Learn, prepare, and practice for CompTIA Security+ SY0-501 exam success with this CompTIA Security+ SY0-501 Cert Guide, Academic Edition from Pearson IT Certification, a leader in IT Certification learning. The companion website features three complete practice exams, complete video solutions to hands-on labs, plus interactive flash-based simulations that include drag-and-drop and matching to reinforce the learning.   ·         Master the CompTIA Security+ SY0-501 exam topics ·         Assess your knowledge with chapter-ending quizzes ·         Reinforce your knowledge of key concepts with chapter review activities ·         Practice with realistic exam questions online ·         Includes complete video solutions to hands-on labs, plus interactive simulations on key exam topics ·         Work through Flash Cards in Q&A and glossary term format ·         Includes free access to the Premium Edition eBook   CompTIA Security+ SY0-501 Cert Guide, Academic Edition includes video solutions to the hands-on labs, practice tests, and interactive simulations that let the reader learn by doing. Best-selling author and expert instructor David L. Prowse shares preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics. The book presents you with an organized test-preparation routine through the use of proven series elements and techniques. Exam topic lists make referencing easy. Chapter review activities help you drill on key concepts you must know thoroughly. Review questions help you assess your knowledge, and a final preparation chapter guides you through tools and resources to help you craft your approach to passing the exam. The companion Academic Edition website contains the powerful Pearson Test Prep practice test engine, with three complete practice exams and hundreds of exam-realistic questions and free access to the Premium Edition eBook. The assessment engine offers you a wealth of customization options and reporting features, laying out a complete assessment of your knowledge to help you focus your study where it is needed most. Work through Flash Cards in Q&A and glossary term format to help reinforce your knowledge of key concepts and facts. The Academic Edition companion site also includes complete video solutions to hands-on labs in the book and interactive simulations on key exam topics to reinforce the learning by doing. Learn activities such as testing password strength, matching the type of malware with its definition, finding security issues in the network map, and disallowing a user to access the network on Saturday and Sunday. Well regarded for its level of detail, assessment features, and challenging review questions and exercises, this CompTIA study guide helps you master the concepts and techniques that will allow you to succeed on the exam the first time. The CompTIA study guide helps you master all the topics on the Security+ exam, including ·         Core computer system security ·         OS hardening and virtualization ·         Application security ·         Network design elements and threats ·         Perimeter security ·         Network media and devices security ·         Physical security and authentication models ·         Access control ·         Vulnerability and risk assessment ·         Monitoring and auditing ·         Cryptography, including PKI ·         Redundancy and disaster recovery ·         Policies and procedures  

Table of Contents:
Introduction xxii Chapter 1 Introduction to Security 2 Foundation Topics 3 Security 101 3     The CIA of Computer Security 3     The Basics of Information Security 4 Think Like a Hacker 6 Threat Actor Types and Attributes 7 Chapter Review Activities 9 Chapter 2 Computer Systems Security Part I 12 Foundation Topics 13 Malicious Software Types 13     Viruses 13     Worms 14     Trojan Horses 14     Ransomware 15     Spyware 15     Rootkits 16     Spam 16     Summary of Malware Threats 17 Delivery of Malware 17     Via Software, Messaging, and Media 18     Botnets and Zombies 19     Active Interception 19     Privilege Escalation 19     Backdoors 19     Logic Bombs 20 Preventing and Troubleshooting Malware 20     Preventing and Troubleshooting Viruses 20     Preventing and Troubleshooting Worms and Trojans 23     Preventing and Troubleshooting Spyware 24     Preventing and Troubleshooting Rootkits 25     Preventing and Troubleshooting Spam 26     You Can’t Save Every Computer from Malware! 27     Summary of Malware Prevention Techniques 27 Chapter Review Activities 29 Chapter 3 Computer Systems Security Part II 34 Foundation Topics 35 Implementing Security Applications 35     Personal Software Firewalls 35     Host-Based Intrusion Detection Systems 36     Pop-Up Blockers 38     Data Loss Prevention Systems 38 Securing Computer Hardware and Peripherals 39     Securing the BIOS 39     Securing Storage Devices 41         Removable Storage 41         Network Attached Storage 41         Whole Disk Encryption 42         Hardware Security Modules 43     Securing Wireless Peripherals 43 Securing Mobile Devices 44     Malware 44     Botnet Activity 45     SIM Cloning and Carrier Unlocking 45     Wireless Attacks 46     Theft 46     Application Security 47     BYOD Concerns 49 Chapter Review Activities 53 Chapter 4 OS Hardening and Virtualization 58 Foundation Topics 59 Hardening Operating Systems 59     Removing Unnecessary Applications and Services 59     Windows Update, Patches, and Hotfixes 65         Patches and Hotfixes 66         Patch Management 68     Group Policies, Security Templates, and Configuration Baselines 69     Hardening File Systems and Hard Drives 71 Virtualization Technology 74     Types of Virtualization and Their Purposes 74     Hypervisor 75     Securing Virtual Machines 76 Chapter Review Activities 79 Chapter 5 Application Security 86 Foundation Topics 87 Securing the Browser 87     General Browser Security Procedures 88         Implement Policies 88         Train Your Users 90         Use a Proxy and Content Filter 91         Secure Against Malicious Code 92     Web Browser Concerns and Security Methods 92         Basic Browser Security 92         Cookies 92         LSOs 93         Add-ons 94         Advanced Browser Security 94 Securing Other Applications 95 Secure Programming 99     Software Development Life Cycle 99     Core SDLC and DevOps Principles 100     Programming Testing Methods 102         White-box and Black-box Testing 102         Compile-Time Errors Versus Runtime Errors 102         Input Validation 103         Static and Dynamic Code Analysis 104         Fuzz Testing 104     Programming Vulnerabilities and Attacks 104         Backdoors 105         Memory/Buffer Vulnerabilities 105         Arbitrary Code Execution/Remote Code Execution 106         XSS and XSRF 107         More Code Injection Examples 107         Directory Traversal 109         Zero Day Attack 109 Chapter Review Activities 111 Chapter 6 Network Design Elements 118 Foundation Topics 119 Network Design 119     The OSI Model 119     Network Devices 120         Switch 120         Bridge 122         Router 122     Network Address Translation, and Private Versus Public IP 123     Network Zones and Interconnections 125         LAN Versus WAN 125         Internet 126         Demilitarized Zone (DMZ) 126         Intranets and Extranets 127     Network Access Control (NAC) 128     Subnetting 128     Virtual Local Area Network (VLAN) 130     Telephony 131         Modems 131         PBX Equipment 132         VoIP 132 Cloud Security and Server Defense 133     Cloud Computing 133     Cloud Security 135     Server Defense 137         File Servers 137         Network Controllers 137         E-mail Servers 138         Web Servers 139         FTP Server 140 Chapter Review Activities 142 Chapter 7 Networking Protocols and Threats 148 Foundation Topics 149 Ports and Protocols 149     Port Ranges, Inbound Versus Outbound, and Common Ports 149     Protocols That Can Cause Anxiety on the Exam 155 Malicious Attacks 155     DoS 155     DDoS 158     Sinkholes and Blackholes 158     Spoofing 159     Session Hijacking 159     Replay 161     Null Sessions 161     Transitive Access and Client-Side Attacks 162     DNS Poisoning and Other DNS Attacks 162     ARP Poisoning 164     Summary of Network Attacks 164 Chapter Review Activities 167 Chapter 8 Network Perimeter Security 174 Foundation Topics 175 Firewalls and Network Security 175     Firewalls 175     Proxy Servers 179     Honeypots and Honeynets 181     Data Loss Prevention (DLP) 182 NIDS Versus NIPS 183     NIDS 183     NIPS 184     Summary of NIDS Versus NIPS 185     The Protocol Analyzer’s Role in NIDS and NIPS 185     Unified Threat Management 186 Chapter Review Activities 187 Chapter 9 Securing Network Media and Devices 194 Foundation Topics 195 Securing Wired Networks and Devices 195     Network Device Vulnerabilities 195         Default Accounts 195         Weak Passwords 195         Privilege Escalation 196         Back Doors 197         Network Attacks 197         Other Network Device Considerations 197     Cable Media Vulnerabilities 198         Interference 198         Crosstalk 199         Data Emanation 199         Tapping into Data and Conversations 200 Securing Wireless Networks 201     Wireless Access Point Vulnerabilities 202         The Administration Interface 202         SSID Broadcast 202         Rogue Access Points 202         Evil Twin 203         Weak Encryption 203         Wi-Fi Protected Setup 205         Ad Hoc Networks 205         VPN over Open Wireless 205     Wireless Access Point Security Strategies 205     Wireless Transmission Vulnerabilities 208     Bluetooth and Other Wireless Technology Vulnerabilities 209         Bluejacking 209         Bluesnarfing 210     RFID and NFC 210         More Wireless Technologies 210 Chapter Review Activities 212 Chapter 10 Physical Security and Authentication Models 218 Foundation Topics 219 Physical Security 219     General Building and Server Room Security 219     Door Access 220     Biometric Readers 221 Authentication Models and Components 222     Authentication Models 222     Localized Authentication Technologies 224         802.1X and EAP 224         LDAP 226         Kerberos and Mutual Authentication 227         Remote Desktop Services 229     Remote Authentication Technologies 230         Remote Access Service 230         Virtual Private Networks 231         RADIUS Versus TACACS 234 Chapter Review Activities 236 Chapter 11 Access Control Methods and Models 244 Foundation Topics 245 Access Control Models Defined 245     Discretionary Access Control 245     Mandatory Access Control 246     Role-Based Access Control (RBAC) 247     Attribute-based Access Control (ABAC) 248     Access Control Wise Practices 249 Rights, Permissions, and Policies 250     Users, Groups, and Permissions 251     Permission Inheritance and Propagation 255     Moving and Copying Folders and Files 256     Usernames and Passwords 256     Policies 258     User Account Control (UAC) 261 Chapter Review Activities 262 Chapter 12 Vulnerability and Risk Assessment 270 Foundation Topics 271 Conducting Risk Assessments 271     Qualitative Risk Assessment 272     Quantitative Risk Assessment 273     Security Analysis Methodologies 274     Security Controls 275     Vulnerability Management 276         Penetration Testing 277         OVAL 279         Additional Vulnerabilities 279 Assessing Vulnerability with Security Tools 280     Network Mapping 280     Vulnerability Scanning 282     Network Sniffing 283     Password Analysis 284 Chapter Review Activities 287 Chapter 13 Monitoring and Auditing 294 Foundation Topics 295 Monitoring Methodologies 295     Signature-Based Monitoring 295     Anomaly-Based Monitoring 295     Behavior-Based Monitoring 296 Using Tools to Monitor Systems and Networks 296     Performance Baselining 297     Protocol Analyzers 299         Wireshark 299     SNMP 301     Analytical Tools 302     Use Static and Dynamic Tools 304 Conducting Audits 304     Auditing Files 305     Logging 306     Log File Maintenance and Security 310     Auditing System Security Settings 311     SIEM 314 Chapter Review Activities 315 Chapter 14 Encryption and Hashing Concepts 322 Foundation Topics 323 Cryptography Concepts 323     Symmetric Versus Asymmetric Key Algorithms 326         Symmetric Key Algorithms 326     Asymmetric Key Algorithms 327     Public Key Cryptography 327     Key Management 328     Steganography 328 Encryption Algorithms 329     DES and 3DES 329     AES 329     RC 330     Blowfish and Twofish 331     Summary of Symmetric Algorithms 331     RSA 331     Diffie-Hellman 333     Elliptic Curve 333     More Encryption Types 334         One-Time Pad 334         PGP 335         Pseudorandom Number Generators 336 Hashing Basics 336     Cryptographic Hash Functions 337         MD5 338         SHA 338         RIPEMD and HMAC 338     LANMAN, NTLM, and NTLMv2 339         LANMAN 339         NTLM and NTLMv2 340     Hashing Attacks 341         Pass the Hash 341         Happy Birthday! 341     Additional Password Hashing Concepts 342 Chapter Review Activities 343 Chapter 15 PKI and Encryption Protocols 350 Foundation Topics 351 Public Key Infrastructure 351     Certificates 351         SSL Certificate Types 352         Single-Sided and Dual-Sided Certificates 352         Certificate Chain of Trust 352         Certificate Formats 352     Certificate Authorities 353     Web of Trust 356 Security Protocols 356     S/MIME 357     SSL/TLS 357     SSH 359     PPTP, L2TP, and IPsec 359         PPTP 359         L2TP 359         IPsec 360 Chapter Review Activities 361 Chapter 16 Redundancy and Disaster Recovery 368 Foundation Topics 369 Redundancy Planning 369     Redundant Power 370     Redundant Power Supplies 371     Uninterruptible Power Supplies 371     Backup Generators 372     Redundant Data 374     Redundant Networking 376     Redundant Servers 377     Redundant Sites 378     Redundant People 379 Disaster Recovery Planning and Procedures 379     Data Backup 379     DR Planning 382 Chapter Review Activities 385 Chapter 17 Social Engineering, User Education, and Facilities Security 390 Foundation Topics 391 Social Engineering 391     Pretexting 391     Malicious Insider 391     Diversion Theft 392     Phishing 392     Hoaxes 393     Shoulder Surfing 394     Eavesdropping 394     Dumpster Diving 394     Baiting 394     Piggybacking/Tailgating 394     Watering Hole Attack 395     Summary of Social Engineering Types 395 User Education 396     Facilities Security 398     Fire Suppression 398         Fire Extinguishers 398         Sprinkler Systems 399         Special Hazard Protection Systems 399     HVAC 400     Shielding 401     Vehicles 402 Chapter Review Activities 404 Chapter 18 Policies and Procedures 410 Foundation Topics 411 Legislative and Organizational Policies 411     Data Sensitivity and Classification of Information 411     Personnel Security Policies 413         Privacy Policies 414         Acceptable Use 414         Change Management 414         Separation of Duties/Job Rotation 415         Mandatory Vacations 415         Onboarding and Offboarding 415         Due Diligence 416         Due Care 416         Due Process 416         User Education and Awareness Training 416         Summary of Personnel Security Policies 417     How to Deal with Vendors 417     How to Dispose of Computers and Other IT Equipment Securely 419 Incident Response Procedures 420 IT Security Frameworks 424 Chapter Review Activities 426 Chapter 19 Taking the Real Exam 432     Getting Ready and the Exam Preparation Checklist 432     Tips for Taking the Real Exam 435     Beyond the CompTIA Security+ Certification 438 Practice Exam 1: SY0-501 440 Glossary 458   Elements Available Online Appendix A: Answers to the Review Questions Answers to Practice Exam 1 View Recommended Resources Real-World Scenarios Flash Cards     9780789759122   TOC   10/31/2017