Get this Security+ CertiGuide for your own computer.
Click Here!
Use coupon code "certiguide" to save 20%!
(Expires 2004/12/31)

Also available: 300-question Security+ practice test!
Get It Here!

Custom Search







Table Of Contents  CertiGuide to Security+

Previous Topic/Section
0.8  Summary
Previous Page
Pages in Current Topic/Section
1
Next Page
Getting Ready for Chapter 1 - Questions
Next Topic/Section

Chapter 1:  General Security Concepts (Domain 1.0; 30%)

"He knows not his own strength that hath not met adversity."
-- Benjamin Jonson

 

Chapter Objectives

The objective of this chapter is to provide the reader with an understanding of the following:

Domain 1.0: General Security Concepts – 30%

1.1. Recognize and be able to differentiate and explain the following access control models:

  • MAC (Mandatory Access Control

  • DAC (Discretionary Access Control

  • RBAC (Role Based Access Control)

 

1.2 Recognize and be able to differentiate and explain the following methods of authentication:

    • Kerberos; CHAP (Challenge Handshake Authentication Protocol)

    • Certificates; Username / Password; Tokens; Multi-factor; Mutual; Biometrics

1.3 Identify non-essential services and protocols and know what actions to take to reduce the risks of those services and protocols.

1.4 Recognize the following attacks and specify the appropriate actions to take to mitigate vulnerability and risk:

    • DOS / DDOS (Denial of Service / Distributed Denial of Service)

    • Back Door; Spoofing; Man in the Middle; Replay; TCP/IP Hijacking

    • Weak Keys; Mathematical; Social Engineering; Birthday

    • Password Guessing (Brute Force & Dictionary); Software Exploitation

1.5 Recognize the following types of malicious code and specify the appropriate actions to take to mitigate vulnerability and risk:

    • Viruses; Trojan Horses; Logic Bombs; Worms

1.6 Understand the concept of and know how reduce the risks of social engineering.

1.7 Understand the concept and significance of auditing, logging and system scanning.

Quick navigation to subsections and regular topics in this section



Previous Topic/Section
0.8  Summary
Previous Page
Pages in Current Topic/Section
1
Next Page
Getting Ready for Chapter 1 - Questions
Next Topic/Section

If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!
Donate $2
Donate $5
Donate $10
Donate $20
Donate $30
Donate: $



Home - Table Of Contents - Contact Us

CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004

Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.