CramX Logo
RegisterLog in

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020)

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) is designed to make certification prep easy and effective.

Michael Davis
Contributor
4.9
67
about 1 year ago
Preview (31 of 1635 Pages)
100%
Log in to unlock

Page 1

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 1 preview image

Loading page ...

Page 2

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 2 preview image

Loading page ...

DownloadedfromStudyXY.com[=Ww+StudyXYoias.Za\Rr'BE\StudyAnythingThisContentHasbeenPostedOnStudyXY.comassupplementarylearningmaterial.StudyXYdoesnotendroseanyuniversity,collegeorpublisher.Allmaterialspostedareundertheliabilityofthecontributors.|8)www.studyxy.com

Page 3

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 3 preview image

Loading page ...

Page 4

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 4 preview image

Loading page ...

CCNPandCCIESecurityCoreSCOR350-701OfficialCertGuideOmarSantosHoboken,poooUSA

Page 5

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 5 preview image

Loading page ...

CCNPandCCIESecurityCoreSCOR350-701OfficialCertGuideOmarSantosCopyright©2020CiscoSystems,Inc.Publishedby:Pearson221RiverSt.Hoboken,NJ07030USAAllrightsreserved.Thispublicationisprotectedbycopyright,andpermissionmustbeobtainedfromthepublisherpriortoanyprohibitedreproduction,storageinaretrievalsystem,ortransmissioninanyformorbyanymeans,electronic,mechanical,photocopying,recording,orlikewise.Forinformationregardingpermissions,requestforms,andtheappropriatecontactswithinthePearsonEducationGlobalRights&PermissionsDepartment,pleasevisitWWwWw.pearson.com/permissions.Nopatentliabilityisassumedwithrespecttotheuseoftheinformationcontainedherein.Althougheveryprecautionhasbeentakeninthepreparationofthisbook,thepublisherandauthorassumenoresponsibilityforerrorsoromissions.Norisanyliabilityassumedfor

Page 6

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 6 preview image

Loading page ...

damagesresultingfromtheuseoftheinformationcontainedherein.ScoutAutomatedPrintCodeLibraryofCongressControlNumber:2020901233ISBN-10:0-13-597197-7ISBN-13:978-0-13-597197-0WarningandDisclaimerThisbookisdesignedtoprovideinformationabouttheImplementingandOperatingCiscoSecurityCoreTechnologies(SCOR350-701)exam.Everyefforthasbeenmadetomakethisbookascompleteandaccurateaspossible,butnowarrantyorfitnessisimplied.Theinformationprovidedisonan“asis”basis.Theauthorandthepublishershallhaveneitherliabilitynorresponsibilitytoanypersonorentitywithrespecttoanylossordamagesarisingfromtheinformationcontainedinthisbookorfromtheuseofthesupplementalonlinecontentorprogramsaccompanyingit.SpecialSalesForinformationaboutbuyingthistitleinbulkquantities,orforspecialsalesopportunities(whichmayincludeelectronicversions;customcoverdesigns;and

Page 7

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 7 preview image

Loading page ...

contentparticulartoyourbusiness,traininggoals,marketingfocus,orbrandinginterests),pleasecontactourcorporatesalesdepartmentatcorpsales@pearsoned.comor(800)382-3419.Forgovernmentsalesinquiries,pleasecontactgovernmentsales@pearsoned.com.ForquestionsaboutsalesoutsidetheU.S.,pleasecontactinternational@pearsoned.com.TrademarkAcknowledgmentsAlltermsmentionedinthisbookthatareknowntobetrademarksorservicemarkshavebeenappropriatelycapitalized.PearsonITCertificationcannotattesttotheaccuracyofthisinformation.Useofaterminthisbookshouldnotberegardedasaffectingthevalidityofanytrademarkorservicemark.SpecialSalesForinformationaboutbuyingthistitleinbulkquantities,orforspecialsalesopportunities(whichmayincludeelectronicversions;customcoverdesigns;andcontentparticulartoyourbusiness,traininggoals,marketingfocus,orbrandinginterests),pleasecontactourcorporatesalesdepartmentatcorpsales@pearsoned.comor(800)382-3419.

Page 8

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 8 preview image

Loading page ...

Forgovernmentsalesinquiries,pleasecontactgovernmentsales@pearsoned.com.ForquestionsaboutsalesoutsidetheU.S.,pleasecontactintlcs@pearson.com.FeedbackInformationAtCiscoPress,ourgoalistocreatein-depthtechnicalbooksofthehighestqualityandvalue.Eachbookiscraftedwithcareandprecision,undergoingrigorousdevelopmentthatinvolvestheuniqueexpertiseofmembersfromtheprofessionaltechnicalcommunity.Readers’feedbackisanaturalcontinuationofthisprocess.Ifyouhaveanycommentsregardinghowwecouldimprovethequalityofthisbook,orotherwisealterittobettersuityourneeds,youcancontactusthroughemailatfeedback@ciscopress.com.PleasemakesuretoincludethebooktitleandISBNinyourmessage.Wegreatlyappreciateyourassistance.Editor-in-ChiefMarkTaubAlliancesManager,CiscoPressArezouGol

Page 9

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 9 preview image

Loading page ...

Director,ProductManagerBrettBartowManagingEditorSandraSchroederDevelopmentEditorChristopherA.ClevelandProjectEditorMandieFrankCopyEditorBartReedTechnicalEditorJohnStuppiEditorialAssistantCindyTeetersDesignerChutiPrasertsithComposition

Page 10

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 10 preview image

Loading page ...

codeMantraIndexerProofreader

Page 11

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 11 preview image

Loading page ...

CreditsThiscontentiscurrentlyindevelopment.

Page 12

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 12 preview image

Loading page ...

ContentsataGlanceIntroductionChapter1.CybersecurityFundamentalsChapter2.CryptographyChapter3.Software-DefinedNetworkingSecurityandNetworkProgrammabilityChapter4.Authentication,Authorization,Accounting(AAA)andIdentityManagementChapter5.NetworkVisibilityandSegmentationChapter6.InfrastructureSecurityChapter7.CiscoNext-GenerationFirewallsandCiscoNext-GenerationIntrusionPreventionSystemsChapter8.VirtualPrivateNetworks(VPNs)Chapter9.SecuringtheCloudChapter10.ContentSecurity

Page 13

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 13 preview image

Loading page ...

Chapter11.EndpointProtectionandDetectionChapter12.FinalPreparationsGlossaryofKeyTermsAppendixA.Answerstothe“DoIKnowThisAlready?”QuizzesandQ&ASectionsAppendixB.CCNPSecurityCoreSCOR(350-701)ExamUpdatesAppendixC.(Websiteonly)StudyPlanner

Page 14

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 14 preview image

Loading page ...

ContentsIntroductionTheCCNPSecurityCertificationTheCCIESecurityCertificationTheExamObjectives(Domains)StepstoPasstheSCORExamSigningUpfortheExamFactsAbouttheExamAbouttheCCNPandCCIESecurityCoreSCOR350-701OfficialCertGuideTheCompanionWebsiteforOnlineContentReviewHowtoAccessthePearsonTestPrep(PTP)AppCustomizingYourExamsUpdatingYourExamsChapter1.CybersecurityFundamentals“DoIKnowThisAlready?”Quiz

Page 15

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 15 preview image

Loading page ...

FoundationTopicsIntroductiontoCybersecurityCybersecurityvs.InformationSecurity(InfoSec)TheNISTCybersecurityFrameworkAdditionalNISTGuidanceandDocumentsTheInternationalOrganizationforStandardization(ISO)DefiningWhatAreThreats,Vulnerabilities,andExploitsWhatIsaThreat?WhatIsaVulnerability?WhatIsanExploit?Risk,Assets,Threats,andVulnerabilitiesDefiningThreatActorsUnderstandingWhatThreatIntelligenceIsExploringCommonThreatsVirusesandWormsTrojans

Page 16

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 16 preview image

Loading page ...

DistributingMalwareRansomwareCovertCommunicationKeyloggersSpywareAnalyzingMalwareStaticAnalysisDynamicAnalysisCommonSoftwareandHardwareVulnerabilitiesInjectionVulnerabilitiesSQLInjectionHTMLInjectionCommandInjectionAuthentication-basedVulnerabilitiesCross-siteScripting(XSS)Cross-siteRequestForgeryCookieManipulationAttacksRaceConditionsUnprotectedAPIs

Page 17

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 17 preview image

Loading page ...

Return-to-LibCAttacksandBufferOverflowsOWASPTop10SecurityVulnerabilitiesinOpenSourceSoftwareConfidentiality,Integrity,andAvailabilityWhatIsConfidentiality?WhatIsIntegrity?WhatIsAvailability?TalkingAboutAvailability,WhatIsaDenial-of-Service(DoS)Attack?AccessControlManagementCloudSecurityThreatsCloudComputingIssuesandConcernsCloudComputingAttacksCloudComputingSecurityIoTSecurityThreatsIoTProtocolsHackingIoTImplementationsAnIntroductiontoDigitalForensicsandIncidentResponse

Page 18

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 18 preview image

Loading page ...

ISO/IEC27002:2013andNISTIncidentResponseGuidanceWhatIsanIncident?FalsePositives,FalseNegatives,TruePositives,andTrueNegativesIncidentSeverityLevelsHowAreIncidentsReported?WhatIsanIncidentResponseProgram?TheIncidentResponsePlanTheIncidentResponseProcessTabletopExercisesandPlaybooksInformationSharingandCoordinationComputerSecurityIncidentResponseTeamsProductSecurityIncidentResponseTeams(PSIRTSs)TheCommonVulnerabilityScoringSystem(CVSS)NationalCSIRTsandComputerEmergencyResponseTeams(CERTS)CoordinationCenters

Page 19

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 19 preview image

Loading page ...

IncidentResponseProvidersandManagedSecurityServiceProviders(MSSPs)KeyIncidentManagementPersonnelSummaryExamPreparationTasksReviewAllKeyTopicsDefineKeyTermsReviewQuestionsChapter2.Cryptography“DoIKnowThisAlready?”QuizFoundationTopicsIntroductiontoCryptographyCiphersKeysBlockandStreamCiphersSymmetricandAsymmetricAlgorithmsHashesHashedMessageAuthenticationCodeDigitalSignatures

Page 20

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 20 preview image

Loading page ...

KeyManagementNext-GenerationEncryptionProtocolsIPsecSSLandTLSFundamentalsofPKIPublicandPrivateKeyPairsMoreAboutKeysandDigitalCertificatesCertificateAuthoritiesRootCertificatesIdentityCertificatesX.500andX.509v3AuthenticatingandEnrollingwiththeCAPublicKeyCryptographyStandardsSimpleCertificateEnrollmentProtocolRevokingDigitalCertificatesDigitalCertificatesinPracticePKITopologiesExamPreparationTasksReviewAllKeyTopics

Page 21

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 21 preview image

Loading page ...

DefineKeyTermsReviewQuestionsChapter3.Software-DefinedNetworkingSecurityandNetworkProgrammability“DoIKnowThisAlready?”QuizFoundationTopicsIntroductiontoSoftware-DefinedNetworkingTraditionalNetworkingPlanesSoWhat'sDifferentwithSDN?IntroductiontotheCiscoACISolutionVXLANandNetworkOverlaysMicro-SegmentationOpenSourceInitiativesMoreAboutNetworkFunctionVirtualizationNFVMANOContivCiscoDigitalNetworkArchitecture(DNA)CiscoDNAPolicies

Page 22

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 22 preview image

Loading page ...

CiscoDNAGroup-BasedAccessControlPolicyCiscoDNAIP-BasedAccessControlPolicyCiscoDNAApplicationPoliciesCiscoDNATrafficCopyPolicyCiscoDNACenterAssuranceSolutionCiscoDNACenterAPIsCiscoDNASecuritySolutionCiscoDNAMultivendorSupportIntroductiontoNetworkProgrammabilityModernProgrammingLanguagesandToolsDevNetGettingStartedwithAPIsRESTAPIsUsingNetworkDeviceAPIsYANGModelsNETCONFRESTCONFOpenConfigandgNMI

Page 23

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 23 preview image

Loading page ...

ExamPreparationTasksReviewAllKeyTopicsDefineKeyTermsReviewQuestionsChapter4.Authentication,Authorization,Accounting(AAA)andIdentityManagement“DoIKnowThisAlready?”QuizFoundationTopicsIntroductiontoAuthentication,Authorization,andAccountingThePrincipleofLeastPrivilegeandSeparationofDutiesAuthenticationAuthenticationbyKnowledgeAuthenticationbyOwnershiporPossessionAuthenticationbyCharacteristicMultifactorAuthenticationDuoSecurityZeroTrustandBeyondCorpSingleSign-On

Page 24

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 24 preview image

Loading page ...

AuthorizationMandatoryAccessControl(MAC)DiscretionaryAccessControl(DAC)Role-BasedAccessControl(RBAC)Rule-BasedAccessControlAttribute-BasedAccessControlAccountingInfrastructureAccessControlsAccessControlMechanismsAAAProtocolsRADIUSTACACS+Diameter802.1xNetworkAccessControlListandFirewallingVLANACLsSecurityGroup—BasedACLDownloadableACLCiscoIdentityServicesEngine(ISE)CiscoPlatformExchangeGrid(pxGrid)

Page 25

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 25 preview image

Loading page ...

CiscoISEContextandIdentityServicesCiscoISEProfilingServicesCiscoISEIdentityServicesCiscoISEAuthorizationRulesCiscoTrustSecPostureAssessmentChangeofAuthorization(CoA)ConfiguringTACACS+AccessConfiguringRADIUSAuthenticationConfiguring802.1XAuthenticationAdditionalCiscoISEDesignTipsAdviceonSizingaCiscoISEDistributedDeploymentExamPreparationTasksReviewAllKeyTopicsDefineKeyTermsReviewQuestionsChapter5.NetworkVisibilityandSegmentation“DoIKnowThisAlready?”QuizFoundationTopics

Page 26

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 26 preview image

Loading page ...

IntroductiontoNetworkVisibilityNetFlowTheNetworkasaSensorandasanEnforcerWhatIsaFlow?NetFlowforNetworkSecurityandVisibilityNetFlowforAnomalyDetectionandDDoSAttackMitigationDataLeakDetectionandPreventionIncidentResponse,ThreatHunting,andNetworkSecurityForensicsTrafficEngineeringandNetworkPlanningNetFlowVersionsIPFlowInformationExport(IPFIX)IPFIXArchitectureUnderstandingIPFIXMediatorsIPFIXTemplatesOptionTemplatesUnderstandingtheStreamControlTransmissionProtocol(SCTP)

Page 27

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 27 preview image

Loading page ...

ExploringApplicationVisibilityandControlandNetFlowApplicationRecognitionMetricsCollectionandExportingNetFlowDeploymentScenariosNetFlowDeploymentScenario:UserAccessLayerNetFlowDeploymentScenario:WirelessLANNetFlowDeploymentScenario:InternetEdgeNetFlowDeploymentScenario:DataCenterNetFlowDeploymentScenario:NetFlowinSite-to-SiteandRemoteVPNsCiscoStealthwatchStealthwatchCloudOn-PremisesMonitoringwithCiscoStealthwatchCloudCiscoStealthwatchCloudIntegrationwithMerakiandCiscoUmbrella

Page 28

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 28 preview image

Loading page ...

ExploringtheCiscoStealthwatchOn-PremisesAppliancesThreatHuntingwithCiscoStealthwatchCiscoCognitiveThreatAnalytics(CTA)andEncryptedTrafficAnalytics(ETA)WhatIsCiscoETA?WhatIsCiscoCognitiveThreatAnalytics?NetFlowCollectionConsiderationsandBestPracticesDeterminingtheFlowsperSecondandScalabilityConfiguringNetFlowinCiscoIOSandCiscoI0S-XESimultaneousApplicationTrackingFlexibleNetFlowRecordsFlexibleNetFlowKeyFieldsFlexibleNetFlowNon-KeyFieldsNetFlowPredefinedRecordsUser-DefinedRecordsFlowMonitors

Page 29

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 29 preview image

Loading page ...

FlowExportersFlowSamplersFlexibleNetFlowConfigurationConfigureaFlowRecordConfigureaFlowMonitorforIPv4orIPv6ConfigureaFlowExporterfortheFlowMonitorApplyaFlowMonitortoanInterfaceFlexibleNetFlowIPFIXExportFormatConfiguringNetFlowinNX-OSIntroductiontoNetworkSegmentationData-DrivenSegmentationApplication-BasedSegmentationMicro-SegmentationwithCiscoACISegmentationwithCiscoISETheScalableGroupTagExchangeProtocol(SXP)SGTAssignmentandDeploymentInitiallyDeploying802.1xand/orTrustSecinMonitorMode

Page 30

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 30 preview image

Loading page ...

ActivePolicyEnforcementCiscoISETrustSecandCiscoACIIntegrationExamPreparationTasksReviewAllKeyTopicsDefineKeyTermsReviewQuestionsChapter6.InfrastructureSecurity“DoIKnowThisAlready?”QuizFoundationTopicsSecuringLayer2TechnologiesVLANandTrunkingFundamentalsWhatIsaVLAN?Trunkingwith802.1QLet’sFollowtheFrame,StepbyStepWhatIstheNativeVLANonaTrunk?So,WhatDoYouWanttoBe?(AsksthePort)UnderstandingInter-VLANRoutingWhatIstheChallengeofOnlyUsingPhysicalInterfaces?

Page 31

CCNP and CCIE Security Core SCOR 350-701 Official Cert Guide (2020) - Page 31 preview image

Loading page ...

UsingVirtual“Sub”InterfacesSpanningTreeFundamentalsTheSolutiontotheLayer2LoopSTPIsWaryofNewPortsImprovingtheTimeUntilForwardingCommonLayer2ThreatsandHowtoMitigateThemDoNotAllowNegotiationsLayer2SecurityToolkitBPDUGuardRootGuardPortSecurityCDPandLLDPDHCPSnoopingDynamicARPInspectionNetworkFoundationProtectionTheImportanceoftheNetworkInfrastructureTheNetworkFoundationProtectionFrameworkInterdependence
Preview Mode

This document has 1635 pages. Sign in to access the full document!

Study Now!

X-Copilot AI
Unlimited Access
Secure Payment
Instant Access
24/7 Support
Document Chat

Document Details

Subject
Cisco Certified Network Professional

Related Documents

View all
Certification Guides

CCNP Enterprise Certification Study Guide (2020)

Certification Guides

CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide (2024)

Certification Guides

CCNP and CCIE Data Center Core DCCOR 350-601 2nd Ed Official Cert Guide (2024)

Certification Guides

CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram (2022)

Certification Guides

CCNP Enterprise Design ENSLD 300-420 Official Cert Guide (2024)

Certification Guides

CCNP and CCIE Enterprise Core and CCNP Advanced Routing Portable Command Guide: All ENCOR (350-401) and ENARSI (300-410) (2020)

Certification Guides

CCNP and CCIE Data Center Core DCCOR 350-601 Official Cert Guide (2023)

Certification Guides

CCNP and CCIE Enterprise Core ENCOR 350-401 Exam Cram (2022)

Certification Guides

CCNP Enterprise Design ENSLD 300-420 Official Cert Guide: Designing Cisco Enterprise Networks (2020)

Certification Guides

CCNP Enterprise Advanced Routing ENARSI 300-410 Official Cert Guide (2023)