Official (ISC)[superscript]2 guide to the CISSP CBK. (©2007)
- Record Type:
- Book
- Title:
- Official (ISC)[superscript]2 guide to the CISSP CBK. (©2007)
- Main Title:
- Official (ISC)[superscript]2 guide to the CISSP CBK
- Further Information:
- Note: Edited by Harold F. Tipton and Kevin Henry.
- Other Names:
- Tipton, Harold F
Henry, Kevin - Contents:
- INFORMATION SECURITY AND RISK MANAGEMENT ; Introduction; The Business Case for Information Security Management; Core Information Security Principles: Availability, Integrity; Information Security Management Governance; Organizational Behavior; Security Awareness, Training, and Education; Risk Management; Ethics; Data Classification Policy; Data Handling Policy; References; Other References; Sample Questions; ACCESS CONTROL ; Introduction; Definitions and Key Concepts; Access Control Categories and Types; Access Control Threats; Access to Systems; Access to Data; Intrusion Detection and Prevention Systems; Access Control Assurance; References. ; Sample Questions; CRYPTOGRAPHY ; Introduction; Key Concepts and Definitions; Encryption Systems; Message Integrity Controls; Digital Signatures; Encryption Management; Cryptanalysis and Attacks; Encryption Usage; References; Sample Questions; PHYSICAL (ENVIRONMENTAL) SECURITY ; Introduction; Site Location; The Layered Defense Model; Information Protection and Management Services; Summary; References; Sample Questions; SECURITY ARCHITECTURE AND DESIGN ; Introduction; Security Architecture and Design Components and Principles; Security Models and Architecture Theory; Security Product Evaluation Methods and Criteria; Sample Questions; BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING ; Introduction; Organization of the BCP/DRP Domain Chapter; Terminology; Appendix A: Addressing Legislative Compliance within Business Continuity Plans ;INFORMATION SECURITY AND RISK MANAGEMENT ; Introduction; The Business Case for Information Security Management; Core Information Security Principles: Availability, Integrity; Information Security Management Governance; Organizational Behavior; Security Awareness, Training, and Education; Risk Management; Ethics; Data Classification Policy; Data Handling Policy; References; Other References; Sample Questions; ACCESS CONTROL ; Introduction; Definitions and Key Concepts; Access Control Categories and Types; Access Control Threats; Access to Systems; Access to Data; Intrusion Detection and Prevention Systems; Access Control Assurance; References. ; Sample Questions; CRYPTOGRAPHY ; Introduction; Key Concepts and Definitions; Encryption Systems; Message Integrity Controls; Digital Signatures; Encryption Management; Cryptanalysis and Attacks; Encryption Usage; References; Sample Questions; PHYSICAL (ENVIRONMENTAL) SECURITY ; Introduction; Site Location; The Layered Defense Model; Information Protection and Management Services; Summary; References; Sample Questions; SECURITY ARCHITECTURE AND DESIGN ; Introduction; Security Architecture and Design Components and Principles; Security Models and Architecture Theory; Security Product Evaluation Methods and Criteria; Sample Questions; BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING ; Introduction; Organization of the BCP/DRP Domain Chapter; Terminology; Appendix A: Addressing Legislative Compliance within Business Continuity Plans ; TELECOMMUNICATIONS AND NETWORK SECURITY ; Introduction; Basic Concepts; Layer 1: Physical Layer; Layer 2: Data-Link Layer; Layer 3: Network Layer; Layer 4: Transport Layer; Layer 5: Session Layer; Layer 6: Presentation Layer; Layer 7: Application Layer; Trivial File Transfer Protocol (TFTP); General References; Sample Questions; Endnotes; APPLICATION SECURITY ; Domain Description and Introduction; Applications Development and Programming Concepts and Protection; Audit and Assurance Mechanisms; Malicious Software (Malware); The Database and Data Warehousing Environment; Web Application Environment; Summary; References; OPERATIONS SECURITY ; Introduction; Privileged Entity Controls; Resource Protection; Continuity of Operations; Change Control Management; Summary; References; Sample Questions; LEGAL, REGULATIONS, COMPLIANCE AND INVESTIGATIONS ; Introduction; Major Legal Systems; Information Technology Laws and Regulations; Incident Response; Computer Forensics; Conclusions; References; Sample Questions; ANSWERS TO SAMPLE QUESTIONS ; CERTIFIED INFORMATION SYSTEMS SECURITY PROFESSIONAL (CISSP®) CANDIDATE INFORMATION BULLETIN ; GLOSSARY ; INDEX … (more)
- Publisher Details:
- Boca Raton, Fla : Auerbach Publications
- Publication Date:
- 2007
- Copyright Date:
- 2007
- Extent:
- 1 online resource (xxxix, 1065 pages), illustrations
- Subjects:
- 004.6 O324
Electronic data processing personnel -- Certification
Computer networks -- Examinations -- Study guides
Computer networks -- Examinations
Electronic data processing personnel -- Certification
Study guides - Languages:
- English
- ISBNs:
- 9781439863176
1439863172 - Notes:
- Note: Includes bibliographical references and index.
- Access Rights:
- Legal Deposit; Only available on premises controlled by the deposit library and to one user at any one time; The Legal Deposit Libraries (Non-Print Works) Regulations (UK).
- Access Usage:
- Restricted: Printing from this resource is governed by The Legal Deposit Libraries (Non-Print Works) Regulations (UK) and UK copyright law currently in force.
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library HMNTS - ELD.DS.154571
- Ingest File:
- 01_042.xml