Cargando…
CASP CompTIA Advanced Security Practitioner study guide (Exam CAS-001) /
Get Prepared for CompTIA Advanced Security Practitioner (CASP) Exam Targeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study guide is focused on the new CompTIA Advanced Secu...
| Clasificación: | Libro Electrónico |
|---|---|
| Autores principales: | , |
| Formato: | Electrónico eBook |
| Idioma: | Inglés |
| Publicado: |
Indianapolis, Ind. :
John Wiley & Sons,
©2012.
|
| Colección: | Serious skills.
|
| Temas: | |
| Acceso en línea: | Texto completo |
Tabla de Contenidos:
- Foreword
- Introduction
- Before You Begin the CompTIA CASP℗ Certification Exam
- How to Become a CASP Certified℗ Professional
- Who Should Read This Book?
- How This Book Is Organized
- Exam Strategy
- How to Use This Book and Companion℗ Website
- The CASP (2011 Edition) Exam Objectives
- 1. : Cryptographic Tools and Techniques
- The History of Cryptography
- Cryptographic Services
- Symmetric Encryption
- Asymmetric Encryption
- Hybrid Encryption
- Hashing
- Digital Signatures
- Public Key Infrastructure
- Cryptographic Solutions
- Cryptographic AttacksSummary
- Exam Essentials
- Review Questions
- 2. : Comprehensive Security Solutions
- Advanced Network Design
- TCP/IP
- Secure Communication Solutions
- Secure Facility Solutions
- Secure Network Infrastructure Design
- Summary
- Exam Essentials
- Review Questions
- 3. : Securing Virtualized, Distributed, and Shared Computing
- Enterprise Security
- Cloud Computing
- Virtualization
- Virtual LANs
- Enterprise Storage
- Summary
- Exam Essentials
- Review Questions
- 4. : Host Security
- Firewalls and Access Control Lists
- Host-Based Firewalls
- Trusted Operating System
- Endpoint Security SoftwareAnti-malware
- Host Hardening
- Asset Management
- Data Exfiltration
- Intrusion Detection and Prevention
- Summary
- Exam Essentials
- Review Questions
- 5. : Application Security and Penetration Testing
- Application Security
- Specific Application Issues
- Application Sandboxing
- Application Security Framework
- Standard Libraries
- Secure Coding Standards
- Application Exploits
- Escalation of Privilege
- Improper Storage of Sensitive Data
- Cookie Storage and Transmission
- Process Handling at the Client and Server
- Security Assessments and Penetration℗ Testing
- Summary
- Exam EssentialsReview Questions
- 6. : Risk Management
- Risk Terminology
- Identifying Vulnerabilities
- Operational Risks
- The Risk Assessment Process
- Best Practices for Risk Assessments
- Summary
- Exam Essentials
- Review Questions
- 7. : Policies, Procedures, and Incident Response
- A High-Level View of Documentation
- Business Documents Used to℗ Support℗ Security
- Documents and Controls Used for℗ Sensitive Information
- Auditing Requirements and Frequency
- The Incident Response Framework
- Digital Forensics
- The Role of Training and Employee℗ Awareness
- Summary
- Exam Essentials
- Review Questions
- 8. : Security Research and Analysis
- Analyzing Industry Trends and Outlining℗ Potential Impact
- Carrying Out Relevant Analysis to℗ Secure the Enterprise
- Summary
- Exam Essentials
- Review Questions
- 9. : Enterprise Security Integration
- Integrate Enterprise Disciplines to℗ Achieve Secure Solutions
- Explain the Security Impact of Interorganizational Change
- Summary
- Exam Essentials
- Review Questions
- 10. : Security Controls for Communication and Collaboration
- Selecting and Distinguishing the Appropriate Security Controls
- Advanced Authentication Tools, Techniques, and Concepts.