Term 151
DoS
A cyberattack that floods a target with traffic or requests to exhaust its resources, making it unavailable to legitimate users.
Acronym study
Terms 151–180 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 151
A cyberattack that floods a target with traffic or requests to exhaust its resources, making it unavailable to legitimate users.
Term 152
DNS over TLS (DoT) encrypts DNS queries using TLS, ensuring privacy and integrity between clients and resolvers.
Term 153
Due care is the legal and ethical duty of an organization to take reasonable steps to protect sensitive information and IT systems from harm.
Term 154
Due diligence is the process of systematically reviewing and verifying information, policies, and procedures to identify and manage risks before making a decision or taking an action in an IT or security context.
Term 155
Dumpster diving is the practice of searching through trash to find discarded information or equipment that can be used to compromise security.
Term 156
Dynamic ARP Inspection is a security feature that validates ARP packets on a network to prevent man-in-the-middle attacks by ensuring that only legitimate ARP messages are forwarded.
Term 157
Dynamic NAT is a method of mapping multiple private IP addresses to a pool of public IP addresses automatically, allowing many devices to share a limited number of public addresses.
Term 158
A route that is automatically learned and updated by a router using a routing protocol, rather than being manually configured.
Term 159
EAP is a flexible authentication framework used in network access control, supporting multiple methods like passwords, certificates, and tokens.
Term 160
EAPoL is a network authentication protocol that encapsulates EAP frames over IEEE 802 LANs, enabling port-based access control.
Term 161
ECC (Elliptic Curve Cryptography) is a public-key cryptographic method that uses the mathematics of elliptic curves to provide strong security with smaller key sizes than older methods like RSA.
Term 162
Endpoint Detection and Response (EDR) is a cybersecurity technology that continuously monitors endpoint devices to detect, investigate, and respond to advanced threats.
Term 163
An EDR alert is a notification generated by Endpoint Detection and Response software when it detects potentially malicious activity or an anomaly on a device like a laptop, server, or workstation.
Term 164
Elliptic curve cryptography is a type of public-key cryptography that uses the mathematics of elliptic curves to create smaller, faster, and more efficient cryptographic keys compared to older methods like RSA.
Term 165
The Encrypting File System (EFS) is a Windows feature that encrypts individual files and folders on an NTFS volume so that only authorized users can read them.
Term 166
Encryption is the process of converting readable data into a secret code to prevent unauthorized access.
Term 167
Encryption at rest is the practice of securing stored data by converting it into an unreadable format using cryptographic algorithms, so that even if physical or digital access to the storage medium is obtained, the data remains confidential.
Term 168
Encryption in transit is the process of scrambling data as it moves between two points over a network so that anyone who intercepts it cannot read it.
Term 169
An encryption key is a string of random characters used by an algorithm to lock (encrypt) and unlock (decrypt) data, ensuring only authorized parties can read it.
Term 170
Endpoint detection and response (EDR) is a cybersecurity solution that continuously monitors endpoint devices for suspicious activity and automatically responds to threats to stop attacks in real time.
Term 171
An endpoint security baseline is a set of minimum security configurations and controls applied to devices like laptops, servers, and mobile devices to protect against threats.
Term 172
An endpoint security policy is a set of rules that controls how devices like laptops, phones, and servers connect to a network and what security protections they must have to keep data safe.
Term 173
Enterprise Mobility and Security is a Microsoft 365 suite of cloud services that secures and manages mobile devices, apps, and data within an organization.
Term 174
Enterprise risk management is the systematic process of identifying, assessing, and responding to risks that could affect an organization’s ability to achieve its objectives.
Term 175
End of Life (EOL) is the date when a vendor stops selling, supporting, or patching a product, requiring migration to avoid security and compliance risks.
Term 176
EOS (End of Support) marks the date when a vendor stops providing technical assistance, patches, and firmware updates for a product.
Term 177
ESP (Encapsulating Security Payload) provides confidentiality, data origin authentication, connectionless integrity, and anti-replay protection for IP packets.
Term 178
Ethernet is a wired networking technology that connects devices like computers, printers, and servers to each other and to the internet using cables.
Term 179
Evidence handling is the process of properly collecting, preserving, documenting, and storing digital evidence to maintain its integrity and admissibility in legal or administrative proceedings.
Term 180
An evil twin attack is a rogue wireless access point that impersonates a legitimate network to intercept or manipulate user traffic.