CompTIA A+ Training and Certification -

CompTIA Security+ Training and Certification -

Exam – SYO-101

Course Outline

General Security Concepts

A) Goals of Information Security

B) Access Control

C) Bell La-Padula Access Model

D) Authentication Types

E) Security Design Goals

F) Security Technologies

Know Your Enemy

A) Access Attacks

B) Modification and Repudiation Attacks

C) Common Attacks

D) Password Guessing Attacks

E) TCP/IP Attacks

F) Viruses

G) Types of Viruses

H) Hoaxes

I) Other Types of Attacks

J) Social Engineering

Infrastructure and Connectivity

A) Firewall

B) Routers

C) Routing Protocols

D) Switches

E) VPN

F) IPSec Modes

G) IPSec Protocols

H) Intrusion Detection Systems

I) Remote Access Tunneling Protocols

J) Web Vulnerabilities

K) FTP

L) Cabling

Monitoring Communications Activity

A) Intrusion Detection Systems

B) Network Based IDS

C) Host Based IDS

D) IDS Response

E) Honey Pot

F) Prosecution of Attacks

G) Incident Response

H) Wireless Systems

I) WEP/WAP

Implementing and Maintaining a Secure Network

A) OS/NOS Hardening

B) Email Servers

C) Instant Messaging

D) SQL

E) LDAP

Working with a Secure Network

A) Physical Security

Cryptography Basics and Methods

A) Cryptography Overview

B) Cryptography Algorithms

C) Symmetric Algorithms

D) Asymmetric Algorithms (PKI)

E) Cryptography Systems

F) PKI

G) Certificates

H) Cryptographic Attacks

Cryptography Standards

A) Public Domain Cryptography

B) Secure Communications

C) ISAKMP

D) S/MIME

E) Protocols

F) Key Management

G) SSH

H) Port Numbers

I) Types of Attacks

Security Policies and Procedures

A) Business Continuity Plan

B) Disaster Recovery

C) Single Loss Expectancy (SLE)

D) Service Level Agreements

E) Policies and Procedures

F) Business Policies

G) Common Criteria

H) Protecting Servers

I) Incident Response

J) Responding to an Attack

Computer Forensics

A) Methodology

B) Chain of Custody