Menu Content/Inhalt
Home arrow Articles arrow CompTIA Certifications arrow Security+ Examination Objectives

Exams simulation

Related link

 
Security+ Examination Objectives PDF Print E-mail
Written by Lorenzo   
Sunday, 02 April 2006

Security+ Examination Objectives

The security+ certification is an internationally recognized validation of the technical knowledge required of security foundation-level practitioners. A Security+ certified individual has successfully proven holding a foundation-level of skill and knowledge in General Security Concepts, Communication Security, Infratructure Security, Basics of Cryptography and Operational / Organisational Security. Candidate are recommended to have two years experience in a networking role with preexisting knowledge of TCP/IP, experience in a security related role, Network+ or Cisco CCNA and adequate training and self-study materials.

CompTIA security+ Certification domain
% of exam *
30%
20%
20%
15%
15%

*All percentages are aproximate and subject to change

General Security Concepts (30%)

1. Recognize and be able to differentiate and explain the following access control models

  • MAC (Mandatory Access Control)
  • DAC (Discretionary Access Control)
  • RBAC (Role Based Access Control)

2. Recognize and be able to differentiate and explain the following methods of authentication

  • Kerberos
  • CHAP (Challenge Handshake Authentication Protocol)
  • Certificates
  • Username / Password
  • Tokens
  • Multi-factor
  • Mutual
  • Biometrics

3. Identify non-essential services and protocols and know what actions to take to reduce the risks of those services and protocols

4. Recognize the following attacks and specify the appropriate actions to take to mitigate vulnerability and risk

  • DOS / DDOS (Denial of Service / Distributed Denial of Service)
  • Back Door
  • Spoofing
  • Man in the Middle
  • Replay
  • TCP/IP Hijacking
  • Weak Keys
  • Mathematical
  • Social Engineering
  • Birthday
  • Password Guessing (Brute Force o Dictionary)

5. Recognize the following types of malicious code and specify the appropriate actions to take to mitigate vulnerability and risk

  • Viruses
  • Trojan Horses
  • Logic Bombs
  • Worms

6. Understand the concept and know how to reduce risks of social engineering

7. Understand the concept and significance of auditing, logging and system scanning

Comunication Security (20%)

1. Recognize and understand the administration of the following types of remote access technologies

  • 802.1x
  • VPM (Virtual Private Network)
  • RADIUS (Remote Authentication Dial-IN User Service)
  • TACACS (Terminal Access Controller Access Control System)
  • L2TP/PPTP
  • SSH (Secure Shell)
  • IPSEC (Internet Protocol Security)
  • Vulnerabilities

2. Recognize and understand the administration of the following email security concepts

  • S/MIME (Secure Multipurpose Internet Mail extensions)
  • PGP (Pretty Good Privacy) like technologies
  • Vulnerabilities (SPAM and Hoaxes)

3. Recognize and understand the administration of the following Internet security concepts

  • SSL / TSS (Secure Sockets Layer / Transport Layer Security)
  • HTTP/S (Hyper Transfer Protocol / over Scure Sockets Layer)
  • Instant Messaging (Vulnerabilities, Packet Sniffing, Privacy)
  • Vulnerabilities
    • Java Script
    • ActiveX
    • Buffer Overflows
    • Cookies
    • Signed Applets
    • CGI (Common Gateway Interface)
    • SMTP (Simple Mail Transfer Protocol) Relay

4.Recognize and understand the administration of the following directory security concepts

  • SSL / TSL (Secure Sockets Layer / Transport Layer Security)
  • LDAP (Lightweight Directory Access Protocol)

5.Recognize and understand the administration of the following file transfer protocols and concepts

  • S/FTP (File Transfer Protocol) / Anonymous
  • File Sharing
  • Vulnerabilities (Packet Sniffing, 8.3 Naming Conventions)

6. Recognize and understand the administration of the following wireless technologies and concepts

  • WTLS (Wireless Transport Layer Security)
  • 802.11 and 802.11x
  • WEP / WAP (Wired Equivalent Privacy / Wireless Application Protocol)
  • Vulnerabilities (Site Surveys)

Infrastructure Security (20%)

1. Understand security concerns and concepts of the following types of devices

  • Firewalls
  • Routers
  • Switches
  • Wireless
  • Modems
  • RAS (Remote Access Server)
  • Telecom / PBX (Private Branch Exchange)
  • VPN (Virtual Private Network)
  • IDS (Intrusion Detection system)
  • Network Monitoring / Diagnostics
  • Workstations
  • Servers
  • Mobile Devices

2. Understand the security concerns for the following types of media

  • Coaxial Cable
  • UTP / STP (Unshielded Twisted Pair / Shielded)
  • Fiber Optic Cable
  • Removable Media
    • Tape
    • CD-R
    • Hard Drives
    • Diskettes
    • Flashcards
    • Smartcards

3. Understand the concepts behind the following kinds of security topologies

  • Security Zones
    • DMZ (Demilitarized Zone)
    • Intranet
    • Internet
  • VLANs (Virtual Local Area Network)
  • NAT (Network Address Translation)
  • Tunnelling

4. Differentiate the following types of intrusion detection, be able to explain the concepts of each type, and understand the implementation and configuration of each kind of intrusion detection system

  • Network Based (Active and Passive Detection)
  • Host based (Active and Passive Detection)
  • Honey Pots
  • Incident Response

5. Understand the following concepts of Security Baselines, be able to explain what Security Baseline is, and understand the implementation and configuration of each kind of intrusion detection system

Basics of cryptography (15%)

1. Be able to identify and explain the following different kinds of cryptographic algorithms

  • Hashing
  • Symmetric
  • Asymmetric

2. Understand how cryptography addresses the followings security concepts

  • Confidentiality
  • Integrity (Digital Signatures)
  • Authentication
  • Non-Repudiation (Digital Signature)
  • Access Control

3. Understand and be able to explain the following concepts of PKI (public Key Infrastructure)

  • Certificates (policies, Practice Statements)
  • Revocation
  • Trust Models

4. Identify and be able to differentiate cryptographic standards and protocols

5. Understand and be able to explain the following concepts of Key Management and Certificate Lifecycles

  • Centralized vs. Decentralized
  • Storage
    • Hardware vs. Software
    • Private Key Protection
  • Escrow
  • Expiration
  • Revocation (Status Checking)
  • Suspension (Status Checking)
  • Recovery
    • M-of-N Control (M appropriate individuals, N must be present to authorize recovery)
  • Renewal
  • Destruction
  • Key usage (Multiple Key Pairs (Single, Dual)

Operational / Organisational Security (15%)

1. Understand the application of the following concepts of physical security

  • Access Control
    • Physical Barriers
    • Biometrics
  • Social Engineering
  • Environment
    • Wireless Cells
    • Location
    • Shielding
    • Fire Suppression

2. Understand the security implications of the following topics of disaster recovery

  • Backups (Off Site Storage)
  • Secure Recovery (Alternate Sites)
  • Disaster Recovery Plan

3. Understand the security implications of the following topics of business continuity

  • Utilities
  • High Availability / Fault Tolerance
  • Backups

4. Understand the concepts and uses of the following types of policies and procedures

  • Security Policy
    • Acceptable Use
    • Due Care
    • Privacy
    • Separation of Duties
    • Need to know
    • Password Management
    • SLAs (Service Level Agreements)
    • Disposal / Destruction
    • HR (Human Resources) Policy
      • Termination (Adding and revoking passwords and privileges, etc.)
      • Hiring (Adding and revoking passwords and privileges, etc.)
      • Code of Ethics
  • Incident Response Policy

5. Explain the following concepts of privilege management

  • User / Group / Role Management
  • Single Sign-on
  • Centralized vs. Decentralized
  • Auditing (Privilege, Usage, Escalation)
  • MAC / DAC / RBAC

6. Understand the concepts of the following topics forensics

  • Chain of Custody
  • Preservation of Evidence
  • Collection of Evidence

7. Understand and be able to explain the following concepts of risk identification

  • Asset Identification
  • Risk Assessment
  • Threat Identification
  • Vulnerabilities

8. Understand the security relevance of the education and training of end users, executives and human resources

  • Communication
  • User Awarness
  • Education
  • On-Line Ressources

9. Understand and explain the following documentation concepts

  • Standards and Guidelines
  • Systems Architecture
  • Change Documentation
  • Logs and Inventories
  • Classification (Notification)
  • Retention / Storage
  • Destruction

 
Last Updated ( Monday, 21 May 2007 )
 
< Prev
[ Back ]

Newsflash