DOMAIN 4.0 SECURITY
From Proprofs
You are here: Home > Schools > Comptia >
Wiki Home >
i-Net+ Home
DOMAIN 4.0 SECURITY
This domain requires that the candidate have the knowledge and skills to understand and be able to understand various Internet security concepts; identify suspicious network activities; identify various methods for performing intrusion detection; identify appropriate access-control security features for an Internet server; describe the uses and proper instances to use anti-virus software; describe the uses and proper instances to use various client security add-ons; describe how firewalls are used to protect private networks; understand when to use various DMZ configurations; and describe various authentication/encryption technologies.
[edit section] 4.1. Understand and be able to describe various Internet security concepts.
Content may include the following :
- Access control
- Authentication
- Encryption—PKI
- Secure socket layers (SSL)
- Access security tools
- Auditing
- Secure Electronic Transactions (SET)
[edit section] 4.2. Identify suspicious network activities.
Content may include the following :
- Multiple log-in failures
- Ping floods
- Denial of service attacks
- Mail flooding
- Syn floods
- Spoofing
- Repudiation
[edit section] 4.3. Identify various methods for performing intrusion detection.
Content may include the following :
- Configure auditing on servers and firewalls
- Review audit logs
- Configure network monitoring software to alert you when suspicious types of traffic occur
- Configure servers to notify you when unauthorized accesses are attempted.
[edit section] 4.4. Identify appropriate access-control security features for an Internet server.
Content may include the following :
- E-mail server
- Web server
- APACHE
- NES
- IIS
[edit section] 4.5. Be able to describe the uses and proper instances to use anti-virus software.
Content may include the following :
- Server anti-virus protection
- Client computer anti-virus protection
- Network anti-virus protection, such as on a firewall
[edit section] 4.6. Be able to describe the uses and proper instances to use various client security add-ons.
Content may include the following :
- Encryption software
- Personal digital identification, such as a digital certificate
- Personal firewall software
[edit section] 4.7. Describe how firewalls are used to protect private networks.
Content may include the following :
- Port filtering
- Packet filtering
- Application filtering
- Intrusion detection filtering
[edit section] 4.8. Identify when to use various DMZ configurations.
Content may include the following :
- Bastion Host
- Three-homed firewall
- Back-to-back firewalls
[edit section] 4.9. Understand and be able to describe various authentication/encryption technologies.
Content may include the following :
- Username/password authentication
- Smart Card authentication
- SSL
- Authentication versus encryption
- PKI
- Asymmetric encryption, including blowfish, RC2, RC4, and RC5
- Symmetric encryption, including DES, triple DES, and skipjack
- One Way encryption, including MD5 and SHA
Top 5 Contributors to this article
|
|||||
