CompTIA Security+ Guide to Network Security Fundamentals,
7th Edition

I. SECURITY FUNDAMENTALS
1. Introduction to Security
a. Who are the attackers?
i. Categories of threat actors
ii. Attributes of actors
b. Attack vectors and their causes
i. Avenues of attacks
ii. Vulnerabilities that create attack vectors
iii. Social engineering attacks
c. Cybersecurity standards
i. Regulations and standards
ii. Frameworks
iii. Configuration guidelines
d. Sources of information
i. Threat intelligence sources
ii. Research sources
2. Security Evaluations
a. Security assessments
i. Threat hunting
ii. Vulnerability scans
iii. Security information and event management (SIEM)
iv. Security orchestration, automation, response (SOAR)
b. Penetration testing
i. What is penetration testing?
ii. Types of reconnaissance
iii. Exercise types (
II. DEVICE SECURITY
3. Threats and Attacks on Devices
a. Attacks using malware
i. Circulation
ii. Infection
iii. Concealment
iv. Payload capabilities
b. Adversarial AI attacks
c. Application attacks
i. Web server application attacks
ii. Hijacking
iii. Overflow attacks
iv. Advertising attacks
v. Browser vulnerabilities
4. Client and Application Security
a. Securing client devices
i. Endpoint protection
ii. Boot integrity
iii. Database protection
iv. Hardware and software protection
b. Creating and deploying SecDevOps
i. Application development
ii. Secure coding techniques
iii. Code testing
5. Mobile, Embedded and Specialized Device Security
a. Securing mobile devices
i. Mobile device types and deployment
ii. Mobile device risks
iii. Securing mobile devices
iv. Mobile management tools
b. Embedded and IoT device security
i. Types of embedded systems
ii. IoT devices
iii. Specialized devices
c. Keeping specialized devices secure
i. Vulnerabilities
ii. Securing communications
III. CRYPTOGRAPHY
6. Basic Cryptography
a. Defining cryptography
b. Cryptographic algorithms
c. Cryptographic attacks
d. Using cryptography
7. Advanced Cryptography and PKI
a. Implementing cryptography
b. Digital certificates
c. Public Key Infrastructure (PKI)
d. Cryptographic transport protocols
IV. NETWORK SECURITY
8. Network Threats, Assessments, and Defenses
a. Attacks on networks
i. Interception
ii. Poisoning
iii. Denial of Service
b. Assessing network and organizational security
i. Network reconnaissance and discovery
ii. File manipulation
iii. Shell and script environments
iv. Packet capture and replay
c. Physical security defenses
i. External perimeter defenses
ii. Internal physical access security
iii. Computer hardware security
9. Network Security Design and Technologies
a. Security through network devices
i. Standard network devices
ii. Network security hardware
b. Security through architecture and design
c. Implementing secure protocols
d. Enterprise network security concepts
i. Configuration management
ii. Data protection
10. Wireless Network Security
a. Wireless attacks
i. Bluetooth attacks
ii. Near field communication attacks
iii. Radio frequency identification attacks
iv. Wireless local area network attacks
b. Vulnerabilities of IEEE wireless security
c. Wireless security solutions
i. Wi-Fi Protected Access
ii. Wi-Fi Protected Access 2
iii. Additional wireless security protections
11. Cloud and Virtualization Security
a. Cloud security
i. Cloud concepts and models
ii. Cloud security solutions
1. Cloud security controls
2. Cloud security solutions
b. Virtualization security
i. Virtualization concepts
ii. Securing virtual environments
ENTERPRISE SECURITY
12. Identity and Access Management (IAM)
a. Authentication credentials
i. What you know: passwords
ii. What you have: tokens, cards, and cell phones
iii. What you are: biometrics
iv. What you do: behavioral biometrics
v. Where you are: geolocation
b. Identity and account management controls
c. Access services
13. Incident Response and Investigation
a. Incident response plans and procedures
i. What is an incident response plan?
ii. Incident response exercises
iii. Attack frameworks
b. Investigating an incident by using data sources
c. Digital forensics
i. What is forensics?
ii. Forensics procedures
14. Cybersecurity Resilience
a. Control types
b. Techniques for resiliency
i. Redundancy
ii. Replication
iii. Data backups
c. Using organizational policies for security
15. Risk Management and Data Privacy
a. Managing risk
i. Threat assessment
ii. Risk assessment
b. Protecting sensitive data
i. Data types
ii. Consequences of privacy breaches
iii. Breach notifications
iv. Roles and responsibilities
v. Privacy enhancing technologies

• Mark Ciampa

  Dr. Mark Ciampa is a professor of information systems in the Gordon Ford College of Business at Western Kentucky University in Bowling Green, Kentucky. Prior to this current role, he served as an associate professor and the director of academic computing at Volunteer State Community College in Gallatin, Tennessee, for 20 years. Dr. Ciampa has worked in the IT industry as a computer consultant for businesses, government agencies and educational institutions. He has published more than 20 articles in peer-reviewed journals and has written more than 25 technology textbooks, including COMPTIA CYSA+ GUIDE TO CYBERSECURITY ANALYST; SECURITY+ GUIDE TO NETWORK SECURITY FUNDAMENTALS; SECURITY AWARENESS: APPLYING PRACTICAL SECURITY IN YOUR WORLD; CWNA GUIDE TO WIRELESS LANS and GUIDE TO WIRELESS COMMUNICATIONS. Dr. Ciampa holds a Ph.D. in technology management with a specialization in digital communication systems from Indiana State University and has certifications in security and healthcare.

• A new sequencing of chapters helps facilitate learning with a scaffolding approach. This helps to ensure that foundational topics are covered first in order to form the basis for more advanced topics later.

• A new chapter on “Security Evaluations” covering security assessment, threat hunting, vulnerability scans, security orchestration, automation and response (SOAR) as well as penetration testing is included. This material occurs early in the sequence of chapters to provide a foundation for learners to understand the role of security evaluations and how they are used.

• A new chapter devoted to “Cloud and Virtualization Security” covers in-depth the types of attacks that are directed to cloud repositories and virtualized environments, along with defenses against these attacks.

• Security for Life activities within MindTap provide podcasts, videos, websites, RSS feeds and other resources that enable learners to explore industry-related news and events. Each activity includes a graded assignment. Learners can read articles, listen to podcasts or watch videos to keep up with the latest happenings in the field of information technology. Instructors can use these activities to spark student interest in the cybersecurity field and help them develop lifelong learning habits.

• All content is up to date and mapped to the new CompTIA Security+ SY0-601 exam through highlighted chapter certification icons, a detailed mapping grid and a quick reference guide.

• Updated Live Virtual Machine Labs within MindTap give learners hands-on practice troubleshooting, exploring and trying different solutions in a safe, sandbox environment using real hardware and virtualized operating systems.

• Popular with instructors and learners alike, this trusted textbook provides comprehensive coverage of essential network and computer security topics, including threats, attacks and vulnerabilities; defensive architectures and designs; security implementations; operations and incident response; governance, risk and compliance; and much more.

• Ciampa's clear, engaging writing style makes even difficult concepts and complex processes easier for readers to understand -- making the text an ideal resource for classroom instruction, self-paced learning or professional reference.

• Helping instructors and students maximize course success, numerous special features throughout the text support effective teaching and learning, including review questions; illustrations of security vulnerabilities, attacks and defenses; case studies highlighting real-world security scenarios; and hands-on projects that enable readers to apply what they have learned to real-life practice.

• End-of-chapter exercises direct readers to the Information Security Community Site for up-to-the-minute news and information and discussion boards.

• Helping instructors and students maximize course success, numerous special features throughout the text support effective teaching and learning, including review questions; illustrations of security vulnerabilities, attacks, and defenses; case studies highlighting real-world security scenarios; and hands-on projects that enable readers to apply what they have learned to real-life practice.

• End-of-chapter exercises direct readers to the Information Security Community Site for up-to-the-minute news and information and discussion boards.

Cengage provides a range of supplements that are updated in coordination with the main title selection. For more information about these supplements, contact your Learning Consultant.

Cengage Testing, powered by Cognero® for Ciampa's CompTIA Security+ Guide to Network Security Fundamentals
9780357424469

Cengage Testing, powered by Cognero® for Ciampa's CompTIA Security+ Guide to Network Security Fundamentals, Instant Access
9780357424476

Instructor's Companion Website for Ciampa's CompTIA Security+ Guide to Network Security Fundamentals
9780357424452

Cengage eBook: CompTIA Security+ Guide to Network Security Fundamentals 12 Months
9788000032658

MindTap: CompTIA Security+ Guide to Network Security Fundamentals 12 Months
9780357491324