CIW Security 1D0-470

Exam Catalog

Take an Exam

Free Demo!

Exam Results

Full Transcript

Employer Reports

e-Learning

Tech Support

Change My Account Info

Exam Home

Log Off

CIW Security 1D0-470

Security Fundamentals

What is security?

A security matrix

Assessing the threat

Security standards

Elements of security

The security policy

Encryption

Authentication

Access control

Execution Control Lists

Auditing

Common security principles

Multiple layers

Enforcement and training

Security management

Physical security

Attack Types and Encryption

Applied encryption

Symmetric-key encryption

Asymmetric encryption

Applied packet-filtering

E-mail encryption applications

File and Web encryption applications

Brute force and dictionary attacks

System bugs back doors and Trojans

Social engineering and non-direct attacks

Protocol Layers and Security

TCP/IP security

The OSI reference model

Transport layer

Application layer

Implementing TCP/IP security

Protecting TCP/IP services

Simple Mail Transfer Protocol

Testing and evaluating

Security testing software

Firewalls

The role of firewalls

Firewall concepts

Packet filter rules

Applying packet filters

Configuring proxy servers

Remote access and virtual private networks

Public key infrastructure

Designing a firewall

Hardware issues

Common firewall designs

Implementing a firewall strategy

Operating System Security

Security principles

Evaluation criteria

Security levels and mechanisms

Windows 2000 security

Windows 2000 security architecture

Linux security

Pluggable authentication modules

Passwords

Verifying system state

Protecting accounts

Password aging in Linux

Windows 2000 file systems

Remote file access

Linux file systems

Assessing and Reducing Risk

Assessing risk

Keyloggers

System port scanning

UNIX security vulnerabilities

NIS security concerns

NFS security concerns

Patching and changing defaults

Windows 2000 registry security

Disabling Windows 2000 services

Securing network connectivity

Reducing risk in Linux systems

Security Auditing

Introduction to auditing

Auditor roles

Risk assessment

Audit stages

Security scans

Network discovery applications

Enterprise-grade audit applications

Using audit applications

Social engineering

Basic audit information

Auditing and the Control Phase

Network penetration

Common targets

System bugs

Denial-of-service attacks

Combined attack strategies

Identifying attacks

Network control

UNIX and Windows 2000 file locations

UNIX passwords

Control methods

Back Orifice

NetBus

Adding administrative accounts

Attack Detection and Response

Proactive detection

Distracting the hacker

Deterring the hacker

Intrusion detection

Intrusion detection architecture

IDS rules and actions

Intrusion detection software

Auditing with eTrust

Creating rules in eTrust

Auditing with Snort

Planning for response

Documentation and assessment

Executing the response plan

Auditing and Log Analysis

Log analysis

Firewall and router logs

Operating system logs

Filtering logs

Suspicious activity

Additional logs

Log auditing tools

Generating reports

Auditing recommendations

Creating the assessment report

Improving compliance

Improving router security

Enabling proactive detection

Host auditing solutions

Personal firewalls

Replacing and updating services

Secure shell