11.8.1. 网络相关
11.8.1.1. 网络协议
- HTTP (HyperText Transfer Protocol)
- HTTPS (HyperText Transfer Protocol over Secure Socket Layer)
- 动态主机配置协议 (Dynamic Host Configuration Protocol,DHCP)
11.8.1.2. 路由系统
- 自治系统 (Autonomous System, AS)
- 内部网关协议 (Interior Gateway Protocol, IGP)
- 外部网关协议 (External Gateway Protocol, EGP)
- 域内路由选择 (interdomain routing)
- 域间路由选择 (intradomain routing)
- 路由信息协议 (Routing Information Protocol, RIP)
- 开放最短路径优先 (Open Shortest Path First, OSPF)
- 动态路由协议 (Dynamic Routing Protocols, DRP)
- 首跳冗余性协议 (First Hop Redundancy Protocols, FHRP)
- 热备份路由器协议 (hot standby router protocol, HSRP)
- 虚拟路由冗余协议 (virtual router redundancy protocol, VRRP)
- 网关负载均衡协议 (gateway load balancing protocol, GLBP)
11.8.2. 开发相关
- REST (Representation State Transformation)
- 持续集成 (Continuous Integration, CI)
- 持续交付 (Continuous Deployment, CD)
11.8.3. 安全相关
-
- 缺点 (defect / mistake)
-
- 软件在实现上和设计上的弱点
- 缺点是缺陷和瑕疵的统称
-
- 缺陷 (bug)
-
- 实现层面的软件缺点
- 容易被发现和修复
- 例如:缓冲区溢出
-
- 瑕疵 (flaw)
-
- 一种设计上的缺点,难以察觉
- 瑕疵往往需要人工分析才能发现
- 软件系统中错误处理或恢复模块,导致程序不安全或失效
-
- 漏洞 (vulnerability)
-
- 高级持续威胁 (Advanced Persistent Threat, APT)
- IAST (Interactive Application Security Testing)
- DAST (Dynamic Application Security Testing)
- SAST (Static Application Security Testing)
- ATT&CK™ (Adversarial Tactics, Techniques, and Common Knowledge, ATT&CK)
11.8.3.1. 安全开发
- 安全信息和事件管理 (Security Information Event Management, SIEM)
- SOAR (Security Orchestration, Automation and Response)
- SDL (Security Development Lifecycle)
11.8.3.2. 防护设施
- 入侵检测系统 (Intrusion Detection System, IDS)
- 主机型入侵检测系统 (Host-based Intrusion Detection System, HIDS)
- RASP (Runtime Application Self-protection)
11.8.3.3. 安全策略
- 跨域资源共享策略 (Cross-Origin Resource Sharing, CORS)
11.8.4. 攻击相关
- 跨站脚本攻击 (Cross Site Scripting, XSS)
- 跨站请求伪造 (Cross-Site Request Forgery, CSRF)
- 中间人攻击 (Man-in-the-middle, MITM)