CompTIA Security +


CompTIA Security+™ Certification (Course 8801-0100) The CompTIA Security+ certification tests for security knowledge mastery of an individual with two years on-the-job networking experience, with emphasis on security. The exam covers industry-wide topics, including communication security, infrastructure security, cryptography, access control, authentication, external attack and operational and organization security. CompTIA Security+ is taught at colleges, universities and commercial training centers around the globe. There are approximately 10,000 CompTIA Security+ certified professionals worldwide. CompTIA Security+ is an elective or prerequisite to advanced security certifications. The objectives of CompTIA Security+ were derived through input from industry, government and academia, a job task analysis, a survey of more than 1,100 subject matter experts and a beta exam with responses from subject matter experts around the world. There is compelling evidence that neither technologies nor policies alone offer effective protection against security threats. Theft and destruction of intellectual property takes place despite the presence of firewalls, encryption and corporate edicts. The industry and governments around the world must have a well-trained workforce to effectively combat hackers, attacks and security threats. CompTIA Security+ is the standard validation for that workforce. Industry Support for CompTIA Security+™ Many corporations recommend or require the CompTIA Security+ certification for their IT employees. Companies such as Sun, IBM/Tivoli Software Group, Symantec, Motorola and Olympus Security Group know the value of a CompTIA Security+ certification and recommend or require it of their IT employees. The demand for skilled security professionals is growing significantly and the technology community identifies CompTIA Security+ as the perfect way to validate your knowledge of information security. Course Prerequisites To benefit fully from this course, students should ideally have two years experience in networking or the equivalent knowledge. Contents
Module 1 Security Foundation Security Principles Risk Management The TCP/IP Networking Model Data Formats TCP/IP - Network Layer Protocols TCP/IP - Transport Layer Protocols TCP Segment Structure Application Layer Protocols Sockets Intranets and Extranets Network Analysers/Sniffers Module 2 Attacks and Malicious Code Social Engineering or Deception IP Spoofing IP Spoofing Response Man in the Middle TCP/IP Hijacking Replay Denial of Service (DoS) Attacks Ping Floods Teardrop Attacks Ping of Death UDP Bounce Attack SYN Attacks Smurf Attacks Distributed DoS Intruder Tools Backdoors Exploitation of System Vulnerabilities Overview of Malicious Code and Viruses Virus Virus Payload Types Trojan Horses Worms Detection Tools Response Prevention Module 3 Scanning and Intrusion Detection Overview Definition of Terms The Scanning Process Scan Types Scanning Methodologies Scanning Tools NMap (Network Mapper) NetCat (NC) Intruder Detection Systems (IDS) IDS Limitations Intruder Detection Software Honeypots Module 4 Network Devices and SNMP Network Hosts Network Connectivity Devices Hubs Switches VLAN Operation Routers Modems Protecting Network Connectivity Devices Network Media Twisted-Pair Cable (TP) Coaxial (coax) Cable Wireless Networks Wireless Vulnerabilities Securing a Wireless Network Site Surveys Wireless Application Protocol (WAP) SNMP Removable Storage Media Security Module 5 Firewalls, NAT and Proxy Overview Firewall Topology and Terminology Single-Layer Single-Layer with De-Militarised Zone (DMZ) Multi-Layer Firewall Design Packet Filtering and IP Address Packet Filtering using Port Numbers Typical Firewall Configuration Practical Mod 5.1 - Firewall Configuration Exercise Dynamic Packet Filtering Firewalls Public and Private Network Addresses Network Address Translation (NAT) Application Proxy Other Firewall Features Firewall Testing Best Practice	Module 6 Network and Operating System Hardening Security Baselines Security Standards Network Device Hardening Operating System/Network Operating System Hardening File System Security Windows 2000 File Permissions Unix Folder and File Permissions Application Hardening DNS DNS Security DCHP Databases Directory Services File and Print Services Network News Transfer Protocol (NNTP) Module 7 Encryption Introduction to Cryptography Information Assurance Terminology used in Cryptography Encryption Techniques Encryption Technology Hashing Cryptographic Attacks Encrypting a Message using Private/Public Keys Digital Envelopes Public Key Infrastructure (PKI) Trust Models Hierarchical Trust Key Management PKI Standards and Protocols IPSec (Internet Security Protocol) Internet Key Exchange Module 8 RAS and Remote Administration Introduction to Remote Access Remote Access Technologies Callback Tunnelling/Encapsulation Virtual Private Network (VPN) Tunnelling/VPN Technologies Remote Access Authentication Protocols Remote Access Authentication Module 9 Access Control Access Control Models Identification Security Account Policies Authentication Security Password Policies Password Cracking Authentication Technologies Access Control Models Auditing and Logging Module 10 Web and FTP Services Introduction to Web Security Malicious Code and Browser Vulnerabilities Java Script Java Applets ActiveX Buffer Overflow Attacks Cookies Common Gateway Interface (CGI) Protecting Confidential Data Web Defacement Web Server Hardening File Transfer Protocol (FTP) Module 11 Email and LDAP Internet Mail Mail Relay Hosts Post Office Protocol (POP) IMAP Spoofed Email Preventing Spoofed Email Email Bombing and Spamming Preventing Spam Email Hoaxes Email Hardening Protecting the Content of Emails Lightweight Directory Access Protocol (LDAP) Module 12 Operational and Organisational Security Physical Security Environmental Control Disaster Recovery Business Continuity Organisation Security Policy Security Policies and Procedures Human Resources Policies Forensics