CompTIA security + certification guide: master IT security essentials and exam topics for CompTIA security + SY0-501 certification
Cover -- Title Page -- Copyright and Credits -- Packt Upsell -- Contributor -- Table of Contents -- Preface -- Chapter 1: Understanding Security Fundamentals -- CIA triad concept -- Identifying security controls -- Administrative controls -- Technical controls -- Physical controls -- Preventative co...
Gespeichert in:
| 1. Verfasser: | |
|---|---|
| Format: | Elektronisch E-Book |
| Sprache: | English |
| Veröffentlicht: |
Birmingham ; Mumbai
Packt
September 2018
|
| Schlagworte: | |
| Online-Zugang: | UBY01 |
| Zusammenfassung: | Cover -- Title Page -- Copyright and Credits -- Packt Upsell -- Contributor -- Table of Contents -- Preface -- Chapter 1: Understanding Security Fundamentals -- CIA triad concept -- Identifying security controls -- Administrative controls -- Technical controls -- Physical controls -- Preventative controls -- Deterrent controls -- Detective controls -- Corrective controls -- Compensating controls -- Access controls -- Discretionary access control -- Least privilege -- Mandatory access control -- Linux permissions (not SELinux) -- Role-based access control -- Rule-based access control -- Attribute-based access control -- Group-based access -- Hashing and data integrity -- Hash practical -- Hash exercise -- Defense in depth model -- Review questions -- Answers and explanations -- Chapter 2: Conducting Risk Analysis -- Risk management -- Importance of policy, plans, and procedures -- Standard operating procedures -- Agreement types -- Personnel management-policies and procedures -- Role-based awareness training -- General security policies -- Business impact analysis concepts -- Privacy threshold assessment/privacy impact assessment -- Mission-essential functions/identification of critical systems -- Example -- Supply chain risk assessment -- Example -- Business impact analysis concepts -- Calculating loss -- Example -- Risk procedures and concepts -- Threat assessment -- Threat actors -- Risk treatment -- Risk register -- Qualitative/quantitative risk analysis -- Review questions -- Answers and explanations -- Chapter 3: Implementing Security Policies and Procedures -- Industry standard frameworks and reference architecture -- OSI reference model -- TCP/IP model -- Types of frameworks -- Benchmarks/secure configuration guides -- Policies and user guides -- Security configuration guides - web servers -- Network infrastructure device user guides General purpose guides -- Implementing data security and privacy practices -- Destroying data and sanitizing media -- Data sensitivity labeling and handling -- Data retention - legal and compliance -- Data roles -- Practical - creating a baseline -- Review questions -- Answers and explanations -- Chapter 4: Delving into Identity and Access Management -- Understanding identity and access management concepts -- Passwords -- Default/administrator password -- Passwords-group policy -- Password recovery -- Authentication factors -- Number of factor examples -- Transitive trust -- Federation services -- Shibboleth -- Single sign-on -- Installing and configuring identity and access services -- LDAP -- Kerberos -- Internet-based open source authentication -- Authentication, authorization, and accounting (AAA) servers -- Authentication -- Learning about Identity and access management controls -- Biometrics -- Security tokens and devices -- Certification-based authentication -- Port-based authentication -- Common account management practices -- Account types -- Account creation -- Employees moving departments -- Disabling an account -- Account recertification -- Account maintenance -- Account monitoring -- Security Information and Event Management -- Group based access control -- Credential management -- User account reviews -- Practical exercise - password policy -- Review questions -- Answers and explanations -- Chapter 5: Understanding Network Components -- OSI - reference model -- Installing and configuring network components -- Firewall -- Router -- Access control list- network devices -- Intrusion-prevention system -- Intrusion-detection system -- Modes of detection -- Modes of operation -- Monitoring data -- Switch -- Layer 3 switch -- Proxy server -- Reverse proxy -- Remote access -- Virtual private network using L2TP/IPSec -- IPSec IPSec - handshake -- VPN concentrator -- Site-to-site VPN -- VPN always on versus on-demand -- SSL VPN -- Split tunnelling -- Load balancer -- Clustering -- Data-loss prevention -- Security information and event management -- Mail gateway -- Cloud-based email -- Media gateway -- Hardware security module -- Software-defined network -- Secure network architecture concepts -- Network address translation -- Port address translation -- Network access control (NAC) -- Honeypot -- Secure Socket Layer accelerators -- SSL/TLS decryptor -- Sensor/collector -- Tap/port mirror -- DDoS mitigator -- Segregation/segmentation/isolation -- Security device/technology placement -- DMZ device placement -- LAN device placement -- Aggregation switches -- Implementing secure protocols -- Use case -- File transfer - use case -- Remote access - use case -- Email - use case -- Name resolution - use case -- Hostname -- DNSSEC -- NETBIOS -- Web - use case -- Voice and video - use case -- Network address allocation - use case -- IP version 4 -- IP version 4 - lease process -- IP version 4 lease process - troubleshooting -- IP version 6 addressing -- Subscription services - use case -- Routing - use case -- Time synchronization - use case -- Directory services - use case -- Active Directory -- Switching - use case -- Simple network management protocol - use case -- Implementing wireless security -- Wireless access points - controllers -- Securing access to your wireless access point -- Wireless bandwidth/band selection -- Wireless channels -- Wireless antenna types and signal strength -- Wireless coverage -- Wireless encryption -- Wireless - open system authentication -- Wireless - WPS -- Wireless - captive portal -- Wireless attacks -- Wireless authentication protocols -- Review questions -- Answers and explanations -- Chapter 6: Understanding Cloud Models and Virtualization |
| Beschreibung: | 1 Online-Ressource (ix, 505 Seiten) Illustrationen |
| ISBN: | 9781789346688 |
Internformat
MARC
| LEADER | 00000nmm a2200000 c 4500 | ||
|---|---|---|---|
| 001 | BV045372885 | ||
| 003 | DE-604 | ||
| 005 | 20211214 | ||
| 007 | cr|uuu---uuuuu | ||
| 008 | 181217s2018 |||| o||u| ||||||eng d | ||
| 020 | |a 9781789346688 |c Online |9 978-1-78934-668-8 | ||
| 035 | |a (OCoLC)1079409180 | ||
| 035 | |a (DE-599)GBV1032472839 | ||
| 040 | |a DE-604 |b ger |e rda | ||
| 041 | 0 | |a eng | |
| 049 | |a DE-706 | ||
| 100 | 1 | |a Neil, Ian |e Verfasser |4 aut | |
| 245 | 1 | 0 | |a CompTIA security + certification guide |b master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| 246 | 1 | 3 | |a CompTIA security and certification guide |
| 264 | 1 | |a Birmingham ; Mumbai |b Packt |c September 2018 | |
| 300 | |a 1 Online-Ressource (ix, 505 Seiten) |b Illustrationen | ||
| 336 | |b txt |2 rdacontent | ||
| 337 | |b c |2 rdamedia | ||
| 338 | |b cr |2 rdacarrier | ||
| 520 | 3 | |a Cover -- Title Page -- Copyright and Credits -- Packt Upsell -- Contributor -- Table of Contents -- Preface -- Chapter 1: Understanding Security Fundamentals -- CIA triad concept -- Identifying security controls -- Administrative controls -- Technical controls -- Physical controls -- Preventative controls -- Deterrent controls -- Detective controls -- Corrective controls -- Compensating controls -- Access controls -- Discretionary access control -- Least privilege -- Mandatory access control -- Linux permissions (not SELinux) -- Role-based access control -- Rule-based access control -- Attribute-based access control -- Group-based access -- Hashing and data integrity -- Hash practical -- Hash exercise -- Defense in depth model -- Review questions -- Answers and explanations -- Chapter 2: Conducting Risk Analysis -- Risk management -- Importance of policy, plans, and procedures -- Standard operating procedures -- Agreement types -- Personnel management-policies and procedures -- Role-based awareness training -- General security policies -- Business impact analysis concepts -- Privacy threshold assessment/privacy impact assessment -- Mission-essential functions/identification of critical systems -- Example -- Supply chain risk assessment -- Example -- Business impact analysis concepts -- Calculating loss -- Example -- Risk procedures and concepts -- Threat assessment -- Threat actors -- Risk treatment -- Risk register -- Qualitative/quantitative risk analysis -- Review questions -- Answers and explanations -- Chapter 3: Implementing Security Policies and Procedures -- Industry standard frameworks and reference architecture -- OSI reference model -- TCP/IP model -- Types of frameworks -- Benchmarks/secure configuration guides -- Policies and user guides -- Security configuration guides - web servers -- Network infrastructure device user guides | |
| 520 | 3 | |a General purpose guides -- Implementing data security and privacy practices -- Destroying data and sanitizing media -- Data sensitivity labeling and handling -- Data retention - legal and compliance -- Data roles -- Practical - creating a baseline -- Review questions -- Answers and explanations -- Chapter 4: Delving into Identity and Access Management -- Understanding identity and access management concepts -- Passwords -- Default/administrator password -- Passwords-group policy -- Password recovery -- Authentication factors -- Number of factor examples -- Transitive trust -- Federation services -- Shibboleth -- Single sign-on -- Installing and configuring identity and access services -- LDAP -- Kerberos -- Internet-based open source authentication -- Authentication, authorization, and accounting (AAA) servers -- Authentication -- Learning about Identity and access management controls -- Biometrics -- Security tokens and devices -- Certification-based authentication -- Port-based authentication -- Common account management practices -- Account types -- Account creation -- Employees moving departments -- Disabling an account -- Account recertification -- Account maintenance -- Account monitoring -- Security Information and Event Management -- Group based access control -- Credential management -- User account reviews -- Practical exercise - password policy -- Review questions -- Answers and explanations -- Chapter 5: Understanding Network Components -- OSI - reference model -- Installing and configuring network components -- Firewall -- Router -- Access control list- network devices -- Intrusion-prevention system -- Intrusion-detection system -- Modes of detection -- Modes of operation -- Monitoring data -- Switch -- Layer 3 switch -- Proxy server -- Reverse proxy -- Remote access -- Virtual private network using L2TP/IPSec -- IPSec | |
| 520 | 3 | |a IPSec - handshake -- VPN concentrator -- Site-to-site VPN -- VPN always on versus on-demand -- SSL VPN -- Split tunnelling -- Load balancer -- Clustering -- Data-loss prevention -- Security information and event management -- Mail gateway -- Cloud-based email -- Media gateway -- Hardware security module -- Software-defined network -- Secure network architecture concepts -- Network address translation -- Port address translation -- Network access control (NAC) -- Honeypot -- Secure Socket Layer accelerators -- SSL/TLS decryptor -- Sensor/collector -- Tap/port mirror -- DDoS mitigator -- Segregation/segmentation/isolation -- Security device/technology placement -- DMZ device placement -- LAN device placement -- Aggregation switches -- Implementing secure protocols -- Use case -- File transfer - use case -- Remote access - use case -- Email - use case -- Name resolution - use case -- Hostname -- DNSSEC -- NETBIOS -- Web - use case -- Voice and video - use case -- Network address allocation - use case -- IP version 4 -- IP version 4 - lease process -- IP version 4 lease process - troubleshooting -- IP version 6 addressing -- Subscription services - use case -- Routing - use case -- Time synchronization - use case -- Directory services - use case -- Active Directory -- Switching - use case -- Simple network management protocol - use case -- Implementing wireless security -- Wireless access points - controllers -- Securing access to your wireless access point -- Wireless bandwidth/band selection -- Wireless channels -- Wireless antenna types and signal strength -- Wireless coverage -- Wireless encryption -- Wireless - open system authentication -- Wireless - WPS -- Wireless - captive portal -- Wireless attacks -- Wireless authentication protocols -- Review questions -- Answers and explanations -- Chapter 6: Understanding Cloud Models and Virtualization | |
| 650 | 0 | 7 | |a Security+-Zertifikat |0 (DE-588)7545801-9 |2 gnd |9 rswk-swf |
| 689 | 0 | 0 | |a Security+-Zertifikat |0 (DE-588)7545801-9 |D s |
| 689 | 0 | |5 DE-604 | |
| 776 | 0 | 8 | |i Print version |t CompTIA Security+ Certification Guide : Master IT Security Essentials and Exam Topics for CompTIA Security+ SY0-501 Certification |d Birmingham : Packt Publishing Ltd,c2018 |z 978-1-789-34801-9 |
| 912 | |a ZDB-30-PQE |a ZDB-5-WPSE | ||
| 999 | |a oai:aleph.bib-bvb.de:BVB01-030759341 | ||
| 966 | e | |u https://ebookcentral.proquest.com/lib/unibwm/detail.action?docID=5532275 |l UBY01 |p ZDB-30-PQE |q UBY01_Einzelkauf18 |x Aggregator |3 Volltext | |
Datensatz im Suchindex
| _version_ | 1804179217594712064 |
|---|---|
| any_adam_object | |
| author | Neil, Ian |
| author_facet | Neil, Ian |
| author_role | aut |
| author_sort | Neil, Ian |
| author_variant | i n in |
| building | Verbundindex |
| bvnumber | BV045372885 |
| collection | ZDB-30-PQE ZDB-5-WPSE |
| ctrlnum | (OCoLC)1079409180 (DE-599)GBV1032472839 |
| format | Electronic eBook |
| fullrecord | <?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>07149nmm a2200373 c 4500</leader><controlfield tag="001">BV045372885</controlfield><controlfield tag="003">DE-604</controlfield><controlfield tag="005">20211214 </controlfield><controlfield tag="007">cr|uuu---uuuuu</controlfield><controlfield tag="008">181217s2018 |||| o||u| ||||||eng d</controlfield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9781789346688</subfield><subfield code="c">Online</subfield><subfield code="9">978-1-78934-668-8</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(OCoLC)1079409180</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-599)GBV1032472839</subfield></datafield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">DE-604</subfield><subfield code="b">ger</subfield><subfield code="e">rda</subfield></datafield><datafield tag="041" ind1="0" ind2=" "><subfield code="a">eng</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-706</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Neil, Ian</subfield><subfield code="e">Verfasser</subfield><subfield code="4">aut</subfield></datafield><datafield tag="245" ind1="1" ind2="0"><subfield code="a">CompTIA security + certification guide</subfield><subfield code="b">master IT security essentials and exam topics for CompTIA security + SY0-501 certification</subfield></datafield><datafield tag="246" ind1="1" ind2="3"><subfield code="a">CompTIA security and certification guide</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">Birmingham ; Mumbai</subfield><subfield code="b">Packt</subfield><subfield code="c">September 2018</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">1 Online-Ressource (ix, 505 Seiten)</subfield><subfield code="b">Illustrationen</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="b">c</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="b">cr</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="520" ind1="3" ind2=" "><subfield code="a">Cover -- Title Page -- Copyright and Credits -- Packt Upsell -- Contributor -- Table of Contents -- Preface -- Chapter 1: Understanding Security Fundamentals -- CIA triad concept -- Identifying security controls -- Administrative controls -- Technical controls -- Physical controls -- Preventative controls -- Deterrent controls -- Detective controls -- Corrective controls -- Compensating controls -- Access controls -- Discretionary access control -- Least privilege -- Mandatory access control -- Linux permissions (not SELinux) -- Role-based access control -- Rule-based access control -- Attribute-based access control -- Group-based access -- Hashing and data integrity -- Hash practical -- Hash exercise -- Defense in depth model -- Review questions -- Answers and explanations -- Chapter 2: Conducting Risk Analysis -- Risk management -- Importance of policy, plans, and procedures -- Standard operating procedures -- Agreement types -- Personnel management-policies and procedures -- Role-based awareness training -- General security policies -- Business impact analysis concepts -- Privacy threshold assessment/privacy impact assessment -- Mission-essential functions/identification of critical systems -- Example -- Supply chain risk assessment -- Example -- Business impact analysis concepts -- Calculating loss -- Example -- Risk procedures and concepts -- Threat assessment -- Threat actors -- Risk treatment -- Risk register -- Qualitative/quantitative risk analysis -- Review questions -- Answers and explanations -- Chapter 3: Implementing Security Policies and Procedures -- Industry standard frameworks and reference architecture -- OSI reference model -- TCP/IP model -- Types of frameworks -- Benchmarks/secure configuration guides -- Policies and user guides -- Security configuration guides - web servers -- Network infrastructure device user guides</subfield></datafield><datafield tag="520" ind1="3" ind2=" "><subfield code="a">General purpose guides -- Implementing data security and privacy practices -- Destroying data and sanitizing media -- Data sensitivity labeling and handling -- Data retention - legal and compliance -- Data roles -- Practical - creating a baseline -- Review questions -- Answers and explanations -- Chapter 4: Delving into Identity and Access Management -- Understanding identity and access management concepts -- Passwords -- Default/administrator password -- Passwords-group policy -- Password recovery -- Authentication factors -- Number of factor examples -- Transitive trust -- Federation services -- Shibboleth -- Single sign-on -- Installing and configuring identity and access services -- LDAP -- Kerberos -- Internet-based open source authentication -- Authentication, authorization, and accounting (AAA) servers -- Authentication -- Learning about Identity and access management controls -- Biometrics -- Security tokens and devices -- Certification-based authentication -- Port-based authentication -- Common account management practices -- Account types -- Account creation -- Employees moving departments -- Disabling an account -- Account recertification -- Account maintenance -- Account monitoring -- Security Information and Event Management -- Group based access control -- Credential management -- User account reviews -- Practical exercise - password policy -- Review questions -- Answers and explanations -- Chapter 5: Understanding Network Components -- OSI - reference model -- Installing and configuring network components -- Firewall -- Router -- Access control list- network devices -- Intrusion-prevention system -- Intrusion-detection system -- Modes of detection -- Modes of operation -- Monitoring data -- Switch -- Layer 3 switch -- Proxy server -- Reverse proxy -- Remote access -- Virtual private network using L2TP/IPSec -- IPSec</subfield></datafield><datafield tag="520" ind1="3" ind2=" "><subfield code="a">IPSec - handshake -- VPN concentrator -- Site-to-site VPN -- VPN always on versus on-demand -- SSL VPN -- Split tunnelling -- Load balancer -- Clustering -- Data-loss prevention -- Security information and event management -- Mail gateway -- Cloud-based email -- Media gateway -- Hardware security module -- Software-defined network -- Secure network architecture concepts -- Network address translation -- Port address translation -- Network access control (NAC) -- Honeypot -- Secure Socket Layer accelerators -- SSL/TLS decryptor -- Sensor/collector -- Tap/port mirror -- DDoS mitigator -- Segregation/segmentation/isolation -- Security device/technology placement -- DMZ device placement -- LAN device placement -- Aggregation switches -- Implementing secure protocols -- Use case -- File transfer - use case -- Remote access - use case -- Email - use case -- Name resolution - use case -- Hostname -- DNSSEC -- NETBIOS -- Web - use case -- Voice and video - use case -- Network address allocation - use case -- IP version 4 -- IP version 4 - lease process -- IP version 4 lease process - troubleshooting -- IP version 6 addressing -- Subscription services - use case -- Routing - use case -- Time synchronization - use case -- Directory services - use case -- Active Directory -- Switching - use case -- Simple network management protocol - use case -- Implementing wireless security -- Wireless access points - controllers -- Securing access to your wireless access point -- Wireless bandwidth/band selection -- Wireless channels -- Wireless antenna types and signal strength -- Wireless coverage -- Wireless encryption -- Wireless - open system authentication -- Wireless - WPS -- Wireless - captive portal -- Wireless attacks -- Wireless authentication protocols -- Review questions -- Answers and explanations -- Chapter 6: Understanding Cloud Models and Virtualization</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Security+-Zertifikat</subfield><subfield code="0">(DE-588)7545801-9</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="689" ind1="0" ind2="0"><subfield code="a">Security+-Zertifikat</subfield><subfield code="0">(DE-588)7545801-9</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2=" "><subfield code="5">DE-604</subfield></datafield><datafield tag="776" ind1="0" ind2="8"><subfield code="i">Print version</subfield><subfield code="t">CompTIA Security+ Certification Guide : Master IT Security Essentials and Exam Topics for CompTIA Security+ SY0-501 Certification</subfield><subfield code="d">Birmingham : Packt Publishing Ltd,c2018</subfield><subfield code="z">978-1-789-34801-9</subfield></datafield><datafield tag="912" ind1=" " ind2=" "><subfield code="a">ZDB-30-PQE</subfield><subfield code="a">ZDB-5-WPSE</subfield></datafield><datafield tag="999" ind1=" " ind2=" "><subfield code="a">oai:aleph.bib-bvb.de:BVB01-030759341</subfield></datafield><datafield tag="966" ind1="e" ind2=" "><subfield code="u">https://ebookcentral.proquest.com/lib/unibwm/detail.action?docID=5532275</subfield><subfield code="l">UBY01</subfield><subfield code="p">ZDB-30-PQE</subfield><subfield code="q">UBY01_Einzelkauf18</subfield><subfield code="x">Aggregator</subfield><subfield code="3">Volltext</subfield></datafield></record></collection> |
| id | DE-604.BV045372885 |
| illustrated | Not Illustrated |
| indexdate | 2024-07-10T08:16:21Z |
| institution | BVB |
| isbn | 9781789346688 |
| language | English |
| oai_aleph_id | oai:aleph.bib-bvb.de:BVB01-030759341 |
| oclc_num | 1079409180 |
| open_access_boolean | |
| owner | DE-706 |
| owner_facet | DE-706 |
| physical | 1 Online-Ressource (ix, 505 Seiten) Illustrationen |
| psigel | ZDB-30-PQE ZDB-5-WPSE ZDB-30-PQE UBY01_Einzelkauf18 |
| publishDate | 2018 |
| publishDateSearch | 2018 |
| publishDateSort | 2018 |
| publisher | Packt |
| record_format | marc |
| spelling | Neil, Ian Verfasser aut CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification CompTIA security and certification guide Birmingham ; Mumbai Packt September 2018 1 Online-Ressource (ix, 505 Seiten) Illustrationen txt rdacontent c rdamedia cr rdacarrier Cover -- Title Page -- Copyright and Credits -- Packt Upsell -- Contributor -- Table of Contents -- Preface -- Chapter 1: Understanding Security Fundamentals -- CIA triad concept -- Identifying security controls -- Administrative controls -- Technical controls -- Physical controls -- Preventative controls -- Deterrent controls -- Detective controls -- Corrective controls -- Compensating controls -- Access controls -- Discretionary access control -- Least privilege -- Mandatory access control -- Linux permissions (not SELinux) -- Role-based access control -- Rule-based access control -- Attribute-based access control -- Group-based access -- Hashing and data integrity -- Hash practical -- Hash exercise -- Defense in depth model -- Review questions -- Answers and explanations -- Chapter 2: Conducting Risk Analysis -- Risk management -- Importance of policy, plans, and procedures -- Standard operating procedures -- Agreement types -- Personnel management-policies and procedures -- Role-based awareness training -- General security policies -- Business impact analysis concepts -- Privacy threshold assessment/privacy impact assessment -- Mission-essential functions/identification of critical systems -- Example -- Supply chain risk assessment -- Example -- Business impact analysis concepts -- Calculating loss -- Example -- Risk procedures and concepts -- Threat assessment -- Threat actors -- Risk treatment -- Risk register -- Qualitative/quantitative risk analysis -- Review questions -- Answers and explanations -- Chapter 3: Implementing Security Policies and Procedures -- Industry standard frameworks and reference architecture -- OSI reference model -- TCP/IP model -- Types of frameworks -- Benchmarks/secure configuration guides -- Policies and user guides -- Security configuration guides - web servers -- Network infrastructure device user guides General purpose guides -- Implementing data security and privacy practices -- Destroying data and sanitizing media -- Data sensitivity labeling and handling -- Data retention - legal and compliance -- Data roles -- Practical - creating a baseline -- Review questions -- Answers and explanations -- Chapter 4: Delving into Identity and Access Management -- Understanding identity and access management concepts -- Passwords -- Default/administrator password -- Passwords-group policy -- Password recovery -- Authentication factors -- Number of factor examples -- Transitive trust -- Federation services -- Shibboleth -- Single sign-on -- Installing and configuring identity and access services -- LDAP -- Kerberos -- Internet-based open source authentication -- Authentication, authorization, and accounting (AAA) servers -- Authentication -- Learning about Identity and access management controls -- Biometrics -- Security tokens and devices -- Certification-based authentication -- Port-based authentication -- Common account management practices -- Account types -- Account creation -- Employees moving departments -- Disabling an account -- Account recertification -- Account maintenance -- Account monitoring -- Security Information and Event Management -- Group based access control -- Credential management -- User account reviews -- Practical exercise - password policy -- Review questions -- Answers and explanations -- Chapter 5: Understanding Network Components -- OSI - reference model -- Installing and configuring network components -- Firewall -- Router -- Access control list- network devices -- Intrusion-prevention system -- Intrusion-detection system -- Modes of detection -- Modes of operation -- Monitoring data -- Switch -- Layer 3 switch -- Proxy server -- Reverse proxy -- Remote access -- Virtual private network using L2TP/IPSec -- IPSec IPSec - handshake -- VPN concentrator -- Site-to-site VPN -- VPN always on versus on-demand -- SSL VPN -- Split tunnelling -- Load balancer -- Clustering -- Data-loss prevention -- Security information and event management -- Mail gateway -- Cloud-based email -- Media gateway -- Hardware security module -- Software-defined network -- Secure network architecture concepts -- Network address translation -- Port address translation -- Network access control (NAC) -- Honeypot -- Secure Socket Layer accelerators -- SSL/TLS decryptor -- Sensor/collector -- Tap/port mirror -- DDoS mitigator -- Segregation/segmentation/isolation -- Security device/technology placement -- DMZ device placement -- LAN device placement -- Aggregation switches -- Implementing secure protocols -- Use case -- File transfer - use case -- Remote access - use case -- Email - use case -- Name resolution - use case -- Hostname -- DNSSEC -- NETBIOS -- Web - use case -- Voice and video - use case -- Network address allocation - use case -- IP version 4 -- IP version 4 - lease process -- IP version 4 lease process - troubleshooting -- IP version 6 addressing -- Subscription services - use case -- Routing - use case -- Time synchronization - use case -- Directory services - use case -- Active Directory -- Switching - use case -- Simple network management protocol - use case -- Implementing wireless security -- Wireless access points - controllers -- Securing access to your wireless access point -- Wireless bandwidth/band selection -- Wireless channels -- Wireless antenna types and signal strength -- Wireless coverage -- Wireless encryption -- Wireless - open system authentication -- Wireless - WPS -- Wireless - captive portal -- Wireless attacks -- Wireless authentication protocols -- Review questions -- Answers and explanations -- Chapter 6: Understanding Cloud Models and Virtualization Security+-Zertifikat (DE-588)7545801-9 gnd rswk-swf Security+-Zertifikat (DE-588)7545801-9 s DE-604 Print version CompTIA Security+ Certification Guide : Master IT Security Essentials and Exam Topics for CompTIA Security+ SY0-501 Certification Birmingham : Packt Publishing Ltd,c2018 978-1-789-34801-9 |
| spellingShingle | Neil, Ian CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification Security+-Zertifikat (DE-588)7545801-9 gnd |
| subject_GND | (DE-588)7545801-9 |
| title | CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| title_alt | CompTIA security and certification guide |
| title_auth | CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| title_exact_search | CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| title_full | CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| title_fullStr | CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| title_full_unstemmed | CompTIA security + certification guide master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| title_short | CompTIA security + certification guide |
| title_sort | comptia security certification guide master it security essentials and exam topics for comptia security sy0 501 certification |
| title_sub | master IT security essentials and exam topics for CompTIA security + SY0-501 certification |
| topic | Security+-Zertifikat (DE-588)7545801-9 gnd |
| topic_facet | Security+-Zertifikat |
| work_keys_str_mv | AT neilian comptiasecuritycertificationguidemasteritsecurityessentialsandexamtopicsforcomptiasecuritysy0501certification AT neilian comptiasecurityandcertificationguide |