The FREE Cybersecurity Glossary by Thor Pedersen!

ISO/IEC/IEEE 15288: This is an international standard for systems and software engineering, providing a process framework that facilitates the application of system life cycle processes. It covers a range of activities including acquisition, supply, development, operation, and maintenance of systems. By applying the guidelines in ISO/IEC/IEEE 15288, organizations can improve the quality of their systems and software while reducing errors, redundancies, and costs.

Kerberos: A network authentication protocol that uses tickets and encryption to securely identify users and grant them access to network resources. It is used to prevent unauthorized access and protect against replay attacks. It is used in network security and authentication. Examples include logging into a computer or accessing a database.

Key Distribution Center (KDC): A Key Distribution Center (KDC) is a network service that facilitates secure communication by issuing and managing cryptographic keys. It authenticates users and distributes session keys that enable users to encrypt and decrypt messages, ensuring secure communication across the network. It plays a critical role in protocols like Kerberos.

Lightweight Directory Access Protocol (LDAP): A networking protocol used to access and manage directory information services over a network. It is used in identity and access management systems to store and manage user and application credentials. Examples include Active Directory and OpenLDAP.

Lightweight Directory Access Protocol (LDAP) Injection Attack: An attack that exploits a vulnerability in LDAP-enabled applications by injecting malicious LDAP statements into user input. It is used to gain unauthorized access to sensitive data or perform malicious actions. Examples include modifying LDAP queries to bypass authentication or retrieve sensitive information.

Lightweight Extensible Authentication Protocol (LEAP): A wireless network authentication protocol designed to provide secure client-to-access point communication. LEAP ensures only authorized users can access the network, commonly used in environments such as office Wi-Fi networks and public wireless spaces.