reference
Glossary
Cybersecurity jargon, in plain words. Every term that shows up in the checklist, defined in one sentence.
- Add-ons store
- Online platform for downloading and installing extensions or software add-ons.
- Adware
- Software that displays advertisements on the user's computer, often without their consent.
- AES-256
- Advanced encryption standard using 256-bit keys to secure data.
- Antimalware
- Software designed to detect, prevent, and remove malicious software.
- Antivirus
- Software designed to detect, prevent, and remove computer viruses and other types of malicious software.
- App Store
- Digital distribution platform for mobile applications developed by Apple.
- Availability (of data)
- Principle ensuring that information is accessible and usable on demand by authorized persons.
- BitLocker
- Disk encryption technology built into certain versions of Windows to protect data.
- CIA Triad
- Information security principle based on the confidentiality, integrity, and availability of data.
- CNIL
- National Commission on Informatics and Liberty, the French authority for personal data protection.
- Confidentiality (of data)
- Principle aimed at limiting access to information to authorized persons.
- Cookie
- Small file stored on the user's computer by a website to record specific information.
- Cryptocurrency
- Digital currency that uses cryptography to secure transactions and control the creation of new units.
- Cyberbullying
- Online harassment in which individuals are targeted by threats, negative comments, or the sharing of personal content without consent.
- Cybersecurity
- Practices, technologies, and processes designed to protect networks, computers, programs, and data against attacks.
- Dark Web
- Part of the Web accessible only through specific software, enabling anonymity and often associated with illegal activities.
- DDoS
- Distributed denial-of-service attack aimed at making a machine or network unavailable by overloading the system with requests.
- Deep Web
- Part of the Web not indexed by traditional search engines, including databases and secure online services.
- DNS
- Domain Name System that translates human-readable domain names into IP addresses.
- DNS filter
- Security tool that blocks access to malicious or unwanted websites by filtering DNS requests.
- DPO
- Data Protection Officer, responsible for an organization's compliance with data protection laws.
- Encryption
- Process of transforming information into code to secure access to it.
- Entropy (password)
- Measure of the randomness or unpredictability of a password, indicating its resistance to brute-force attacks.
- FileVault
- Disk encryption feature built into macOS to protect stored data.
- Firewall
- Network security device designed to block unauthorized access while allowing authorized communications.
- GDPR
- General Data Protection Regulation, European legislation aimed at protecting the personal data of EU citizens.
- Hacker
- Person who uses their computer skills to explore, exploit, or secure computer systems.
- Hash (password)
- Encryption function that transforms a password into a fixed string of characters, used to secure password storage.
- HTTP
- Hypertext Transfer Protocol, the foundation of data communication on the World Wide Web.
- HTTPS
- Secure version of HTTP that uses SSL/TLS encryption to secure transmitted data.
- ICANN
- Internet Corporation for Assigned Names and Numbers, the organization overseeing the allocation of unique identifiers on the Internet, including IP addresses and domain names, to ensure the proper functioning and stability of the global network.
- Integrity (of data)
- Assurance that information is accurate and complete and has not been modified in an unauthorized manner.
- IoT / Connected devices
- Everyday devices and objects connected to the Internet, enabling remote interaction and data sharing.
- IP address
- Numerical identifier assigned to each device connected to a computer network using the Internet Protocol.
- Juice jacking
- Attack in which a public USB charger is used to install malicious software on a device or to steal data.
- LAN
- Local area network, a computer network that connects computers within a limited geographic area, such as a home or office.
- macOS
- Operating system developed by Apple for Macintosh computers.
- Malware
- Malicious software designed to damage, disrupt, or gain unauthorized access to computer systems.
- Man in the Middle (MITM)
- Attack in which the attacker intercepts and possibly alters communications between two parties without their consent.
- NFC
- Near Field Communication, a technology enabling contactless data exchange over short distances.
- Norton
- Brand of computer security software, notably known for its antivirus solutions.
- Open source
- Software whose source code is accessible to the public, allowing free modification and distribution.
- OpenSSL
- Open-source implementation of the SSL and TLS protocols for encrypting communications on the Internet.
- Phishing
- Online fraud technique aimed at obtaining personal information by impersonating a trusted entity.
- Pop-up
- Advertising or informational window that opens automatically on the user's screen while browsing the Internet.
- Ransomware
- Malicious software that encrypts the victim's files and demands a ransom to decrypt them.
- Skimming
- Fraud technique in which devices are used on payment terminals to steal bank card information.
- Smishing
- Variant of phishing involving the sending of fraudulent text messages to obtain personal or financial information.
- Social engineering
- Psychological manipulation techniques used to obtain confidential information or unauthorized access.
- Spear phishing
- Targeted phishing attack that aims at specific individuals or organizations to steal information or install malicious software.
- Spoofing
- Technique of falsifying a sender's identity in electronic communications to deceive the recipient.
- SSL (Secure Sockets Layer)
- Protocol for securing exchanges on the Internet, the predecessor of TLS.
- TLS (Transport Layer Security)
- Protocol for securing exchanges on the Internet, the successor to SSL, providing secure communications.
- Typosquatting
- Malicious practice of registering domain names resembling popular brands in order to deceive users.
- Vishing (voice phishing)
- Scam technique involving the use of voice communications, such as phone calls, to extract sensitive or personal information.
- VPN (Virtual Private Network)
- Virtual private network allowing a secure and encrypted connection to be created over a less secure network, such as the Internet.
- Vulnerability
- Weakness in a computer system that can be exploited by a threat to breach the system's security.