From the course: CompTIA Security+ (SY0-701) Cert Prep
General security concepts
From the course: CompTIA Security+ (SY0-701) Cert Prep
General security concepts
- CompTIA provides a very detailed curriculum for the Security+ Exam. It organizes the content into five major domains of information security: General Security Concepts, Threats, Vulnerabilities and Mitigations, Security Architecture, Security Operations, and Security Program Management and Oversight. If you'd like, take the time to look through the official exam objectives, and get a sense for the things that you'll learn as you prepare for the Security+ Exam. And chances are that you're already familiar with some topics, while others might be brand new to you. That's fine. This course is designed to give you all of the knowledge that you'll need to pass the Security+ Plus exam, no matter where you are in your security career. The first domain of the security plus exam, General Security Concepts, makes up 12% of the questions on the test. It has four objectives. In the first objective for this domain, you're asked to compare and contrast various types of security controls. You'll need to understand security control categories. You also need to understand security control types. These include preventive, deterrent, detective, corrective, compensating, and directive controls. The second objective for this domain requires that you be able to summarize fundamental security concepts. This includes the CIA triad of confidentiality, integrity, and availability, non-repudiation, the AAA model of authentication, authorization and accounting, gap analysis, zero trust, physical security, and deception and disruption technologies. In the third objective for this domain, you need to be able to explain the importance of change management processes and their impact on security. You'll need to understand business processes impacting security operations, technical implications, documentation, and version control. In the final objective for this domain, you need to explain the importance of using appropriate cryptographic solutions. You'll need to understand PKI, encryption, cryptographic tools, obfuscation, hashing and salting, digital signatures, key stretching, blockchain, the open public ledger, and certificates. Alright, let's dive into domain one, General Security Concepts.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
(Locked)
The goals of information security2m 11s
-
(Locked)
Authentication, authorization, and accounting (AAA)3m 31s
-
(Locked)
Categorizing security controls5m 11s
-
(Locked)
Conducting a gap analysis2m 34s
-
(Locked)
Zero Trust5m 32s
-
(Locked)
Physical access control4m 40s
-
(Locked)
Physical security personnel2m 12s
-
(Locked)
Deception technologies2m 55s
-
(Locked)
Change management6m 2s
-
(Locked)
-
-
(Locked)
Trust models2m 52s
-
(Locked)
PKI and digital certificates4m 5s
-
(Locked)
Hash functions7m 38s
-
(Locked)
Digital signatures3m 50s
-
(Locked)
Digital signature standard1m 27s
-
(Locked)
Create a digital certificate4m 55s
-
(Locked)
Revoke a digital certificate1m 28s
-
(Locked)
Certificate stapling2m 29s
-
(Locked)
Certificate authorities6m 13s
-
(Locked)
Certificate subjects3m 35s
-
(Locked)
Certificate types2m 55s
-
(Locked)
Certificate formats2m 30s
-
(Locked)
-
-
(Locked)
Preventing SQL injection4m 25s
-
(Locked)
Understanding cross-site scripting3m 17s
-
(Locked)
Request forgery4m 8s
-
(Locked)
Overflow attacks3m 21s
-
(Locked)
Explaining cookies and attachments4m 7s
-
(Locked)
Session hijacking4m 8s
-
(Locked)
Code execution attacks2m 43s
-
(Locked)
Privilege escalation1m 56s
-
(Locked)
OWASP Top Ten4m 45s
-
(Locked)
Application security4m 3s
-
(Locked)
Defending against directory traversal3m 4s
-
(Locked)
Race condition vulnerabilities2m 13s
-
(Locked)
-
-
(Locked)
Denial-of-service attacks4m 15s
-
(Locked)
Eavesdropping attacks4m 12s
-
(Locked)
DNS attacks3m 30s
-
(Locked)
Wireless attacks2m 54s
-
(Locked)
Propagation attacks4m 19s
-
(Locked)
Preventing rogues and evil twins2m 50s
-
(Locked)
Disassociation attacks2m 10s
-
(Locked)
Understanding Bluetooth attacks1m 23s
-
(Locked)
RFID security2m 17s
-
(Locked)
-
-
(Locked)
Routers, switches, and bridges3m 6s
-
(Locked)
Firewalls5m 50s
-
(Locked)
Web application firewalls3m 7s
-
(Locked)
Proxy servers2m 41s
-
(Locked)
Load balancers4m 9s
-
(Locked)
VPNs and VPN concentrators4m 29s
-
(Locked)
Network intrusion detection and prevention4m 58s
-
(Locked)
Protocol analyzers8m 57s
-
(Locked)
Unified threat management1m 57s
-
(Locked)
Failure modes1m 47s
-
(Locked)
-
-
(Locked)
Restricting network access2m 8s
-
(Locked)
Network access control4m 30s
-
(Locked)
Router configuration security4m 5s
-
(Locked)
Switch configuration security3m 42s
-
(Locked)
Maintaining network availability2m 32s
-
(Locked)
Network monitoring3m 41s
-
(Locked)
SNMP2m 54s
-
(Locked)
Isolating sensitive systems2m
-
(Locked)
Zero trust networking4m 9s
-
(Locked)
Secure access service edge (SASE)3m 50s
-
(Locked)
-
-
(Locked)
Business continuity planning3m 10s
-
(Locked)
Business continuity controls3m 32s
-
(Locked)
High availability and fault tolerance5m 10s
-
(Locked)
Disaster recovery4m 24s
-
(Locked)
Backups5m 18s
-
(Locked)
Restoring backups2m 11s
-
(Locked)
Disaster recovery sites3m 16s
-
(Locked)
Testing BC/DR plans2m 26s
-
(Locked)
Capacity planning1m 30s
-
(Locked)
-
-
(Locked)
Operating system security8m 44s
-
(Locked)
Malware prevention7m 25s
-
(Locked)
Application management3m 46s
-
(Locked)
Host-based network security controls7m 44s
-
(Locked)
File integrity monitoring4m 9s
-
(Locked)
Data loss prevention5m 17s
-
(Locked)
Data encryption5m 39s
-
(Locked)
Hardware and firmware security5m 24s
-
(Locked)
Linux file permissions4m 2s
-
(Locked)
Web content filtering1m 47s
-
(Locked)
-
-
(Locked)
Mobile connection methods2m 36s
-
(Locked)
Mobile device security2m 27s
-
(Locked)
Mobile device management6m 17s
-
(Locked)
Mobile device tracking3m 5s
-
(Locked)
Mobile application security3m 54s
-
(Locked)
Mobile security enforcement3m 54s
-
(Locked)
Bring your own device (BYOD)4m 35s
-
(Locked)
Mobile deployment models2m 54s
-
(Locked)
-
-
(Locked)
What is vulnerability management?5m 2s
-
(Locked)
Identify scan targets4m 24s
-
(Locked)
Scan configuration5m 20s
-
(Locked)
Scan perspective4m 24s
-
(Locked)
Security Content Automation Protocol (SCAP)2m 27s
-
(Locked)
Common Vulnerability Scoring System (CVSS )3m 31s
-
(Locked)
Analyzing scan reports4m 37s
-
(Locked)
Correlating scan results2m 20s
-
(Locked)
Vulnerability response and remediation2m 14s
-
(Locked)
-
-
(Locked)
Authentication factors3m 26s
-
(Locked)
Multifactor authentication2m 17s
-
(Locked)
Something you have4m 24s
-
(Locked)
Password policy4m 19s
-
(Locked)
Password managers2m 3s
-
(Locked)
Passwordless authentication3m 23s
-
(Locked)
Single sign-on and federation3m 9s
-
(Locked)
Kerberos and LDAP5m 18s
-
(Locked)
SAML2m 35s
-
(Locked)
OAUTH and OpenID Connect2m 55s
-
(Locked)
Certificate-based authentication5m 25s
-
(Locked)
-
-
(Locked)
Build an incident response program4m 13s
-
(Locked)
Incident identification4m 26s
-
(Locked)
Escalation and notification2m 29s
-
(Locked)
Mitigation2m 22s
-
(Locked)
Containment techniques3m
-
(Locked)
Incident eradication and recovery5m 1s
-
(Locked)
Post-incident activities3m 49s
-
(Locked)
Incident response training and testing1m 13s
-
(Locked)