CASP : CompTIA Advanced Security Practitioner study guide (exam cas-001) / Michael Gregg, and Billy Haines.

Format:

Book

Author/Creator:

Gregg, Michael H.

Language:

English

Subjects (All):

Electronic data processing personnel--Certification.

Electronic data processing personnel.

Computer security--Examinations--Study guides.

Computer security.

Computer networks--Security measures--Examinations--Study guides.

Computer networks.

Computing Technology Industry Association--Examinations--Study guides.

Computing Technology Industry Association.

Physical Description:

1 online resource (558 p.)

Edition:

1st edition

Other Title:

CompTIA Advanced Security Practitioner study guide

Place of Publication:

Indianapolis, IN : Wiley Pub., Inc., 2012.

Language Note:

English

System Details:

text file

Summary:

Get Prepared for CompTIA Advanced Security Practitioner (CASP) Exam Targeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study guide is focused on the new CompTIA Advanced Security Practitioner (CASP) Exam CAS-001. Veteran IT security expert and author Michael Gregg details the technical knowledge and skills you need to conceptualize, design, and engineer secure solutions across complex enterprise environments. He prepares you for aspects of the certification tes

Contents:

CASP CompTIA Advanced Security Practitioner Study Guide; Contents; Foreword; Introduction; Before You Begin the CompTIA CASP Certification Exam; How to Become a CASP Certified Professional; Who Should Read This Book?; How This Book Is Organized; Exam Strategy; How to Use This Book and Companion Website; The CASP (2011 Edition) Exam Objectives; Chapter 1: Cryptographic Tools and Techniques; The History of Cryptography; Cryptographic Services; Symmetric Encryption; Asymmetric Encryption; Hybrid Encryption; Hashing; Digital Signatures; Public Key Infrastructure; Cryptographic Solutions

Cryptographic AttacksSummary; Exam Essentials; Review Questions; Chapter 2: Comprehensive Security Solutions; Advanced Network Design; TCP/IP; Secure Communication Solutions; Secure Facility Solutions; Secure Network Infrastructure Design; Summary; Exam Essentials; Review Questions; Chapter 3: Securing Virtualized, Distributed, and Shared Computing; Enterprise Security; Cloud Computing; Virtualization; Virtual LANs; Enterprise Storage; Summary; Exam Essentials; Review Questions; Chapter 4: Host Security; Firewalls and Access Control Lists; Host-Based Firewalls; Trusted Operating System

Endpoint Security SoftwareAnti-malware; Host Hardening; Asset Management; Data Exfiltration; Intrusion Detection and Prevention; Summary; Exam Essentials; Review Questions; Chapter 5: Application Security and Penetration Testing; Application Security; Specific Application Issues; Application Sandboxing; Application Security Framework; Standard Libraries; Secure Coding Standards; Application Exploits; Escalation of Privilege; Improper Storage of Sensitive Data; Cookie Storage and Transmission; Process Handling at the Client and Server; Security Assessments and Penetration Testing; Summary

Exam EssentialsReview Questions; Chapter 6: Risk Management; Risk Terminology; Identifying Vulnerabilities; Operational Risks; The Risk Assessment Process; Best Practices for Risk Assessments; Summary; Exam Essentials; Review Questions; Chapter 7: Policies, Procedures, and Incident Response; A High-Level View of Documentation; Business Documents Used to Support Security; Documents and Controls Used for Sensitive Information; Auditing Requirements and Frequency; The Incident Response Framework; Digital Forensics; The Role of Training and Employee Awareness; Summary; Exam Essentials

Review QuestionsChapter 8: Security Research and Analysis; Analyzing Industry Trends and Outlining Potential Impact; Carrying Out Relevant Analysis to Secure the Enterprise; Summary; Exam Essentials; Review Questions; Chapter 9: Enterprise Security Integration; Integrate Enterprise Disciplines to Achieve Secure Solutions; Explain the Security Impact of Interorganizational Change; Summary; Exam Essentials; Review Questions; Chapter 10: Security Controls for Communication and Collaboration; Selecting and Distinguishing the Appropriate Security Controls

Advanced Authentication Tools, Techniques, and Concepts

Notes:

Includes index.

ISBN:

9786613652737

9781118236611

1118236610

9781280675805

1280675802

9781118222720

1118222725

OCLC:

777374789