preaction system – RAD (Rapid Application Development) 477
A R P, 290
converged, 86
cryptography, 66
DNS, 290
encryption, 299
messaging, 87
multilayer, 88, 351
non- I P, 10 0
routing protocols, 84
storage mounts over TCP, 86
TCP, 81, 290
U DP, 290
VPN, 92
provisioning, 114, 220, 413, 424
hardening provisions, 251
third-parties and, 114
workflow-based account provisioning,
413
Provisioning Service Point, 221
Provisioning Service Target, 221
proxies, 84, 349
prudent man rule, 318
pseudoflaws, 156, 382, 383, 409, 445
PSH flag, 440
public cloud, 384
public keys, 436Q
QoS (quality of service), 392
qualitative risk assessment, 4, 26, 308, 319
likelihood, 454
matrix, 18
probability, 454
qualitative tools, 325
QualysGuard, 429
quantitative risk assessment, 2, 4, 318, 319R
race conditions, 361
RAD (Rapid Application Development), 404preaction system, 451
precise timing attack, 67
Presentation layer, 352
preservation phase, 414, 423
preventive control, 4, 445
PRI (Primary Rate Interface), 352
primary keys, databases, 207
primary storage, 178, 394
principle of implicit denial, 453
principle of least privilege, 381, 382, 385,
432
privacy notices, 16
privacy rights, 11
privacy shield agreements, 3
Privacy Shield compliance, 328
Privacy Shield framework, 39
private cloud computing, 417
privilege creep, 110, 165, 360, 361, 387, 432
privilege escalation, 380, 387
privileged access reviews, 382
privileged modes of operation, 62
privileges, 164, 178, 261, 359. See also
permissions
assigning, 155
attacks, 165
default, 159
entitlement, 385
excessive privileges, 114
granting, 158
principle of least privilege, 381, 385
reviewing, 155
proactive monitoring, 411
probability, risk assessment and, 222
probability/impact matrix, 414
procedures, 292, 447
production code, 181
programmatic interfaces, 421
programming, 139
programs, 261
project management tools, 187
project scope and planning phase, 323
protocols
AAA, 106
application-specific, 351