reference

Glossary

Cybersecurity jargon, in plain words. Every term that shows up in the checklist, defined in one sentence.

Add-ons store
Online platform for downloading and installing extensions or software add-ons.
Adware
Software that displays advertisements on the user's computer, often without their consent.
AES-256
Advanced encryption standard using 256-bit keys to secure data.
Antimalware
Software designed to detect, prevent, and remove malicious software.
Antivirus
Software designed to detect, prevent, and remove computer viruses and other types of malicious software.
App Store
Digital distribution platform for mobile applications developed by Apple.
Availability (of data)
Principle ensuring that information is accessible and usable on demand by authorized persons.
BitLocker
Disk encryption technology built into certain versions of Windows to protect data.
CIA Triad
Information security principle based on the confidentiality, integrity, and availability of data.
CNIL
National Commission on Informatics and Liberty, the French authority for personal data protection.
Confidentiality (of data)
Principle aimed at limiting access to information to authorized persons.
Cookie
Small file stored on the user's computer by a website to record specific information.
Cryptocurrency
Digital currency that uses cryptography to secure transactions and control the creation of new units.
Cyberbullying
Online harassment in which individuals are targeted by threats, negative comments, or the sharing of personal content without consent.
Cybersecurity
Practices, technologies, and processes designed to protect networks, computers, programs, and data against attacks.
Dark Web
Part of the Web accessible only through specific software, enabling anonymity and often associated with illegal activities.
DDoS
Distributed denial-of-service attack aimed at making a machine or network unavailable by overloading the system with requests.
Deep Web
Part of the Web not indexed by traditional search engines, including databases and secure online services.
DNS
Domain Name System that translates human-readable domain names into IP addresses.
DNS filter
Security tool that blocks access to malicious or unwanted websites by filtering DNS requests.
DPO
Data Protection Officer, responsible for an organization's compliance with data protection laws.
Encryption
Process of transforming information into code to secure access to it.
Entropy (password)
Measure of the randomness or unpredictability of a password, indicating its resistance to brute-force attacks.
FileVault
Disk encryption feature built into macOS to protect stored data.
Firewall
Network security device designed to block unauthorized access while allowing authorized communications.
GDPR
General Data Protection Regulation, European legislation aimed at protecting the personal data of EU citizens.
Hacker
Person who uses their computer skills to explore, exploit, or secure computer systems.
Hash (password)
Encryption function that transforms a password into a fixed string of characters, used to secure password storage.
HTTP
Hypertext Transfer Protocol, the foundation of data communication on the World Wide Web.
HTTPS
Secure version of HTTP that uses SSL/TLS encryption to secure transmitted data.
ICANN
Internet Corporation for Assigned Names and Numbers, the organization overseeing the allocation of unique identifiers on the Internet, including IP addresses and domain names, to ensure the proper functioning and stability of the global network.
Integrity (of data)
Assurance that information is accurate and complete and has not been modified in an unauthorized manner.
IoT / Connected devices
Everyday devices and objects connected to the Internet, enabling remote interaction and data sharing.
IP address
Numerical identifier assigned to each device connected to a computer network using the Internet Protocol.
Juice jacking
Attack in which a public USB charger is used to install malicious software on a device or to steal data.
LAN
Local area network, a computer network that connects computers within a limited geographic area, such as a home or office.
macOS
Operating system developed by Apple for Macintosh computers.
Malware
Malicious software designed to damage, disrupt, or gain unauthorized access to computer systems.
Man in the Middle (MITM)
Attack in which the attacker intercepts and possibly alters communications between two parties without their consent.
NFC
Near Field Communication, a technology enabling contactless data exchange over short distances.
Norton
Brand of computer security software, notably known for its antivirus solutions.
Open source
Software whose source code is accessible to the public, allowing free modification and distribution.
OpenSSL
Open-source implementation of the SSL and TLS protocols for encrypting communications on the Internet.
Phishing
Online fraud technique aimed at obtaining personal information by impersonating a trusted entity.
Pop-up
Advertising or informational window that opens automatically on the user's screen while browsing the Internet.
Ransomware
Malicious software that encrypts the victim's files and demands a ransom to decrypt them.
Skimming
Fraud technique in which devices are used on payment terminals to steal bank card information.
Smishing
Variant of phishing involving the sending of fraudulent text messages to obtain personal or financial information.
Social engineering
Psychological manipulation techniques used to obtain confidential information or unauthorized access.
Spear phishing
Targeted phishing attack that aims at specific individuals or organizations to steal information or install malicious software.
Spoofing
Technique of falsifying a sender's identity in electronic communications to deceive the recipient.
SSL (Secure Sockets Layer)
Protocol for securing exchanges on the Internet, the predecessor of TLS.
TLS (Transport Layer Security)
Protocol for securing exchanges on the Internet, the successor to SSL, providing secure communications.
Typosquatting
Malicious practice of registering domain names resembling popular brands in order to deceive users.
Vishing (voice phishing)
Scam technique involving the use of voice communications, such as phone calls, to extract sensitive or personal information.
VPN (Virtual Private Network)
Virtual private network allowing a secure and encrypted connection to be created over a less secure network, such as the Internet.
Vulnerability
Weakness in a computer system that can be exploited by a threat to breach the system's security.