossary entry →

Term 149

Domain-based Message Authentication Reporting and Conformance

DMARC is an email authentication protocol that helps prevent spoofing and phishing by verifying that incoming email really comes from the domain it claims to be from and tells receiving servers what to do if verification fails.

Full entry →
Full Domain-based Message Authentication Reporting and Conformance glossary entry →

Term 150

DomainKeys Identified Mail

DomainKeys Identified Mail is an email authentication method that allows a domain to cryptographically sign its outgoing messages so receiving servers can verify the sender's domain is legitimate and the message was not tampered with.

Full entry →
Full DomainKeys Identified Mail glossary entry →
← Part 4Part 6 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5currentPart 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21

Study resources

All SY0-701 Acronyms→SY0-701 Practice Tests→SY0-701 Study Guide→Exam Domains→