Home Page Icon
Home Page
Table of Contents for
Code Snippets
Close
Code Snippets
by Troy McMillian, Robin Abernathy
CISSP Cert Guide, Second Edition
About This E-Book
Title Page
Copyright Page
Contents at a Glance
Table of Contents
About the Author
Dedication
Acknowledgments
About the Technical Reviewers
We Want to Hear from You!
Reader Services
Book Features and Exam Preparation Methods
Companion Website
Accessing the Pearson Test Prep Software and Questions
Accessing the Pearson Test Prep Software Online
Accessing the Pearson Test Prep Software Offline
Assessing Exam Readiness
Premium Edition
Introduction: The CISSP Certification
The Goals of the CISSP Certification
Sponsoring Bodies
Stated Goals
The Value of the CISSP Certification
To the Security Professional
To the Enterprise
The Common Body of Knowledge
Security and Risk Management (e.g. Security, Risk, Compliance, Law, Regulations, Business Continuity)
Asset Security (Protecting Security of Assets)
Security Engineering (Engineering and Management of Security)
Communication and Network Security (Designing and Protecting Network Security)
Identity and Access Management (Controlling Access and Managing Identity)
Security Assessment and Testing (Designing, Performing, and Analyzing Security Testing)
Security Operations (e.g. Foundational Concepts, Investigations, Incident Management, Disaster Recovery)
Software Development Security (Understanding, Applying, and Enforcing Software Security)
Steps to Becoming a CISSP
Qualifying for the Exam
Signing Up for the Exam
About the CISSP Exam
Chapter 1. Security and Risk Management
Foundation Topics
Security Terms
Security Governance Principles
Compliance
Legal and Regulatory Issues
Professional Ethics
Security Documentation
Business Continuity
Personnel Security Policies
Risk Management Concepts
Threat Modeling
Security Risks in Acquisitions
Security Education, Training, and Awareness
Exam Preparation Tasks
Review All Key Topics
Complete the Tables and Lists from Memory
Define Key Terms
Answer Review Questions
Answers and Explanations
Chapter 2. Asset Security
Foundation Topics
Asset Security Concepts
Classify Information and Assets
Asset Ownership
Asset Management
Asset Privacy
Data Retention
Data Security and Controls
Asset Handling Requirements
Exam Preparation Tasks
Review All Key Topics
Complete the Tables and Lists from Memory
Define Key Terms
Answer Review Questions
Answers and Explanations
Chapter 3. Security Engineering
Foundation Topics
Engineering Using Secure Design Principles
Security Model Concepts
System Security Evaluation Models
Security Capabilities of Information Systems
Certification and Accreditation
Security Architecture Maintenance
Vulnerabilities of Security Architectures, Designs, and Solution Elements
Vulnerabilities in Web-Based Systems
Vulnerabilities in Mobile Systems
Vulnerabilities in Embedded Devices and Cyber-Physical Systems
Cryptography
Cryptographic Types
Symmetric Algorithms
Asymmetric Algorithms
Public Key Infrastructure
Key Management Practices
Digital Signatures
Digital Rights Management (DRM)
Message Integrity
Cryptanalytic Attacks
Geographical Threats
Site and Facility Design
Building and Internal Security
Environmental Security
Equipment Security
Exam Preparation Tasks
Review All Key Topics
Complete the Tables and Lists from Memory
Define Key Terms
Answer Review Questions
Answers and Explanations
Chapter 4. Communication and Network Security
Foundation Topics
Secure Network Design Principles
IP Networking
IPv4
Protocols and Services
Converged Protocols
Wireless Networks
Communications Cryptography
Secure Network Components
Secure Communication Channels
Network Attacks
Exam Preparation Tasks
Review All Key Topics
Define Key Terms
Answer Review Questions
Answers and Explanations
Chapter 5. Identity and Access Management
Foundation Topics
Access Control Process
Physical and Logical Access to Assets
Identification and Authentication Concepts
Identification and Authentication Implementation
Identity as a Service (IDaaS) Implementation
Third-Party Identity Services Implementation
Authorization Mechanisms
Access Control Threats
Prevent or Mitigate Access Control Threats
Exam Preparation Tasks
Review All Key Topics
Define Key Terms
Review Questions
Answers and Explanations
Chapter 6. Security Assessment and Testing
Foundation Topics
Assessment and Testing Strategies
Security Control Testing
Collect Security Process Data
Analyze and Report Test Outputs
Internal and Third-Party Audits
Exam Preparation Tasks
Review All Key Topics
Define Key Terms
Review Questions
Answers and Explanations
Chapter 7. Security Operations
Foundation Topics
Investigations
Investigation Types
Logging and Monitoring Activities
Resource Provisioning
Security Operations Concepts
Resource Protection
Incident Management
Preventive Measures
Patch Management
Change Management Processes
Recovery Strategies
Disaster Recovery
Testing Recovery Plans
Business Continuity Planning and Exercises
Physical Security
Personnel Privacy and Safety
Exam Preparation Tasks
Review All Key Topics
Define Key Terms
Answer Review Questions
Answers and Explanations
Chapter 8. Software Development Security
Foundation Topics
Software Development Concepts
Security in the System and Software Development Life Cycle
Security Controls in Development
Assess Software Security Effectiveness
Security Impact of Acquired Software
Exam Preparation Tasks
Review All Key Topics
Define Key Terms
Answer Review Questions
Answers and Explanations
Glossary
Appendix A. Memory Tables
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Appendix B. Memory Tables Answer Key
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Index
Inside Front Cover
Inside Back Cover
Where are the Companion Content Files?
Code Snippets
Search in book...
Toggle Font Controls
Playlists
Add To
Create new playlist
Name your new playlist
Playlist description (optional)
Cancel
Create playlist
Sign In
Email address
Password
Forgot Password?
Create account
Login
or
Continue with Facebook
Continue with Google
Sign Up
Full Name
Email address
Confirm Email Address
Password
Login
Create account
or
Continue with Facebook
Continue with Google
Prev
Previous Chapter
Where are the Companion Content Files?
Code Snippets
Add Highlight
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click
here
login for view all page.
Day Mode
Cloud Mode
Night Mode
Reset