Resources
Acronyms
Every acronym used across the site, defined once, with numbered links to the sections that use it. Hover a number to see the page and section. Built from the rendered site at deploy time.
A
| AAIA | Advanced in AI Audit | 1 |
|---|---|---|
| AAIR | Advanced in AI Risk | 1 |
| ABCD | Ray-transfer matrix (optics) | 1 |
| ACH | Analysis of Competing Hypotheses | 1 |
| AD | Active Directory | 1 2 |
| ADR | Architecture Decision Record | 1 2 3 |
| AEAD | Authenticated key exchange Authenticated encryption | 1 2 |
| AES | Advanced Encryption Standard | 1 2 3 4 |
| AI | Artificial Intelligence | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 |
| ALC | Common Criteria life-cycle support class | 1 |
| AML | Anti-Money Laundering | 1 2 3 4 5 |
| ANSSI | French National Cybersecurity Agency | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
| API | Application Programming Interface | 1 2 3 4 5 6 7 8 9 10 |
| APT1 | Liberation Army unit | 1 2 |
| ASLR | Address-space layout randomisation | 1 2 |
| AST | Abstract Syntax Tree | 1 |
| ASVS | Computer Systems OWASP Application Security Verification Standard | 1 2 |
| AWG | An arrayed-waveguide grating | 1 |
| AWGN | Additive white Gaussian noise | 1 |
B
| BCNF | What distinguishes Boyce-Codd Normal Form | 1 |
|---|---|---|
| BCP | Business Continuity Plan | 1 2 3 |
| BCR | Binding Corporate Rules | 1 2 |
| BEC | Business email compromise | 1 2 |
| BGP | The Border Gateway Protocol | 1 2 3 |
C
| CBC | Cipher Block Chaining | 1 2 |
|---|---|---|
| CBEST | Bank of England intelligence-led penetration-testing framework | 1 2 3 |
| CCI | Cambridge Cyber International | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +31 |
| CCPA | The California Consumer Privacy Act | 1 |
| CDN | Content Delivery Network | 1 |
| CDPO | Law School faculty Certified Data Protection Officer | 1 |
| CFT | Combating the Financing of Terrorism | 1 2 3 4 5 |
| CIDR | Classless Inter-domain Routing | 1 |
| CIS | Center for Internet Security | 1 2 |
| CISA | Cybersecurity and Infrastructure Security Agency (United States) | 1 2 3 4 5 6 7 8 9 10 11 12 13 |
| CISO | Chief Information Security Officer | 1 2 3 4 5 6 7 8 9 10 11 12 |
| CISSP | Certified Information Systems Security Professional | 1 2 3 4 5 6 7 |
| CJEU | Court of Justice of the European Union | 1 |
| CLS | Cumulative Layout Shift | 1 |
| CMDB | Configuration Management Database | 1 2 3 4 5 6 7 |
| CNIIHM | Scientific Research Institute of Chemistry and Mechanics | 1 |
| CPL | What is the cost-per-lead | 1 |
| CPRA | The California Privacy Rights Act | 1 |
| CPU | Central Processing Unit | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 |
| CRA | Cyber Resilience Act | 1 2 3 4 5 6 7 |
| CRC | Cyclic redundancy check | 1 2 |
| CRO | Chief Risk Officer | 1 2 |
| CSCF | Customer Security Controls Framework (SWIFT) | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +2 |
| CSCS | EPFL and the Swiss National Supercomputing Centre | 1 |
| CSF | Cybersecurity Framework (NIST) | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
| CSP | Customer Security Programme (SWIFT) | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 |
| CTL | Branching temporal logic | 1 |
| CTR | An extraordinarily low click-through rate | 1 2 |
| cVaR | Cyber Value at Risk | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 |
| CVE | Common Vulnerabilities and Exposures | 1 2 3 4 5 6 7 |
| CVSS | Common Vulnerability Scoring System | 1 2 3 |
D
| DCE | Harvard Extension School | 1 2 3 4 |
|---|---|---|
| DCS | Distributed Control System | 1 |
| DKIM | DomainKeys Identified Mail | 1 |
| DMARC | Reporting and Conformance | 1 2 |
| DMCA | Under the Digital Millennium Copyright Act | 1 |
| DMU | Organizational buying behavior and the buying center | 1 |
| DNS | Domain Name System | 1 2 3 4 5 |
| DOI | Digital Object Identifier | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 |
| DORA | Digital Operational Resilience Act | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +87 |
| DPDP | Digital Personal Data Protection (Act, India) | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +1 |
| DPIA | Data Protection Impact Assessment | 1 2 |
| DPO | Data Protection Officer | 1 2 3 4 5 |
E
| ECC | Elliptic-Curve Cryptography | 1 2 3 |
|---|---|---|
| ECDH | Elliptic Curve Diffie-Hellman | 1 |
| ECDSA | Elliptic Curve Digital Signature Algorithm | 1 |
| ECPA | The Electronic Communications Privacy Act | 1 |
| EDF | Earliest-deadline-first | 1 |
| EDPB | European Data Protection Board | 1 2 3 |
| EEA | European Economic Area | 1 2 3 4 5 |
| ENISA | European Union Agency for Cybersecurity | 1 2 3 4 5 6 7 8 |
| ESD | How many Triconex Emergency Shutdown | 1 |
| EU | European Union | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 |
| EUCC | European scheme | 1 |
F
| FAIR | Factor Analysis of Information Risk | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 |
|---|---|---|
| FCA | Financial Conduct Authority (United Kingdom) | 1 2 3 4 |
| FDM | Frequency-division multiplexing | 1 |
| FFIEC | Federal Financial Institutions Examination Council | 1 2 |
| FFT | Fast Fourier Transform | 1 |
| FINMA | Swiss Financial Market Supervisory Authority | 1 2 3 4 |
| FLP | The Fischer-Lynch-Paterson | 1 |
| FWM | Four-wave mixing | 1 |
G
| GAFI | Groupe d'action financiere (Financial Action Task Force) | 1 2 3 4 5 |
|---|---|---|
| GCIDB | Global Cyber Incident Database (CCI) | 1 2 3 4 5 6 7 8 |
| GDPR | General Data Protection Regulation | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +3 |
| GMM | Gaussian Mixture Model | 1 |
| GPU | Graphics Processing Unit | 1 2 3 4 5 |
| GRC | Governance, Risk and Compliance | 1 |
| GTD | Global Terrorism Database | 1 |
H
| HMAC | Hash-based Message Authentication Code | 1 |
|---|---|---|
| HMI | Human-Machine Interface | 1 |
| HSM | Hardware Security Module | 1 |
| HTML | HyperText Markup Language | 1 |
I
| IA | Vitals The primary purpose of information architecture | 1 2 3 4 5 6 |
|---|---|---|
| IAM | Identity and Access Management | 1 |
| IBM | International Business Machines | 1 2 3 4 5 |
| ICT | Information and Communication Technology | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 |
| IEC | International Electrotechnical Commission | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 |
| IGO | Intergovernmental Organisation | 1 |
| INP | Interaction to Next Paint | 1 |
| IOC | Indicator of Compromise | 1 2 3 |
| IP | Internet Protocol | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
| IPTPS | International Workshop on Peer-to-Peer Systems | 1 |
| IR | Incident Response | 1 2 3 |
| ISA | Instruction Set Architecture | 1 2 3 4 5 6 7 8 9 |
| ISMS | Information Security Management System | 1 2 3 4 5 |
| ISO | International Organization for Standardization | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +8 |
J
| JSON | The JavaScript Object Notation | 1 2 3 4 5 6 7 |
|---|
K
| KRI | Key Risk Indicator | 1 |
|---|---|---|
| KYC | Know Your Customer | 1 2 3 4 5 6 7 |
L
| LCP | Largest Contentful Paint | 1 |
|---|---|---|
| LIGO | Laser Interferometer Gravitational-Wave Observatory | 1 2 |
| LPM | Loi de Programmation Militaire | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
| LSM | Log Structured Merge | 1 2 3 |
| LTL | Identify both linear | 1 |
| LUT | An FPGA look-up table | 1 |
M
| MAC | Media Access Control | 1 2 3 |
|---|---|---|
| MAE | Mean Absolute Error | 1 |
| MAR | Missing at random | 1 |
| MCAR | Missing completely at random | 1 |
| MCP | The Model Context Protocol | 1 |
| MED | Highest local preference Lowest multi-exit discriminator | 1 |
| MeitY | Ministry of Electronics and Information Technology (India) | 1 |
| MFA | Multi-Factor Authentication | 1 2 3 4 5 6 7 |
| ML | Machine Learning | 1 2 3 4 5 6 7 |
| MNAR | Missing not at random | 1 |
| MVCC | Concurrency Control | 1 |
| MZI | Mach-Zehnder Interferometer | 1 2 |
N
| NHS | UK National Health Service | 1 2 |
|---|---|---|
| NIS | Network and Information Security Directive | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 |
| NIS2 | Network and Information Security Directive (second) | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +6 |
| NIST | National Institute of Standards and Technology | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 |
| NYCRR | New York Codes, Rules and Regulations | 1 2 3 |
| NYDFS | New York State Department of Financial Services | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 |
O
| OCW | Computer Systems Security | 1 |
|---|---|---|
| OFAC | Office of Foreign Assets Control (United States) | 1 2 3 4 5 |
| OIV | Opérateur d'Importance Vitale (vital-importance operator, France) | 1 2 3 4 5 |
| OSFI | Office of the Superintendent of Financial Institutions | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 |
| OSINT | Open-Source Intelligence | 1 |
| OT | Guide to Operational Technology | 1 2 |
| OWASP | Open Worldwide Application Security Project | 1 2 3 4 5 6 |
P
| PBFT | Explain how Practical Byzantine Fault Tolerance | 1 |
|---|---|---|
| PCA | Principal Component Analysis | 1 2 |
| PCB | The process control block | 1 |
| PCI DSS | Payment Card Industry Data Security Standard | 1 2 3 4 5 |
| Portable Document Format | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 | |
| PERT | Program Evaluation and Review Technique | 1 |
| PII | Personally Identifiable Information | 1 |
| PLC | Programmable Logic Controller | 1 2 |
| PLI | In Proskauer on Privacy | 1 |
| PP | Protection Profile | 1 2 |
| PPC | Paid search | 1 2 |
R
| RAG | Retrieval-Augmented Generation | 1 2 3 4 |
|---|---|---|
| RBI | Reserve Bank of India | 1 2 3 4 5 |
| RK4 | Runge-Kutta fourth-order method | 1 |
| RMSE | Root Mean Squared Error | 1 |
| ROA | Route Origin Authorization | 1 |
| ROP | Return-oriented programming | 1 |
| ROV | Route Origin Validation | 1 |
| RPKI | The Resource Public Key Infrastructure | 1 |
| RTO | Recovery Time Objective | 1 |
| RTS | Regulatory Technical Standards | 1 2 3 4 5 6 7 8 |
| RTU | Remote Terminal Unit | 1 |
S
| SA | Supervisory Authority | 1 2 3 4 5 6 7 8 9 10 11 12 |
|---|---|---|
| SaaS | Software as a Service | 1 2 3 4 |
| SAMM | Software Assurance Maturity Model | 1 |
| SASE | Secure Access Service Edge | 1 |
| SAT | Boolean satisfiability | 1 |
| SBOM | Software Bill of Materials | 1 2 |
| SCC | Standard Contractual Clauses | 1 |
| SDE | Stochastic Differential Equation | 1 |
| SDF | Significant Data Fiduciary | 1 2 |
| SDL | Microsoft Security Development Lifecycle | 1 |
| SEO | Search Engine Optimisation | 1 2 3 |
| SIEM | Security Information and Event Management | 1 2 |
| SIR | Susceptible-Infected-Recovered (epidemic model) | 1 |
| SIS | Safety Instrumented System | 1 |
| SLA | Service-Level Agreement | 1 2 |
| SNR | Signal-to-Noise Ratio | 1 |
| SOC | Security Operations Centre | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
| SOC 2 | System and Organization Controls 2 | 1 2 3 4 |
| SP | Special Publication (NIST) | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 |
| SPF | Sender Policy Framework | 1 2 |
| SSA | In static single assignment | 1 |
| SSDF | Exploit Development Secure Software Development Framework | 1 2 3 |
| SSI | Serializable Snapshot Isolation | 1 |
| SSL | Secure Sockets Layer | 1 2 3 4 5 6 |
| SSL-VPN | Secure Sockets Layer Virtual Private Network | 1 2 3 4 |
| ST | Security Target | 1 2 3 4 5 6 |
| STK | SIM Toolkit | 1 |
| STP | Spanning Tree Protocol | 1 |
| SUNDR | Secure Untrusted Data Repository | 1 2 |
| SWAN | Achieving High Utilization with Software-Driven WAN | 1 |
| SWIFT | Society for Worldwide Interbank Financial Telecommunication | 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 +39 |
T
| TCP | Transmission Control Protocol | 1 2 3 |
|---|---|---|
| TDM | Time-division multiplexing | 1 |
| TDSAT | Telecom Disputes Settlement and Appellate Tribunal | 1 |
| TIBER | Threat Intelligence-Based Ethical Red Teaming | 1 2 3 4 5 6 |
| TIBER-EU | Threat Intelligence-Based Ethical Red Teaming (European framework) | 1 2 3 4 5 6 |
| TLPT | Threat-Led Penetration Testing | 1 2 3 4 5 6 |
| TLS | Transport Layer Security | 1 2 3 4 5 6 |
| TOE | The Target of Evaluation | 1 2 |
| TOP | Preregistration and the Transparency and Openness Promotion | 1 |
| TPM | Trusted Platform Module | 1 |
| TTFB | Time to First Byte | 1 |
| TTP | Tactics, Techniques and Procedures | 1 |
U
| UEMOA | West African Economic and Monetary Union | 1 2 3 4 5 6 |
|---|---|---|
| URL | Uniform Resource Locator | 1 2 3 4 |
| USB | Universal Serial Bus | 1 2 |
| UUID | Universally Unique Identifier | 1 |
| UXSS | Universal cross-site scripting | 1 |
V
| VaR | Value at Risk | 1 |
|---|---|---|
| VPN | Virtual Private Network | 1 2 3 4 5 6 7 |
W
| WAL | Write-Ahead Logging | 1 2 |
|---|
X
| XGM | Cross-Gain Modulation | 1 2 3 |
|---|