CompTIA® Security+ SY0-301 Practice Questions Exam Cram, Third Edition, offers all the exam practice you’ll need to systematically prepare, identify and fix areas of weakness, and pass your exam the first time. This book complements any Security+ study plan with more than 800 practice test questions–all supported with complete explanations of every correct and incorrect answer–covering all Security+ exam objectives, including network security; compliance and operation security; threats and vulnerabilities; application, host and data security; access control and identity management; and cryptography. This is the eBook version of the print title. Note that the eBook does not provide access to the CD-ROM content that accompanies the print book. Limited Time Offer: Buy CompTIA Security+ SY0-301 Practice Questions Exam Cram and receive a 10% off discount code for the CompTIA Security+ SYO-301 exam. To receive your 10% off discount code: 1. Register your product at pearsonITcertification.com/register 2. When prompted, enter ISBN: 9780789748287 3. Go to your Account page and click on “Access Bonus Content” Covers the critical information you’ll need to know to score higher on your Security+ exam! Features more than 800 questions that are organized according to the Security+ exam objectives, so you can easily assess your knowledge of each topic. Use our innovative Quick-Check Answer System™ to quickly find answers as you work your way through the questions. Each question includes detailed explanations! Our popular Cram Sheet, which includes tips, acronyms, and memory joggers, helps you review key facts before you enter the testing center. Diane M. Barrett (MCSE, CISSP, Security+) is the director of training for Paraben Corporation and an adjunct professor for American Military University. She has done contract forensic and security assessment work for several years and has authored other security and forensic books. She is a regular committee member for ADFSL’s Conference on Digital Forensics, Security and Law, as well as an academy director for Advancement Solutions. She holds many industry certifications, including CISSP, ISSMP, DFCP, PCME, and Security+. Diane’s education includes a MS in Information Technology with a specialization in Information Security. She expects to complete a PhD in business administration with a specialization in Information Security shortly.
Prepare for CompTIA Security+ SY0-301 exam success with this CompTIA Authorized Exam Cram from Pearson IT Certification, a leader in IT Certification learning and a CompTIA Authorized Platinum Partner. This is the eBook version of the print ittle. Note that the eBook does not provide access to the CD content that accompanies the print book. CompTIA® Security+ Exam Cram, Third Edition, is the perfect study guide to help you pass CompTIA’s newly updated version of the Security+ exam. It provides coverage and practice questions for every exam topic. The book contains a set of 200 questions in two full practice exams. Limited Time Offer: Buy CompTIA Security+ SY0-301 Authorized Exam Cram and receive a 10% off discount code for the CompTIA Security+ SYO-301 exam. To receive your 10% off discount code: Register your product at pearsonITcertification.com/register When prompted enter ISBN: 9780789748294 Go to your Account page and click on “Access Bonus Content” Covers the critical information you need to know to score higher on your Security+ exam! Master and implement general security best practices Systematically identify threats and risks to your systems Harden systems by eliminating nonessential services Secure your communications, networks, and infrastructure Systematically identify and protect against online vulnerabilities Implement effective access control and authentication Create security baselines and audit your security infrastructure Understand cryptographic principles, and effectively deploy cryptographic solutions Organize security from both a technical and organizational standpoint Manage every facet of security, including education and documentation Understand the laws related to IT security, and the basics of forensic investigations Kirk Hausman (CISSP, CISA, CRISC, Security+) has worked as an ISO, consultant, trainer, and IT director. He is Assistant Commandant for IT at TAMU and teaches InfoSec topics as an Adjunct Professor at UMUC and UAT. Martin Weiss (CISSP, CISA, Security+, MCSE) leads a team of information security experts at Symantec supporting solutions to provide confidence in a connected world. Diane Barrett (CISSP, MCSE, A+, Security+) is the director of training for Paraben Corporation and an adjunct professor for American Military University.
Prepare for CompTIA Security+ SY0-301 exam success with this CompTIA Authorized Exam Cram from Pearson IT Certification, a leader in IT Certification learning and a CompTIA Authorized Platinum Partner. CompTIA® Security+ Exam Cram, Third Edition, is the perfect study guide to help you pass CompTIA's newly updated version of the Security+ exam. It provides coverage and practice questions for every exam topic. The book contains a set of 200 questions in two full practice exams. Limited Time Offer : Buy CompTIA Security+ SY0-301 Authorized Exam Cram and receive a 10% off discount code for the CompTIA Security+ SYO-301 exam. To receive your 10% off discount code: Register your product at pearsonITcertification.com/register Follow the instructions Go to your Account page and click on 'Access Bonus Content' The CD-ROM contains the powerful Pearson IT Certification Practice Test engine that provides real-time practice and feedback with all the questions so you can simulate the exam. Covers the critical information you need to know to score higher on your Security+ exam! Master and implement general security best practices Systematically identify threats and risks to your systems Harden systems by eliminating nonessential services Secure your communications, networks, and infrastructure Systematically identify and protect against online vulnerabilities Implement effective access control and authentication Create security baselines and audit your security infrastructure Understand cryptographic principles, and effectively deploy cryptographic solutions Organize security from both a technical and organizational standpoint Manage every facet of security, including education and documentation Understand the laws related to IT security, and the basics of forensic investigations Kirk Hausman (CISSP, CISA, CRISC, Security+) has worked as an ISO, consultant, trainer, and IT director. He is Assistant Commandant for IT at TAMU and teaches InfoSec topics as an Adjunct Professor at UMUC and UAT. Martin Weiss (CISSP, CISA, Security+, MCSE) leads a team of information security experts at Symantec supporting solutions to provide confidence in a connected world. Diane Barrett (CISSP, MCSE, A+, Security+) is the director of training for Paraben Corporation and an adjunct professor for American Military University. Companion CD The CD-ROM contains two, complete practice exam.
This is the eBook version of the print title. Note that the eBook does not provide access to the CD-ROM content that accompanies the print book. CompTIA® Security+ SY0-301 Practice Questions Exam Cram, Third Edition, offers all the exam practice you'll need to systematically prepare, identify and fix areas of weakness, and pass your exam the first time. This book complements any Security+ study plan with more than 800 practice test questions - all supported with complete explanations of every correct and incorrect answer - covering all Security+ exam objectives, including network security; compliance and operation security; threats and vulnerabilities; application, host and data security; access control and identity management; and cryptography. Covers the critical information you'll need to know to score higher on your Security+ exam! Features more than 800 questions that are organized according to the Security+ exam objectives, so you can easily assess your knowledge of each topic. Use our innovative Quick-Check Answer System to quickly find answers as you work your way through the questions. Each question includes detailed explanations! Our popular Cram Sheet, which includes tips, acronyms, and memory joggers, helps you review key facts before you enter the testing center. Diane M. Barrett (MCSE, CISSP, Security+) is the director of training for Paraben Corporation and an adjunct professor for American Military University. She has done contract forensic and security assessment work for several years and has authored other security and forensic books. She is a regular committee member for ADFSL's Conference on Digital Forensics, Security and Law, as well as an academy director for Edvancement Solutions. She holds many industry certifications, including CISSP, ISSMP, DFCP, PCME, and Security+. Diane's education includes a MS in Information Technology with a specialization in Information Security. She expects to complete a PhD in business administration with a specialization in Information Security shortly.
Don't Let the Real Test Be Your First Test! Prepare for CompTIA Security+ Exam SY0-301 with McGraw-Hill—a Gold-Level CompTIA Authorized Partner. CompTIA Security+ Certification Practice Exams (Exam SY0-301) is filled with more than 800 realistic practice questions to prepare you for this challenging exam. To help you understand the material, in-depth explanations of both the correct and incorrect answers are included for every question. This practical guide covers all official objectives for Exam SY0-301 and is the perfect companion to CompTIA Security+ Certification Study Guide. Covers all exam topics, including: Network Basics and Terminology * Security Terminology * Security Policies and Standards * Types of Attacks * System Security Threats * Mitigating Security Threats * Implementing System Security * Securing the Network Infrastructure * Wireless Networking * Authentication * Cryptography * Managing a PKI Infrastructure * Physical Security * Risk Analysis * Disaster Recovery * Computer Forensics * Security Assessments and Audits * Monitoring and Auditing Electronic content includes: Complete MasterExam practice testing engine, featuring: -- One full practice exam -- Detailed answers with explanations -- Score Report performance assessment tool E-book for studying on the go With free online registration: One bonus downloadable MasterExam practice test From the Authors Organization and Design of This Book CompTIA Security+ Certification Practice Exams (Exam SY0-301) is a battery of practice test questions organized by the official exam objectives. The first 19 chapters contain over 500 questions that cover all of the objectives for the SY0-301 exam. The last chapter is a complete practice exam. The accompanying CD contains an additional practice exam in a simulated testing environment, and a third practice exam is available for free download via the web. This book was developed and written in conjunction with the CompTIA Security+ Certification Study Guide, by Glen E. Clarke. The order the objectives are presented in is identical, as are the chapter titles. These books were designed to work together as a comprehensive program for self-study. Strategies for Use There are a variety of ways in which this book can be used, whether used simultaneously with the CompTIA Security+ Certification Study Guide or as a stand-alone test prep tool. With the Study Guide: Taking a chapter-by-chapter approach, you can opt to read a Study Guide chapter and then practice what you have learned with the questions in the corresponding Practice Exams chapter, and alternate between books throughout your course of study. The Practice Exams book alone: Using the Practice Exams book after you have read the Study Guide, or as a stand-alone test prep tool, you can work through the book cover to cover and take the three practice exams as the final step in your preparation. Or, by means of the Exam Readiness Checklist, you can gauge your level of expertise and determine which objectives to focus on and work through the book by objectives. The Exam Readiness Checklist notes which questions pertain to which objectives, allowing you to tailor your review.
Learn, prepare, and practice for CompTIA Security+ SY0-301 exam success with this CompTIA Authorized Cert Guide from Pearson IT Certification, a leader in IT Certification learning and a CompTIA Authorized Platinum Partner. DVD features two complete practice exams and video tutorial solutions to the 25 hands-on labs. Master CompTIA’s new Security+ SY0-301 exam topics Assess your knowledge with chapter-ending quizzes Review key concepts with exam preparation tasks Practice with realistic exam questions on the DVD Includes complete video solutions to the 25 hands-on labs Limited Time Offer: Buy CompTIA Security+ SY0-301 Authorized Cert Guide and receive a 10% off discount code for the CompTIA Security+ SYO-301 exam. To receive your 10% off discount code: 1. Register your product at pearsonITcertification.com/register 2. Follow the instructions 3. Go to your Account page and click on “Access Bonus Content” CompTIA Security+ SY0-301 Authorized Cert Guide is a best-of-breed exam study guide. Best-selling author and expert instructor David Prowse shares preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics. The book presents you with an organized test preparation routine through the use of proven series elements and techniques. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. Review questions help you assess your knowledge, and a final preparation chapter guides you through tools and resources to help you craft your approach to passing the exam. The companion DVD contains the powerful Pearson IT Certification Practice Test engine, complete with hundreds of exam-realistic questions. The assessment engine offers you a wealth of customization options and reporting features, laying out a complete assessment of your knowledge to help you focus your study where it is needed most. The DVD also includes complete video solutions to the 25 Hands-On Labs in the book focused on key exam topics. Hands-On Labs:: 2-1 Using Free Malware Scanning Programs 2-2 How to Secure the BIOS 3-1 Discerning & Updating Service Pack Level 3-2 Creating a Virtual Machine 3-3 Securing a Virtual Machine 4-1 Securing the Browser 4-2 Disabling Applications 5-1 Port Scanning Basics 6-1 Packet Filtering and NAT Firewalls 6-2 Configuring Inbound Filter on a Firewall 6-3 Enabling MAC Filtering 7-1 Securing a Wireless Device: 8 Steps 7-2 Wardriving and the Cure 8-1 Enabling 802.1X on a Network Adapter 8-2 Setting Up a VPN 9-1 Password Policies and User Accounts 9-2 Configuring User and Group Permissions 10-1 Mapping and Scanning the Network 10-2 Password Cracking and Defense 11-1 Using Protocol Analyzers 12-1 Disabling LM Hash in Windows Server 2003 13-1 A Basic Example of PKI 13-2 Making an SSH Connection 14-1 Configuring RAID 1 and 5 16-1 How to Approach Exam Questions Well-regarded for its level of detail, assessment features, and challenging review questions and exercises, this CompTIA authorized study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time. The CompTIA authorized study guide helps you master all the topics on the Security+ exam, including Core computer system security OS hardening and virtualization Application security Network design elements and threats Perimeter security Network media and devices security Physical security and authentication models Access control Vulnerability and risk assessment Monitoring and auditing Cryptography, including PKI Redundancy and disaster recovery Policies and procedures Companion DVD The DVD contains two free, complete practice exams and video solutions to the 25 hands-on labs. Includes Exclusive Offer for 70% Off Premium Edition eBook and Practice Test. Pearson IT Certification Practice Test minimum system requirements: Windows XP (SP3), Windows Vista (SP2), or Windows 7; Microsoft .NET Framework 4.0 Client; Pentium class 1GHz processor (or equivalent); 512 MB RAM; 650 MB hard disk space plus 50 MB for each downloaded practice exam.
Learn, prepare, and practice for CompTIA Security+ SY0-301exam success with this CompTIA Authorized Cert Guide, Deluxe Edition from Pearson IT Certification, a leader in IT Certification learning and a CompTIA Authorized Platinum Partner. The DVD features three complete practice exams, complete video solutions to the 25 hands-on labs, plus 25 interactive flash-based learning activities that include drag-n-drop and matching to reinforce the learning. Master CompTIA’s Security+ SY0-301 exam topics Assess your knowledge with chapter-ending quizzes Review key concepts with exam preparation tasks Practice with realistic exam questions on the DVD Includes complete video solutions to the 25 hands-on labs Plus 25 interactive learning activities on key exam topics Limited Time Offer: Buy CompTIA Security+ SY0-301 Authorized Cert Guide, Deluxe Edition and receive a 10% off discount code for the CompTIA Security+ SYO-301 exam. To receive your 10% off discount code: 1. Register your product at pearsonITcertification.com/register 2. Follow the instructions 3. Go to your Account page and click on “Access Bonus Content” CompTIA Security+ SY0-301 Authorized Cert Guide, Deluxe Edition includes video solutions to the hands-on labs, practice tests, and interactive activities that let the reader learn by doing. Best-selling author and expert instructor David Prowse shares preparation hints and test-taking tips, helping you identify areas of weakness and improve both your conceptual knowledge and hands-on skills. Material is presented in a concise manner, focusing on increasing your understanding and retention of exam topics. The book presents you with an organized test preparation routine through the use of proven series elements and techniques. Exam topic lists make referencing easy. Chapter-ending Exam Preparation Tasks help you drill on key concepts you must know thoroughly. Review questions help you assess your knowledge, and a final preparation chapter guides you through tools and resources to help you craft your approach to passing the exam. The companion Deluxe Edition DVD contains the powerful Pearson IT Certification Practice Test engine, with three complete practice exams and hundreds of exam-realistic questions. The assessment engine offers you a wealth of customization options and reporting features, laying out a complete assessment of your knowledge to help you focus your study where it is needed most. The Deluxe Edition DVD also includes complete video solutions to the 25 hands-on labs in the book and 25 interactive learning activities on key exam topics to reinforce the learning by doing. Learning activities such as test password strength, match the type of Malware with its definition, find the security issues in the network map, and disallow a user access to the network on Saturday and Sunday. Interactive Learning Activities: 2.1 Filtering Emails 2.2 Malware Types 2.3 Securing the BIOS 3.1 Stopping Services in the Command Prompt 3.2 Patch Management 5.1 Port Numbers, Part 1 5.2 Port Numbers, Part 2 5.3 Port Numbers, Part 3 5.4 Network Attacks, Part 1 5.5 Network Attacks, Part 2 5.6 Network Attacks, Part 3 5.7 Network Attacks, Part 4 6.1 Network Security 7.1 Password Strength 8.1 802.1X Components 8.2 Authentication Types 9.1 Access Control Models 9.2 Configuring Logon Hours 10.1 Risk Assessment, Part 1 10.2 Risk Assessment, Part 2 10.3 Vulnerability Management Process 11.1 Packet Analysis 12.1 Symmetric and Asymmetric Algorithms 14.1 RAID Levls 15.1 Social Engineering Types Hands-On Labs: 2-1 Using Free Malware Scanning Programs 2-2 How to Secure the BIOS 3-1 Discerning & Updating Service Pack Level 3-2 Creating a Virtual Machine 3-3 Securing a Virtual Machine 4-1 Securing the Browser 4-2 Disabling Applications 5-1 Port Scanning Basics 6-1 Packet Filtering and NAT Firewalls 6-2 Configuring Inbound Filter on a Firewall 6-3 Enabling MAC Filtering 7-1 Securing a Wireless Device: 8 Steps 7-2 Wardriving and the Cure 8-1 Enabling 802.1X on a Network Adapter 8-2 Setting Up a VPN 9-1 Password Policies and User Accounts 9-2 Configuring User and Group Permissions 10-1 Mapping and Scanning the Network 10-2 Password Cracking and Defense 11-1 Using Protocol Analyzers 12-1 Disabling LM Hash in Windows Server 2003 13-1 A Basic Example of PKI 13-2 Making an SSH Connection 14-1 Configuring RAID 1 and 5 16-1 How to Approach Exam Questions Well-regarded for its level of detail, assessment features, and challenging review questions and exercises, this CompTIA authorized study guide helps you master the concepts and techniques that will enable you to succeed on the exam the first time. The CompTIA authorized study guide helps you master all the topics on the Security+ exam, including Core computer system security OS hardening and virtualization Application security Network design elements and threats Perimeter security Network media and devices security Physical security and authentication models Access control Vulnerability and risk assessment Monitoring and auditing Cryptography, including PKI Redundancy and disaster recovery Policies and procedures Companion Deluxe Edition DVD The Deluxe Edition DVD contains three free, complete practice exams, video solutions to the 25 hands-on labs plus 25 interactive flash-based learning activities that include drag-n-drop and matching to reinforce the learning. Includes Exclusive Offer for 70% Off Premium Edition eBook and Practice Test. Pearson IT Certification Practice Test minimum system requirements: Windows XP (SP3), Windows Vista (SP2), or Windows 7; Microsoft .NET Framework 4.0 Client; Pentium class 1GHz processor (or equivalent); 512 MB RAM; 650 MB hard disk space plus 50 MB for each downloaded practice exam.
Value-priced kit helps you study, practice, and review for the new Security+ exam This three-book, value-priced kit helps candidates prepare for the new version of the CompTIA Security+ exam (SY0-301). Offering 100% coverage of all exam objectives, exercises to hone critical skills, and tools for that last-minute review, this practical package not only prepares you for the exam, but also to handle some of the most challenging tasks that security professionals face on the job. Three-book set includes CompTIA Security+ Study Guide, 5th Edition; CompTIA Security+ Review Guide, 2nd Edition; and Security Administrator Street Smarts: A Real World Guide to Essential Security+ Skills, 3rd Edition Provides 100% coverage of all exam objectives for the CompTIA Security+ exam SY0-301 Offers practical examples and insights drawn from the real world, with step-by-step instructions on how to perform tasks most security administrators should expect to perform Includes two CDs with practice exams, chapter review questions, electronic flashcards, and more This all-in-one package is what you need to fully prepare for exam SY0-301, CompTIA's newest Security+ exam.
Written by leaders in the field of IT security higher education, the new edition of this full-color text is revised to cover the 2011 CompTIA Security+ exam. Principles of Computer Security, Third Edition covers the new 2011 CompTIA Security+ exam objectives and provides context for students and aspiring government workers looking to meet government workforce requirements (DOD 8570). This full-color textbook provides comprehensive coverage of the core principles of information security: system security, network infrastructure, access control, organizational security, and compliance, while also providing 100% coverage of all exam objectives for the CompTIA Security+ certification. Well illustrated with photographs and diagrams, and has an engaging, dynamic presentation. The textbook’s teaching elements include sidebar questions, critical-skill building activities, and end-of-chapter student review and assessment. Principles of Computer Security, Third Edition Features CompTIA Approved Quality Curriculum—CAQC Official content Offers Online Learning Center with: instructor manual, classroom PowerPoint slides, and a test bank solution in EZ Test & Blackboard format Includes two complete practice exams Coverage includes: Introduction and Security Trends; General Security Concepts; Operational/Organizational Security; The Role of People in Security; Cryptography; Public Key Infrastructure; Standards and Protocols; Physical Security; Network Fundamentals; Infrastructure Security; Authentication and Remote Access; Wireless; Intrusion Detection Systems and Network Security; Baselines; Types of Attacks and Malicious Software; E-mail and Instant Messaging; Web Components; Secure Software Development; Disaster Recovery, Business Continuity, and Organizational Policies; Risk Management; Change Management; Privilege Management; Computer Forensics; Legal Issues and Ethics; Privacy
The best fully integrated CompTIA Security+ self-study package featuring 1200+ practice exam questions—save 12% on two books and three CDs! Bonus CD available only with this boxed set! CompTIA Security+ Certification Boxed Set (Exam SY0-301) provides you with a variety of exam-focused, test-prep resources designed to work together as a comprehensive program for self-study. CompTIA Security+ Certification Study Guide features: 100% complete coverage of all official objectives for the exam Exam Readiness Checklist--you're ready for the exam when all objectives on the list are checked off Inside the Exam sections in every chapter that highlight key exam topics covered Two-Minute Drills for quick review at the end of every chapter Simulated exam questions that match the format, tone, topics, and difficulty of the real exam CompTIA Security+ Certification Practice Exams features: More than 800 practice exam questions In-depth explanations of both the correct and incorrect answers Total CD-ROM content for the boxed set includes: Complete MasterExam practice testing engine, featuring: Two practice exams Two additional practice exams available for download with free online registration Detailed answers with explanations Score Report performance assessment tool CertCam video clips One hour of LearnKey online training Flash Trainer E-flashcards Security Audit Checklist Certification Review Guide Security URL Reference List PDF copies of the Study Guide and Practice Exams books Covers all CompTIA Security+ Exam SY0-301 topics, including: Networking Basics and Terminology * Security Terminology * Security Policies and Standards * Types of Attacks * System Security Threats * Mitigating Security Threats * Implementing System Security * Securing the Network Infrastructure * Wireless Networking and Security * Authentication * Access Control * Cryptography * Managing a Public Key Infrastructure * Physical Security * Risk Analysis * Disaster Recovery and Business Continuity * Computer Forensics * Security Assessments and Audits * Monitoring and Auditing
Get a host of extras with this Deluxe version including a Security Administration Simulator! Prepare for CompTIA's new Security+ exam SY0-301 with this Deluxe Edition of our popular CompTIA Security+ Study Guide, 5th Edition. In addition to the 100% coverage of all exam essentials and study tools you'll find in the regular study guide, the Deluxe Edition gives you over additional hands-on lab exercises and study tools, three additional practice exams, author videos, and the exclusive Security Administration simulator. This book is a CompTIA Recommended product. Provides 100% coverage of all exam objectives for Security+ exam SY0-301 including: Network security Compliance and operational security Threats and vulnerabilities Application, data and host security Access control and identity management Cryptography Features Deluxe-Edition-only additional practice exams, value-added hands-on lab exercises and study tools, and exclusive Security Administrator simulations, so you can practice in a real-world environment Covers key topics such as general security concepts, communication and infrastructure security, the basics of cryptography, operational security, and more Shows you pages of practical examples and offers insights drawn from the real world Get deluxe preparation, pass the exam, and jump-start your career. It all starts with CompTIA Security+ Deluxe Study Guide, 2nd Edition.
Official CompTIA Content! Prepare for CompTIA Security+ Exam SY0-301 with McGraw-Hill—a Gold-Level CompTIA Authorized Partner offering Official CompTIA Approved Quality Content to give you the competitive edge on exam day. Get complete coverage of all the objectives included on CompTIA Security+ exam inside this completely updated, comprehensive volume. Written by leading network security experts, this definitive guide covers exam SY0-301 in full detail. You'll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, and in-depth explanations. Designed to help you pass the exam with ease, this practical resource also serves as an essential on-the-job reference. Covers all exam topics, including: General security concepts Operational organizational security Legal issues, privacy, and ethics Cryptography Public key infrastructure Standards and protocols Physical security Infrastructure security Remote access and authentication Intrusion detection systems Security baselines Types of attacks and malicious software E-mail and instant messaging Web components Disaster recovery and business continuity Risk, change, and privilege management Computer forensics CD-ROM features: Two full practice exams PDF copy of the book From the Authors Preparing Yourself for the CompTIA Security+ Exam CompTIA Security+ Certification All-in-One Exam Guide is designed to help prepare you to take the CompTIA Security+ certification exam SY0-301. When you pass it, you will demonstrate that you have that basic understanding of security that employers are looking for. Passing this certification exam will not be an easy task, for you will need to learn many things to acquire that basic understanding of computer and network security. How This Book Is Organized The book is divided into sections and chapters to correspond with the objectives of the exam itself. Some of the chapters are more technical than others—reflecting the nature of the security environment, where you will be forced to deal with not only technical details but also other issues, such as security policies and procedures as well as training and education. Although many individuals involved in computer and network security have advanced degrees in math, computer science, information systems, or computer or electrical engineering, you do not need this technical background to address security effectively in your organization. You do not need to develop your own cryptographic algorithm; for example, you simply need to be able to understand how cryptography is used along with its strengths and weaknesses. As you progress in your studies, you will learn that many security problems are caused by the human element. The best technology in the world still ends up being placed in an environment where humans have the opportunity to foul things up—and all too often do. Part I: Security Concepts: The book begins with an introduction to some of the basic elements of security. Part II: Cryptography and Applications: Cryptography is an important part of security, and this part covers this topic in detail. The purpose is not to make cryptographers out of readers but to instead provide a basic understanding of how cryptography works and what goes into a basic cryptographic scheme. An important subject in cryptography, and one that is essential for the reader to understand, is the creation of public key infrastructures, and this topic is covered as well. Part III: Security in the Infrastructure: The next part concerns infrastructure issues. In this case, we are not referring to the critical infrastructures identified by the White House several years ago (identifying sectors such as telecommunications, banking and finance, oil and gas, and so forth) but instead the various components that form the backbone of an organization’s security structure. Part IV: Security in Transmissions: This part discusses communications security. This is an important aspect of security because, for years now, we have connected our computers together into a vast array of networks. Various protocols in use today that the security practitioner needs to be aware of are discussed in this part. Part V: Operational Security: This part addresses operational and organizational issues. This is where we depart from a discussion of technology again and will instead discuss how security is accomplished in an organization. Because we know that we will not be absolutely successful in our security efforts—attackers are always finding new holes and ways around our security defenses—one of the most important topics we will address is the subject of security incident response and recovery. Also included is a discussion of change management (addressing the subject we alluded to earlier when addressing the problems with patch management), security awareness and training, incident response, and forensics. Part VI: Appendixes: There are two appendixes in CompTIA Security+ All-in-One Exam Guide. Appendix A provides an additional in-depth explanation of the OSI model and Internet protocols, should this information be new to you, and Appendix B explains how best to use the CD-ROM included with this book. Glossary: Located just before the index, you will find a useful glossary of security terminology, including many related acronyms and their meanings. We hope that you use the glossary frequently and find it to be a useful study aid as you work your way through the various topics in this exam guide.
