1D0-510 Domain 1:

From Proprofs

You are here: Wiki Home > CIW Home > CIW Study Guides > 1D0-510 Domain 1

SKILLS MEASURED

Foundations skills are not product- or system-specific. They are a combination of minimal technical and non-technical skills and knowledge required for those interested in developing specific Internet skills as a designer, developer or administrator. The exam also requires a basic understanding of essential business practices that relate directly to Internet technologies. The 1D0-510 Domain 1.0 tests the following topics:

Domain 1: Internet Business Foundations

[edit section] 1.1. Identify job roles in the Information Technology (IT) industry, including the responsibilities, tasks and skills they require.

May include the following:

• Web Site Designer

• Web Architect

• Web Application Developer

• Web Site Analyst

• Web Site Manager

• Database Administrator

• Server Administrator

• Network Engineer

• Security Manager

• PC Technician

• Help Desk Technician

Additional information may be found at:

• CompTIA Job Roles
• BrainBench Job Role Descriptions

[edit section] 1.2. Identify the infrastructure required to access the Internet, including hardware and software components.

• Backbone - The primary Internet structure consisting of high-speed WAN connections, servers, and ISPs.
• Network Access Point (NAP) - These are service providers with major Internet connection points. Most NAPs are divisions of communication companies.
• Internet Service Provider (ISP) - High speed connection points that provide dial-up and leased-line access to the Internet.

[edit section] 1.3. Define important Internet communications protocols and their roles in delivering basic Internet services.

• HTTP (Hypertext Transfer Protocol) - HTTP defines how messages are formatted and transmitted, and what actions Web servers and browsers should take in response to commands. Uses TCP Port: 80
• HTTPS (Hypertext Transfer Protocol over Secure Socket Layer) - HTTPS is a Web protocol that encrypts and decrypts page requests and pages returned by the server. Uses TCP Port: 443
• FTP - Control (File Transfer Protocol ) - FTP Control is used to open a connection to the FTP server. Uses TCP Port: 21
• FTP - Data (File Transfer Protocol) - FTP Data is used to transfer data from a server or transfer data to a server (e.g., uploading a Web page file to a server). Uses TCP Port: 20
• POP3 (Post Office Protocol 3) - POP3 is a protocol used to retrieve e-mail from a mail server. Uses TCP Port: 110
• SMTP (Simple Mail Transfer Protocol) - SMTP is a protocol used for sending e-mail messages between servers. Uses Port: 25
• NNTP (Network News Transfer Protocol) - Used to post, distribute, and retrieve USENET messages. Uses TCP Port: 119
• LPR (Line Printer Protocol) - Used primarily on Unix and Windows NT to send commands to network printers.
• LDAP (Lightweight Directory Access Protocol) - Used for requesting names, locations, phone numbers, and e-mail addresses from network directories.
• Telnet - A terminal emulation program to remotely control Web servers. Uses TCP Port: 23
• Gopher - A system for organizing and displaying files on Internet servers. Uses TCP Port: 70

[edit section] 1.4. Identify the basic principles of the Domain Name System (DNS).

Domain Name Services (DNS) is a network service that associates and translates an alphanumeric host name with the dotted decimal TCP/IP address of a particular Internet host.

[edit section] 1.5. Identify the functions of Web browsers, and use them to access the World Wide Web and other computer resources.

A Web browser, also called a Web client, is a software application used for submitting requests for internet content to a Web server. These requests are submitted using Hypertext Transfer Protocol (HTTP).

All HTML files can be opened with a Web browser. Appearances may vary depending on the preferences set by the user. Browsers are limited in the number of colors and graphic formats displayed accurately. Browsers will display two text styles consistently: plain text (courier) and the browser default, usually Times Roman, but any default font can be specified in the preferences. Fonts can be scaled in HTML, but users can also select the base size at which fonts are displayed.

The most popular browsers currently in use include Netscape Navigator, Microsoft Internet Explorer, Mozilla Firefox, and Opera. They're basicly the same technology, and have the following similar features:

• A browser window is used to display the text and graphics of a Web page.

• An Address or Locator bar that displays the URL of the current Web page and allows users to request an URL.

• A menu bar and customizable toolbar at the top of the screen.

• Icons on the toolbar that permit the user to return to a pre-selected "Home" page, return to a recently viewed Web page, stop a page from loading, or open a search function.

• Arrow buttons for forward or backward movement through a series of Web pages.

• Scroll bars for moving the screen vertically and horizontally are located on the right side and bottom of the browser window.

• A status bar at the bottom of the screen provides information about the Web page that is loading.

• Web pages can be saved as Bookmarks or Favorites to be revisited later.

• Browser commands display information about the source of a Web page (raw HTML), URLs of the hyperlinks on a page, and the date of publication.

• File management and editing tools, such as printing, saving, and cut and paste are included in the browser toolbar.

• Email composition, transmission and management are supported.

[edit section] 1.6. Use e-mail clients to send simple messages and files to other Internet users.

Internet e-mail clients are software applications used to communicate with SMTP servers. E-mail clients send mail using the SMTP protocol and download e-mail using theTCP/IP protocols, POP3, POP4, or IMAP.

Standard features of e-mail clients include the following:

• Inbox - Holds all incoming e-mail

• Outbox - Holds all e-mail waiting to be sent to the server

• Sent items - Holds duplicate copies of e-mail that has been sent

• Address book - A database of frequently used e-mail addresses

[edit section] 1.7. Define and use additional networking and Internet services.

• E-mail Services - A system for storing and forwarding messages across electronic communication systems based upon SMTP (Simple Mail Transfer Protocol).

• Authentication Services - Used for priviledge authorization, privacy, and non-repudiation. Users login to an authentication server and receive cryptographic tokens which are used to verify identity. Authentication services use Kerberos, passwords, and public key encryption as authentication algorithms.

• Directory Services (DS) - Software applications used to store and organize user and resource information of a network. User access is managed by an administrator.

• Domain Name System (DNS) - A system that associates and translates human-readable hostnames into IP addresses and stores lists of mail exchange servers for specific domains.

• Dynamic Host Configuration Protocol (DHCP) - A protocol used by communication devices to obtain a unique IP address, subnet mask, and default gateway from a DHCP server.

[edit section] 1.8. Demonstrate ways to communicate effectively using Internet technology.

[edit section] Netiquette

Netiquette, a portmanteau of "network etiquette", is a set of social conventions that facilitate interaction over networks, ranging from Usenet and mailing lists to blogs and forums. These rules were described in IETF RFC 1855.However, like many Internet phenomena, the concept and its application remain in a state of flux, and vary from community to community. The points most strongly emphasized about USENET netiquette often include using simple electronic signatures, and avoiding multiposting, cross-posting, thread hijacking, and other techniques used to minimize the effort required to read a post or a thread. Netiquette guidelines posted by IBM for employees utilizing Second Life in an official capacity, however, focus on basic professionalism, maintaining a tenable work environment, and protecting IBM's intellectual property.Similarly, some Usenet guidelines call for use of unabbreviated English while users of online chat protocols like IRC and instant messaging protocols like SMS often encourage trends in the opposite direction.

"RFC 1855: Netiquette Guidelines". Retrieved on 2007-08-18. http://www.dtcc.edu/cs/rfc1855.html

IBM Issues Employee Conduct Rules For Second Life - IBM - InformationWeek http://www.informationweek.com/news/internet/showArticle.jhtml?articleID=201201541

"Zen and the Art of the Internet - Usenet News". Retrieved on 2007-08-18 http://www.cs.indiana.edu/docproject/zen/zen-1.0_6.html#SEC44

[edit section] Ethical Issues

In January 1989 the Internet Architecture Board (IAB) issued a statement of policy concerning Internet ethics. This document is referred to as RFC 1087 'Ethics and the Internet'.

An extract of RFC 1087 follows:

The IAB strongly endorses the view of the Division Advisory Panel of the National Science Foundation Division of Network, Communications Research and Infrastructure which, in paraphrase, characterized as unethical and unacceptable any activity which purposely:

• Seeks to gain unauthorized access to the resources of the Internet.
• Wastes resources (people, capacity, computer) through such actions.
• Destroys the integrity of computer-based information.
• Compromises the privacy of users.
• Disrupts the intended use of the Internet.

RFC 1087 "Ethics and the Internet" http://tools.ietf.org/html/rfc1087

[edit section] Avoiding Harrassment

Harassmentrefers to a wide spectrum of offensive behavior. The term commonly refers to behavior intended to disturb or upset, and, when the term is used in a legal sense, it refers to behaviors which are found threatening or disturbing. Sexual harassment refers to persistent and unwanted sexual advances, typically in the workplace, where the consequences of refusing are potentially very disadvantageous to the victim.

[edit section] Blogging

A blog (a contraction of the term "Web log") is a Web site, usually maintained by an individual with regular entries of commentary, descriptions of events, or other material such as graphics or video. Entries are commonly displayed in reverse-chronological order. "Blog" can also be used as a verb, meaning to maintain or add content to a blog.

Many blogs provide commentary or news on a particular subject; others function as more personal online diaries. A typical blog combines text, images, and links to other blogs, Web pages, and other media related to its topic. The ability for readers to leave comments in an interactive format is an important part of many blogs. Most blogs are primarily textual, although some focus on art (artlog), photographs (photoblog), sketches (sketchblog), videos (vlog), music (MP3 blog), audio (podcasting), which are part of a wider network of social media. Micro-blogging is another type of blogging, one which consists of blogs with very short posts. As of December 2007, blog search engine Technorati was tracking more than 112 million blogs. With the advent of video blogging, the word blog has taken on an even looser meaning — that of any bit of media wherein the subject expresses his opinion or simply talks about something.

"Welcome to Technorati" (unknown). Retrieved on 2008-06-05. http://technoratimedia.com/about/

[edit section] 1.9. Identify and configure user customization features in Web browsers, including: preferences, caching, cookies.

With this domain you should have learned how to properly configure your browser from it's default configuration. Some of the things you should be able to modify are browser fronts, the browser's homepage, History folder options. How to handle pop-up and pop-under windows. You must also be able to adjust the browsers cache, image loading, and security level. Should also know how to manage and organize bookmarks or favorites.

[edit section] Cookies

HTTP cookies: more commonly referred to as Web cookies, tracking cookies or just cookies, are parcels of text sent by a server to a Web client (usually a browser) and then sent back unchanged by the client each time it accesses that server. HTTP cookies are used for authenticating, session tracking (state maintenance), and maintaining specific information about users, such as site preferences or the contents of their electronic shopping carts. The term "cookie" is derived from "magic cookie," a well-known concept in UNIX computing which inspired both the idea and the name of HTTP cookies.

[edit section] Caching

Web caching or Browser Caching: Is the caching of web documents (e.g., HTML pages, images) in order to reduce bandwidth usage, server load, and perceived lag. A web cache stores copies of documents passing through it; subsequent requests may be satisfied from the cache if certain conditions are met.

User agent caches,such as those in web browsers, are private caches, operating on behalf of a single user. Intermediaries can also implement shared caches that serve more than one person.

Proxy Caching, which involves the use of a Proxy to cache frequently visited websites, They are often used by big businesses, ISPs, and schools.Normally setting up a proxy requires each invidividual computer to be set to use the proxy, but there are other proxies out there such as Interception proxy caches (sometimes called "transparent caches") are a variant that doesn't require clients to be explicitly configured to use them.

Gateway caches, sometimes known as reverse proxy caches, surrogate caches, or web accelerators, operate on behalf of the origin server, and to clients are indistinguishable from it. A number of gateway caches can work together to implement a Content Delivery Network.

Intermediaries that cache often perform other duties, such as user authentication and content filtering. Multiple caches can also be coordinated using peering protocols like Internet Cache Protocol and HTCP.'

[edit section] Controlling Web caches

HTTP defines three basic mechanisms for controlling caches: freshness, validation and invalidation.

Freshness allows a response to be used without re-checking it on the origin server, and can be controlled by both the server and the client. For example, the Expires response header gives a date when the document becomes stale, and the Cache-Control: max-age directive tells the cache how many seconds the response is fresh for.

Validation can be used to check whether a cached response is still good after it becomes stale. For example, if the response has a Last-Modified header, a cache can make a conditional request using the If-Modified-Since header to see if it has changed.

Invalidation is usually a side effect of another request that passes through the cache. For example, if URL associated with a cached response subsequently gets a POST, PUT or DELETE request, the cached response will be invalidated.

[edit section] 1.10. Identify security issues related to Internet clients (e.g., Web browsers, e-mail, instant messaging) in the workplace, including: certificates, malware, illicit servers, viruses.

• Worms

A worm is code able to replicate itself while propagating to other hosts. In addition to replicating and propagating, worms can have code that could be destructive.

• Trojan Horses

A Trojan horse is a program that masquerades as a legitimate application, while also performing a covert function. These viruses can allow someone to gain full access over a remote system for the purposes of stealing files, information, monitoring, launch attacks from the remote system, or other destructive functions.

• Spyware

Spyware is a group of software applications that gather information about the workstations and users. Spyware can do the following just to name a few: 1. Log keystrokes 2. Copy emails 3. Copy instant messages 4. Perform screen snapshots 5. Gather login times, applications used, websites visited.

• Denial of service attacks (DOS)

DOS is considered a security loss if you are denied access to your data or are denied the capability to use your resources. DOS attacks will often access a device/service in a normal manner, but so frequently that no other user can access the same device or service.

• Packet Sniffing

Packet sniffing is when network traffic is intercepted and read by another. Attackers can use a variety of software tools to capture, copy, and sent on to the intended destination (also known as man-in-the-middle attack).

• Hijacking and Session Replay

Session hijacking occurs when a TCP/IP session is observed and captured by a network sniffer. This allows the attacker the ability to modify the captured traffic and allow the attacker to appear to be the target host. The traffic is now sent to the attacker instead of the original target host.

• Social Engineering

Is a method to gain valuable information about a system from personnel. Generally, the attacker uses a little bit of inside information to gain the trust of the victim. With this trust, the victim ends up providing sensative data that the attacker can use to exploit the system further.

• Email Bombing

Another form of attack involves sending hundreds, if not thousands, of large e-mail messages to an account on a server. Due to the large volume of e-mail messages (not to mention their size), the victim account will remain unusable until the systems administrator removes all of the messages, or creates another account.

• Illicit Servers

An illicit server is nothing more than a simple service or daemon that defeats a server’s authentication mechanisms. A valid server, such as an e-mail or Web server, always has authentication mechanisms that allow only certain users.

• Spam

Unsolicited bulk e-mail applications can send thousands, if not millions, of junk e-mail messages called spam. This content can consist of scams designed to solicite or steal money from users and clients.

[edit section] 1.11. Use different types of Web search engines effectively.

[edit section] 1.12. Identify and use principles of Personal Information Management (PIM), including: common applications.

[edit section] 1.13. Efficiently transmit text and binary files using popular Internet services.

[edit section] 1.14. Identify security-related ethical and legal issues faced by IT professionals.

[edit section] 1.15. Relate project management concepts and terms to the IT profession.

[edit section] 1.16. Recognize essential database concepts.

[edit section] FAQ About This Page

How Do I Improve An Article?: Browse to the page. Click "edit this page" and make your edits/improvements. If you just want to experiment, please do so in the sandbox, not on an article.

How Do I Start A New CIW Article?: Click "edit this page" and type [[Your Article Name]] to start a new article on the "1D0-510 Domain 1" page. Click save and follow the link to your new article . A blank template will open where you can type in your article. Please choose "Your Article Name" carefully as this can not be changed later (except by moderator).

Where Is The Editing Help/User's Guide? ProProfs Wiki Help.

Should I Use The Forum Or Wiki?: Use the wiki to contribute to an existing article and allow others to improve your work. Use forum for discussions, attachments and making notes available "as-is". For more details, please see what goes on forum/wiki help

What about spam and meaningless edits? : Each edit is recorded as a new version of the page and made available through page history. You can watch your favorite pages by clicking "watch this page" and revert any edit. Wiki spam proof and it is not possible to lose the original page.

How Do I Revert A Page To It's Older version: See Reverting Edits. Please use this for removing spam and not for improving meaningful edits. Use "edit this page" for improving the page.

[edit section] Helpful Wiki Links

• View Recent Changes In Wiki : Find out who edited what and prevent spam.
• New Pages
• Wiki Search
• ProProfs Wiki Help

	Web ProProfs.com