Читаем CISSP Practice полностью

Log management infrastructure

The hardware, software, networks, and media used to generate, transmit, store, analyze, and dispose of log data.

Log-off

Procedure used to terminate connections. Synonymous with log-out, sign-out, and sign-off.

Log-on

Procedure used to establish the identity of the user and the levels of authorization and access permitted. Synonymous with log-in, sign-in, and sign-on.

Log parsing

Extracting data from a log so that the parsed values can be used as input for another logging process.

Log preservation

Keeping logs that normally would be discarded, because they contain records of activity of particular interest.

Log reduction

Removing unneeded entries from a log to create a new log that is smaller in size.

Log reporting

Displaying the results of log analysis.

Log retention

Archiving logs on a regular basis as part of standard operating procedure or standard operational activities.

Log rotation

Closing a log file and opening a new log file when the first log file is considered to be complete.

Log viewing

Displaying log entries in a human-readable format.

Logic bomb

(1) A resident computer program that triggers the penetration of an unauthorized act when particular states of the system are realized. (2) A Trojan horse set to trigger upon the occurrence of a particular logical event. (3) It is a small, malicious program activated by a trigger (such as a date or the number of times a file is accessed), usually to destroy data or source code.

Logical access control

The use of information-related mechanisms (e.g., passwords) rather than physical mechanisms (e.g., keys and locks) for the provision of access control.

Logical access perimeter security controls

Acting as a first-line-of-defense, e-mail gateways, proxy servers, and firewalls provide logical access perimeter security controls.

Logical link control (LLC) protocol

The LLC protocol hides the differences between the various kinds of IEEE 802 networks by providing a single format and interface to the network layer. LLC forms the upper half of the data-link layer with the MAC sublayer below it.

Logical protection

Protection against unauthorized access (including unauthorized use, modification, substitution, and disclosure in the case of credentials service providers (CSPs) by means of the module software interface (MSI) under operating system control. The MSI is a set of commands used to request the services of the module, including parameters that enter or leave the module’s cryptographic boundary as part of the requested service. Logical protection of software sensitive security parameters (SSPs) does not protect against physical tampering. SSP includes critical security parameters and public security parameters.

Logical record

Collection of one or more data item values as viewed by the user.

Logical system definition

The planning of an automated information system prior to its detailed design. This would include the synthesis of a network of logical elements that perform specific functions.

Loop testing

It is an example of white-box testing technique that focuses exclusively on the validity of loop constructs. Unstructured loops should e redesigned to reflect the use of structured programming constructs because they are difficult and time-consuming to test.

Low-impact system

An information system in which all three security objectives (i.e., confidentiality, integrity, or availability) are assigned a potential impact value of low.

M

Machine types