Glossary of information security
Jump to navigation
Jump to search
Glossary of information Security - Information Security Terms
 This article "Glossary of information security" is still being written. If there are any incomplete parts, you are welcome to directly edit them. 這篇文章「Glossary of information security」內容還在撰寫中,如果有不完整的部分,歡迎你直接動手修改。
|
A[edit]
- Adware: 使用者端的安全威脅。Symantec::Security Response - (Types of threat:Adware, Dialers, Hack Tools, Hoax, Joke Programs, Remote Access, Spyware, Trojan Horse, Virus, Worm)
- ARP(Address Resolution Protocol, 位址解析通訊協定)病毒 Address Resolution Protocol (ARP)
C[edit]
- Code Injection: "a type of attack in which an attacker injects malicious code into an application and causes it to be executed, typically due to the application's lack of proper validation and filtering of external input data."
- Command Injection "an attack technique in which an attacker exploits vulnerabilities in an application to inject and execute malicious operating system commands, typically through unvalidated user input such as forms, cookies, or HTTP headers."
D[edit]
- DoS (Denial of Service, 阻絕服務攻擊) / DDoS (Distributed Denial of Service, 分散式阻斷服務攻擊) 說明:產生大量封包或資料流,癱瘓網站服務。 (詳: Wikipedia)
K[edit]
- Keylogger(鍵盤記錄, Keystroke logging) 記錄使用者電腦的鍵盤操作 資料來源:Keystroke logging - Wikipedia, the free encyclopedia
M[edit]
- MalWare (惡意軟體, 流氓軟體) 流氓軟體 - Wikipedia
P[edit]
- ;Phishing(網站偽造, Web Forgery) AntiPhishing - 檢舉網站偽造/防制工具
R[edit]
- Rootkit Rootkit - Wikipedia
S[edit]
- SpyWare(間諜軟體) 組合國際(Computer Associate)的安全顧問小組(Security Advisor Team)(RSS[1])
- Spoofing (假冒) (E-mail spoofing)郵件假冒/偽造寄信者的電子郵件:
- 惡意網站
- 防範工具: McAfee SiteAdvisor, TrendProtect™
- 軟體供應鏈攻擊 (Supply chain attack) 針對供應鏈中防護較弱的部分進行攻擊
使用者端[edit]
Symantec::Security Response - (Types of threat:Adware, Dialers, Hack Tools, Hoax, Joke Programs, Remote Access, Spyware, Trojan Horse, Virus, Worm)