List considerations
when assessing network elements to be protected.
List security
services and mechanisms.
Describe how
increased security mechanisms can result in increased latency.
Identify the
importance of a security policy.
Define
authentication.
Explain access
control.
Describe
the potential risk factors for data security.
Summarize risk
factors, including improper authentication.
Discuss data
integrity.
Define
data confidentiality.
Explain
non-repudiation.
Understand the
concept of audit trails.
Identify
security-related organizations, warning services, and certifications.
Explain the concept
of security architectures, including the use of a firewall, Intrusion Detection
System (IDS), scanning options, and enhanced logging and auditing.
Identify the need
for a security policy.
Discuss basic
elements of a security policy.
Identify data
security factors in regards to sending unencrypted data across the network.
Understand the three
types of encryption used in internetworking.
Define trust
relationships.
Describe the
usefulness of parallel processing in regards to cryptography.
Explain the need for
encryption in enterprise networks.
Describe symmetric
key encryption.
Discuss public key
encryption.
List the
uses for "one way" encryption.
Describe the
tradeoffs between security, encryption, and ease of use.
Explain digital
certificates.
Identify the impact
of security measures, such as encryption, system speed and capabilities.
Deploy SSL
encryption with a Web server.
Use Pretty Good
Privacy (PGP) to sign a document.
Deploy S/MIME.
Explain Public Key
Infrastructure (PKI).
Explain the impact
of encryption protocols and procedures upon system performance.
Discuss security
TCP/IP-related security issues.
Explain
authentication issues in regards to TCP/IP.
Identify elements of
the TCP/IP stack that have traditionally presented security problems.
Discuss the IP, UDP,
and TCP headers in regards to security.
Review the 3-way
TCP/IP handshake.
Discuss the TCP/IP
stack and its relation to the operating system.
Identify routing
issues and security.
Discuss the IPv6 and
security.
Identify
specific features provided by IPv6.
Discuss intrusion
threats.
Identify
scanning attacks.
Identify problems
associated with sending unencrypted information across the network.
Review placing a NIC
in "promiscuous mode."
Describe sniffing
attacks, including sniffing e-mail, telnet, NFS, NIS, and Web traffic.
Describe e-mail
bombing.
Understand
how to scan and crack a share.
Identify system
bug-based attacks.
Determine the causes
and results of a denial of service (DOS) attacks.
Explain the
usefulness of a DOS attack.
Define buffer
overflow attacks.
You must be logged in to view this entire article. Click Here to Finish Reading this Article
Email this Article
Print this Article
