Difference between revisions of "Security+ Essentials"

Revision as of 19:46, 19 February 2008

1. About Security+ Essentials
   
   
2. Mandatory, Discretionary, Role and Rule Based Access Control
   • An Overview of Access Control
   • Mandatory Access Control
   • Discretionary Access Control
   • Role Based Access Control
   • Rule Based Access Control
     
     
3. Authentication and Identity Verification
   • What is Authentication?
   • Username and Password
   • Challenge Handshake Authentication Protocol (CHAP)
   • Kerberos Authentication
   • Mutual Authentication
   • Certificates
   • Authentication using Tokens
   • Biometrics
     
     
4. An Overview of IT Security Threats and Attacks
   • TCP and UDP Based Denial of Service (DoS) Attacks
   • Distributed Denial of Service (DDoS) Attacks
   • Back Door Attacks
   • IP and DNS Spoofing Attacks
   • Man in the Middle Attacks
   • Replay Attacks
   • TCP/IP Hijacking
   • Mathematical Attacks
   • Password Guessing
   • Brute Force Password Attacks
   • Dictionary Password Attacks
   • Password Cracking
     
     
5. Software Exploitation, Malicious Code and Social Engineering
   • Software Exploitation
   • Malicious Code
   • Viruses
   • Trojan Horses
   • Logic Bombs
   • Worms
   • Social Engineering
     
     
6. Identifying Common and Nonessential TCP/IP Ports and Services
   • Understanding Ports and Services
   • Securing Ports and Services
   • Port Scanning
   • Primary TCP/IP Ports and Assignments
     
     
7. Understanding Communications Security
   • Remote Access
   • Virtual Private Network (VPN) Communications
   • Point-to-Point-Tunneling Protocol (PPTP)
   • Layer 2 Tunneling Protocol (L2TP)
   • Internet Protocol Security (IPSec)
   • 802.11x Wireless Connections
   • Dial-Up Access
   • Terminal Access Controller Access Control System (TACACS)
   • Remote Authentication Dial-In User Service (RADIUS)
   • Terminal Access Controller Access Control System Plus(TACACS+)
   • Secure Shell (SSH)
     
     
8. The Basics of Email and Web Security
   • Email Security
   • Pretty Good Privacy (PGP)
   • [[The Basics of Email and Web Security|Secure Multipurpose Internet Mail Extension (S/MIME)]
   • Dealing with Spam Email
   • Web Based Security (SSL and TLS)