05671nam 2200721Ia 450 991082148690332120200520144314.01-118-23661-01-280-67580-297866136527371-118-22272-5(CKB)2670000000148239(EBL)817999(OCoLC)777374789(SSID)ssj0000633093(PQKBManifestationID)11397818(PQKBTitleCode)TC0000633093(PQKBWorkID)10617030(PQKB)11446427(Au-PeEL)EBL817999(CaPaEBR)ebr10538597(CaONFJC)MIL365273(CaSebORM)9781118083192(MiAaPQ)EBC817999(OCoLC)804815498(OCoLC)ocn804815498 (EXLCZ)99267000000014823920120320d2012 uy 0engur|n|---|||||txtccrCASP CompTIA Advanced Security Practitioner study guide (exam cas-001) /Michael Gregg, and Billy Haines1st editionIndianapolis, IN Wiley Pub., Inc.20121 online resource (558 p.)Includes index.1-118-08319-9 CASP CompTIA Advanced Security Practitioner Study Guide; Contents; Foreword; Introduction; Before You Begin the CompTIA CASP Certification Exam; How to Become a CASP Certified Professional; Who Should Read This Book?; How This Book Is Organized; Exam Strategy; How to Use This Book and Companion Website; The CASP (2011 Edition) Exam Objectives; Chapter 1: Cryptographic Tools and Techniques; The History of Cryptography; Cryptographic Services; Symmetric Encryption; Asymmetric Encryption; Hybrid Encryption; Hashing; Digital Signatures; Public Key Infrastructure; Cryptographic SolutionsCryptographic AttacksSummary; Exam Essentials; Review Questions; Chapter 2: Comprehensive Security Solutions; Advanced Network Design; TCP/IP; Secure Communication Solutions; Secure Facility Solutions; Secure Network Infrastructure Design; Summary; Exam Essentials; Review Questions; Chapter 3: Securing Virtualized, Distributed, and Shared Computing; Enterprise Security; Cloud Computing; Virtualization; Virtual LANs; Enterprise Storage; Summary; Exam Essentials; Review Questions; Chapter 4: Host Security; Firewalls and Access Control Lists; Host-Based Firewalls; Trusted Operating SystemEndpoint Security SoftwareAnti-malware; Host Hardening; Asset Management; Data Exfiltration; Intrusion Detection and Prevention; Summary; Exam Essentials; Review Questions; Chapter 5: Application Security and Penetration Testing; Application Security; Specific Application Issues; Application Sandboxing; Application Security Framework; Standard Libraries; Secure Coding Standards; Application Exploits; Escalation of Privilege; Improper Storage of Sensitive Data; Cookie Storage and Transmission; Process Handling at the Client and Server; Security Assessments and Penetration Testing; SummaryExam EssentialsReview Questions; Chapter 6: Risk Management; Risk Terminology; Identifying Vulnerabilities; Operational Risks; The Risk Assessment Process; Best Practices for Risk Assessments; Summary; Exam Essentials; Review Questions; Chapter 7: Policies, Procedures, and Incident Response; A High-Level View of Documentation; Business Documents Used to Support Security; Documents and Controls Used for Sensitive Information; Auditing Requirements and Frequency; The Incident Response Framework; Digital Forensics; The Role of Training and Employee Awareness; Summary; Exam EssentialsReview QuestionsChapter 8: Security Research and Analysis; Analyzing Industry Trends and Outlining Potential Impact; Carrying Out Relevant Analysis to Secure the Enterprise; Summary; Exam Essentials; Review Questions; Chapter 9: Enterprise Security Integration; Integrate Enterprise Disciplines to Achieve Secure Solutions; Explain the Security Impact of Interorganizational Change; Summary; Exam Essentials; Review Questions; Chapter 10: Security Controls for Communication and Collaboration; Selecting and Distinguishing the Appropriate Security ControlsAdvanced Authentication Tools, Techniques, and ConceptsGet Prepared for CompTIA Advanced Security Practitioner (CASP) Exam Targeting security professionals who either have their CompTIA Security+ certification or are looking to achieve a more advanced security certification, this CompTIA Authorized study guide is focused on the new CompTIA Advanced Security Practitioner (CASP) Exam CAS-001. Veteran IT security expert and author Michael Gregg details the technical knowledge and skills you need to conceptualize, design, and engineer secure solutions across complex enterprise environments. He prepares you for aspects of the certification tesCompTIA Advanced Security Practitioner study guideElectronic data processing personnelCertificationComputer securityExaminationsStudy guidesComputer networksSecurity measuresExaminationsStudy guidesElectronic data processing personnelCertification.Computer securityExaminationsComputer networksSecurity measuresExaminations005.8005.8076Gregg Michael H1705948MiAaPQMiAaPQMiAaPQBOOK9910821486903321CASP4093055UNINA