third Cyber Security Assessment Netherlands - NCSC

Spoofing/IP spoofing 

SQL injection 

State secret 

Stepping stone 

Tablet 

Threat 

TNO 

Tool 

Two-factor authentication 

UMTS 

USB 

USB stick 

Vulnerability 

Web application 

Wifi/Wi-Fi 

Zero-day exploit 

Spoofing means ‘impersonating another person’, usually in a malicious sense. IP spoofing uses the 

IP address of another computer, either to mask the origin of the network traffic or to use one computer 

to impersonate actually another computer. 

An attack mechanism that influences the communication between an application/device and a database 

used with the prime aim of manipulating or stealing data held in that database. 

Special information kept secret in the interests of the state or its allies. 

A stepping stone attack is perpetrated through a number of systems and/or organisations. It is also called 

a chain attack. A malicious party will use a series of previously hacked machines to achieve its ultimate 

goal. The stepping stone attack is a tool also used to hide a party’s true identity. 

A portable computer with a screen that is also the main input device. 

The Cyber Security Assessment defines goal and threat as follows: 

» The higher goal (intention) could be to strengthen the competitive position; political and national gain, 

social disruption, to prevent the threat to life, etc. 

» Threats in the assessment have been classified as follows, for instance: digital espionage, digital 

sabotage, the publication of confidential data, digital disruption, cyber crime and indirect disruptions. 

Netherlands Organisation for Applied Scientific Research. 

A technology or computer program used by an attacker to abuse or magnify existing vulnerabilities. 

A method of authentication requiring two independent factors of an identity. These factors may be: 

knowledge, possession or biometric properties that prove the identity of the requester. 

Universal Mobile Telecommunications System; see 2G/3G. 

Universal Serial Bus (USB) is a specification of a standard for the communication between a device, 

generally a computer, and peripherals. 

Portable storage medium that can be connected to computers by a USB port. 

A characteristic of a society, organisation or information system (or part of these) that provides a malicious 

party with the opportunity to block and impact on legitimate access to information or functionality or to 

access these without authorisation. 

The term used to designate the totality of software, databases and systems involved in the proper 

functioning of a website, the website being the visible portion. 

A trademark of the Wi-Fi Alliance. A device with Wi-Fi can communicate wirelessly with other devices 

at a range of up to several hundred metres. 

An exploit that takes advantage of a vulnerability for which no patch is as yet available. 

110

Previous page

Next page

1

3

4

5

7

9

10

11

12

13

15

16

17

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

45

46

47

48

49

50

51

52

53

55

57

58

59

61

62

63

65

66

67

68

69

70

71

73

74

75

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

116

third Cyber Security Assessment Netherlands - NCSC

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?