About the Authors

Chapter 1 Systems Security

Systems security threats

Privilege escalation

Viruses and worms

Trojan

Spyware and adware

Rootkits and botnets

Logic bombs

Host intrusion detection system

Behavior-based vs. signature-based IDS characteristics

Anti-SPAM

Pop-up blockers

Hardware and peripheral security risks

BIOS

USB devices

Cell phones

Removable storage devices

Network attached storage

Summary of exam objectives

Top five toughest questions

Answers

Chapter 2 OS Hardening

General OS hardening

Services

File system

Removing unnecessary programs

Hotfixes/patches

Service packs/maintenance updates

Patch management

Windows group policies

Security templates

Configuration baselines

Server OS hardening

Enabling and disabling services and protocols

FTP servers

DNS servers

NNTP servers

File and print servers

DHCP servers

Data repositories

Workstation OS

User rights and groups

Summary of exam objectives

Top five toughest questions

Answers

Chapter 3 Application Security

Threats are moving "up the stack”

Rationale

Threat modeling

Application security threats

Browser

Buffer overflows

Packet sniffers and instant messaging

Instant messaging

Peer-to-peer

SMTP open relays

Summary of exam objectives

Top five toughest questions

Answers

Chapter 4 Virtualization Technologies

The purpose of virtualization

Benefits of virtualization

Types of virtualization

Designing a virtual environment

System virtualization

Management of virtual servers

Application virtualization

Application streaming

Summary of exam objectives

Top five toughest questions

Answers

Chapter 5 Network Security

General network security

Network services and risks associated with them

Network design elements

Network security tools

Network ports, services, and threats

Network ports and protocols

Network threats

Network design elements and components

Firewalls

What is a DMZ?

VLANs

Network address translation

Network access control/network access protection

Telephony

Network security tools

Intrusion detection and preventions systems

Honeypots

Content filters

Protocol analyzers

Summary of exam objectives

Top five toughest questions

Answers

Chapter 6 Wireless Networks

Wireless network design

Wireless communications

Spread spectrum technology

Wireless network architecture

CSMA/CD and CSMA/CA

Service set ID broadcast

Wireless security standards

The failure of WEP

WPA and WPA2

WAP

WTLS

Authentication

Rogue access points

Data emanation

Bluetooth

Summary of exam objectives

Top five toughest questions

Answers

References

Chapter 7 Network Access

General network access

Access control

Access control models

Authentication models and components

Identity

Access control methods and models

Separation of duties

Least privilege

Job rotation

Mandatory access control

Discretionary access control

Role- and rule-based access control

Access control organization

Security groups

Security controls

Logical access control methods

Access control lists

Group policies

Domain policies

Time of day restrictions

Account expiration

Logical tokens

Physical access security methods

Access lists and logs

Hardware locks

ID badges

Door access systems

Man-trap

Video surveillance

Summary of exam objectives

Top five toughest questions

Answers

Chapter 8 Network Authentication

Authentication methods

Access control

Authentication

Auditing

Authentication methods

One-factor

Two-factor

Three-factor

Single sign-on

Authentication systems

Remote access policies and authentication

Biometrics

Summary of exam objectives

Top five toughest questions

Answers

Chapter 9 Risk Assessment and Risk Mitigation

Conduct risk assessments and implement risk mitigation

Vulnerability assessment tools

Password crackers

Network mapping tools

Use monitoring tools on systems and networks

Workstations

Intrusion detection systems

Logging and auditing

Auditing systems

System Logs

Performance Logs

Access Logs

Audits

Summary of exam objectives

Top five toughest questions

Answers

Chapter 10 General Cryptographic Concepts

General cryptography

Symmetric key cryptography

Asymmetric key cryptography

Hashes and applications

Digital signatures

Certificates

CIA-For all your security needs

Non-repudiation

Key management

Encryption algorithms

DES

3DES

RSA

AES

Elliptic curve cryptography

One-time pads

Transmission encryption

WEP

TKIP

Protocols

SSL/TLS

HTTP vs. HTTPS vs. SHTTP

Other protocols with TLS

S/MIME

SSH

IPSec

PPTP

L2TP

Cryptography in operating systems

File and folder encryption

E-mail

Whole disk encryption

Trusted platform module

Summary of exam objectives

Top five toughest questions

Answers

Chapter 11 Public Key Infrastructure

PKI overview

PKI encryption

PKI Standards

PKI solutions

Components of PKI

Digital certificates

Certification authority

Certificate revocation list

Recovery agents

Certificate authority

Certificate revocation list

Key escrow

Registration

Recovery agents

Implementation

Certificate management

Summary of exam objectives

Top five toughest questions

Answers

Chapter 12 Redundancy Planning

Alternate sites

Hot site

Warm site

Cold site

Redundant systems

Servers

Connections

ISP

RAID

Spare parts

Backup generator

UPS

Summary of exam objectives

Top five toughest questions

Answers

Chapter 13 Controls and Procedures

Environmental controls

Fire suppression

HVAC

Shielding

Implementing disaster recovery and incident response procedures

Disaster recovery

Incident response

Defending against social engineering

Summary of exam objectives

Top five toughest questions

Answers

Chapter 14 Legislation and Organizational Policies

Secure disposal of systems

Retention/storage

Destruction

Acceptable use policies

Password complexity

Strong passwords

Password changes and restrictions

Administrator accounts

Change management

Information classification

Vacations

Separation of duties

Personally identifiable information

Privacy

Due care

Due process

Due diligence

SLAs

User education and awareness training

Communication

User awareness

Education

Online resources

Security-related HR policies

Code of Ethics

Summary of exam objectives

Top five toughest questions

Answers

Index