T

• Tag A type of data including including descriptors and objects association. For instance, HTML language uses predefined tags in a text file in order to precise elements such as titles, paragraphs, tables, etc.
• Tamper resistant Describes a hardware or software which functioning principles are very hard to reverse engineer, to understand
• TLS - Transport Layer Security The successor of SSL, cf. SSL. TLS v1 and SSL v3 are very similar
• Trojan Program or data that looks harmless when they are stored in a system or a network but that are able to generate an attack or make an attack easier ; for instance, it may create a backdoor
• Tunnel(ing) The tunneling principle is to use an unsecured public network (for instance the internet) as the element or extension of a secured private network. A tunnel uses internet telecoms capabilities adding a security layer in order to establish a VPN -Virtual Private network-. Most common protocols to establish this supplementary security layer are PPTP, L2TP, IPSEC or SSL

U

• URI - Unique Resource Identifier Short character string identifying a physical or abstract resource. URI syntax respects World Wide Web standards. The URI corresponds to parts 2 and 3 of the URL -cf. URL hereunder-
• URL - Unique Resource Locator Standard format to address a document on a network (for instance, on the World Wide Web). The URL has 3 parts (1) the protocol which is being used. Ex : http://www. for the web, (2) the site address. Ex : binarysec.com (3) the document access path starting from the site root. Ex : page-eng-binarysec.html to indicate the welcome page of BinarySEC

V

• VBScript - Visual Basic Scripting cf. Visual Basic Scripting
• Viroax E-mail persuading an internet user to do an unuseful or even dangerous manipulation. These mails may advise a user to warn his usual addressees that a dangerous virus is currently on-line
• Virtual patching - patching virtuel cf. just-in time patching
• Virus Any program able to duplicate itself and damage computer data or programs. They are classified into various categories including : parasits, companion, multiforms, memory resident or not, stealth, polymorphic, network, ...
• Virus signature Code contained in a viral program which enables to identify it with certainty. Antivirus tools have long used this type of recognition to detect them. With new polymorphic virus generations -changing their form and aspect-, this detection mean is no longer sufficient
• Visual Basic Scripting - VBScript Light version of Visual Basic conceived to run like Javascript, ie downloaded and interpreted in real time on the client browser, in order to give more functionalities to a web document for instance

W

• Web application firewall This new generation of security tools checks conformity of application flow (HTTP or HTTPS) either to standards, pre-established rules or expected request types. Many technologies may be used: signatures, protocol compliance, behavioral analysis, ... BinarySEC uses an Artificial Intelligence engine dedicated to modelize normal traffic and reject abnormal requests
• Web service Application function with a standardised interface (WSDL), accepting and sending back data in XML format. Web services use HTTP standards to send and receive objects
• Web worm Program able to duplicate itself (worm) exploiting security flaws detected on a website. One of the main functions of BinarySEC is to protect websites and applications from this growing risk
• Webmaster(ing) The person who is in charge of a website, who is usually the person who monitors and updates a website. He may also have conceived and created the website
• Website The set of web pages -in HTML format- and other data such as images, sound, video files, etc. which are made available via a domain name
• Whitelist Operating principle of a security tool when only expressly allowed traffic is accepted and other traffic is rejected
• Window of vulnerability Time between discovery and publication of a vulnerability and patch release correcting this flaw
• Worm Small program transiting through Random Access Memory of computers. Worms can propagate by themselves using the networks. They are not viruses as their attack is not targeted. Worms usually create dysfunctions and blockings of machines they parasit

X

• XML - eXtensible Markup Language XML is a tagging language. His initial objective is to make easier automated exchange of contents between heterogeneous IT systems, especially on the internet. XML uses various principles including: a XML document structure can be defined and validated with a scheme, a XML document can be entirely tranformed in another XML document
• XSRF (Cross-site request forgery or CSRF) cf. Cross-site request forgery
• XSS or Cross-site scripting cf. Cross-site scripting

Z

• Zero day Exploitation of an unknown or unpublished security vulnerability. Opportunist hackers may want to quickly take benefit of these flaws before relevant protections are put in place
• Zombie Computer that is controlled by a 'tactless' user in order to use it durably, generally for criminal purposes. These zombies are thus often integrated in a multi-user network called 'botnet' which enables to cumulate its power