LPIC 303の勉強で出てきた略語
いまさらLinuxでサーバーを頑張ってやることはまずないのだが、せっかくとった資格が失効してしまうのもなんとなく悔しいので、まぁ知識としてもっておいて損はないかというレベルで、LPIC 303の試験勉強をしている。
で、色々な略語が出てくるので、そのメモ。欧米人ほんとAcronym大好きだよね。
目次
325. 暗号化
325.1 X.509証明書と公開鍵基盤, 325.2 X509証明書
略語 | フル | 日本語 | 備考 |
ASN.1 | Abstract Syntax Notation One | | |
CA | Certification Authority | 認証局 | |
CRL | Certificate Revocation List | 証明書失効リスト | |
CSR | Certificate Signing Request | 証明書署名要求 | |
DER | Distinguished Encoding Rules | | ASN.1規格のバイナリ |
DES | Data Encryption Standard | | 暗号化方式 |
HSTS | HTTP Strict Transport Security | | |
IDEA | the International Data Encryption Algorithm | | 暗号化方式 |
IETF | Internet Engineering Task Force | | |
ITU | International Telecommunication Union | 国際通信連合 | |
OCSP | Online Certificate Status Protocol | | |
PEM | Privacy-Enhanced Mail | | DER + Base64 |
PKCS | Public-Key Cryptography Standards | | by RSA Security |
RSA | Rivest, Shamir, Adleman | | 三人の頭文字。公開鍵暗号化 |
SNI | Server Name Indication | | |
SSL | Secure Sockets Layer | | Netscape |
TLS | Transport Layer Security | | IETF |
325.3 暗号化ファイルシステム
dm-crypt | device-mapper crypt | | |
FUSE | Filesystem in Userspace | | EncFSなど |
LUKS | Linux Unified Key Setup | ラックス | |
325.4 DNSと暗号化
AD | Authentication Data bit | DNSSECの認証可否 |
DANE | DNS-based Authentication of Named Entities | |
delv | DNS Lookup and Validation utility | BIND9.10以降 |
DO | DNSSEC OK bit | |
DNSKEY | DNS Key Record | |
DS | Delegation Signer | |
EDNS | Extension mechanism for DNS | 拡張プロトコル |
IPSec | IP Security Architecture for Internet Protocol | |
KSK | Key Signing Key | |
NSEC | Next-Secure Record | |
rndc | Remote Name server Daemon Control | BIND9以降 |
RRSIG | Resource Record Digital Signature | |
TLS | Transport Layer Security | |
TLSA | TLS Association | _25._tcp.host |
TSIG | Transaction Signature | |
ZSK | Zone Signing Key | |
326 ホストセキュリティ
AD | Active Directory | |
AS | Authentication Server | Kerberos, 認証サーバ |
ASLR | Address Space Layout Landomization | |
IPA | ID/Identity, Policy, Audit | |
KDC | Key Distribution Center | Kerberos |
NSS | Name Service Switch | |
ST | Service Ticket | Kerberos |
TGS | Ticket Granting Server | Kerberos, チケット発行サーバ |
327 アクセス制御
CIFS | Common Internet FileSystem | |
DAC | Discretionary Access Control | 任意アクセス制御 |
LIPKEY | Low Infrastracture Public Key mechanism | |
MAC | Mandatory Access Control | 強制アクセス制御 |
MLS | Multi Level Security | 情報の機密性 |
NFS | Network File System | |
NTLM | NT LAN Manager authentication | |
RBAC | Role Based Access Control | |
SMACK | Simplified Mandatory Access Control Kernel | |
SMB | Server Message Block | |
SPKM | Simple Public Key Mechanism | |
TE | Type Enforcement | |
328 ネットワークセキュリティ
AAA | Authentication, Authorization, Accounting | 認証、認可、ユーザ情報の収集 |
AH | Authentication Header | |
ARP | Address Resolution Protocol | IPアドレス→MACアドレス |
DMZ | DeMilitarized Zone | 非武装地帯 |
ESP | Encapsulated Security Payload | |
IDS | Intrusion Detection System | 侵入検知システム |
IKE | Internet Key Exchange | |
IPsec | security architecture for Internet Protocol | |
L2TP | Layer 2 Tunnel Protocol | |
NASL | Nessus Attack Scripting Language | |
NDP | Neighbor Discovery Protocol | ARPのIPv6的な |
NIC | Network Interface Card | |
NVTs | Network Vulnerability Tests | 脆弱性テスト |
OpenVAS | Open Vulnerability Assessment System | |
QoS | Quality of Service | 通信品質 |
RA | Router Advertisement | ルータ広告 |
RADIUS | Remote Authentication Dial In User Service | |
RRDtool | Round Robin Database tool | |
SAD | Security Association Database | セキュアな単方向コネクションDB |
SNMP | Simple Network Management Protocol | |
SPD | Security Policy Database | |
SPI | Security Policy Index | |
TOS | Type of Service | |
参考
問題形式
- ASN.1
- CA
- CRL
- CSR
- DER
- DES
- HSTS
- IDEA
- IETF
- ITU
- OCSP
- PEM
- PKCS
- RSA
- SNI
- SSL
- TLS
- dm-crypt
- FUSE
- LUKS
- AD
- DANE
- delv
- DO
- DNSKEY
- DS
- EDNS
- IPSec
- KSK
- NSEC
- rndc
- RRSIG
- TLS
- TLSA
- TSIG
- ZSK
- AD
- AS
- ASLR
- IPA
- KDC
- NSS
- ST
- TGS
- CIFS
- DAC
- LIPKEY
- MAC
- MLS
- NFS
- NTLM
- RBAC
- SMACK
- SMB
- SPKM
- TE
- AAA
- AH
- ARP
- DMZ
- ESP
- IDS
- IKE
- IPsec
- L2TP
- NASL
- NDP
- NIC
- NVTs
- OpenVAS
- QoS
- RA
- RADIUS
- RRDtool
- SAD
- SNMP
- SPD
- SPI
- TOS
問題形式(解答)
- Abstract Syntax Notation One
- Certification Authority, 認証局
- Certificate Revolution List, 証明書失効リスト
- Certificate Signing Request, 証明書署名要求
- Distinguished Encoding Rules
- Data Encryption Standard
- HTTP Strict Transport Security
- the International Data Encryption
- Internet Engineering Task Force
- International Telecommunication Union, 国際通信連合
- Online Cerficate Status Protocol
- Privacy-Enhanced Mail
- Public-Key Cryptography Standards
- Rivest, Shamir, Adleman
- Server Name Indication
- Secure Sockets Layer
- Transport Layer Security
- device-mapper crypt
- Filesystem in Userspace
- Linux Unified Key Setup
- Authentication Data bit
- DNS-based Authentication of Named Entities
- DNS Lookup and Validation utility
- DNSSEC OK bit
- DNS Key Record
- Delegation Signer
- Extension mechanism for DNS
- IP Security Architecture for Internet Protocol
- Key Signing Key
- Next-Secure Record
- Remote Name server Daemon Control
- Resource Record Digital Signature
- Transport Layer Security
- TLS Association
- Transaction Signature
- Zone Signing Key
- Active Directory
- Authentication Server
- Address Space Layout Landomization
- ID/Identity, Policy, Audit
- Key Distribution Center
- Name Service Switch
- Serfice Ticket
- Ticket Granting Server
- Common Internet FileSystem
- Discretionary Access Control, 任意アクセス制御
- Low Infrastracture Public Key mechanism
- Mandatory Access Control, 強制アクセス制御
- Multi Level Security
- Network File System
- NT LAN Manager authentication
- Role Based Access Control
- Simplified Mandatory Access Control Kernel
- Server Message Block
- Simple Public Key Mechanism
- Type Enforcement
- Authentication, Authorization, Accounting
- Authentication Header
- Address Resulution Protocol
- DeMilitarized Zone
- Encapsulated Security Payload
- Intrusion Detection System
- Internet Key Exchange
- security architecture for Internet Protocol
- Layer 2 Tunnel Protocol
- Nessus Attack Scripting Language
- Neighbor Discovery Protocol
- Network INterface Card
- Network Vulnerability Tests
- Open Vulnerability Assessment System
- Quality of Service
- Router Advertisement
- Remote Authentication Dial In User Service
- Round Robin Database tool
- Security Association Database
- Simple Network Management Protocol
- Security Policy Database
- Security Policy Index
- Type of Service
コメント