Page |1
Comptia Security+ Sy0-601 Glossary
Questions and Correct Answers/ Latest
Update / Already Graded
ABAC
Ans: Attribute-based access control. An access control model
that grants
access to resources based on attributes assigned to subjects
and objects
AAA
Ans: Authentication, authorization, and accounting. A group of
technologies
used in remote access systems. Authentication verifies a user's
identification.
Authorization determines if a user should have access.
Accounting tracks a
user's access with logs. Sometimes called AAAs of security.
acceptable use policy (AUP
Ans: A policy defining proper system usage and the
rules of behavior for employees. It often describes the purpose
of computer
All rights reserved © 2025/ 2026 |
, Page |2
systems and networks, how users can access them, and the
responsibilities of
users when accessing the systems.
access point (AP)
Ans: A device that connects wireless clients to wireless
networks. Sometimes called wireless access point (WAP).
accounting
Ans: The process of tracking the activity of users and recording
this
activity in logs. One method of accounting is audit logs that
create an audit
trail.
ACLs
Ans: Access control lists. Lists of rules used by routers and
stateless
firewalls. These devices use the ACL to control traffic based on
networks,
subnets, IP addresses, ports, and some protocols.
All rights reserved © 2025/ 2026 |
, Page |3
active reconnaissance
Ans: A penetration testing method used to collect
information. It sends data to systems and analyzes responses to
gain
information on the target. Compare with passive
reconnaissance.
ad hoc
Ans: A connection mode used by wireless devices without an
AP. When
wireless devices connect through an AP, they are using
infrastructure mode.
administrative controls
Ans: Security controls implemented via administrative
or management methods.
AES
Ans: Advanced Encryption Standard. A strong symmetric block
cipher that
encrypts data in 128-bit blocks. AES can use key sizes of 128
bits, 192 bits, or
All rights reserved © 2025/ 2026 |
, Page |4
256 bits.
affinity
Ans: A scheduling method used with load balancers. It uses the
client's IP
address to ensure the client is redirected to the same server
during a session
aggregation switch
Ans: A switch used to connect multiple switches together into
a network. Switches connect to the aggregation switch and it
connects to a
router
agile
Ans: A software development life cycle model that focuses on
interaction
between customers, developers, and testers. Compare with
waterfall.
AH
All rights reserved © 2025/ 2026 |
Comptia Security+ Sy0-601 Glossary
Questions and Correct Answers/ Latest
Update / Already Graded
ABAC
Ans: Attribute-based access control. An access control model
that grants
access to resources based on attributes assigned to subjects
and objects
AAA
Ans: Authentication, authorization, and accounting. A group of
technologies
used in remote access systems. Authentication verifies a user's
identification.
Authorization determines if a user should have access.
Accounting tracks a
user's access with logs. Sometimes called AAAs of security.
acceptable use policy (AUP
Ans: A policy defining proper system usage and the
rules of behavior for employees. It often describes the purpose
of computer
All rights reserved © 2025/ 2026 |
, Page |2
systems and networks, how users can access them, and the
responsibilities of
users when accessing the systems.
access point (AP)
Ans: A device that connects wireless clients to wireless
networks. Sometimes called wireless access point (WAP).
accounting
Ans: The process of tracking the activity of users and recording
this
activity in logs. One method of accounting is audit logs that
create an audit
trail.
ACLs
Ans: Access control lists. Lists of rules used by routers and
stateless
firewalls. These devices use the ACL to control traffic based on
networks,
subnets, IP addresses, ports, and some protocols.
All rights reserved © 2025/ 2026 |
, Page |3
active reconnaissance
Ans: A penetration testing method used to collect
information. It sends data to systems and analyzes responses to
gain
information on the target. Compare with passive
reconnaissance.
ad hoc
Ans: A connection mode used by wireless devices without an
AP. When
wireless devices connect through an AP, they are using
infrastructure mode.
administrative controls
Ans: Security controls implemented via administrative
or management methods.
AES
Ans: Advanced Encryption Standard. A strong symmetric block
cipher that
encrypts data in 128-bit blocks. AES can use key sizes of 128
bits, 192 bits, or
All rights reserved © 2025/ 2026 |
, Page |4
256 bits.
affinity
Ans: A scheduling method used with load balancers. It uses the
client's IP
address to ensure the client is redirected to the same server
during a session
aggregation switch
Ans: A switch used to connect multiple switches together into
a network. Switches connect to the aggregation switch and it
connects to a
router
agile
Ans: A software development life cycle model that focuses on
interaction
between customers, developers, and testers. Compare with
waterfall.
AH
All rights reserved © 2025/ 2026 |
