Comptia Security+ Certification

 Security Fundamentals

• Security Building Blocks
• Authentication Methods
• Cryptography Fundamentals
• Security Policy Fundamentals

 Security Threats

• Social Engineering
• Software-Based Threats
• Network-Based Threats
• Hardware-Based Threats

 Hardening Internal Systems and Services

• Harden Operating Systems
• Harden Directory Services
• Harden DHCP Servers
• Harden File and Print Servers

 Hardening Internetwork Devices and Services

• Harden Internetwork Connection Devices
• Harden DNS and BIND Servers
• Harden Web Servers
• Harden Email Servers
• Harden Conferencing and Messaging Servers
• Secure File Transfers

 Securing Network Communications

• Protect Network Traffic with IP Security (IPSec)

 Secure Wireless Traffic

• Secure the Network Telephony Infrastructure
• Secure the Remote Access Channel

 Securing Web Applications

• Prevent Input Validation Attacks
• Protect Systems from Buffer Overflow Attacks
• Implement ActiveX and Java Security
• Protect Systems from Scripting Attacks
• Implement Secure Cookies
• Harden a Web Browser

 Managing Public Key Infrastructure (PKI)

• Install a Certificate Authority (CA) Hierarchy
• Harden a Certificate Authority
• Back Up a CA
• Restore a CA

 Managing Certificates

• Enroll Certificates
• Secure Network Traffic by Using Certificates
• Renew Certificates
• Revoke Certificates
• Back Up Certificates and Private Keys
• Restore Certificates and Private Keys

 Enforcing Organizational Security Policies

• Perform a Risk Assessment
• Enforce Corporate Security Policy Compliance
• Enforce Legal Compliance
• Enforce Physical Security Compliance
• Educate Users
• Plan for Disaster Recovery
• Conduct a Security Audit

 Monitoring the Security Infrastructure

• Scan for Vulnerabilities
• Monitor for Security Anomalies
• Set Up a Honeypot

 Managing Security Incidents

• Respond to Security Incidents
• Evidence Administration
• Recover From a Security Incident