信息安全术语大全中英文对照

Hacker 黑客，最初是指发现网络系统安全漏洞并进行修补的人，而现在多指利用系统安全漏洞对网络进行攻击破坏或窃取资料的人HomePage 主页，通过万维网(Web)进行信息查询的起始信息页HTML Hypertext Markup Language超文本链接语言HTTP Hypertext Transfer Protocol超文本传输协议ICP Internet Content Provider Internet内容提供商ICQ I seek you网上寻呼Internet国际互联网，因特网internet 互联网，泛指由多个计算机网络相互连接而成的一个网络I Phone Internet Phone一种通过Internet进行语音通讯的技术IP电话利用Internet技术传输话音信号的一种电话IRC Internet Relay Chat Internet实时网上交谈系统ISP Internet Service Provider Internet服务提供商MUD Multi-User Dungeon多用户网络游戏NII National InformationInfrastructure国家信息基础结构，俗称信息高速公路POP Post Office Protocol邮局协议Proxy Server 代理服务器，一种代表客户机转送服务请求的服务器，它也可以通过在送出信息内容前对其进行审查，从而在因特网和专用网之间提供防火墙安全性PSP Platform Service Provider平台服务供应商Telnet远程登录UNINET中国联通互联网URL Uniform Resource Locator网站地址VST Virtual Space Teleconferencing虚拟空间会议Web环球网WWW World Wide Web万维网技术标准Big5台湾流行的汉字内码标准CMM Capacity Maturity Model 软件过程能力成熟度模型，一种评测软件开发能力与质量的方法DES Data Encryption Standard数据加密标准GB国家标准汉字内码GMT Greenwich Mean Time格林威治时间IEEE Institution of Electrical andElectronics电气和电子工程师学会（美国）ISO International StandardizationOrganization国际标准化组织ISO 9000一种质量管理标准JPEG Joint Photographic ExpertsGroup联合图象专家组规范，一种图象压缩标准MP3MPEGAudioLayer3一种音乐格式，它能够将CD品质的数字录音压缩成原来的1/12大小，令其容易存储和在网上传输MPEG Motion Picture Experts Group 一种活动图象和声音的压缩标准，其中MPEG1是最常用的，为VCD所采用，MPEG2则为DVD所采用Open System Interconnect 开放系统互连，用于各种型号计算机OSI Reference Model之间通讯的国际标准PCMCIA Personal Computer MemoryCard International Association个人计算机存储卡国际协会PnP Plug and Play即插即用PPP Peer-Peer Protocol端对端协议SMTP Simple Message TransferProtocol用于电子邮件的传输协议TCP/IP Transfer ControlProtocol/Internet Protocol传输控制协议/Internet协议，目前Internet上正使用着的、最流行的网际互联协议WAP Wireless Application Protocol 无线应用协议，使移动电话能访问Internet的协议X.25用于计算机接入分组交换网的标准X.400用于国际电子函件分布系统的标准X.500Internet上一种目录服务标准，用于查询检索信息方面多媒体AOD Audial-On-Demand音频点播CD Compact Disk光盘DAB数字音频广播DVB,DVB-T数字视频广播，地面数字视频广播DVD Digital Video Disk数字化视频光盘LD Laser Disc激光视盘VCD Video Compact Disk视频高密光盘VOD Video-On-Demand视频点播技术应用BOM Bill of Material 物料清单－－指用数据格式来描述产品结构的文件BPI Business ProcessImprovement业务流程改进BPR Business ProcessReengineering企业流程再造CAD Computer Aided Design计算机辅助设计CAE Computer Aided Education计算机辅助教育CAI Computer Aided Instruction计算机辅助教育CAM Computer Aided Management计算机辅助管理CAPP Computer Aided Processplanning计算机工艺辅助设计CAQ computer Aided Quality计算机辅助质量管理CE Concurrent Engineering 并行工程－－是对产品及其相关过程（包括制造过程和支持过程）进行并行、集成设计的一种系统化工作模式CIMS Computer IntegratedManufacture System计算机集成制造系统EAI Enterprise ApplicationIntegrated企业应用集成DSS Decision Support System 决策支持系统－－是围绕着决策行动主体进行的支持管理人员进行非程序性决策的一种信息系统EAM Enterprise Asset Management企业资产管理EMS Electronic MailService/Express Mail Service电子邮件服务/邮政特快专递FMS Flexible Manufacturing System柔性制造系统GIS Geographic Information 地理信息系统SystemGT Group Technology 成组技术－－成组技术的核心原理是把尺寸、形状、工艺相近似的零件组成一个零件组，按零件组制订工艺进行生产制造，这样就扩大了批量，减少了品种，便于采用高效率的生产方法，从而提高了劳动生产率。

100个信息工程专业术语中英文全文共3篇示例，供读者参考篇1Information engineering is a vast field that covers a wide range of knowledge and skills. In this article, we will introduce 100 important terms and concepts in information engineering, both in English and Chinese.1. Artificial Intelligence (AI) - 人工智能2. Machine Learning - 机器学习3. Deep Learning - 深度学习4. Natural Language Processing (NLP) - 自然语言处理5. Computer Vision - 计算机视觉6. Data Mining - 数据挖掘7. Big Data - 大数据8. Internet of Things (IoT) - 物联网9. Cloud Computing - 云计算10. Virtual Reality (VR) - 虚拟现实11. Augmented Reality (AR) - 增强现实12. Cybersecurity - 网络安全13. Cryptography - 密码学14. Blockchain - 区块链15. Information System - 信息系统16. Database Management System (DBMS) - 数据库管理系统17. Relational Database - 关系数据库18. NoSQL - 非关系型数据库19. SQL (Structured Query Language) - 结构化查询语言20. Data Warehouse - 数据仓库21. Data Mart - 数据集市22. Data Lake - 数据湖23. Data Modeling - 数据建模24. Data Cleansing - 数据清洗25. Data Visualization - 数据可视化26. Hadoop - 分布式存储和计算框架27. Spark - 大数据处理框架28. Kafka - 流数据处理平台29. Elasticsearch - 开源搜索引擎30. Cyber-Physical System (CPS) - 嵌入式系统31. System Integration - 系统集成32. Network Architecture - 网络架构33. Network Protocol - 网络协议34. TCP/IP - 传输控制协议/互联网协议35. OSI Model - 开放系统互连参考模型36. Router - 路由器37. Switch - 交换机38. Firewall - 防火墙39. Load Balancer - 负载均衡器40. VPN (Virtual Private Network) - 虚拟专用网络41. SDN (Software-Defined Networking) - 软件定义网络42. CDN (Content Delivery Network) - 内容分发网络43. VoIP (Voice over Internet Protocol) - 互联网语音44. Unified Communications - 统一通信45. Mobile Computing - 移动计算46. Mobile Application Development - 移动应用开发47. Responsive Web Design - 响应式网页设计48. UX/UI Design - 用户体验/用户界面设计49. Agile Development - 敏捷开发50. DevOps - 开发与运维51. Continuous Integration/Continuous Deployment (CI/CD) - 持续集成/持续部署52. Software Testing - 软件测试53. Bug Tracking - 缺陷跟踪54. Version Control - 版本控制55. Git - 分布式版本控制系统56. Agile Project Management - 敏捷项目管理57. Scrum - 敏捷开发框架58. Kanban - 看板管理法59. Waterfall Model - 瀑布模型60. Software Development Life Cycle (SDLC) - 软件开发生命周期61. Requirements Engineering - 需求工程62. Software Architecture - 软件架构63. Software Design Patterns - 软件设计模式64. Object-Oriented Programming (OOP) - 面向对象编程65. Functional Programming - 函数式编程66. Procedural Programming - 过程式编程67. Dynamic Programming - 动态规划68. Static Analysis - 静态分析69. Code Refactoring - 代码重构70. Code Review - 代码审查71. Code Optimization - 代码优化72. Software Development Tools - 软件开发工具73. Integrated Development Environment (IDE) - 集成开发环境74. Version Control System - 版本控制系统75. Bug Tracking System - 缺陷跟踪系统76. Code Repository - 代码仓库77. Build Automation - 构建自动化78. Continuous Integration/Continuous Deployment (CI/CD) - 持续集成/持续部署79. Code Coverage - 代码覆盖率80. Code Review - 代码审查81. Software Development Methodologies - 软件开发方法论82. Waterfall Model - 瀑布模型83. Agile Development - 敏捷开发84. Scrum - 看板管理法85. Kanban - 看板管理法86. Lean Development - 精益开发87. Extreme Programming (XP) - 极限编程88. Test-Driven Development (TDD) - 测试驱动开发89. Behavior-Driven Development (BDD) - 行为驱动开发90. Model-Driven Development (MDD) - 模型驱动开发91. Design Patterns - 设计模式92. Creational Patterns - 创建型模式93. Structural Patterns - 结构型模式94. Behavioral Patterns - 行为型模式95. Software Development Lifecycle (SDLC) - 软件开发生命周期96. Requirement Analysis - 需求分析97. System Design - 系统设计98. Implementation - 实施99. Testing - 测试100. Deployment - 部署These terms are just the tip of the iceberg when it comes to information engineering. As technology continues to advance, new terms and concepts will emerge, shaping the future of this dynamic field. Whether you are a student, a professional, or just someone interested in technology, familiarizing yourself with these terms will help you navigate the complex world of information engineering.篇2100 Information Engineering Professional Terms in English1. Algorithm - a set of instructions for solving a problem or performing a task2. Computer Science - the study of computers and their applications3. Data Structures - the way data is organized in a computer system4. Networking - the practice of linking computers together to share resources5. Cybersecurity - measures taken to protect computer systems from unauthorized access or damage6. Software Engineering - the application of engineering principles to software development7. Artificial Intelligence - the simulation of human intelligence by machines8. Machine Learning - a type of artificial intelligence that enables machines to learn from data9. Big Data - large and complex sets of data that require specialized tools to process10. Internet of Things (IoT) - the network of physical devices connected through the internet11. Cloud Computing - the delivery of computing services over the internet12. Virtual Reality - a computer-generated simulation of a real or imagined environment13. Augmented Reality - the integration of digital information with the user's environment14. Data Mining - the process of discovering patterns in large data sets15. Quantum Computing - the use of quantum-mechanical phenomena to perform computation16. Cryptography - the practice of securing communication by encoding it17. Data Analytics - the process of analyzing data to extract meaningful insights18. Information Retrieval - the process of finding relevant information in a large dataset19. Web Development - the process of creating websites and web applications20. Mobile Development - the process of creating mobile applications21. User Experience (UX) - the overall experience of a user interacting with a product22. User Interface (UI) - the visual and interactive aspects of a product that a user interacts with23. Software Architecture - the design and organization of software components24. Systems Analysis - the process of studying a system's requirements to improve its efficiency25. Computer Graphics - the creation of visual content using computer software26. Embedded Systems - systems designed to perform a specific function within a larger system27. Information Security - measures taken to protect information from unauthorized access28. Database Management - the process of organizing and storing data in a database29. Cloud Security - measures taken to protect data stored in cloud computing environments30. Agile Development - a software development methodology that emphasizes collaboration and adaptability31. DevOps - a set of practices that combine software development and IT operations to improve efficiency32. Continuous Integration - the practice of integrating code changes into a shared repository frequently33. Machine Vision - the use of cameras and computers to process visual information34. Predictive Analytics - the use of data and statistical algorithms to predict future outcomes35. Information Systems - the study of how information is used in organizations36. Data Visualization - the representation of data in visual formats to make it easier to understand37. Edge Computing - the practice of processing data closer to its source rather than in a centralized data center38. Natural Language Processing - the ability of computers to understand and generate human language39. Cyber Physical Systems - systems that integrate physical and computational elements40. Computer Vision - the ability of computers to interpret and understand visual information41. Information Architecture - the structural design of information systems42. Information Technology - the use of computer systems to manage and process information43. Computational Thinking - a problem-solving approach that uses computer science concepts44. Embedded Software - software that controls hardware devices in an embedded system45. Data Engineering - the process of collecting, processing, and analyzing data46. Software Development Life Cycle - the process of developing software from conception to deployment47. Internet Security - measures taken to protectinternet-connected systems from cyber threats48. Application Development - the process of creating software applications for specific platforms49. Network Security - measures taken to protect computer networks from unauthorized access50. Artificial Neural Networks - computational models inspired by the biological brain's neural networks51. Systems Engineering - the discipline that focuses on designing and managing complex systems52. Information Management - the process of collecting, storing, and managing information within an organization53. Sensor Networks - networks of sensors that collect and transmit data for monitoring and control purposes54. Data Leakage - the unauthorized transmission of data to an external source55. Software Testing - the process of evaluating software to ensure it meets requirements and functions correctly56. Internet Protocol (IP) - a set of rules for sending data over a network57. Machine Translation - the automated translation of text from one language to another58. Cryptocurrency - a digital or virtual form of currency that uses cryptography for security59. Software Deployment - the process of making software available for use by end-users60. Computer Forensics - the process of analyzing digital evidence for legal or investigative purposes61. Virtual Private Network (VPN) - a secure connection that allows users to access a private network over a public network62. Internet Service Provider (ISP) - a company that provides access to the internet63. Data Center - a facility that houses computing and networking equipment for processing and storing data64. Network Protocol - a set of rules for communication between devices on a network65. Project Management - the practice of planning, organizing, and overseeing a project to achieve its goals66. Data Privacy - measures taken to protect personal data from unauthorized access or disclosure67. Software License - a legal agreement that governs the use of software68. Information Ethics - the study of ethical issues related to the use of information technology69. Search Engine Optimization (SEO) - the process of optimizing websites to rank higher in search engine results70. Internet of Everything (IoE) - the concept of connecting all physical and digital objects to the internet71. Software as a Service (SaaS) - a software delivery model in which applications are hosted by a provider and accessed over the internet72. Data Warehousing - the process of collecting and storing data from various sources for analysis and reporting73. Cloud Storage - the practice of storing data online in remote servers74. Mobile Security - measures taken to protect mobile devices from security threats75. Web Hosting - the service of providing storage space and access for websites on the internet76. Malware - software designed to harm a computer system or its users77. Information Governance - the process of managing information to meet legal, regulatory, and business requirements78. Enterprise Architecture - the practice of aligning an organization's IT infrastructure with its business goals79. Data Backup - the process of making copies of data to protect against loss or corruption80. Data Encryption - the process of converting data into a code to prevent unauthorized access81. Social Engineering - the manipulation of individuals to disclose confidential information82. Internet of Medical Things (IoMT) - the network of medical devices connected through the internet83. Content Management System (CMS) - software used to create and manage digital content84. Blockchain - a decentralized digital ledger used to record transactions85. Open Source - software that is publicly accessible for modification and distribution86. Network Monitoring - the process of monitoring and managing network performance and security87. Data Governance - the process of managing data to ensure its quality, availability, and security88. Software Patch - a piece of code used to fix a software vulnerability or add new features89. Zero-Day Exploit - a security vulnerability that is exploited before the vendor has a chance to patch it90. Data Migration - the process of moving data from one system to another91. Business Intelligence - the use of data analysis tools to gain insights into business operations92. Secure Socket Layer (SSL) - a protocol that encrypts data transmitted over the internet93. Mobile Device Management (MDM) - the practice of managing and securing mobile devices in an organization94. Dark Web - the part of the internet that is not indexed by search engines and often used for illegal activities95. Knowledge Management - the process of capturing, organizing, and sharing knowledge within an organization96. Data Cleansing - the process of detecting and correcting errors in a dataset97. Software Documentation - written information that describes how software works98. Open Data - data that is freely available for anyone to use and redistribute99. Predictive Maintenance - the use of data analytics to predict when equipment will need maintenance100. Software Licensing - the legal terms and conditions that govern the use and distribution of softwareThis list of 100 Information Engineering Professional Terms in English provides a comprehensive overview of key concepts and technologies in the field of information technology. These terms cover a wide range of topics, including computer science, data analysis, network security, and software development. By familiarizing yourself with these terms, you can better understand and communicate about the complex and rapidly evolving world of information engineering.篇3100 Information Engineering Professional Terms1. Algorithm - 算法2. Artificial Intelligence - 人工智能3. Big Data - 大数据4. Cloud Computing - 云计算5. Cryptography - 密码学6. Data Mining - 数据挖掘7. Database - 数据库8. Deep Learning - 深度学习9. Digital Signal Processing - 数字信号处理10. Internet of Things - 物联网11. Machine Learning - 机器学习12. Network Security - 网络安全13. Object-Oriented Programming - 面向对象编程14. Operating System - 操作系统15. Programming Language - 编程语言16. Software Engineering - 软件工程17. Web Development - 网页开发18. Agile Development - 敏捷开发19. Cybersecurity - 网络安全20. Data Analytics - 数据分析21. Network Protocol - 网络协议22. Artificial Neural Network - 人工神经网络23. Cloud Security - 云安全24. Data Visualization - 数据可视化25. Distributed Computing - 分布式计算26. Information Retrieval - 信息检索27. IoT Security - 物联网安全28. Machine Translation - 机器翻译29. Mobile App Development - 移动应用开发30. Software Architecture - 软件架构31. Data Warehousing - 数据仓库32. Network Architecture - 网络架构33. Robotics - 机器人技术34. Virtual Reality - 虚拟现实35. Web Application - 网页应用36. Biometrics - 生物识别技术37. Computer Graphics - 计算机图形学38. Cyber Attack - 网络攻击39. Data Compression - 数据压缩40. Network Management - 网络管理41. Operating System Security - 操作系统安全42. Real-Time Systems - 实时系统43. Social Media Analytics - 社交媒体分析44. Blockchain Technology - 区块链技术45. Computer Vision - 计算机视觉46. Data Integration - 数据集成47. Game Development - 游戏开发48. IoT Devices - 物联网设备49. Multimedia Systems - 多媒体系统50. Software Quality Assurance - 软件质量保证51. Data Science - 数据科学52. Information Security - 信息安全53. Machine Vision - 机器视觉54. Natural Language Processing - 自然语言处理55. Software Testing - 软件测试56. Chatbot - 聊天机器人57. Computer Networks - 计算机网络58. Cyber Defense - 网络防御60. Image Processing - 图像处理61. IoT Sensors - 物联网传感器62. Neural Network - 神经网络63. Network Traffic Analysis - 网络流量分析64. Software Development Life Cycle - 软件开发周期65. Data Governance - 数据治理66. Information Technology - 信息技术67. Malware Analysis - 恶意软件分析68. Online Privacy - 在线隐私69. Speech Recognition - 语音识别70. Cyber Forensics - 网络取证71. Data Anonymization - 数据匿名化72. IoT Platform - 物联网平台73. Network Infrastructure - 网络基础设施74. Predictive Analytics - 预测分析75. Software Development Tools - 软件开发工具77. Information Security Management - 信息安全管理78. Network Monitoring - 网络监控79. Software Deployment - 软件部署80. Data Encryption - 数据加密81. IoT Gateway - 物联网网关82. Network Topology - 网络拓扑结构83. Quantum Computing - 量子计算84. Software Configuration Management - 软件配置管理85. Data Lakes - 数据湖86. Infrastructure as a Service (IaaS) - 基础设施即服务87. Network Virtualization - 网络虚拟化88. Robotic Process Automation - 机器人流程自动化89. Software as a Service (SaaS) - 软件即服务90. Data Governance - 数据治理91. Information Security Policy - 信息安全政策92. Network Security Risk Assessment - 网络安全风险评估93. Secure Software Development - 安全软件开发94. Internet Security - 互联网安全95. Secure Coding Practices - 安全编码实践96. Secure Network Design - 安全网络设计97. Software Security Testing - 软件安全测试98. IoT Security Standards - 物联网安全标准99. Network Security Monitoring - 网络安全监控100. Vulnerability Management - 漏洞管理These terms cover a wide range of topics within the field of Information Engineering, and are essential in understanding and discussing the various aspects of this discipline. It is important for professionals in this field to be familiar with these terms in order to effectively communicate and collaborate with others in the industry.。

信息技术常用术语中英文对照表1. 计算机网络 Computer Network2. 互联网 Internet3. 局域网 Local Area Network (LAN)4. 带宽 Bandwidth5. 路由器 Router6. 交换机 Switch7. 防火墙 Firewall8. 病毒 Virus9. 木马 Trojan10. 黑客 Hacker11. 中央处理器 Central Processing Unit (CPU)12. 内存 Random Access Memory (RAM)13. 硬盘 Hard Disk Drive (HDD)14. 固态硬盘 Solid State Drive (SSD)15. 显卡 Graphics Card16. 主板 Motherboard17. BIOS Basic Input/Output System18. 操作系统 Operating System19. 应用程序 Application20. 编程语言 Programming Language21. 数据库 Database22. 服务器 Server23. 客户端 Client24. 云计算 Cloud Computing25. 大数据 Big Data27. 机器学习 Machine Learning28. 深度学习 Deep Learning29. 虚拟现实 Virtual Reality (VR)30. 增强现实 Augmented Reality (AR)31. 网络安全 Network Security32. 数据加密 Data Encryption33. 数字签名 Digital Signature34. 身份验证 Authentication35. 访问控制 Access Control36. 数据备份 Data Backup37. 数据恢复 Data Recovery38. 系统升级 System Upgrade39. 系统优化 System Optimization40. 技术支持 Technical Support当然，让我们继续丰富这个信息技术常用术语的中英文对照表：41. 网络协议 Network Protocol42. IP地址 Internet Protocol Address43. 域名系统 Domain Name System (DNS)44. HTTP Hypertext Transfer Protocol45. Hypertext Transfer Protocol Secure46. FTP File Transfer Protocol47. SMTP Simple Mail Transfer Protocol48. POP3 Post Office Protocol 349. IMAP Internet Message Access Protocol50. TCP/IP Transmission Control Protocol/Internet Protocol51. 无线局域网 Wireless Local Area Network (WLAN)52. 蓝牙 Bluetooth53. 无线保真 WiFi (Wireless Fidelity)54. 4G Fourth Generation55. 5G Fifth Generation56. 物联网 Internet of Things (IoT)57. 云服务 Cloud Service58. 网络存储 Network Attached Storage (NAS)59. 分布式文件系统 Distributed File System60. 数据中心 Data Center61. 系统分析 Systems Analysis62. 系统设计 Systems Design63. 软件开发 Software Development64. 系统集成 Systems Integration65. 软件测试 Software Testing66. 质量保证 Quality Assurance67. 项目管理 Project Management68. 技术文档 Technical Documentation69. 用户手册 User Manual70. 知识库 Knowledge Base71. 网络拓扑 Network Topology72. 星型网络 Star Network73. 环形网络 Ring Network74. 总线型网络 Bus Network75. 树形网络 Tree Network76. 点对点网络 PeertoPeer Network77. 宽带接入 Broadband Access78. DSL Digital Subscriber Line79. 光纤到户 Fiber To The Home (FTTH)80. VoIP Voice over Internet Protocol通过这份对照表，希望您能更加轻松地理解和应用信息技术领域的专业术语。

网络安全专业属于对照表（一）A高级持久威胁（APT）一种网络攻击，使用复杂的技术持续对目标政府和公司进行网络间谍活动或其他恶意活动。

通常由具有丰富专业知识和大量资源的对手进行-通常与民族国家参与者相关。

这些攻击往往来自多个入口点，并且可能使用多个攻击媒介（例如，网络攻击，物理攻击，欺骗攻击）。

一旦系统遭到破坏，结束攻击可能非常困难。

警报(Alert)关于已检测到或正在进行信息系统网络安全威胁的通知。

防毒软件(Antivirus)防病毒软件用于监视计算机或网络，以检测从恶意代码到恶意软件的网络安全威胁。

防病毒程序不仅可以警告您威胁的存在，还可以删除或消除恶意代码。

攻击特征(Attack signature)一种特征性或独特性模式，可以帮助将一种攻击与另一种攻击联系起来，从而确定可能的参与者和解决方案。

攻击者(Attacker)威胁的诱因：恶意角色，他们试图更改，破坏，窃取或禁用计算机系统上保存的信息，然后利用其结果。

认证方式(Authentication)验证用户，进程或设备的身份或其他属性的过程。

B行为监控(Behaviour monitoring)观察用户，信息系统和流程的活动。

可用于根据组织政策和规则，正常活动的基准，阈值和趋势来衡量这些活动。

黑名单（Blacklist）实体（用户，设备）被阻止，拒绝特权或访问的列表。

蓝队(Blue team)模拟网络安全攻击中的防御小组。

蓝队在红队攻击时捍卫企业的信息系统。

这些模拟攻击通常是由中立组织怀特（White Team）建立和监控的业务演习的一部分。

机器人(bot)连接到Internet的计算机，该计算机已受到恶意逻辑的破坏，无法在远程管理员的命令和控制下进行活动。

僵尸网络(Botnet)连接到Internet的受感染设备网络过去常常在所有者不知情的情况下进行协调的网络攻击。

违反(Breach)未经授权访问数据，计算机系统或网络。

自携设备办公（BYOD）组织允许员工将其个人设备用于工作目的的策略或政策。

⽹络安全专业术语对照表（⼆）E电⼦战（EW）利⽤⽆线电波或激光等能量破坏或破坏敌⼈的电⼦设备。

⼀个⽰例是频率⼲扰以禁⽤通信设备。

编码(Encode)使⽤代码将纯⽂本转换为密⽂。

加密(Encryption)使⽤密码来保护信息，这使任何没有密钥对其解密的⼈都⽆法读取。

终端（Endpoint）连接到⽹络的具有互联⽹功能的计算机设备的统称-例如，现代智能⼿机，笔记本电脑和平板电脑都是端点。

道德⿊客（Ethical hacking）出于合法⽬的使⽤⿊客技术-即识别和测试⽹络安全漏洞。

在这种情况下，这些⼈员有时被称为“⽩帽⿊客”。

渗出（Exfiltration）未经同意即从系统传输信息。

利⽤（Exploit）利⽤信息系统中的漏洞的⾏为。

也⽤于描述⼀种⽤于破坏⽹络安全性的技术。

漏洞利⽤⼯具（Exploit kit）设计⽤于发现软件应⽤程序中的漏洞并使⽤它们来访问系统或⽹络的计算机程序。

⼀旦他们渗透到系统中，他们将向其提供有害代码。

F防⽕墙（Firewall）⽹络或设备周围的虚拟边界，⽤于保护⽹络或设备免受不必要的访问。

可以是硬件或软件。

GGCHQ政府通讯总部。

该组织利⽤外国情报来帮助打击恐怖主义，⽹络犯罪和⼉童⾊情制品。

通⽤数据保护条例（GDPR）通⽤数据保护条例。

欧洲⽴法旨在通过使个⼈更好地控制其个⼈信息在⽹上的使⽤⽅式来防⽌数据滥⽤。

治理，风险管理与合规（GRC）组织管理的三个⽅⾯旨在确保组织及其⼈员的⾏为规范，有效管理组织，采取适当措施降低风险并保持对内部政策和外部法规的遵守。

H⿊客（Hacker）⿊客基本涵义是指⼀个拥有熟练电脑技术的⼈，但⼤部分的媒体习惯将“⿊客”指作电脑侵⼊者。

散列（Hashing）使⽤数学算法来伪装⼀条数据。

蜜罐（蜜⽹）Honeypot (honeynet)诱骗系统或⽹络，⽤于吸引潜在的攻击者，通过检测攻击或使攻击发⽣偏转来保护实际系统。

⼀个学习攻击⽅式的好⼯具。

多个蜜罐可以组成⼀个蜜⽹。

网络安全专业术语对照表A高级持久威胁（APT）一种网络攻击，使用复杂的技术持续对目标政府和公司进行网络间谍活动或其他恶意活动。

通常由具有丰富专业知识和大量资源的对手进行-通常与民族国家参与者相关。

这些攻击往往来自多个入口点，并且可能使用多个攻击媒介（例如，网络攻击，物理攻击，欺骗攻击）。

一旦系统遭到破坏，结束攻击可能非常困难。

警报(Alert)关于已检测到或正在进行信息系统网络安全威胁的通知。

防毒软件(Antivirus)防病毒软件用于监视计算机或网络，以检测从恶意代码到恶意软件的网络安全威胁。

防病毒程序不仅可以警告您威胁的存在，还可以删除或消除恶意代码。

攻击特征(Attack signature)一种特征性或独特性模式，可以帮助将一种攻击与另一种攻击联系起来，从而确定可能的参与者和解决方案。

攻击者(Attacker)威胁的诱因：恶意角色，他们试图更改，破坏，窃取或禁用计算机系统上保存的信息，然后利用其结果。

认证方式(Authentication)验证用户，进程或设备的身份或其他属性的过程。

B行为监控(Behaviour monitoring)观察用户，信息系统和流程的活动。

可用于根据组织政策和规则，正常活动的基准，阈值和趋势来衡量这些活动。

黑名单（Blacklist）实体（用户，设备）被阻止，拒绝特权或访问的列表。

蓝队(Blue team)模拟网络安全攻击中的防御小组。

蓝队在红队攻击时捍卫企业的信息系统。

这些模拟攻击通常是由中立组织怀特（White Team）建立和监控的业务演习的一部分。

机器人(bot)连接到Internet的计算机，该计算机已受到恶意逻辑的破坏，无法在远程管理员的命令和控制下进行活动。

僵尸网络(Botnet)连接到Internet的受感染设备网络过去常常在所有者不知情的情况下进行协调的网络攻击。

违反(Breach)未经授权访问数据，计算机系统或网络。

自携设备办公（BYOD）组织允许员工将其个人设备用于工作目的的策略或政策。

信息安全术语大全IA中英文对照来源：作者：1. (N)中继(N)-relay2. 抽象语法abstract syn tax3. 访问/存取access4. 访问控制access control5. 访问(存取)控制证书access con trol certificate6. 访问控制判决功能Access control Decision Function(ADF)7. 访问控制判决信息Access control Decision Information(ADI)8. 访问控制实施功能Access control Enforcement Function(AEF)9. 访问控制信息access control information10. 访问控制列表access control list11. 访问控制机制access control mechanisms12. 访问控制策略access control policy13. 访问控制策略规则access con trol policy rules14. 访问控制令牌access control token15. 访问列表access list16. 访问周期access period17. 访问请求access request18. 访问类型access type19. 认可/ 审批accreditati on20. 主动威胁active threat21. 主动搭线窃听active wiretapping22. 报警处理器alarm processor23. 应用级防火墙application level firewall24. 资产Assets25. 赋值assig nment26. 关联安全状态association security state27. 保障/ 保证assura nee28. 非对称认证方法asymmetric authentication method29. 日非对称密码算法asymmetric cryptographic algorithm30. 非对称密码技术asymmetric cryptographic technique31. 非对称加密系统asymmetric encipherment system32. 非对称密钥对asymmetric key pair33. 非对称签名系统asymmetric sig nature system34. 属性attribute35. 属性管理机构撤销列表(AARL Attribute Authority Revocation List(AARL)36. 属性管理机构(AAA Attribute Authority(AA)37. 属性证书Attribute certificate38. 属性证书撤销列表(ACRL Attribute Certificate Revocation List(ACRL)39. 审计/审核audit40. 审计分析器audit analyzer41. 审计归档audit archive42. 审计机构audit authority43. 审计调度器auditdispatcher44. 审计提供器auditprovider45. 审计记录器auditrecorder46. 审计踪迹audit trail47. 审计跟踪收集器audit trail collector48. 审计跟踪检验器audit trail examiner49. 鉴别/ 认证authentication50. 认证证书authentication certificate51. 鉴别数据authentication data52. 鉴别（认证）信息authentication imformation53. 鉴别（认证）发起方authentication initiator54. 鉴别（认证）令牌authentication token（token）55. 鉴别（认证）符authenticator56. 授权用户authoriseduser57. 授权机构/ 机构Authority58. 授权机构证书authority certificate59. 授权authorization60. 授权管理员authorized administrator61. 自动安全监控automated security monitoring62. 可用性availability63. 数据可用性availabity of data64. 备份规程bakcup procedure65. 基础证书撤消列表base CRL66. 分组/ 块block67. 分组链接block chaining68. 界限检查boundschecking69. 简码列表brevity lists70. 浏览browsing71. CA 证书CA-certificate72. 回叫call back73. 权能/能力capability74. 证书certificate75. 证书策略certificate policy76. 证书序列号certificate serial number77. 证书用户certificate user78. 证书确认certificate validation79. 认证certification81.80. 认证机构certification authority 认证机构撤销列表（CARL）Certification Authority Revocation List （CARL）82. 认证路径certification path83. 信道/ 通道channel84. 密文ciphertext实用标准文案88.85. 申明鉴别信息claim authentication information86. 许可权clearance87. 明文cleartext无碰撞（冲突）散列函数collision resistant hash-function89. 混合型防火墙combination firewall90. 共用接地系统common grounding system91. 通信安全communications security92. 分割compartmentalization93. 构件/ 组件/部件component94. 泄漏compromise95. 已泄露证据compromised evidence96. 泄漏发射compromising emanations97. 计算机系统computer system98. 隐蔽系统concealment system99. 配置管理configuration management100. 配置管理系统configuration management system不带恢复的连接完整性connection integrity without recovery 102. 无连接保密性connectionless confidentiality103. 无连接完整性connectionless integrity104. 连通性connectivity105. 应急计划contingency plan106. 控制区control zone107. 可控隔离controllable isolation108. 受控访问controlled access109. 受控可访问性controlled accessibility110. 受控共享controlled sharing111. 成本风险分析cost-risk analysis112. 对抗countermeasure113. 隐蔽信道covert channel114. 隐蔽存储信道covert storage channel115. 隐蔽时间信道covert timing channel116. 凭证credentials117. CRL 分发点CRL distribution poi nt118. 串扰cross-talk119. 密码分析cryptanalysis120. 密码算法crypto-algorithm121. 密码链接cryptographic chaining122. 密码校验函数cryptographic check function123. 密码校验值cryptographic check value124. 密码同步cryptographic synchronization 125. 密码体制cryptographic system; cryptosystem126. 密码编码（学）cryptography127. 密码运算crypto-operation128. 密码安全cryptosecurity101.129. 数据保密性data confidentiality130. 数据损害data contamination131. 数据完整性data integrity132. 数据原发鉴别data origin authentication133. 数据串(数据) data string(data)134. 数据单元完整性data unit integrity135. 解密/ 脱密decipherment136. 降级degradation137. 委托delegation138. 委托路径delegation path139. 交付机构delivery authority140. 增量证书撤销列表delta-CRL(dCRL)141. 拒绝服务denial of service142. 依赖/ 依赖性dependency143. 数字签名digital signature144. 目录信息库Directory Information Base145. 目录信息树Directory Information Tree146. 目录系统代理Directory system Agent147. 目录用户代理Directory user Agent148. 可区分名distinguished name149. 可区分标识符distinguishing identifier150. 加密Encipherment 、encipher 、encryption151. 加密算法encryption algorithm152. 终端实体end entity153. 终端系统end system154. 终端实体属性证书撤销列表( EARL) End-entity Attribute Certificate Revocation List 155. 终端实体公钥证书撤销列表( EPRL) End-entity Public-key Certificate Revocation List156. 端到端加密end-to-end encipherment157. 实体鉴别entity authentication158. 环境变量environmental variables159. 评估保证级evaluation assurance level(EAL)160. 评估机构evaluation authority161. 评估模式evaluation scheme162. 事件辨别器event discriminator163. 证据evidence164. 证据生成者evidence generator165. 证据请求者evidence requester166. 证据主体evidence subject167. 证据使用者evidence user168. 证据验证者evidence verifier169. 交换鉴别信息exchange authentication information170. 外部IT 实体external IT entity171. 外部安全审计external security audit172. 故障访问failure access173故障控制failure control.174. 容错fault tolerance175. 特征features176 .反馈缓冲器feedback buffer177. 取数保护fetch protection178. 文件保护file protection179. 防火墙firewall180. 固件firmware181. 形式化证明formal proof182. 形式化顶层规范formal top-level specification183. 形式化验证formal verification184. 完全CRL full CRL185. 粒度granularity186. 接地网ground grid187. 接地电阻ground resistance188. 接地grounding189. 接地电极grounding electrode190. 接地系统grounding system191. 握手规程handshaking procedure192. 散列函数(哈希函数) hash function193. 散列代码hash-code194. 散列函数标识符hash-function identifier195. 隐藏hide196. 持有者holder197. 主机Host198. 宿主单元host unit199. 标识identification200. 标识数据identification data201. 抗扰度immunity(to a disturbance)202. 假冒impersonation203. 印章imprint204. 交错攻击imterleaving attack205. 不完全参数检验incomplete parameter checking206. 间接攻击indirect attack207. 间接CRL indirect CRL (iCRL)208. 信息系统安全information system security209. 信息系统安全管理体系结构information system security management architecture 210. 信息技术设备information technology equipment211. 初始编码规则initial encoding rules212. 初始化值initialization value213. 发起者initiator214. 完整性integrity215. 禁止interdiction216. 交错攻击interleaving attack内部通信信道 internal communication channel内部安全审计 internal security audit219. 隔离 isolation220. 密钥 key监控器(监控机构) monitor(monitor authority) 246. 监控 monitoring 247. 多级装置 multilevel device多访问权终端 multiple access rights terminal 250. 相互鉴别 mutual authentication网络协议数据单元 network protocol data unit网络可信计算基 network trusted computed base 260. 抗抵赖 non-repudiation 224. 226. 228. 230. 231. 234. 235. 221. 222. 223. 密钥协商 key agreement 密钥确认 key confirmation 密钥控制 key control 密钥分发中心 key distribution centre 225. 密钥管理 key management 密钥转换中心 key translation centre 227. 标记 label 主、客体标记 label of subject and object 229. 最小特权 least privilege 雷电电磁脉冲 lightning electromagnetic pulse 雷电防护区 lightning protection zones 232. 受限访问 limited access 233. 链路加密 link encryption 逐链路加密 link-by-link encipherment 本地系统环境 local system environment 236. 漏洞 loophole 237. 故障 malfunction 238. 管理信息 Management Information 239. 强制访问控制 mandatory access control 240. 冒充 Masquerade 241. 测量 measurement 242. 消息 message 243. 消息鉴别码 message anthentication code 244. 仿制 mimicking 248. 多级安全 multilevel secure 251. n 位分组密码 n-bit block cipher 252. 网络实体 network entity 253. 网络层 network layer 254. 网络协议 network protocol 256. 网络中继 network relay 257. 网络安全 network security 258. 网络服务 network service 217.218. 245. 249. 255. 259.261. 抗抵赖交换non-repudiation exchange262. 抗抵赖信息non-repudiation information263. 创建抗抵赖/抗创建抵赖non-repudiation of creation 264. 交付抗抵赖/抗交付抵赖non-repudiation of delivery 265. 原发抗抵赖non-repudiation of origin266. 接收抗抵赖/ 抗接收抵赖non-repudiation of receipt 267. 发送抗抵赖/ 抗发送抵赖non-repudiation of sending 268. 提交抗抵赖/ 抗提交抵赖non-repudiation of submission 269. 抗抵赖策略non-repudiation policy270. 抗抵赖服务请求者non-repudiation service requester271. 公证notarization272. 公证权标notarization token273. 公证方/ 公证者notary274. 公证方(公证机构) notary(notary authority)275. NRD权标/NRD 令牌NRD toke n276. NRO 权标NRO toke n277. NRS 权标NRS toke n278. NRT 权标NRT toke n279. 客体object280. 对象方法object method281. 客体重用object reuse282. 离线鉴别证书off-line authentication certificate283. 离线密码运算offline crypto-operation284. 单向函数one-way function285. 单向散列函数one-way hash function 286. 在线鉴别证书on-line authentication certificate 287. 在线密码运算online crypto-operation288. 开放系统open system289. 组织安全策略organisational security policies290. 原发者originator291. OSI 管理OSI Management292. 带外out-of-band293. 包package294. 包过滤防火墙packet filter firewall295. 填充padding296. 成对的密钥pairwise key297. 被动威胁passive threat298. 被动窃听passive wiretapping299. 口令password300. 口令对话password dialog301. 对等实体鉴别peer-entity authentication302. 渗透penetration303. 渗透轮廓penetration profile304. 渗透痕迹penetration signature305. 渗透测试penetration testing306. 个人识别号person identification number（PIN）307. 人员安全personal security308. 物理安全physical security309. 明文plain text310. 策略policy311. 策略映射policy mapping312. 端口port313. 表示上下文presentation context314. 表示数据值presentation data value315. 表示实体presentation-entity316. 预签名pre-signature317. 本体principal318. 最小特权原则principle of least privilege319. 服务优先权priority of service320. 隐私privacy321. 保密变换privacy transformation322. 私有解密密钥private decipherment key323. 私有密钥（私钥）private key324. 私有签名密钥private signature key325. 特权指令privileged instructions326. 规程安全procedural security327. 产品product328. 证明proof329. 保护表示上下文protecting presentation context330. 保护传送语法protecting transfer syntax 331. 保护映射protection mapping 332. 保护轮廓protection profile333. 保护环protection ring 334. 保护接大地protective earthing335. 协议数据单元protocol data unit336. 协议实现一致性声明protocol implementation conformance statement337. 代理服务器proxy server338. 伪缺陷pseudo-flaw339. 公开加密密钥public encipherment key340. 公开密钥基础设施（PKI ）Public Infrastructure （PKI）341. 公开密钥（公钥）public key342. 公开密钥证书（证书）public key certificate（certificate）343. 公开密钥信息public key information344. 公开验证密钥public verification key345. 消除purging346. 随机数Random number347. 随机化Randomized348. 实开放系统Real open system349. 接收方/ 接收者Recipient350. 恢复规程Recovery procedure351. 冗余Redundancy352. 参照确认机制reference validation mechanism353. 细化refinement354. 反射攻击reflection attack355. 反射保护reflection protection356. 中继系统relay system357. 可依赖方relying party358. 重放攻击replay attack359. 抵赖repudiation360. 资源分配resource allocation361. 受限区restricted area362. 保留的ADI retained ADI363. 揭示reveal364. 撤销证书revocation certificate365. 撤销证书列表revocation list certificate366. 风险risk367. 风险分析risk analysis368. 风险管理risk management369. 角色role370. 角色分配证书role assignment certificate371. 角色规范证书role specification certificate372. 回退rollback373. 根root374. 循环函数/ 轮函数round-function375. 路由选择routing376. 路由选择控制routing control377. 基于规则的安全策略rule-based security policy378. SA 属性SA-attributes379. 安全保护（大）地safety protection earth380. 封印/ 密封seal381. 秘密密钥secret key382. 安全配置管理secure configuration management383. 安全信封（SENV）secureenvelope384. 安全交互规则secure interactionrules385. 安全操作系统secure operatingsystem386. 安全路径secure path387. 安全状态secure state388. 安全管理员security administrator389. 安全报警security alarm390. 安全报警管理者security alarm administrator391. 安全关联security association392. 安全保证security assurance393. 安全属性security attribute394. 安全审计security audit395. 安全审计消息security audit message396. 安全审计记录security audit record397. 安全审计踪迹security audit trail398. 安全审计者security auditor399. 安全机构security authority400. 安全证书security certificate401. 安全证书链security certificate chain402. 安全通信功能security communication function403. 安全控制信息security control information404. 安全域security domain405. 安全域机构security domain authority406. 安全要素security element407. 安全交换security exchange408. 安全交换功能security exchange function409. 安全交换项security exchange item410. 安全特征security features411. 安全过滤器security filter412. 安全功能security function413. 安全功能策略security function policy414. 安全信息security information415. 安全内核security kernel416. 安全等级security level417. 安全管理信息库Security Management Information Base418. 安全目的security objective419. 安全周边security perimeter420. 安全策略security policy421. 安全恢复security recovery422. 安全关系security relationship423. 安全报告security report424. 安全需求security requirements425. 安全规则security rules426. 安全规范security specifications427. 安全状态security state428. 安全目标security target429. 安全测试security testing430. 安全变换security transformation431. 安全相关事件Security-related event432. 敏感信息sensitive information433. 敏感性sensitivity434. 敏感标记sensitivity label435. 屏蔽shield436. 短时中断short interruption437. 安全服务sicurity service438. 简单鉴别simple authentication439. 单项结合安全关联single-item-bound security association440. 单级装置single-level device441. 中级功能强度SOF-medium442. 源认证机构Source of Authority (SOA)443. 欺骗spoofing444. 待机模式、休眠模式stand-by mode 、sleep-mode 445. 强鉴别strong authentication446. 主体subject447. 管态supervisor state448. 对称鉴别方法symmetric authentication method 449. 对称密码算法symmetric cryptographic algorithm 450. 对称密码技术symmetric cryptographic technique 451. 对称加密算法symmetric encipherment algorithm 452. 系统完整性system integrity453. 系统完整性规程system integrity procedure454. 系统安全功能system security function455. 技术攻击technological attack456. 终端标识terminal identification457. 威胁threat458. 威胁监控threat monitoring459. 防雷保护接地thunder proof protection ground460. 时间戳time stamp461. 时变参数time variant parameter462. 时间相关口令time-dependent password463. 令牌token464. 通信业务流保密性traffic flow confidentiality465. 通信业务流安全traffic flow security466. 陷门trap door467. 特洛伊木马Trojan horse468. 可信/ 信任trust469. 可信信道trusted channel470. 可信计算机系统trusted computer system 471. 可信计算基trusted computing base472. 可信实体trusted entity473. 可信主机trusted host474. 可信路径trusted path475. 可信软件trusted software可信第三方trusted third party476.477. 可信时间戳trusted time stamp 478. 可信时间戳机构trusted time stmping authority 479. 无条件可信实体unconditionally trusted entity 480. 单向鉴别unilateral authentication481. 不间断供电系统uninterupted power supply system 482. 用户鉴别user authentication483. 用户标识user identification(user ID)484. 用户- 主体绑定user-subject binding485. 确认validation486. 验证verification487. 验证函数verification function488. 验证密钥verification key489. 验证过程verification process 490. 验证者verifier491. 脆弱性vulnerability。

网络安全中英词汇对照表Access Control List（ACL）访问控制列表access token 访问令牌account lockout 帐号封锁account policies 记帐策略accounts 帐号adapter 适配器adaptive speed leveling 自适应速率等级调整Address Resolution Protocol(ARP) 地址解析协议Administrator account 管理员帐号ARPANET 阿帕网（internet的前身）algorithm 算法alias 别名allocation 分配、定位alias 小应用程序allocation layer 应用层API 应用程序编程接口anlpasswd 一种与Passwd+相似的代理密码检查器applications 应用程序ATM 异步传递模式attack 攻击audio policy 审记策略auditing 审记、监察back-end 后端borde 边界borde gateway 边界网关breakabie 可破密的breach 攻破、违反cipher 密码ciphertext 密文CAlass A domain A类域CAlass B domain B类域CAlass C domain C类域classless addressing 无类地址分配cleartext 明文CSNW Netware客户服务client 客户，客户机client/server 客户机/服务器code 代码COM port COM口（通信端口）CIX 服务提供者computer name 计算机名crack 闯入cryptanalysis 密码分析DLC 数据链路控制decryption 解密database 数据库dafault route 缺省路由dafault share 缺省共享denial of service 拒绝服务dictionary attack 字典式攻击directory 目录directory replication 目录复制domain 域domain controller 域名控制器domain name 域名DNS 域名服务器DNS(Domain Name System,域名系统)是指在 Internet上查询域名或IP地址的目录服务系统。

信息安全工程师英语词汇以下是一些信息安全工程师可能常用的英语词汇：1. Information Security（信息安全）2. Cybersecurity（网络安全）3. Hacker（黑客）4. Cracker（破解者）5. Virus（病毒）6. Spyware（间谍软件）7. Malware（恶意软件）8. Phishing（网络钓鱼）9. Social Engineering（社交工程）10. Zero Day Attack（零日攻击）11. Patch Management（补丁管理）12. Firewall（防火墙）13. Antivirus Software（杀毒软件）14. Encryption（加密）15. Decryption（解密）16. Digital Certificate（数字证书）17. Public Key Infrastructure (PKI)（公钥基础设施）18. Two-Factor Authentication（双因素认证）19. Password Policy（密码策略）20. Security Audit（安全审计）21. Vulnerability Assessment（漏洞评估）22. Incident Response（事件响应）23. Data Privacy（数据隐私）24. Data Protection（数据保护）25. Compliance（合规性）26. ISO 27001（信息安全管理体系标准）27. NIST SP 800-53（美国国家安全标准）28. CMMI（能力成熟度模型集成）29. COBIT（IT治理框架）30. ITIL（IT服务管理框架）以上仅是一些常见的词汇，实际上信息安全领域的词汇非常广泛。

信息安全技术术语（中英文）1.0 Network Security 网络安全1.1 Implementsecurity configuration parameters on network devices and othertechnologies. 在网络设备和其他设备上实施安全配置参数Firewalls 防火墙Routers 路由器Switches 交换机Load Balancers 负载均衡Proxies 代理Web security gateways Web 安全网关VPN concentrators VPN 网关NIDS and NIPS 网络入侵检测与网络入侵防范* Behavior based 基于行为* Signature based 基于特征* Anomaly based 基于异常* Heuristic 启发式Protocol analyzers 协议分析仪Spam filter 垃圾邮件过滤UTM security appliances 统一威胁管理* URL filter URL 过滤* Content inspection 内容检查* Malware inspection 恶意软件检查Web application firewall vs. network firewallWeb 应用防火墙与网络防火墙Application aware devices 应用端设备* Firewalls 防火墙* IPS 入侵防御* IDS 入侵检测* Proxies 代理1.2 Given a scenario,use secure network administration principles. 给定一个场景，应用安全网络管理原则Rule-based management 基于规则的管理Firewallrules 防火墙规则VLAN ma nageme nt VLA 管理Secure router configuration 安全路由配置Access control lists 访问控制列表Port Security 端口安全802.1x 802.1xFlood guards 流量攻击防护Loop protection 环路保护Implicit deny 默认拒绝Network separation 网络隔离Log analysis 日志分析Unified Threat Management 统一威胁管理1.3 Explain networkdesign elements and components. 解释网络设计的元素和组件DMZ非军事化区DMZSubnetting 子网VLAN 虚拟局域网NAT 网络地址翻译Remote Access 远程接入Telephony 电话NAC网络接入控制NACVirtualization 虚拟化Cloud Computing 云计算* Platform as a Service 平台即服务* Software as a Service 软件即服务* Infrastructure as a Service 基础设施即服务* Private 私有云* Public 公有云* Hybrid 混合云* Community 社区Layered security / Defense in depth 分层安全/ 深度防御1.4 Given a scenario,implement common protocols and services. 给定一个场景，实施通用的协议和服务Protocols 协议* IPSec* SNMP* SSH* DNS* TLS* SSL* TCP/IP* FTPS* HTTPS* SCP* ICMP* IPv4* IPv6* iSCSI* Fibre Channel* FCoE* FTP* SFTP* TFTP* TELNET* HTTP* NetBIOSPorts 端口* 21* 22* 25* 53* 80* 110* 139* 143* 443* 3389OSI relevance OSI 相关1.5 Given a scenario,troubleshoot security issues related to wireless networking. 给定一个场景，对无线组网中的安全问题进行故障排查WPAWPA2WEPEAPPEAPLEAPMAC filter MAC 过滤Disable SSID broadcast 禁用SSID 广播TKIPCCMPAntenna PlacementPower level controlsCaptive portalsAntenna typesSite surveysVPN (over open wireless)2.0 Compliance and Operational Security 合规与运维安全2.1 Explain theimportance of risk related concepts. 解释风险相关概念的重要性Control types 控制类型* Technical 技术性* Management 管理性* Operational 操作性False positives 误报False negatives 漏报Importance of policies in reducing risk 风险降低策略的重要性* Privacy policy 隐私策略* Acceptable use 可接受使用* Security policy 安全策略* Mandatory vacations 强制度假* Job rotation 工作轮换* Separation of duties 职责分离* Least privilege 最小特权Risk calculation 风险计算* Likelihood 可能性* ALE 年度预期损失* Impact 影响* SLE 单次预期损失* ARO 年度发生率* MTTR 平均故障维修时间* MTTF 平均失效前时间* MTBF 平均故障间隔时间Quantitative vs. qualitative 定量vs. 定性Vulnerabilities 漏洞Threat vectors 威胁Probability / threat likelihood 可能性/ 威胁可能性Risk-avoidance, transference, acceptance,mitigation, deterrence 风险规避，转移，接受，降低，威慑Risks associated with Cloud Computing andVirtualization 云计算与虚拟化相关的风险Recovery time objective and recovery pointobjective 恢复时间目标与恢复点目标2.2 Summarize thesecurity implications of integrating systems and data with third parties. 总结与第三方集成系统与数据的安全含义On-boarding/off-boarding business partners 驻场/ 场外的业务合作伙伴Social media networks and/or applications 社交媒体网络与应用Interoperability agreements互操作协议* SLA 服务水平协议* BPA* MOU 备忘录* ISAPrivacy considerations 隐私考虑Risk awareness 风险意识Unauthorized data sharing 非授权数据共享Data ownership 数据所有权Data backups 数据备份Follow security policy and procedures 遵从安全策略与程序Review agreement requirements to verifycompliance and performance 审核协议需求来确认合规性与性能standards 标准2.3 Given a scenario,implement appropriate risk mitigation strategies. 给定一个场景，实施正确的风险降低策略Change man ageme nt 变更管理Incident management 事件管理User rights and permissions reviews 用户权限审核Perform routine audits 执行日常审计Enforce policies and procedures to prevent dataloss or theft 加强策略和程序来阻止数据的损失或失窃Enforce technology controls 加强技术控制* Data Loss Prevention (DLP) 数据防泄漏( DLP)2.4 Given a scenario,implement basic forensic procedures. 给定一个场景，实施基本的取证程序Order of volatility 波动的顺序Capture system image 获取系统镜像Network traffic and logs 网络流量与日志Capture video 获取视频录像Record time offset 记录时间偏离Take hashes 进行哈希校验Screenshots 截屏Witnesses 目击者Track man hours and expense 跟踪记录人员时间和花费Chain of custody 证据链Big Data analysis 大数据分析2.5 Summarize commonincident response procedures. 总结通用的事件响应程序Preparation 准备Incident identification 事件识别Escalation and notification 升级与通知Mitigation steps 缓解步骤Lessons learned 经验学习Reporting 汇报Recovery/reconstitution procedures 恢复/ 重建程序First responder 第一响应人Incident isolation 事件隔离* Quarantine 隔离区* Device removal 设备清除Data breach 数据泄露Damage and loss control 灾害与损失控制2.6 Explain theimportance of security related awareness and training. 解释安全相关意识和培训的重要性Security policy training and procedures 安全策略培训与程序Role-based training 基于角色的培训Personally identifiable information 个人可识别信息Information classification 信息分级* High 高* Medium 中* Low 低* Confidential 机密* Private 隐私* Public 工控Data labeling, handling anddisposal 数据标签、处理与废弃Compliance with laws, best practices andstandards 法律、最佳实践与标准的合规User habits 用户习惯* Password behaviors 密码行为* Data handling 数据处理* Clean desk policies 桌面清理策略* Prevent tailgating 防止尾随* Personally owned devices 个人拥有的设备New threats and new security trends/alerts 新威胁与新安全趋势/ 警告* New viruses 新病毒* Phishing attacks 钓鱼攻击* Zero-day exploits 零日攻击Use of social networking and P2P 社会工程和P2P的使用Follow up and gather training metrics tovalidate compliance and security 遵从并收集培训度量来验证合规与安全posture 态度2.7 Compare andcontrast physical security and environmental controls. 比较和对比物理安全环境控制Environmental controls 环境控制* HVAC 空调暖通* Fire suppression 灭火* EMI shielding 防电磁泄漏* Hot and cold aisles 冷热通道* Environmental monitoring 环境监控* Temperature and humidity controls温湿度控制Physical security 物理安全* Hardware locks 硬件锁* Mantraps 陷门（双重门）* Video Surveillance 视频监控* Fencing 篱笆* Proximity readers 接近探测* Access list 访问列表* Proper lighting 正确的照明* Signs 标记* Guards 门卫* Barricades 栅栏* Biometrics 生物识别* Protected distribution （cabling）分发保护（线缆）* Alarms 报警* Motion detection 活动探测Control types 控制类型* Deterrent 威慑性* Preventive 预防性* Detective 检测性* Compensating 补偿性* Technical 技术性* Administrative 管理性2.8 Summarize riskmanagement best practices. 总结风险管理的最佳实践Business continuity concepts 业务连续性概念* Business impact analysis 业务影响分析* Identification of critical systems and components 识别关键系统与组件* Removing single points of failure 消除单点故障* Business continuity planning and testing 业务连续性规划与测试* Risk assessment 风险评估* Continuity of operations 运维连续性* Disaster recovery 灾难恢复* IT contingency planning IT 连续性规划* Succession planning 接班人规划* High availability 高可用性* Redundancy 冗余* Tabletop exercises 桌面演练Fault tolerance 容错* Hardware 硬件* RAID RAID 磁盘阵列* Clustering 集群* Load balancing 负载均衡* Servers 服务器Disaster recovery concepts 灾难恢复概念* Backup plans/policies 备份计划/ 策略* Backup execution/frequency 备份执行/ 频率* Cold site 冷站* Hot site 热站* Warm site 温站2.9 Given a scenario,select the appropriate control to meet the goals of security. 给定一个场景，选择合适的控制来满足安全目标Confidentiality 机密性* Encryption 加密* Access controls 访问控制* Steganography 隐写术Integrity 完整性* Hashing 哈希* Digital signatures 数字签名* Certificates 证书* Non-repudiation 抗抵赖Availability 可用性* Redundancy 冗余* Fault tolerance 容错* Patching 补丁Safety 场所安全* Fencing 栅栏* Lighting 照明* Locks 门禁* CCTV 闭路电视* Escape plans 逃生计划* Drills 演练* Escape routes 逃生路径* Testing controls 测试控制重信息安全管理，对技术的涉及也不太深入，只有Security+ 认证才是技术人员专属的。

信息安全术语大全IA 中英文对照来源：作者：1. （N）中继(N)-relay2. 抽象语法abstract syntax3. 访问/存取access4. 访问控制access control5. 访问（存取）控制证书access control certificate6. 访问控制判决功能Access control Decision Function(ADF)7. 访问控制判决信息Access control Decision Information(ADI)8. 访问控制实施功能Access control Enforcement Function(AEF)9. 访问控制信息access control information10. 访问控制列表access control list11. 访问控制机制access control mechanisms12. 访问控制策略access control policy13. 访问控制策略规则access control policy rules14. 访问控制令牌access control token15. 访问列表access list16. 访问周期access period17. 访问请求access request18. 访问类型access type19. 认可/审批accreditation20. 主动威胁active threat21. 主动搭线窃听active wiretapping22. 报警处理器alarm processor23. 应用级防火墙application level firewall24. 资产Assets25. 赋值assignment26. 关联安全状态association security state27. 保障/保证assurance28. 非对称认证方法asymmetric authentication method29. 非对称密码算法asymmetric cryptographic algorithm30. 非对称密码技术asymmetric cryptographic technique31. 非对称加密系统asymmetric encipherment system32. 非对称密钥对asymmetric key pair33. 非对称签名系统asymmetric signature system34. 属性attribute35. 属性管理机构撤销列表（AARL）Attribute Authority Revocation List(AARL)36. 属性管理机构（AA）Attribute Authority(AA)37. 属性证书Attribute certificate38. 属性证书撤销列表（ACRL）Attribute Certificate Revocation List(ACRL)39. 审计/审核audit40. 审计分析器audit analyzer41. 审计归档audit archive42. 审计机构audit authority43. 审计调度器audit dispatcher44. 审计提供器audit provider45. 审计记录器audit recorder46. 审计踪迹audit trail47. 审计跟踪收集器audit trail collector48. 审计跟踪检验器audit trail examiner49. 鉴别/认证authentication50. 认证证书authentication certificate51. 鉴别数据authentication data52. 鉴别（认证）信息authentication imformation53. 鉴别（认证）发起方authentication initiator54. 鉴别（认证）令牌authentication token(token)55. 鉴别（认证）符authenticator56. 授权用户authorised user57. 授权机构/机构Authority58. 授权机构证书authority certificate59. 授权authorization60. 授权管理员authorized administrator61. 自动安全监控automated security monitoring62. 可用性availability63. 数据可用性availabity of data64. 备份规程bakcup procedure65. 基础证书撤消列表base CRL66. 分组/块block67. 分组链接block chaining68. 界限检查bounds checking69. 简码列表brevity lists70. 浏览browsing71. CA证书CA-certificate72. 回叫call back73. 权能/能力capability74. 证书certificate75. 证书策略certificate policy76. 证书序列号certificate serial number77. 证书用户certificate user78. 证书确认certificate validation79. 认证certification80. 认证机构certification authority81. 认证机构撤销列表（CARL）Certification Authority Revocation List (CARL)82. 认证路径certification path83. 信道/通道channel84. 密文ciphertext85. 申明鉴别信息claim authentication information86. 许可权clearance87. 明文cleartext88. 无碰撞（冲突）散列函数collision resistant hash-function89. 混合型防火墙combination firewall90. 共用接地系统common grounding system91. 通信安全communications security92. 分割compartmentalization93. 构件/组件/部件component94. 泄漏compromise95. 已泄露证据compromised evidence96. 泄漏发射compromising emanations97. 计算机系统computer system98. 隐蔽系统concealment system99. 配置管理configuration management100. 配置管理系统configuration management system 101. 不带恢复的连接完整性connection integrity without recovery 102. 无连接保密性connectionless confidentiality103. 无连接完整性connectionless integrity104. 连通性connectivity105. 应急计划contingency plan106. 控制区control zone107. 可控隔离controllable isolation108. 受控访问controlled access109. 受控可访问性controlled accessibility110. 受控共享controlled sharing111. 成本风险分析cost-risk analysis112. 对抗countermeasure113. 隐蔽信道covert channel114. 隐蔽存储信道covert storage channel115. 隐蔽时间信道covert timing channel116. 凭证credentials117. CRL分发点CRL distribution point118. 串扰cross-talk119. 密码分析cryptanalysis120. 密码算法crypto-algorithm121. 密码链接cryptographic chaining122. 密码校验函数cryptographic check function123. 密码校验值cryptographic check value124. 密码同步cryptographic synchronization125. 密码体制cryptographic system; cryptosystem126. 密码编码（学）cryptography127. 密码运算crypto-operation128. 密码安全cryptosecurity129. 数据保密性data confidentiality130. 数据损害data contamination131. 数据完整性data integrity132. 数据原发鉴别data origin authentication133. 数据串（数据）data string(data)134. 数据单元完整性data unit integrity135. 解密/脱密decipherment136. 降级degradation137. 委托delegation138. 委托路径delegation path139. 交付机构delivery authority140. 增量证书撤销列表delta-CRL(dCRL)141. 拒绝服务denial of service142. 依赖/依赖性dependency143. 数字签名digital signature144. 目录信息库Directory Information Base145. 目录信息树Directory Information Tree146. 目录系统代理Directory system Agent147. 目录用户代理Directory user Agent148. 可区分名distinguished name149. 可区分标识符distinguishing identifier150. 加密Encipherment、encipher、encryption151. 加密算法encryption algorithm152. 终端实体end entity153. 终端系统end system154. 终端实体属性证书撤销列表（EARL）End-entity Attribute Certificate Revocation List 155. 终端实体公钥证书撤销列表（EPRL）End-entity Public-key Certificate Revocation List156. 端到端加密end-to-end encipherment157. 实体鉴别entity authentication158. 环境变量environmental variables159. 评估保证级evaluation assurance level(EAL)160. 评估机构evaluation authority161. 评估模式evaluation scheme162. 事件辨别器event discriminator163. 证据evidence164. 证据生成者evidence generator165. 证据请求者evidence requester166. 证据主体evidence subject167. 证据使用者evidence user168. 证据验证者evidence verifier169. 交换鉴别信息exchange authentication information170. 外部IT实体external IT entity171. 外部安全审计external security audit172. 故障访问failure access173. 故障控制failure control174. 容错fault tolerance175. 特征features176. 反馈缓冲器feedback buffer177. 取数保护fetch protection178. 文件保护file protection179. 防火墙firewall180. 固件firmware181. 形式化证明formal proof182. 形式化顶层规范formal top-level specification183. 形式化验证formal verification184. 完全CRL full CRL185. 粒度granularity186. 接地网ground grid187. 接地电阻ground resistance188. 接地grounding189. 接地电极grounding electrode190. 接地系统grounding system191. 握手规程handshaking procedure192. 散列函数（哈希函数）hash function193. 散列代码hash-code194. 散列函数标识符hash-function identifier195. 隐藏hide196. 持有者holder197. 主机Host198. 宿主单元host unit199. 标识identification200. 标识数据identification data201. 抗扰度immunity(to a disturbance)202. 假冒impersonation203. 印章imprint204. 交错攻击imterleaving attack205. 不完全参数检验incomplete parameter checking206. 间接攻击indirect attack207. 间接CRL indirect CRL (iCRL)208. 信息系统安全information system security209. 信息系统安全管理体系结构information system security management architecture 210. 信息技术设备information technology equipment211. 初始编码规则initial encoding rules212. 初始化值initialization value213. 发起者initiator214. 完整性integrity215. 禁止interdiction216. 交错攻击interleaving attack217. 内部通信信道internal communication channel 218. 内部安全审计internal security audit219. 隔离isolation220. 密钥key221. 密钥协商key agreement222. 密钥确认key confirmation223. 密钥控制key control224. 密钥分发中心key distribution centre225. 密钥管理key management226. 密钥转换中心key translation centre227. 标记label228. 主、客体标记label of subject and object229. 最小特权least privilege230. 雷电电磁脉冲lightning electromagnetic pulse 231. 雷电防护区lightning protection zones232. 受限访问limited access233. 链路加密link encryption234. 逐链路加密link-by-link encipherment235. 本地系统环境local system environment236. 漏洞loophole237. 故障malfunction238. 管理信息Management Information239. 强制访问控制mandatory access control240. 冒充Masquerade241. 测量measurement242. 消息message243. 消息鉴别码message anthentication code244. 仿制mimicking245. 监控器（监控机构）monitor(monitor authority)246. 监控monitoring247. 多级装置multilevel device248. 多级安全multilevel secure249. 多访问权终端multiple access rights terminal 250. 相互鉴别mutual authentication251. n位分组密码n-bit block cipher252. 网络实体network entity253. 网络层network layer254. 网络协议network protocol255. 网络协议数据单元network protocol data unit256. 网络中继network relay257. 网络安全network security258. 网络服务network service259. 网络可信计算基network trusted computed base 260. 抗抵赖non-repudiation261. 抗抵赖交换non-repudiation exchange262. 抗抵赖信息non-repudiation information 263. 创建抗抵赖/抗创建抵赖non-repudiation of creation 264. 交付抗抵赖/抗交付抵赖non-repudiation of delivery 265. 原发抗抵赖non-repudiation of origin266. 接收抗抵赖/抗接收抵赖non-repudiation of receipt 267. 发送抗抵赖/抗发送抵赖non-repudiation of sending 268. 提交抗抵赖/抗提交抵赖non-repudiation of submission 269. 抗抵赖策略non-repudiation policy270. 抗抵赖服务请求者non-repudiation service requester271. 公证notarization272. 公证权标notarization token273. 公证方/公证者notary274. 公证方（公证机构）notary(notary authority)275. NRD权标/NRD令牌NRD token276. NRO权标NRO token277. NRS权标NRS token278. NRT权标NRT token279. 客体object280. 对象方法object method281. 客体重用object reuse282. 离线鉴别证书off-line authentication certificate 283. 离线密码运算offline crypto-operation284. 单向函数one-way function285. 单向散列函数one-way hash function 286. 在线鉴别证书on-line authentication certificate 287. 在线密码运算online crypto-operation288. 开放系统open system289. 组织安全策略organisational security policies290. 原发者originator291. OSI管理OSI Management292. 带外out-of-band293. 包package294. 包过滤防火墙packet filter firewall295. 填充padding296. 成对的密钥pairwise key297. 被动威胁passive threat298. 被动窃听passive wiretapping299. 口令password300. 口令对话password dialog301. 对等实体鉴别peer-entity authentication302. 渗透penetration303. 渗透轮廓penetration profile304. 渗透痕迹penetration signature305. 渗透测试penetration testing306. 个人识别号person identification number(PIN)307. 人员安全personal security308. 物理安全physical security309. 明文plain text310. 策略policy311. 策略映射policy mapping312. 端口port313. 表示上下文presentation context314. 表示数据值presentation data value315. 表示实体presentation-entity316. 预签名pre-signature317. 本体principal318. 最小特权原则principle of least privilege319. 服务优先权priority of service320. 隐私privacy321. 保密变换privacy transformation322. 私有解密密钥private decipherment key323. 私有密钥（私钥）private key324. 私有签名密钥private signature key325. 特权指令privileged instructions326. 规程安全procedural security327. 产品product328. 证明proof329. 保护表示上下文protecting presentation context330. 保护传送语法protecting transfer syntax331. 保护映射protection mapping332. 保护轮廓protection profile333. 保护环protection ring334. 保护接大地protective earthing335. 协议数据单元protocol data unit336. 协议实现一致性声明protocol implementation conformance statement337. 代理服务器proxy server338. 伪缺陷pseudo-flaw339. 公开加密密钥public encipherment key340. 公开密钥基础设施（PKI）Public Infrastructure (PKI)341. 公开密钥（公钥）public key342. 公开密钥证书（证书）public key certificate(certificate)343. 公开密钥信息public key information344. 公开验证密钥public verification key345. 消除purging346. 随机数Random number347. 随机化Randomized348. 实开放系统Real open system349. 接收方/接收者Recipient350. 恢复规程Recovery procedure351. 冗余Redundancy352. 参照确认机制reference validation mechanism353. 细化refinement354. 反射攻击reflection attack355. 反射保护reflection protection356. 中继系统relay system357. 可依赖方relying party358. 重放攻击replay attack359. 抵赖repudiation360. 资源分配resource allocation361. 受限区restricted area362. 保留的ADI retained ADI363. 揭示reveal364. 撤销证书revocation certificate365. 撤销证书列表revocation list certificate366. 风险risk367. 风险分析risk analysis368. 风险管理risk management369. 角色role370. 角色分配证书role assignment certificate371. 角色规范证书role specification certificate372. 回退rollback373. 根root374. 循环函数/轮函数round-function375. 路由选择routing376. 路由选择控制routing control377. 基于规则的安全策略rule-based security policy378. SA属性SA-attributes379. 安全保护（大）地safety protection earth380. 封印/密封seal381. 秘密密钥secret key382. 安全配置管理secure configuration management 383. 安全信封（SENV）secure envelope384. 安全交互规则secure interaction rules385. 安全操作系统secure operating system386. 安全路径secure path387. 安全状态secure state388. 安全管理员security administrator389. 安全报警security alarm390. 安全报警管理者security alarm administrator 391. 安全关联security association392. 安全保证security assurance393. 安全属性security attribute394. 安全审计security audit395. 安全审计消息security audit message396. 安全审计记录security audit record397. 安全审计踪迹security audit trail398. 安全审计者security auditor399. 安全机构security authority400. 安全证书security certificate401. 安全证书链security certificate chain 402. 安全通信功能security communication function403. 安全控制信息security control information404. 安全域security domain405. 安全域机构security domain authority406. 安全要素security element407. 安全交换security exchange408. 安全交换功能security exchange function409. 安全交换项security exchange item410. 安全特征security features411. 安全过滤器security filter412. 安全功能security function413. 安全功能策略security function policy414. 安全信息security information415. 安全内核security kernel416. 安全等级security level417. 安全管理信息库Security Management Information Base 418. 安全目的security objective419. 安全周边security perimeter420. 安全策略security policy421. 安全恢复security recovery422. 安全关系security relationship423. 安全报告security report424. 安全需求security requirements425. 安全规则security rules426. 安全规范security specifications427. 安全状态security state428. 安全目标security target429. 安全测试security testing430. 安全变换security transformation431. 安全相关事件Security-related event432. 敏感信息sensitive information433. 敏感性sensitivity434. 敏感标记sensitivity label435. 屏蔽shield436. 短时中断short interruption437. 安全服务sicurity service438. 简单鉴别simple authentication439. 单项结合安全关联single-item-bound security association 440. 单级装置single-level device441. 中级功能强度SOF-medium442. 源认证机构Source of Authority (SOA)443. 欺骗spoofing444. 待机模式、休眠模式stand-by mode 、sleep-mode445. 强鉴别strong authentication446. 主体subject447. 管态supervisor state448. 对称鉴别方法symmetric authentication method449. 对称密码算法symmetric cryptographic algorithm450. 对称密码技术symmetric cryptographic technique451. 对称加密算法symmetric encipherment algorithm452. 系统完整性system integrity453. 系统完整性规程system integrity procedure454. 系统安全功能system security function455. 技术攻击technological attack456. 终端标识terminal identification457. 威胁threat458. 威胁监控threat monitoring459. 防雷保护接地thunder proof protection ground460. 时间戳time stamp461. 时变参数time variant parameter462. 时间相关口令time-dependent password463. 令牌token464. 通信业务流保密性traffic flow confidentiality465. 通信业务流安全traffic flow security466. 陷门trap door467. 特洛伊木马Trojan horse468. 可信/信任trust469. 可信信道trusted channel470. 可信计算机系统trusted computer system471. 可信计算基trusted computing base472. 可信实体trusted entity473. 可信主机trusted host474. 可信路径trusted path475. 可信软件trusted software476. 可信第三方trusted third party477. 可信时间戳trusted time stamp478. 可信时间戳机构trusted time stmping authority479. 无条件可信实体unconditionally trusted entity480. 单向鉴别unilateral authentication481. 不间断供电系统uninterupted power supply system 482. 用户鉴别user authentication483. 用户标识user identification(user ID)484. 用户-主体绑定user-subject binding485. 确认validation486. 验证verification487. 验证函数verification function488. 验证密钥verification key489. 验证过程verification process490. 验证者verifier491. 脆弱性vulnerability。

网络安全行业术语英文网络安全行业术语英文：1. Malware（恶意软件）- Abbreviation for malicious software, refers to any type of software that is designed with malicious intent, such as viruses, worms, Trojan horses, ransomware, spyware, etc.2. Firewall（防火墙）- A network security device that monitors incoming and outgoing network traffic based on predefined security rules, preventing unauthorized access to or from a private network.3. Encryption（加密）- The process of converting plain text into cipher text, making the information unreadable to anyone without the proper decryption key.4. Phishing（钓鱼）- A cyber attack where attackers try to deceive individuals into disclosing sensitive information, such as passwords or financial information, by posing as trustworthy entities in emails or websites.5. Two-factor authentication（双因素认证）- A security measure that requires users to provide two types of identification factors, such as a password and a biometric scan or a security token, to gain access to a system or account.6. Vulnerability（漏洞）- A weakness or flaw in a system or software that can be exploited by attackers to gain unauthorized access, manipulate data, or disrupt normal operation.7. Patch（补丁）- A software update or fix that is released by vendors to address known vulnerabilities or bugs in their software, aiming to improve security or functionality.8. Intrusion Detection System (IDS)（入侵检测系统）- A network security tool that monitors network traffic, identifies suspicious or potentially malicious activity, and alerts network administrators to potential intrusions.9. Denial of Service (DoS)（拒绝服务）- An attack where an attacker overwhelms a target system or network with a flood of malicious traffic, rendering it unable to respond to legitimate requests.10. Brute-force attack（暴力破解）- An attack method in which an attacker tries all possible combinations of passwords or encryption keys until the correct one is found.11. Antivirus software（防病毒软件）- A software program designed to detect, prevent, and remove computer viruses and other malware from infected systems or networks.12. Social engineering（社交工程）- A technique used by attackers to manipulate individuals into divulging sensitive information or performing certain actions through psychological manipulation, deception, or impersonation.13. Zero-day vulnerability（零日漏洞）- A security vulnerabilitythat is unknown to software vendors or the public, allowing attackers to exploit it before a patch or fix is released.14. Intrusion Prevention System (IPS)（入侵预防系统）- Similar to an IDS, an IPS also monitors network traffic, but it can take action to prevent or block suspicious or malicious activity from compromising the network.15. Penetration testing（渗透测试）- The process of evaluating the security of a system or network by simulating real-world attack scenarios to identify vulnerabilities, weaknesses, or potential entry points.16. Cybersecurity incident response（网络安全事件响应）- The process of handling and responding to a cybersecurity incident in a systematic and organized manner, including detecting, containing, eradicating, and recovering from the incident.17. Data breach（数据泄露）- An incident where unauthorized individuals gain access to sensitive or protected data, leading to potential misuse, theft, or exposure of the data.18. Secure socket layer (SSL)（安全套接层）- A cryptographic protocol used to establish secure, encrypted connections between a web server and a client, ensuring the confidentiality and integrity of the data transmission.19. Network segmentation（网络分割）- The practice of dividinga computer network into smaller subnetworks called "segments" toisolate traffic and limit the impact of potential security breaches.20. Identity and access management（身份和访问管理）- A framework or set of processes and technologies used to manage and control user identities, access rights, and permissions in a network or system.。

网络安全中英词汇对照表Access Control List（ACL） 访问控制列表 access token 访问令牌account lockout 帐号封锁account policies 记帐策略accounts 帐号adapter 适配器adaptive speed leveling 自适应速率等级调整 Address Resolution Protocol(ARP) 地址解析协议 Administrator account 管理员帐号ARPANET 阿帕网（internet的前身）algorithm 算法alias 别名allocation 分配、定位alias 小应用程序allocation layer 应用层API 应用程序编程接口anlpasswd 一种与Passwd+相似的代理密码检查器 applications 应用程序ATM 异步传递模式attack 攻击audio policy 审记策略auditing 审记、监察back-end 后端borde 边界borde gateway 边界网关breakabie 可破密的breach 攻破、违反cipher 密码ciphertext 密文CAlass A domain A类域CAlass B domain B类域CAlass C domain C类域classless addressing 无类地址分配cleartext 明文CSNW Netware客户服务client 客户，客户机client/server 客户机/服务器code 代码COM port COM口（通信端口）CIX 服务提供者computer name 计算机名crack 闯入cryptanalysis 密码分析DLC 数据链路控制decryption 解密database 数据库dafault route 缺省路由dafault share 缺省共享denial of service 拒绝服务dictionary attack 字典式攻击directory 目录directory replication 目录复制domain 域domain controller 域名控制器domain name 域名DNS 域名服务器DNS(Domain Name System,域名系统)是指在 Internet上查询域名或IP 地址的目录服务系统。

信息安全术语大全 IA 中英文对照来源：作者：1. （N）中继(N)-relay2. 抽象语法abstract syntax3. 访问/存取access4. 访问控制access control5. 访问（存取）控制证书access control certificate6. 访问控制判决功能Access control Decision Function(ADF)7. 访问控制判决信息Access control Decision Information(ADI)8. 访问控制实施功能Access control Enforcement Function(AEF)9. 访问控制信息access control information10. 访问控制列表access control list11. 访问控制机制access control mechanisms12. 访问控制策略access control policy13. 访问控制策略规则access control policy rules14. 访问控制令牌access control token15. 访问列表access list16. 访问周期access period17. 访问请求access request18. 访问类型access type19. 认可/审批accreditation页脚内容120. 主动威胁active threat21. 主动搭线窃听active wiretapping22. 报警处理器alarm processor23. 应用级防火墙application level firewall24. 资产Assets25. 赋值assignment26. 关联安全状态association security state27. 保障/保证assurance28. 非对称认证方法asymmetric authentication method29. 非对称密码算法asymmetric cryptographic algorithm30. 非对称密码技术asymmetric cryptographic technique31. 非对称加密系统asymmetric encipherment system32. 非对称密钥对asymmetric key pair33. 非对称签名系统asymmetric signature system34. 属性attribute35. 属性管理机构撤销列表（AARL）Attribute Authority Revocation List(AARL)36. 属性管理机构（AA）Attribute Authority(AA)37. 属性证书Attribute certificate38. 属性证书撤销列表（ACRL）Attribute Certificate Revocation List(ACRL)39. 审计/审核audit40. 审计分析器audit analyzer页脚内容241. 审计归档audit archive42. 审计机构audit authority43. 审计调度器audit dispatcher44. 审计提供器audit provider45. 审计记录器audit recorder46. 审计踪迹audit trail47. 审计跟踪收集器audit trail collector48. 审计跟踪检验器audit trail examiner49. 鉴别/认证authentication50. 认证证书authentication certificate51. 鉴别数据authentication data52. 鉴别（认证）信息authentication imformation53. 鉴别（认证）发起方authentication initiator54. 鉴别（认证）令牌authentication token(token)55. 鉴别（认证）符authenticator56. 授权用户authorised user57. 授权机构/机构Authority58. 授权机构证书authority certificate59. 授权authorization60. 授权管理员authorized administrator61. 自动安全监控automated security monitoring页脚内容362. 可用性availability63. 数据可用性availabity of data64. 备份规程bakcup procedure65. 基础证书撤消列表base CRL66. 分组/块block67. 分组链接block chaining68. 界限检查bounds checking69. 简码列表brevity lists70. 浏览browsing71. CA证书CA-certificate72. 回叫call back73. 权能/能力capability74. 证书certificate75. 证书策略certificate policy76. 证书序列号certificate serial number77. 证书用户certificate user78. 证书确认certificate validation79. 认证certification80. 认证机构certification authority81. 认证机构撤销列表（CARL）Certification Authority Revocation List (CARL)82. 认证路径certification path页脚内容483. 信道/通道channel84. 密文ciphertext85. 申明鉴别信息claim authentication information86. 许可权clearance87. 明文cleartext88. 无碰撞（冲突）散列函数collision resistant hash-function89. 混合型防火墙combination firewall90. 共用接地系统common grounding system91. 通信安全communications security92. 分割compartmentalization93. 构件/组件/部件component94. 泄漏compromise95. 已泄露证据compromised evidence96. 泄漏发射compromising emanations97. 计算机系统computer system98. 隐蔽系统concealment system99. 配置管理configuration management100. 配置管理系统configuration management system 101. 不带恢复的连接完整性connection integrity without recovery 102. 无连接保密性connectionless confidentiality103. 无连接完整性connectionless integrity页脚内容5104. 连通性connectivity105. 应急计划contingency plan106. 控制区control zone107. 可控隔离controllable isolation108. 受控访问controlled access 109. 受控可访问性controlled accessibility 110. 受控共享controlled sharing111. 成本风险分析cost-risk analysis112. 对抗countermeasure113. 隐蔽信道covert channel 114. 隐蔽存储信道covert storage channel115. 隐蔽时间信道covert timing channel116. 凭证credentials117. CRL分发点CRL distribution point118. 串扰cross-talk119. 密码分析cryptanalysis120. 密码算法crypto-algorithm121. 密码链接cryptographic chaining 122. 密码校验函数cryptographic check function 123. 密码校验值cryptographic check value 124. 密码同步cryptographic synchronization页脚内容6125. 密码体制cryptographic system; cryptosystem 126. 密码编码（学）cryptography127. 密码运算crypto-operation128. 密码安全cryptosecurity129. 数据保密性data confidentiality130. 数据损害data contamination131. 数据完整性data integrity132. 数据原发鉴别data origin authentication 133. 数据串（数据）data string(data)134. 数据单元完整性data unit integrity135. 解密/脱密decipherment136. 降级degradation137. 委托delegation138. 委托路径delegation path139. 交付机构delivery authority140. 增量证书撤销列表delta-CRL(dCRL)141. 拒绝服务denial of service142. 依赖/依赖性dependency143. 数字签名digital signature144. 目录信息库Directory Information Base145. 目录信息树Directory Information Tree页脚内容7146. 目录系统代理Directory system Agent147. 目录用户代理Directory user Agent148. 可区分名distinguished name149. 可区分标识符distinguishing identifier150. 加密Encipherment、encipher、encryption151. 加密算法encryption algorithm152. 终端实体end entity153. 终端系统end system154. 终端实体属性证书撤销列表（EARL）End-entity Attribute Certificate Revocation List 155. 终端实体公钥证书撤销列表（EPRL）End-entity Public-key Certificate Revocation List156. 端到端加密end-to-end encipherment157. 实体鉴别entity authentication158. 环境变量environmental variables159. 评估保证级evaluation assurance level(EAL)160. 评估机构evaluation authority161. 评估模式evaluation scheme162. 事件辨别器event discriminator163. 证据evidence164. 证据生成者evidence generator165. 证据请求者evidence requester166. 证据主体evidence subject页脚内容8167. 证据使用者evidence user168. 证据验证者evidence verifier169. 交换鉴别信息exchange authentication information 170. 外部IT实体external IT entity171. 外部安全审计external security audit172. 故障访问failure access173. 故障控制failure control174. 容错fault tolerance175. 特征features176. 反馈缓冲器feedback buffer177. 取数保护fetch protection178. 文件保护file protection179. 防火墙firewall180. 固件firmware181. 形式化证明formal proof182. 形式化顶层规范formal top-level specification 183. 形式化验证formal verification184. 完全CRL full CRL185. 粒度granularity186. 接地网ground grid187. 接地电阻ground resistance页脚内容9188. 接地grounding189. 接地电极grounding electrode190. 接地系统grounding system191. 握手规程handshaking procedure192. 散列函数（哈希函数）hash function193. 散列代码hash-code194. 散列函数标识符hash-function identifier195. 隐藏hide196. 持有者holder197. 主机Host198. 宿主单元host unit199. 标识identification200. 标识数据identification data201. 抗扰度immunity(to a disturbance)202. 假冒impersonation203. 印章imprint204. 交错攻击imterleaving attack205. 不完全参数检验incomplete parameter checking 206. 间接攻击indirect attack207. 间接CRL indirect CRL (iCRL) 208. 信息系统安全information system security页脚内容10209. 信息系统安全管理体系结构information system security management architecture 210. 信息技术设备information technology equipment211. 初始编码规则initial encoding rules212. 初始化值initialization value213. 发起者initiator214. 完整性integrity215. 禁止interdiction216. 交错攻击interleaving attack217. 内部通信信道internal communication channel218. 内部安全审计internal security audit219. 隔离isolation220. 密钥key221. 密钥协商key agreement222. 密钥确认key confirmation223. 密钥控制key control224. 密钥分发中心key distribution centre225. 密钥管理key management226. 密钥转换中心key translation centre227. 标记label228. 主、客体标记label of subject and object229. 最小特权least privilege页脚内容11230. 雷电电磁脉冲lightning electromagnetic pulse 231. 雷电防护区lightning protection zones232. 受限访问limited access233. 链路加密link encryption234. 逐链路加密link-by-link encipherment235. 本地系统环境local system environment236. 漏洞loophole237. 故障malfunction238. 管理信息Management Information239. 强制访问控制mandatory access control240. 冒充Masquerade241. 测量measurement242. 消息message243. 消息鉴别码message anthentication code244. 仿制mimicking245. 监控器（监控机构）monitor(monitor authority)246. 监控monitoring247. 多级装置multilevel device248. 多级安全multilevel secure249. 多访问权终端multiple access rights terminal 250. 相互鉴别mutual authentication页脚内容12251. n位分组密码n-bit block cipher252. 网络实体network entity253. 网络层network layer254. 网络协议network protocol255. 网络协议数据单元network protocol data unit256. 网络中继network relay257. 网络安全network security258. 网络服务network service259. 网络可信计算基network trusted computed base260. 抗抵赖non-repudiation261. 抗抵赖交换non-repudiation exchange262. 抗抵赖信息non-repudiation information 263. 创建抗抵赖/抗创建抵赖non-repudiation of creation 264. 交付抗抵赖/抗交付抵赖non-repudiation of delivery 265. 原发抗抵赖non-repudiation of origin266. 接收抗抵赖/抗接收抵赖non-repudiation of receipt 267. 发送抗抵赖/抗发送抵赖non-repudiation of sending 268. 提交抗抵赖/抗提交抵赖non-repudiation of submission 269. 抗抵赖策略non-repudiation policy270. 抗抵赖服务请求者non-repudiation service requester271. 公证notarization页脚内容13272. 公证权标notarization token273. 公证方/公证者notary274. 公证方（公证机构）notary(notary authority) 275. NRD权标/NRD令牌NRD token276. NRO权标NRO token277. NRS权标NRS token278. NRT权标NRT token279. 客体object280. 对象方法object method281. 客体重用object reuse282. 离线鉴别证书off-line authentication certificate 283. 离线密码运算offline crypto-operation284. 单向函数one-way function285. 单向散列函数one-way hash function 286. 在线鉴别证书on-line authentication certificate 287. 在线密码运算online crypto-operation288. 开放系统open system289. 组织安全策略organisational security policies290. 原发者originator291. OSI管理OSI Management292. 带外out-of-band页脚内容14293. 包package294. 包过滤防火墙packet filter firewall295. 填充padding296. 成对的密钥pairwise key297. 被动威胁passive threat298. 被动窃听passive wiretapping299. 口令password300. 口令对话password dialog 301. 对等实体鉴别peer-entity authentication302. 渗透penetration303. 渗透轮廓penetration profile304. 渗透痕迹penetration signature305. 渗透测试penetration testing306. 个人识别号person identification number(PIN) 307. 人员安全personal security308. 物理安全physical security309. 明文plain text310. 策略policy311. 策略映射policy mapping312. 端口port313. 表示上下文presentation context页脚内容15314. 表示数据值presentation data value315. 表示实体presentation-entity316. 预签名pre-signature317. 本体principal318. 最小特权原则principle of least privilege 319. 服务优先权priority of service320. 隐私privacy321. 保密变换privacy transformation 322. 私有解密密钥private decipherment key 323. 私有密钥（私钥）private key324. 私有签名密钥private signature key325. 特权指令privileged instructions326. 规程安全procedural security327. 产品product328. 证明proof329. 保护表示上下文protecting presentation context 330. 保护传送语法protecting transfer syntax 331. 保护映射protection mapping332. 保护轮廓protection profile333. 保护环protection ring334. 保护接大地protective earthing页脚内容16335. 协议数据单元protocol data unit336. 协议实现一致性声明protocol implementation conformance statement337. 代理服务器proxy server338. 伪缺陷pseudo-flaw339. 公开加密密钥public encipherment key340. 公开密钥基础设施（PKI）Public Infrastructure (PKI)341. 公开密钥（公钥）public key342. 公开密钥证书（证书）public key certificate(certificate)343. 公开密钥信息public key information344. 公开验证密钥public verification key345. 消除purging346. 随机数Random number347. 随机化Randomized348. 实开放系统Real open system349. 接收方/接收者Recipient350. 恢复规程Recovery procedure351. 冗余Redundancy352. 参照确认机制reference validation mechanism353. 细化refinement354. 反射攻击reflection attack355. 反射保护reflection protection页脚内容17356. 中继系统relay system357. 可依赖方relying party358. 重放攻击replay attack359. 抵赖repudiation360. 资源分配resource allocation361. 受限区restricted area362. 保留的ADI retained ADI363. 揭示reveal364. 撤销证书revocation certificate 365. 撤销证书列表revocation list certificate366. 风险risk367. 风险分析risk analysis368. 风险管理risk management369. 角色role370. 角色分配证书role assignment certificate 371. 角色规范证书role specification certificate372. 回退rollback373. 根root374. 循环函数/轮函数round-function375. 路由选择routing376. 路由选择控制routing control页脚内容18377. 基于规则的安全策略rule-based security policy378. SA属性SA-attributes379. 安全保护（大）地safety protection earth380. 封印/密封seal381. 秘密密钥secret key382. 安全配置管理secure configuration management 383. 安全信封（SENV）secure envelope384. 安全交互规则secure interaction rules385. 安全操作系统secure operating system386. 安全路径secure path387. 安全状态secure state388. 安全管理员security administrator389. 安全报警security alarm390. 安全报警管理者security alarm administrator 391. 安全关联security association392. 安全保证security assurance393. 安全属性security attribute394. 安全审计security audit395. 安全审计消息security audit message396. 安全审计记录security audit record397. 安全审计踪迹security audit trail页脚内容19398. 安全审计者security auditor399. 安全机构security authority400. 安全证书security certificate401. 安全证书链security certificate chain 402. 安全通信功能security communication function 403. 安全控制信息security control information404. 安全域security domain405. 安全域机构security domain authority406. 安全要素security element407. 安全交换security exchange408. 安全交换功能security exchange function409. 安全交换项security exchange item410. 安全特征security features411. 安全过滤器security filter412. 安全功能security function413. 安全功能策略security function policy414. 安全信息security information415. 安全内核security kernel416. 安全等级security level417. 安全管理信息库Security Management Information Base 418. 安全目的security objective页脚内容20419. 安全周边security perimeter420. 安全策略security policy421. 安全恢复security recovery422. 安全关系security relationship423. 安全报告security report424. 安全需求security requirements425. 安全规则security rules426. 安全规范security specifications427. 安全状态security state428. 安全目标security target429. 安全测试security testing430. 安全变换security transformation431. 安全相关事件Security-related event432. 敏感信息sensitive information433. 敏感性sensitivity434. 敏感标记sensitivity label435. 屏蔽shield436. 短时中断short interruption437. 安全服务sicurity service438. 简单鉴别simple authentication439. 单项结合安全关联single-item-bound security association页脚内容21440. 单级装置single-level device441. 中级功能强度SOF-medium442. 源认证机构Source of Authority (SOA)443. 欺骗spoofing444. 待机模式、休眠模式stand-by mode 、sleep-mode 445. 强鉴别strong authentication446. 主体subject447. 管态supervisor state448. 对称鉴别方法symmetric authentication method 449. 对称密码算法symmetric cryptographic algorithm 450. 对称密码技术symmetric cryptographic technique 451. 对称加密算法symmetric encipherment algorithm 452. 系统完整性system integrity453. 系统完整性规程system integrity procedure454. 系统安全功能system security function455. 技术攻击technological attack456. 终端标识terminal identification457. 威胁threat458. 威胁监控threat monitoring459. 防雷保护接地thunder proof protection ground460. 时间戳time stamp页脚内容22461. 时变参数time variant parameter 462. 时间相关口令time-dependent password463. 令牌token464. 通信业务流保密性traffic flow confidentiality 465. 通信业务流安全traffic flow security466. 陷门trap door467. 特洛伊木马Trojan horse468. 可信/信任trust469. 可信信道trusted channel470. 可信计算机系统trusted computer system 471. 可信计算基trusted computing base472. 可信实体trusted entity473. 可信主机trusted host474. 可信路径trusted path475. 可信软件trusted software476. 可信第三方trusted third party477. 可信时间戳trusted time stamp478. 可信时间戳机构trusted time stmping authority 479. 无条件可信实体unconditionally trusted entity 480. 单向鉴别unilateral authentication481. 不间断供电系统uninterupted power supply system页脚内容23482. 用户鉴别user authentication 483. 用户标识user identification(user ID) 484. 用户-主体绑定user-subject binding485. 确认validation486. 验证verification487. 验证函数verification function488. 验证密钥verification key489. 验证过程verification process490. 验证者verifier491. 脆弱性vulnerability页脚内容24。