You're reading from CompTIA Security+: SY0-601 Certification Guide Complete coverage of the new CompTIA Security+ (SY0-601) exam to help you pass on the first attempt

Product type Paperback

Published in Dec 2020

Publisher Packt

ISBN-13 9781800564244

Length 550 pages

Edition 2nd Edition

Languages

Python

Tools

Kali Linux

Concepts

Cybersecurity

Author (1):

Ian Neil

View More author details

Table of Contents (24) Chapters

Preface

1. Objectives for the CompTIA Security+ 601 exam

Exam Objectives (Domains)

2. Section 1: Security Aims and Objectives FREE CHAPTER

3. Chapter 1: Understanding Security Fundamentals

4. Chapter 2: Implementing Public Key Infrastructure

5. Chapter 3: Investigating Identity and Access Management

6. Chapter 4: Exploring Virtualization and Cloud Concepts

7. Section 2: Monitoring the Security Infrastructure

8. Chapter 5: Monitoring, Scanning, and Penetration Testing

9. Chapter 6: Understanding Secure and Insecure Protocols

10. Chapter 7: Delving into Network and Security Concepts

11. Chapter 8: Securing Wireless and Mobile Solutions

12. Section 3: Protecting the Security Environment

13. Chapter 9: Identifying Threats, Attacks, and Vulnerabilities

14. Chapter 10: Governance, Risk, and Compliance

15. Chapter 11: Managing Application Security

16. Chapter 12: Dealing with Incident Response Procedures

17. Section 4: Mock Tests

18. Chapter 13: Mock Exam 1

19. Mock Exam 1 Solutions

20. Chapter 14: Mock Exam 2

21. Mock Exam 2 Solutions

22. Chapter Review Solutions

23. Other Books You May Enjoy

Comparing and Contrasting the Basic Concepts of Cryptography

In this section, we are going to outline the uses of different aspects of cryptography.

Asymmetric – PKI

Asymmetric keys are obtained from a CA. If you are selling products or services with external entities, then you need to obtain your X509s from a public CA; otherwise, your internal certificates will not be accepted.

Asymmetric – Weak/Depreciated Algorithms

SSL should now be depreciated as it is weak; an example of an exploit is the POODLE attack, which is a man-in-the-middle attack that exploits the vulnerabilities of SSL 3.0 using CBC. Asymmetric algorithms should not be using a key whose strength is 2046 or lower. However, an SSL VPN is the only VPN that uses an SSL certificate and works with legacy clients.

Asymmetric – Ephemeral Keys

Ephemeral keys are short-lived keys that are used for a one-time-only session. There are two types of ephemeral keys: Diffie Hellman Ephemeral...

The rest of the chapter is locked