+ Reply to Thread
Page 1 of 3 1 23 Last
Results 1 to 25 of 73
  1. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #1

    Default *TechNotes* Security+

    These notes will eventually, some day, be combined in a single PDF file. Please let me know if you have any comments, suggestions so I can add/change it before it ends up in the PDF guide.

    Click here for Security+ exam information, our practice tests, TechNotes, links, and recommended books.

    Access Control *updated*
    Access control, access control models, MAC, DAC, and RBAC.

    Authentication
    Username/password, CHAP, certificates, Kerberos, mutual authentication, biometrics, tokens, and smartcards.

    Attackers
    Covers the different type of attackers, their level of skills and resources, and their motivation.

    DoS Attacks
    Covers the concept of Denial of Service attacks and Distributed Denial of Service attacks, including a technical overview of the most common type of DoS attacks such as TCP SYN, UDP flooding and Smurfing.

    Spoofing
    Covers spoofing attacks such as IP spoofing, ARP spoofing, and spoofing websites.

    Attacks*new*
    Covers password, replay, back doors, Man-in-the-Middle, TCP Hijacking, mathematical, birthday, weak keys, and software exploitation attacks.

    Social Engineering Attacks
    Covers the human aspect of security.

    Malicious Code
    Covers viruses, Trojan Horses, back door attacks, worms and logic bombs.

    Email Security
    Covers S/MIME, message encryption and digital signatures, PGP, SPAM, relaying and reverse lookups.

    Internet Security *new*
    Covers Internet security, Intranet, Extranet, SSL, HTTPS, S-HTTP, TLS, SFTP, Blind/anonymous FTP, ActiveX, CGI, Java script, Java, signed applets, cookies, buffer overflows, and instant messaging.

    Network and Storage Media *new*
    Covers security concerns of coaxial, UTP, STP, and fiber optic cabling, and removable media such as diskettes, CDs, hard drives, flashcards, tapes, and smartcards.

    Wireless Network Security
    Covers 802.11x, WEP, WAP, WTLS, site surveys, vulnerabilities and various related wireless security technologies.

    Intrusion Detection Systems
    Covers intrusion detections systems concepts and characteristics. Passive vs Active response, host vs network-based, signature vs behavior-based, limitations and drawbacks, and honey pots.

    Physical Security
    Covers physical security aspects such as physical barriers, access controls, environmental security, shielding, and fire suppression.

    Risk Identification
    Covers asset identification, vulnerability assessment, threat identification, and risk identication.

    Forensics *new*
    Covers computer forensics, identification and collection of evidence, preservation of evidence, and chain of custody.


    Happy reading!
    Johan
    Reply With Quote Quote  

  2. SS -->
  3. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #2
    I just found this great site which explains several biometrics systems in the full extend:
    http://www.ibgweb.com/reports/public...y_reports.html

    I think what I've written in the piece above should be enough for the Security+ exam, but can't hurt to check out some of the details
    Reply With Quote Quote  

  4. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #3
    I just added new TechNotes for the Security+ exam covering the exam objective(s):

    1.2 Recognize and be able to differentiate and explain the following types of authentication:
    - Kerberos
    - CHAP (Challenge Handshake Authentication Protocol)
    - Certificates
    - Username / Password
    - Tokens
    - Multi-factor
    - Mutual
    - Biometrics

    http://www.techexams.net/technotes/s...tication.shtml

    I hope you enjoy reading it as much as I did writing it.
    Reply With Quote Quote  

  5. Junior Member
    Join Date
    Jan 2004
    Posts
    1
    #4

    Default RBAC according to CompTIA Objectives

    Good day,

    You referred to RBAC in your Access Control Technote as being "Rule Based" for CompTIA's objectives. However, although Rule Based Authentication does exist and is prevalent, your statement was incorrect. I copy and paste from CompTIA's website (http://www.comptia.org/certification...es-domain1.asp):

    "
    1.1 Recognize and be able to differentiate and explain the following access control models

    MAC (Mandatory Access Control)
    DAC (Discretionary Access Control)
    RBAC (Role Based Access Control)
    "

    The only reason I'm mentioning this is because you happened to throw RBAC (Role) into MAC, which could really confuse the issue.

    Comments?
    Reply With Quote Quote  

  6. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #5
    I'm sorry for the late reply, I had to make sure I wasn't going nuts first.

    I had done extensive research on the topic before writing those TechNotes mainly because many study guides are rather vague when it comes to this subject so I wanted to writing something definit (enough for Security+ at least) and not confusing .

    Of course I wouldn't have made the comment "Although in most related documentation the abbreviation RBAC is used to refer to the Role-Based Access Control model, in the Security+ exam objectives CompTIA refers to it as the Rule-Based Access Control model, which is sometimes referred to as Rule-Based Role-Based Access Control (RB-RBAC).", if the exam objectives didn't actually say so. The list of exam objectives covered in the TechNotes on the bottom of the page are an exact copy-and-paste from the PDF.... BUT, when I wrote it (July last year) the objectives were still in beta and it did actually say Rule based.. in this doc: http://www.comptia.org/certification...objectives.pdf (unfortunately not online anymore, and I checked my hard disks and my backups but don't have the file anymore.) I've asked a couple of other people to check it they may still have. The current exam objectives PDF is of August last year.

    Thanks for bringing this to my attention, I will remove the comment about the exam objective.
    Reply With Quote Quote  

  7. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #6
    I just uploaded new TechNotes for the Security+ exam:

    Wireless Network Security
    It covers 802.11x, WEP, WAP, WTLS, vulnerabilities and various related wireless security technologies.
    The following footnotes are also listed at the bottom of the page:
    Quote Originally Posted by Footnotes
    - Throughout this document I assumed 802.11 based networks are running in infrastructure mode.
    - Most of the details in this document are beyond the scope of the Security+ exam. For the exam you will need to focus on the general concept, when to use what, and basic operation.
    - As security is one of the most evolving parts of wireless networking, some of the details in this document may become outdated.
    - The first revision of the Security+ exam (SY0-101) contains information current as of late 2002. Many of the newer developments in wireless technology described in this TechNote will appear in the next revision of the Security+ exam.
    Special thanks for jdmurray for his excellent proofreading and input.
    Reply With Quote Quote  

  8. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #7
    Here's another TechNote for the Security+ exam covering a human aspect of security: social engineering

    http://www.techexams.net/technotes/s...ineering.shtml

    I hope you like it, it is pretty much my first non-technical piece.
    Reply With Quote Quote  

  9. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #8
    I'm currently working on TechNotes that cover the attacks listed in the Security+ objectives below, and more. I planned on write a single article about everthing in objective 1.4, but it's getting kind of long already so I decided to write a separate one for each type of attack. But first, here's one that covers the types of attackers:

    http://www.techexams.net/technotes/s...ttackers.shtml

    Next in line is DoS/DDoS attacks.

    1.4 Recognize the following attacks and specify the appropriate actions to take to mitigate vulnerability and risk.
    - DOS / DDOS (Denial of Service / Distributed Denial of Service)
    - Back Door
    - Spoofing
    - Man in the Middle
    - Replay
    - TCP/IP Hijacking
    - Weak Keys
    - Mathematical
    - Social Engineering
    - Birthday
    - Password Guessing
    -- Brute Force
    -- Dictionary
    - Software Exploitation
    Reply With Quote Quote  

  10. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #9
    Here is the next one:

    http://www.techexams.net/technotes/s...cks-DDOS.shtml

    It covers the concept of Denial of Service attacks and Distributed Denial of Service attacks, including a technical overview of the most common type of DoS attacks such as TCP SYN, UDP flooding, Smurfing and a couple of others.

    Next on the list is Back Door Attacks...


    Johan
    Reply With Quote Quote  

  11. Junior Member
    Join Date
    Jun 2004
    Posts
    3
    #10

    Default Hello

    Hello Johan

    Thanx for posting the shortened form/summary documents of the exam objectives and the advise. It does help in the motivation and confidence stakes.

    I am writing the exam next week hopefully, when I have fully prepared.

    I'm just waiting for the practise exams, in order to get a feel for what type of questions get asked. I am currently working through the Sybex book and other books with regard to security, that will help me with the exam.

    So, I will have to work very hard still to be prepared and confident. I have to work through chapter 9 and 10 still. Then it is revise, revise and practise and more practise!!!
    Reply With Quote Quote  

  12. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #11
    Hello Ashley,

    You're welcome

    Although I covered only a couple of exam objectives yet, they are hardly 'shortened form/summary'. If you compare them to the information in the Sybex book, my TechNotes are more detailed and even longer.

    I used the Sybex book as my primary source for preparing for this exam as well. Apart from some minor technical errors, many useless diagrams, and the overwhelming amount of fluff, it does cover a fair amount of the Sec+ exam objectives. Nevertheless, it needs to be supplemented with other material in order to be sufficient for the exam.

    I'm just waiting for the practise exams, in order to get a feel for what type of questions get asked.
    What practice exams are you waiting for? Did you notice ours here:
    www.techexams.net/co_securityplus.shtml

    Good luck with the exam next week and let use know the results.

    Johan
    Reply With Quote Quote  

  13. Junior Member
    Join Date
    Jun 2004
    Posts
    3
    #12
    Hello Johan

    You are correct in talking about the fluff and they also repeat themselves alot in the sections and descriptions that they give.
    What I meant to say was that your notes are concise and to the point - only the stuff you need to know - no fluff or waffle.

    I only have chapter 10 to go and then its revise and test. It took me about a month and a half to sum up the book. I have to write things down to take it in, I know its alot of writing but it works for me to remember what I have studied and in this way I get rid of all the fluff in the book.

    I also have a copy of the Que Exam Cram 2 study notes, which will definitely help my cause.

    But thanx and I will keep you posted on the result.
    Reply With Quote Quote  

  14. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #13
    Here's the next one covering the 1.5 Malicious code exam objectives (viruses, Trojan Horses, worms and logic bombs.) and the Back Doors exam objective from 1.4:

    Malicious Code Perhaps not as detailed as usual but I think it is sufficient for the Security+ exam.
    Reply With Quote Quote  

  15. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #14
    I've added a rating option to all my Security+ TechNotes that allows reader to rate my security related notes at www.securitydocs.com

    Please do submit a rating when you read them, even if you think they totally suck
    Reply With Quote Quote  

  16. Junior Member
    Join Date
    Jan 2005
    Posts
    28

    Certifications
    Security+ , GSEC
    #15
    Just found this great site, and I love it thus far. Great information!
    Reply With Quote Quote  

  17. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #16
    Thanks for the comments so far people...

    I just finished new TechNotes for the Security+ exam:
    Email Security
    http://www.techexams.net/technotes/s...security.shtml

    It covers S/MIME, message encryption and digital signatures, PGP, SPAM, relaying and reverse lookups. In other words, the following exam objectives:

    DOMAIN 2.0: Communication Security

    2.2 Recognize and understand the administration of the following email security concepts
    - S/MIME (Secure Multipurpose Internet Mail Extensions)
    - PGP (Pretty Good Privacy) like technologies
    - Vulnerabilities
    - SPAM

    2.3 Recognize and understand the administration of the following Internet security concepts
    - Vulnerabilities
    -- SMTP (Simple Mail Transfer Protocol) Relay

    DOMAIN 3.0: Infrastructure Security

    3.5 Understand the following concepts of Security Baselines, be able to explain what a Security Baseline is, and understand the implementation and configuration of each kind of intrusion detection system
    - Application hardening
    -- E-mail Servers
    It's probably a bit more detailed than what you'll find in most Sec+ material, but I think that after reading this you should be able to answer (and understand ) all related question on the exam. Note that the mentioned encryption algorithms, PKI, and certificates, will be covered in more detail in other TechNotes.

    Next in line is Basics of Cryptography, although I might decide to finish another topic first.
    Reply With Quote Quote  

  18. Member
    Join Date
    Dec 2003
    Location
    Beirut, Lebanon
    Posts
    79

    Certifications
    A+, Network+, Security+, CCNA, CVoice, 70-270, ITIL Foundation, CA SPECTRUM Administration, CA eHealth Administration
    #17
    Thanks a lot Johan, these are valuable notes !

    I was wondering, can I pass Security+ with these notes? (and read the objectives that are not covered from another source)

    Thanks a lot.
    Reply With Quote Quote  

  19. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #18
    Thanks. I wouldn't recommend using them as your only source for a topic (apart from the fact I haven't covered all the exam objectives yet), but rather an addition to a text book, CBT or classroom course. It's always good to read about the same subject from different authors, as one may make more sense than others, plus I like to clear up where others conflict (researching and fact-checking takes at least the amount of time to write them). But, I covered perhaps 30% of the objectives so far though, and again, I don't recommend using any source as your only source.

    However, so far, and for other exams as well, I've proven to have a pretty good idea of how to interpret CompTIA's exam objectives, and I honestly think that 'in most cases' the information in the TechNotes is sufficient to answer 90% of the question about the corresponding topic. But it also depends a lot on how much you know already. I.e. someone with MCSE:Security or a fair amount of real world experience, would be able to pass the exam just by reading my TechNotes, especially with a Special Edition (just like for the Network+ exam). Anyway, time will tell.
    Feel free to leave your feedback in this post after you passed the exam.
    Reply With Quote Quote  

  20. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #19
    I finished some new TechNotes for the Security+ exam:

    Intrusion Detection Systems
    It covers intrusion detection systems concepts and characteristics. Passive vs active response, host vs network-based, signature vs behavior-based, limitations and drawbacks, and honey pots.

    I'm not going to give an ETA for the next one but it will be a lot less than 3 months...
    Reply With Quote Quote  

  21. Junior Member
    Join Date
    Apr 2005
    Posts
    1

    Certifications
    A+, Network+, MCSE, CCA
    #20
    Quote Originally Posted by Webmaster
    I finished some new TechNotes for the Security+ exam:

    Intrusion Detection Systems
    It covers intrusion detection systems concepts and characteristics. Passive vs active response, host vs network-based, signature vs behavior-based, limitations and drawbacks, and honey pots.

    I'm not going to give an ETA for the next one but it will be a lot less than 3 months...
    Thanks for all the info you have here. As an FYI, the link to the printer friendly version for Intrusion Detection System isn't working (pr_ids.php).
    Reply With Quote Quote  

  22. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #21
    Thanks! I fixed the link.
    Reply With Quote Quote  

  23. Grumpy old bugger RussS's Avatar
    Join Date
    Sep 2002
    Location
    Hamilton - New Zealand
    Posts
    2,109
    #22
    Most excellent Johan
    Reply With Quote Quote  

  24. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #23
    Thanks Russ, I'm glad you like it.
    Reply With Quote Quote  

  25. Johan Hiemstra Forum Admin Webmaster's Avatar
    Join Date
    Jun 2002
    Location
    52n31, 6e06
    Posts
    10,383
    Blog Entries
    3

    Certifications
    MCSE NT4 MCSA 2000/2003 Security+ (expired: CWNA, CNA, CCNA)
    #24
    I just uploaded an updated version of the Access Control Models TechNotes, now named Access Control. It's an rewritten and extended version mainly to improve readibility and hopefully making this topic a bit easier to grasp.

    http://www.techexams.net/technotes/s...dac_rbac.shtml

    I'll post a new one in a couple of minutes...
    Reply With Quote Quote  

  26. Grumpy old bugger RussS's Avatar
    Join Date
    Sep 2002
    Location
    Hamilton - New Zealand
    Posts
    2,109
    #25
    Dang Johan - you are writing those faster than I have time to read them. Take a long holiday my friend
    Reply With Quote Quote  

+ Reply to Thread
Page 1 of 3 1 23 Last

Social Networking & Bookmarks