05683nam 2200733Ia 450 991079035720332120200520144314.01-280-77577-797866136861691-118-46389-7(CKB)2670000000206480(EBL)875861(OCoLC)796384204(SSID)ssj0000687899(PQKBManifestationID)11368354(PQKBTitleCode)TC0000687899(PQKBWorkID)10756814(PQKB)10111233(MiAaPQ)EBC875861(CaSebORM)9781118332108(Au-PeEL)EBL875861(CaPaEBR)ebr10570728(CaONFJC)MIL368616(MiAaPQ)EBC7147331(Au-PeEL)EBL7147331(EXLCZ)99267000000020648020120626d2012 uy 0engur|n|---|||||txtccrCISSP[electronic resource] Certified Information Systems Security Professional study guide /James M Stewart, Mike Chapple, Darril Gibson6th ed.Indianapolis, IN Wiley20121 online resource (938 p.)SYBEX serious skills CISSPIncludes index.1-118-33210-5 1-118-31417-4 CISSPĀ® Certified Information Systems Security Professional: Study Guide; Acknowledgments; About the Authors; Contents; Introduction; (ISC)2; CISSP and SSCP; Prequalifications; Overview of the CISSP Exam; CISSP Exam Question Types; Advice on Taking the Exam; Study and Exam Preparation Tips; Completing the Certification Process; Post-CISSP Concentrations; Notes on This Book's Organization; The Elements of This Study Guide; What's Included With the Additional Study Tools; The Sybex Test Preparation Software; Electronic Flashcards; Glossary of Terms in PDF; Bonus Practice ExamsHow to Use This Book's Study ToolsAssessment Test; Answers to Assessment Test; Chapter 1: Access Control; Access Control Overview; Users, Owners, and Custodians; The CIA Triad; Policies; Compare Permissions, Rights, and Privileges; Types of Access Control; Defense in Depth; Access Control Elements; Identification and Authentication Techniques; Passwords; Smart Cards and Tokens; Biometrics; Multifactor Authentication; Access Control Techniques; Security Operations Principles; Discretionary Access Controls; Nondiscretionary Access Controls; Mandatory Access Controls; Role-Based Access ControlCentralized versus Decentralized Access ControlSingle Sign-On; AAA Protocols; Authorization Mechanisms; Identity and Access Provisioning Life Cycle; Provisioning; Account Review; Account Revocation; Summary; Exam Essentials; Written Lab; Review Questions; Chapter 2: Access Control Attacks and Monitoring; Understanding Access Control Attacks; Introduction to Risk Elements; Asset Valuation; Threat Modeling; Vulnerability Analysis; Common Access Control Attacks; Preventing Access Control Attacks; Logging and Monitoring; Assessing Effectiveness of Access Controls; Handling Audit Reports; SummaryExam EssentialsWritten Lab; Review Questions; Chapter 3: Secure Network Architecture and Securing Network Components; OSI Model; History of the OSI Model; OSI Functionality; Encapsulation/Deencapsulation; OSI Layers; TCP/IP Model; TCP/IP Protocol Suite Overview; Secure Network Components; Network Access Control; Firewalls; Endpoint Security; Other Network Devices; Cabling, Wireless, Topology, and Communications Technology; Network Cabling; Wireless Communications and Security; Network Topologies; LAN Technologies; Summary; Exam Essentials; Written Lab; Review QuestionsChapter 4: Secure Communications and Network AttacksNetwork and Protocol Security Mechanisms; Secure Communications Protocols; Authentication Protocols; Virtual Private Network; Tunneling; How VPNs Work; Common VPN Protocols; Virtual LAN; Remote Access Security Management; Plan Remote Access Security; Dial-Up Protocols; Centralized Remote Authentication Services; Network Address Translation; Private IP Addresses; Stateful NAT; Static and Dynamic NAT; Automatic Private IP Addressing; Switching Technologies; Circuit Switching; Packet Switching; Virtual Circuits; WAN TechnologiesWAN Connection TechnologiesFully updated Sybex Study Guide for the industry-leading security certification: CISSP Security professionals consider the Certified Information Systems Security Professional (CISSP) to be the most desired certification to achieve. More than 200,000 have taken the exam, and there are more than 70,000 CISSPs worldwide. This highly respected guide is updated to cover changes made to the CISSP Body of Knowledge in 2012. It also provides additional advice on how to pass each section of the exam. With expanded coverage of key areas, it also includes a full-length, 250-question pracElectronic data processing personnelCertificationComputer networksExaminationsStudy guidesComputer securityExaminationsStudy guidesElectronic data processing personnelCertification.Computer networksExaminationsComputer securityExaminations005.8Stewart James Michael571408Chapple MikeM.S.889333Gibson Darril1122631MiAaPQMiAaPQMiAaPQBOOK9910790357203321CISSP3712208UNINA