Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Free Learning

You're reading from CompTIA Security+ Certification Guide Master IT security essentials and exam topics for CompTIA Security+ SY0-501 certification

Product type Paperback

Published in Sep 2018

Publisher Packt

ISBN-13 9781789348019

Length 532 pages

Edition 1st Edition

Concepts

Network Security

Author (1):

Ian Neil

View More author details

Table of Contents (18) Chapters

Preface

1. Understanding Security Fundamentals FREE CHAPTER

2. Conducting Risk Analysis

3. Implementing Security Policies and Procedures

4. Delving into Identity and Access Management

5. Understanding Network Components

6. Understanding Cloud Models and Virtualization

7. Managing Hosts and Application Deployment

8. Protecting Against Attacks and Vulnerabilities

9. Implementing the Public Key Infrastructure

10. Responding to Security Incidents

11. Managing Business Continuity

12. Mock Exam 1

13. Mock Exam 2

14. Preparing for the CompTIA Security+ 501 Exam

15. Acronyms

16. Assessment

17. Other Books You May Enjoy

Leave a review - let other readers know what you think

Answers and Explanations

A CA has a root certificate, which it uses to sign keys.
I would use a private CA for internal use only; these certificates will not be accepted outside of your organization.
I would use a public CA for B2B activities.
If you were a military, security, or banking organization, you would keep the CA offline when it is not being used to prevent it from being compromised.
An architect would build the CA or intermediary authorities.
The CA would sign the X509 certificates.
Certificate pinning can be used to prevent a CA from being compromised and fraudulent certificates being issued.
If two separate PKI entities want to set up a cross certification, the root CAs would set up a trust model between themselves, known as a bridge trust model.
PGP uses a trust model known as a web of trust.
A Certificate Revocation List (CRL) is used to determine whether a certificate...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (1)

Ian Neil

Ian Neil is one of the world's top trainers of Security+. He is able to break down information into manageable chunks so that people with no background knowledge can gain the skills required to become certified. He has recently worked for the US Army in Europe and designed a Security+ course that catered to people from all backgrounds (not just IT professionals), with an extremely successful pass rate. He is an MCT, MCSE, A+, Network+, Security+, CASP, and RESILIA practitioner that has worked with high-end training providers over the past 23 years and was one of the first technical trainers to train Microsoft internal staff when they opened their Bucharest Office in 2006.

See other products by Ian Neil