CompTIA Security+ 2008 Edition
Module 1: Threat Mitigation
Overview/Description
The central goals of network security are integrity,
confidentiality, and availability. Even the most secure data
systems are threatened on a daily basis, providing the challenge to
administrators as well as users to maintain security. A decision
must be made as to whether or not the cost of adding additional
security outweighs possible losses that may be incurred with
current configurations. Companies are constantly deciding how much
risk is acceptable. This course introduces methods used to perform
core system maintenance, manage viruses and spyware, securing
browser software, and identify and mitigate social engineering
threats. This course is one of a series in the SkillSoft learning
path that covers the objectives for the CompTIA Security+ (2008
Edition) certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
Core System Maintenance
- identify key threats to network security
- secure the operating system
- configure Windows Firewall
Virus and Spyware Detection and Management
- distinguish between network security threats
- scan a system for spyware
- configure Windows Mail to prevent spam
Securing the System
Web Application Security
- recognize the security vulnerabilities and safeguards of
JavaScript
- recognize the security vulnerabilities and safeguards of
ActiveX
- recognize the security vulnerabilities and safeguards of Java
applets
Pop-ups, Cookies, and Input Validation
- manage pop-ups
- recognize the security vulnerabilities and safeguards of
cookies
- recognize input validation attacks and how to prevent them
Social Engineering
- recognize social engineering threats and safeguards
Managing Pop-ups and Social Engineering Defense
Module 2: Cryptography
Overview/Description
The central goals of network security are integrity,
confidentiality, and availability. Even the most secure data
systems are threatened on a daily basis, providing the challenge to
administrators as well as users to maintain security. A decision
must be made as to whether or not the cost of adding additional
security outweighs possible losses that may be incurred with
current configurations. Companies are constantly deciding how much
risk is acceptable. This course introduces methods used to perform
core system maintenance, manage viruses and spyware, securing
browser software, and identify and mitigate social engineering
threats. This course is one of a series in the SkillSoft learning
path that covers the objectives for the CompTIA Security+ (2008
Edition) certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
Core System Maintenance
- identify key threats to network security
- secure the operating system
- configure Windows Firewall
Virus and Spyware Detection and Management
- distinguish between network security threats
- scan a system for spyware
- configure Windows Mail to prevent spam
Securing the System
Web Application Security
- recognize the security vulnerabilities and safeguards of
JavaScript
- recognize the security vulnerabilities and safeguards of
ActiveX
- recognize the security vulnerabilities and safeguards of Java
applets
Pop-ups, Cookies, and Input Validation
- manage pop-ups
- recognize the security vulnerabilities and safeguards of
cookies
- recognize input validation attacks and how to prevent them
Social Engineering
- recognize social engineering threats and safeguards
Managing Pop-ups and Social Engineering Defense
Module 3: Authentication Methods
Overview/Description
Developing authentication methods that ensure that a user is who
they claim to be has been a challenge for administrators since
shared networking was first introduced. There are many
authentication models and strategies available today. This course
introduces the learner to the concepts of AAA, hashing,
multi-factor authentication, Kerberos, and domain security. This
course is one of a series in the SkillSoft learning path that
covers the objectives for the CompTIA Security+ (2008 Edition)
certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
Authentication, Authorization, and Accounting
- recognize key considerations when creating strong
passwords
- identify the components of authentication
- recognize examples appropriate to authentication factors
Monitoring and Domains
- recognize key functions of a protocol analyzer
- recognize key functions of Active Directory Domain
Services
Hashing Protocols and Password Cracking
- recognize key aspects of Kerberos v5, NTLM, and LM
- recognize password cracking techniques
Authenticating Users and Cracking Passwords
Authentication Methods
- recognize examples of identity proofing
- distinguish between when to use CHAP, EAP, PAP, and mutual
authentication
Kerberos
- recognize the Kerberos authentication process
- recognize the security weaknesses of Kerberos
Using Authentication Methods
Module 4: Messaging, User and Role Security
Overview/Description
E-mail and instant messaging have taken over from snail mail,
memos, and even to a large extent from phone conversations in
modern office environments. The challenge is to ensure that these
forms of communication are secure, readily accessible, and that the
identity of both parties involved can be confirmed. This course
analyzes and demonstrates the methods for securing e-mail and
instant messages along with creating security on the Active
Directory domain and client computers so that these forms of
communication can be done with confidentiality, integrity,
availability and nonrepudiation. This course is one of a series in
the SkillSoft learning path that covers the objectives for the
CompTIA Security+ (2008 Edition) certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
E-mail Vulnerabilities
- recognize the types of e-mail attacks and how to combat
them
- recognize how to secure an e-mail server
Encryption, PGP, and S/MIME
- recognize how PGP encrypts e-mail messages
- recognize how S/MIME encrypts e-mail messages
- recognize how to send an e-mail message with restricted
permission
- recognize how to obtain a digital ID and digitally sign e-mail
messages
Securing E-mail Messages
Instant Messaging Risks and Countermeasures
- recognize the security risks of instant messaging and combat
them
Securing the IM Client
- recognize the guidelines for IM client security
- configure IM client security
Implementing IM Security
Local Security Policies
- create a console to manage local security policies
- recognize how to design domain GPOs
Group Policy Settings and Security Templates
- implement domain GPOs
- analyze a Windows Vista computer's security
User, File System, and Printer Security
- create users and groups based on security needs
- secure file resources
- secure printer resources
Configuring and Securing Users and Resources
Module 5: Public Key Infrastructure and Access
Security
Overview/Description
Access security, both within a network and on the Internet, is
paramount to corporate security. Modern network environments use
key encryption technologies in order to provide security and
availability to both employees and customers. This course explores
the use of certificate servers and certificates to provide a secure
environment both within a network and when dealing with web servers
and internet validations. It also examines how to secure the
physical environment and data access. This course is one of a
series in the SkillSoft learning path that covers the objectives
for the CompTIA Security+ (2008 Edition) certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
Key Management and Life Cycle
- recognize when to use the centralized and decentralized
key-management models
- distinguish between the processes in the setup phase of key
life-cycle management
- distinguish between the processes in the administrative phase
of key life-cycle management
- distinguish between the processes in the cancellation phase of
key life-cycle management
Certificate Services Servers
- install a standalone root Certificate Authority
- implement a file-based certificate request
- manage a certificate server
Installing and Managing a Standalone Root CA
User Certificates and Key Recovery
- grant users the log on locally right
- revoke a certificate
- establish an EFS recovery agent
Web Server Security with PKI
- establish web server security with PKI
Enabling Recovery Agents and Web Server Security with PKI
Biometrics
- recognize key considerations in the use of biometrics
Physical Access Security
- recognize physical access security measures
Peripheral and Component Security
- recognize security threats to system peripherals and
components, and how to counteract them
- configure security policy settings for mitigating risks to
peripherals
Storage Device Security
- encrypt individual files
- encrypt an entire disk
Securing Peripherals, Files, and Disks
Module 5: Ports, Protocols and Network
Security
Overview/Description
Internetwork communications are the foundation of the modern
Internet. Selecting the correct devices, properly configuring those
devices, and placing them in the correct locations both within and
outside a network to defend against attack is a task every network
administrator faces on a daily basis. This course discusses, TCP/IP
configuration and attack defences, network devices selection and
proper placement, and securing the networking environment. This
course is one of a series in the SkillSoft learning path that
covers the objectives for the CompTIA Security+ (2008 Edition)
certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
TCP/IP
- distinguish between TCP/IP protocols
- recognize examples of IPv4 addresses
- recognize examples of IPv6 addresses
Protocol-based Attacks I
- recognize DoS and DDoS attacks and how to prevent them
- configure a server to prevent SYN flood attacks
Protocol-based Attacks II
- recognize man-in-the-middle attacks and how to prevent
them
Defending against Protocol Attacks
The OSI Reference Model and Networking Devices
- recognize the function of each layer in the OSI Reference
Model
- recognize key characteristics of common networking devices
Firewalls and Device Security
- recognize key characteristics of firewalls
- recognize key network device weaknesses
- recognize ways to prevent device attacks
Defending against Protocol-based Attacks and Device Attacks
Secure Network Topology
- recognize security considerations when designing network
topologies
Browser-related Network Security and Virtualization
- configure the Phishing Filter
- set security zones
- set privacy options
- recognize the benefits of virtualization
Setting Browser-related Security
Module 6: Wi-Fi and Remote Access
Overview/Description
Remote access is becoming more and more prevalent in today's
working world. The telecommuter has become the daily businessperson
of today. Plane trips, hotel stays, and long distance meetings have
made the need for wireless networking and wireless security
paramount. This course examines wireless security configuration
options along with remote access strategies, VPN configurations,
and security measures. This course is one of a series in the
SkillSoft learning path that covers the objectives for the CompTIA
Security+ (2008 Edition) certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
Wireless Networking Standards and Security
- recognize 802.11 standards
- recognize how to secure a wireless network
Wireless Configurations and Transmission Encryption
- recognize wireless configurations
- recognize transmission encryption techniques
Non-PC Wireless Devices
- recognize wireless device-to-device security attacks and how to
prevent them
- recognize wireless infrastructure attacks
Securing Wireless Networks and Devices
RADIUS, Diameter, and LDAP Remote Access
- distinguish RADIUS, Diameter, and LDAP remote access
authentication systems
TACACS+ and 802.1x Remote Access, and NPS
- distinguish TACACS+, RADIUS, and 802.1x remote access
authentication systems
- configure Network Policy Server
Deploying NPS
Virtual Private Networks
- recognize key characteristics of VPNs
Module 7: Risk Analysis, Vulnerability Testing, IDS and
Forensics
Overview/Description
Ensuring that modern network environments are secure is of
paramount importance in today's IT world. The use of risk analysis
techniques and vulnerability scanners, along with intrusion
detection systems and forensic methodologies have become the
backbone of modern IT security. This course looks at modern risk
analysis techniques, forensic methodologies, IDS systems and
methods to harden network devices and operating systems. This
course is one of a series in the SkillSoft learning path that
covers the objectives for the CompTIA Security+ (2008 Edition)
certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
Risk Analysis
- recognize how to conduct risk analysis
- analyze a system using the MBSA
Vulnerability Scanners
- scan for system vulnerabilities with OVAL
- scan for system vulnerabilities with Nessus
Analyzing and Scanning Systems
IDS, NIDS, HIDS, and Honeypots
- recognize key characteristics of IDS
- recognize the uses of NIDS and HIDS
- recognize the use of honeypots
Computer Forensics
- recognize how key computer forensics procedures are
performed
Performing Computer Forensics Procedures
Module 8: Auditing, Security Policies and Disaster
Recovery
Overview/Description
Network Administrators create security polices, generate audit
reports, and prepare disaster recovery contingency plans in the
hope of both avoiding network security failures and being prepared
should they actually occur. This course examines the methods used
to secure a network environment through security policies, user
education, and resource monitoring. The course also explores
business continuity planning, backups, and disaster recovery
planning. This course is one of a series in the SkillSoft learning
path that covers the objectives for the CompTIA Security+ (2008
Edition) certification exam.
Target Audience
Organizations involved in IT services or training that need to
have personnel qualified for onwards delivery of IT support or
training; businesses that will need up-to-date Security+ training
for their own internal networking support purposes; individuals who
are personally interested in establishing credentials for the
benefit of their own career prospects.
Prerequisites
Although not a prerequisite, it is recommended that CompTIA
Security+ candidates have at least two years on-the-job networking
experience with an emphasis on security. The CompTIA Network+
certification is also recommended.
Lesson Objectives
System Logging
- recognize scenarios related to device and application
logging
System Monitoring and Auditing
- recognize how to monitor system performance
- recognize what auditing systems involves
Running a DCS and Viewing DCS reports
Security Policies
- recognize how to create a security policy
HR and Incidents Policies and Change Management
- recognize how to create a human resources policy
- recognize how to create an incident response policy
- recognize the function of a change management process for a
network
Education, Training, and Secure Disposal
- recognize the educational and training needs for users and
administrators
- recognize how to dispose of IT equipment
Assessing Organizational Security
Business Continuity and Disaster Recovery
- recognize how to create a redundancy plan
- recognize how to create a disaster recovery plan
Data Backup and Restore and Media Rotation
- recognize the data backup schemes
- recognize the backup media rotation schemes
Environmental Controls
- recognize the controls used to protect network
environments
Planning Disaster Recovery