CASP CompTIA Advanced Security Practitioner study guide (exam cas-001)
Get Prepared for CompTIA Advanced Security Practitioner (CASP) Exam Targeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study guide is focused on the new CompTIA Advanced Secu...
| Autor principal: | |
|---|---|
| Formato: | Libro electrónico |
| Idioma: | Inglés |
| Publicado: |
Indianapolis, IN :
Wiley Pub., Inc
2012.
|
| Edición: | 1st edition |
| Materias: | |
| Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009628337706719 |
Tabla de Contenidos:
- CASP CompTIA Advanced Security Practitioner Study Guide; Contents; Foreword; Introduction; Before You Begin the CompTIA CASP Certification Exam; How to Become a CASP Certified Professional; Who Should Read This Book?; How This Book Is Organized; Exam Strategy; How to Use This Book and Companion Website; The CASP (2011 Edition) Exam Objectives; Chapter 1: Cryptographic Tools and Techniques; The History of Cryptography; Cryptographic Services; Symmetric Encryption; Asymmetric Encryption; Hybrid Encryption; Hashing; Digital Signatures; Public Key Infrastructure; Cryptographic Solutions
- Cryptographic AttacksSummary; Exam Essentials; Review Questions; Chapter 2: Comprehensive Security Solutions; Advanced Network Design; TCP/IP; Secure Communication Solutions; Secure Facility Solutions; Secure Network Infrastructure Design; Summary; Exam Essentials; Review Questions; Chapter 3: Securing Virtualized, Distributed, and Shared Computing; Enterprise Security; Cloud Computing; Virtualization; Virtual LANs; Enterprise Storage; Summary; Exam Essentials; Review Questions; Chapter 4: Host Security; Firewalls and Access Control Lists; Host-Based Firewalls; Trusted Operating System
- Endpoint Security SoftwareAnti-malware; Host Hardening; Asset Management; Data Exfiltration; Intrusion Detection and Prevention; Summary; Exam Essentials; Review Questions; Chapter 5: Application Security and Penetration Testing; Application Security; Specific Application Issues; Application Sandboxing; Application Security Framework; Standard Libraries; Secure Coding Standards; Application Exploits; Escalation of Privilege; Improper Storage of Sensitive Data; Cookie Storage and Transmission; Process Handling at the Client and Server; Security Assessments and Penetration Testing; Summary
- Exam EssentialsReview Questions; Chapter 6: Risk Management; Risk Terminology; Identifying Vulnerabilities; Operational Risks; The Risk Assessment Process; Best Practices for Risk Assessments; Summary; Exam Essentials; Review Questions; Chapter 7: Policies, Procedures, and Incident Response; A High-Level View of Documentation; Business Documents Used to Support Security; Documents and Controls Used for Sensitive Information; Auditing Requirements and Frequency; The Incident Response Framework; Digital Forensics; The Role of Training and Employee Awareness; Summary; Exam Essentials
- Review QuestionsChapter 8: Security Research and Analysis; Analyzing Industry Trends and Outlining Potential Impact; Carrying Out Relevant Analysis to Secure the Enterprise; Summary; Exam Essentials; Review Questions; Chapter 9: Enterprise Security Integration; Integrate Enterprise Disciplines to Achieve Secure Solutions; Explain the Security Impact of Interorganizational Change; Summary; Exam Essentials; Review Questions; Chapter 10: Security Controls for Communication and Collaboration; Selecting and Distinguishing the Appropriate Security Controls
- Advanced Authentication Tools, Techniques, and Concepts
