WGU Study definitions for C795

Common Vulnerabilities and Exposures (CVE) CORRECT ANSWER Provides a naming system for describing security vulnerabilities. Common Vulnerability Scoring System (CVSS) CORRECT ANSWER provides a standardized scoring system for describing the severity of security vulnerabilities. Common Configuration Enumeration (CCE) CORRECT ANSWER provides a naming system for system configuration issues. Common Platform Enumeration (CPE) CORRECT ANSWER provides a naming system for operating systems, applications, and devices. Extensible Configuration Checklist Description Format (XCCDF) CORRECT ANSWER provides a language for specifying security checklists. Open Vulnerability and Assessment Language (OVAL) CORRECT ANSWER provides a language for describing security testing procedures. Vulnerability scans automatically CORRECT ANSWER probe systems, applications, and networks, looking for weaknesses that may be exploited by an attacker. differential backup CORRECT ANSWER A type of partial backup that involves copying all changes made since the last full backup. Thus, each new differential backup file contains the cumulative effects of all activity since the last full backup. Electronic Vaulting CORRECT ANSWER A storage scenario in which database backups are transferred to a remote site in a bulk transfer fashion. The remote location may be a dedicated alternative recovery site (such as a hot site) or simply an offsite location managed within the company or by a contractor for the purpose of maintaining backup data