Security models using hierarchical classifications to control information access based on clearance levels and data sensitivity labels. Lattice techniques enforce mandatory access controls where users only access information matching their authorization level.

A tunneling protocol developed by Cisco that extends dial-up connections across networks by encapsulating PPP traffic over IP. L2F creates virtual private network connections transparent to end users.

An extension of PPTP enabling internet service providers to operate virtual private networks over public infrastructure. L2TP combines the best features of L2F and PPTP for secure remote access.

The security principle of granting users and processes only the minimum permissions required to perform their specific functions. Least privilege limits damage from compromised accounts by restricting unnecessary access to systems and data.

Scanning software designed to identify unprotected network shares and accessible resources. Legion helps both attackers discover vulnerable targets and administrators locate unsecured assets requiring protection.

A protocol for accessing and managing directory services over TCP/IP networks. LDAP provides centralized authentication, user information storage, and authorization services for applications and systems.

A routing protocol where routers maintain complete network topology information and calculate optimal paths. Link state protocols converge faster than distance-vector alternatives but require more processing power and memory.

An access control method associating specific users with permissions for each protected object. List-based controls define who can access resources through explicitly maintained permission lists.

A network connecting devices within a limited physical area like an office building or campus. LANs enable resource sharing and high-speed communication between connected systems.

Software components that extend operating system kernel functionality without requiring reboots or recompilation. LKMs provide flexibility but create security risks when attackers install malicious rootkits as kernel modules.

The selective deletion of log entries to conceal unauthorized activity or system compromises. Attackers use log clipping to hide evidence of intrusions, making forensic investigation more difficult.

The collection, storage, analysis, and retention of system logs from applications, devices, and infrastructure. Log management supports security monitoring, incident response, compliance auditing, and troubleshooting.

Malicious code that remains dormant until triggered by specific conditions like dates, events, or system states. Logic bombs execute destructive actions when activated, often used by disgruntled insiders for sabotage.

Fundamental digital circuit components performing Boolean operations with binary inputs to produce outputs. Logic gates form the building blocks of processors and digital systems.

The IP address 127.0.0.1 that always references the local host machine without transmitting traffic across networks. Loopback addresses enable testing and internal communication within a single system.