Table of Contents

Introduction xv


Chapter 1 Threats, Attacks, and Vulnerabilities 1


Chapter 2 Technologies and Tools 37


Chapter 3 Architecture and Design 75


Chapter 4 Identity and Access Management 111


Chapter 5 Risk Management 131


Chapter 6 Cryptography and PKI 163


Chapter 7 Practice Test 195


Appendix Answers to Practice Tests 215


Chapter 1: Threats, Attacks, and Vulnerabilities 216


Chapter 2: Technologies and Tools 238


Chapter 3: Architecture and Design 267


Chapter 4: Identity and Access Management 293


Chapter 5: Risk Management 309


Chapter 6: Cryptography and PKI 339


Chapter 7: Practice Test 368


Index 391

About the Author

ABOUT THE AUTHORS
S. Russell Christy, CompTIA Security+, CySA+, A+, Network+, Server+, is a Technical Trainer in Memphis, Tenn., delivering traditional and online classroom learning for adults, covering a wide variety of products. He specializes in Computer Maintenance and Network and Security; Microsoft Office applications; and Web and Print Design. For over 20 years he has deployed new desktops and operating systems, servers, network hardware and software, while simultaneously troubleshooting various hardware and software issues. Chuck Easttom is CEO and Chief Trainer for CEC-Security, which specializes in IT security training and CISP and Security+ exam preparation. He has over 18 years in the IT industry, 10 years teaching and training, and has authored 15 published books.