CramX Logo
RegisterLog in
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Document preview page 1

CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 1

Document preview content for CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021)

CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021)

CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) simplifies exam prep with well-structured content and practice questions.

4.2
144
over 1 year ago
Preview (31 of 1093 Pages)
100%
Log in to unlock
Page 1 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 1 preview image
Page 2 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 2 preview imageDownloadedfromStudyXY.com[=Ww+StudyXYoias.Za\Rr'BE\StudyAnythingThisContentHasbeenPostedOnStudyXY.comassupplementarylearningmaterial.StudyXYdoesnotendroseanyuniversity,collegeorpublisher.Allmaterialspostedareundertheliabilityofthecontributors.|8)www.studyxy.com
Page 3 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 3 preview image
Page 4 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 4 preview image
Page 5 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 5 preview image
Page 6 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 6 preview image
Page 7 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 7 preview imageCopyright©2021byMcGrawHill.Allrightsreserved.ExceptaspermittedundertheUnitedStatesCopyrightActof1976,nopartofthispublicationmaybereproducedordistributedinanyformorbyanymeans,orstoredinadatabaseorretrievalsystem,withoutthepriorwrittenpermissionofthepublisher,withtheexceptionthattheprogramlistingsmaybeentered,stored,andexecutedinacomputersystem,buttheymaynotbereproducedforpublication.ISBN:978-1-26-046401-6MHID:~~1-26-046401-6ThematerialinthiseBookalsoappearsintheprintversionofthistitle:ISBN:978-1-26-046400-9,MHID:1-26-046400-8.eBookconversionbycodeMantraVersion1.0Alltrademarksaretrademarksoftheirrespectiveowners.Ratherthanputatrademarksymbolaftereveryoccurrenceofatrademarkedname,weusenamesinaneditorialfashiononly,andtothebenefitofthetrademarkowner,withnointentionofinfringementofthetrademark.Wheresuchdesignationsappearinthisbook,theyhavebeenprintedwithinitialcaps.McGraw-HillEducationeBooksareavailableatspecialquantitydiscountstouseaspremiumsandsalespromotionsorforuseincorporatetrainingprograms.Tocontactarepresentative,pleasevisittheContactUspageatwww.mhprofessional.com.InformationhasbeenobtainedbyMcGrawHillfromsourcesbelievedtobereliable.However,becauseofthepossibilityofhumanormechanicalerrorbyoursources,McGrawHill,orothers,McGrawHilldoesnotguaranteetheaccuracy,adequacy,orcompletenessofanyinformationandisnotresponsibleforanyerrorsoromissionsortheresultsobtainedfromtheuseofsuchinformation.TERMSOFUSE
Page 8 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 8 preview imageThisisacopyrightedworkandMcGraw-HillEducationanditslicensorsreserveallrightsinandtothework.Useofthisworkissubjecttotheseterms.ExceptaspermittedundertheCopyrightActof1976andtherighttostoreandretrieveonecopyofthework,youmaynotdecompile,disassemble,reverseengineer,reproduce,modify,createderivativeworksbasedupon,transmit,distribute,disseminate,sell,publishorsublicensetheworkoranypartofitwithoutMcGraw-HillEducation’spriorconsent.Youmayusetheworkforyourownnoncommercialandpersonaluse;anyotheruseoftheworkisstrictlyprohibited.Yourrighttousetheworkmaybeterminatedifyoufailtocomplywiththeseterms.THEWORKISPROVIDED“ASIS.”McGRAW-HILLEDUCATIONANDITSLICENSORSMAKENOGUARANTEESORWARRANTIESASTOTHEACCURACY,ADEQUACYORCOMPLETENESSOFORRESULTSTOBEOBTAINEDFROMUSINGTHEWORK,INCLUDINGANYINFORMATIONTHATCANBEACCESSEDTHROUGHTHEWORKVIAHYPERLINKOROTHERWISE,ANDEXPRESSLYDISCLAIMANYWARRANTY,EXPRESSORIMPLIED,INCLUDINGBUTNOTLIMITEDTOIMPLIEDWARRANTIESOFMERCHANTABILITYORFITNESSFORAPARTICULARPURPOSE.McGraw-HillEducationanditslicensorsdonotwarrantorguaranteethatthefunctionscontainedintheworkwillmeetyourrequirementsorthatitsoperationwillbeuninterruptedorerrorfree.NeitherMcGraw-HillEducationnoritslicensorsshallbeliabletoyouoranyoneelseforanyinaccuracy,errororomission,regardlessofcause,intheworkorforanydamagesresultingtherefrom.McGraw-HillEducationhasnoresponsibilityforthecontentofanyinformationaccessedthroughthework.UndernocircumstancesshallMcGraw-HillEducationand/oritslicensorsbeliableforanyindirect,incidental,special,punitive,consequentialorsimilardamagesthatresultfromtheuseoforinabilitytousethework,evenifanyofthemhasbeenadvisedofthepossibilityofsuchdamages.Thislimitationofliabilityshallapplytoanyclaimorcausewhatsoeverwhethersuchclaimorcausearisesincontract,tortorotherwise.
Page 9 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 9 preview imageThisbookisdedicatedtothemanyinformationsecurityprofessionalswhoquietlyworktoensurethesafetyofournation’scriticalinfrastructures.Wewanttorecognizethethousandsofdedicatedindividualswhostrivetoprotectournationalassetsbutwhoseldomreceivepraiseandoftenareonlynoticedwhenanincidentoccurs.Toyou,wesaythankyouforajobwelldone!
Page 10 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 10 preview imageABOUTTHEAUTHORSDr.Wm.ArthurConklin,CompTIASecurity+,CISSP,GICSP,GRID,GCIP,GCFA,GCIA,GCDA,CSSLP,CRISC,isaprofessoranddirectorattheCenterforInformationSecurityResearchandEducationintheCollegeofTechnologyattheUniversityofHouston.Heholdstwoterminaldegrees—aPhDinbusinessadministration(specializingininformationsecurity)fromtheUniversityofTexasatSanAntonio(UTSA)andanelectricalengineerdegree(specializinginspacesystemsengineering)fromtheNavalPostgraduateSchoolinMonterey,California.HeisafellowofISSAand(CS)2AIaswellasaseniormemberofASQ,IEEE,andACM.Hisresearchinterestsincludetheuseofsystemstheorytoexploreinformationsecurity,specificallyincyber-physicalsystems.HehasastronginterestincybersecurityeducationandisinvolvedwiththeNSA/DHSCentersofAcademicExcellenceinCyberDefense(CAECD)andtheNISTNationalInitiativeforCybersecurityEducation(NICE)CybersecurityWorkforceFramework(NICEFramework).Hehascoauthoredsixsecuritybooksandnumerousacademicarticlesassociatedwithinformationsecurity.Heisco-chairofthesteeringcommitteefortheDHS-sponsoredIndustrialControlSystemsJointWorkingGroup(ICSJWG)effortsassociatedwithworkforcedevelopmentandcybersecurityaspectsofindustrialcontrolsystems.Hehasanextensivebackgroundinsecurecodingandhasbeenco-chairoftheDHS/DoDSoftwareAssuranceForumWorkingGroupforworkforceeducation,training,anddevelopment.Dr.GregoryWhitehasbeeninvolvedincomputerandnetworksecuritysince1986.Hespent19yearsonactivedutywiththeUnitedStatesAirForceand11yearsintheAirForceReservesinavarietyofcomputerandsecuritypositions.HeobtainedhisPhDincomputersciencefromTexasA&MUniversityin1995.Hisdissertationtopicwasintheareaofcomputernetworkintrusiondetection,andhecontinuestoconductresearchinthisareatoday.HeiscurrentlythedirectorfortheCenterforInfrastructureAssurance
Page 11 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 11 preview imageandSecurity(CIAS)andisaprofessorofcomputerscienceattheUniversityofTexasatSanAntonio(UTSA).Dr.Whitehaswrittenandpresentednumerousarticlesandconferencepapersonsecurity.Heisalsothecoauthorofsixtextbooksoncomputerandnetworksecurityandhaswrittenchaptersfortwoothersecuritybooks.Dr.Whitecontinuestobeactiveinsecurityresearch.Hiscurrentresearchinitiativesincludeeffortsincommunityincidentresponse,intrusiondetection,andsecureinformationsharing.ChuckCothren,CISSP,isManagerofDevelopmentOperationsatIonicSecurity,applyingover20yearsofinformationsecurityexperienceinconsulting,research,andenterpriseenvironments.Hehasassistedclientsinavarietyofindustries,includinghealthcare,banking,informationtechnology,retail,andmanufacturing.Headvisesclientsontopicssuchassecurityarchitecture,penetrationtesting,training,consultantmanagement,datalossprevention,andencryption.HeiscoauthorofthebooksVoiceandDataSecurityandPrinciplesofComputerSecurity.RogerL.Davis,CISSP,CISM,CISA,isaSeniorCustomerSuccessAccountManagerforMicrosoftsupportingenterprise-levelcompanies.HehasservedaspresidentoftheUtahchapteroftheInformationSystemsSecurityAssociation(ISSA)andvariousboardpositionsfortheUtahchapteroftheInformationSystemsAuditandControlAssociation(ISACA).HeisaretiredAirForcelieutenantcolonelwith40yearsofmilitaryandinformationsystems/securityexperience.Mr.DavisservedonthefacultyofBrighamYoungUniversityandtheAirForceInstituteofTechnology.HecoauthoredMcGraw-Hill’sPrinciplesofComputerSecurityandVoiceandDataSecurity.Heholdsamaster’sdegreeincomputersciencefromGeorgeWashingtonUniversity,abachelor’sdegreeincomputersciencefromBrighamYoungUniversity,andperformedpost-graduatestudiesinelectricalengineeringandcomputerscienceattheUniversityofColorado.DwayneWilliams,CISSP,CASP,isAssociateDirector,TechnologyandResearch,fortheCenterforInfrastructureAssuranceandSecurity(CIAS)attheUniversityofTexasatSanAntonioandisDirectoroftheNationalCollegiateCyberDefenseCompetition.Mr.Williamshasover24yearsofexperienceininformationsystemsandnetworksecurity.HisexperienceincludessixyearsofcommissionedmilitaryserviceasaCommunications-ComputerInformationSystemsOfficerintheUnitedStatesAirForce,specializinginnetworksecurity,corporateinformationprotection,intrusiondetectionsystems,incidentresponse,andVPNtechnology.Priortojoining
Page 12 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 12 preview imagetheCIAS,heservedasDirectorofConsultingforSecureLogixCorporation,wherehedirectedandprovidedsecurityassessmentandintegrationservicestoFortune100,government,publicutility,oilandgas,financial,andtechnologyclients.Mr.Williamsgraduatedin1993fromBaylorUniversitywithaBachelorofArtsincomputerscience.Mr.WilliamsisacoauthorofVoiceandDataSecurityandPrinciplesofComputerSecurity.AbouttheTechnicalEditorChrisCrayton,MCSE,isanauthor,technicalconsultant,andtrainer.Hehasworkedasacomputertechnologyandnetworkinginstructor,informationsecuritydirector,networkadministrator,networkengineer,andPCspecialist.ChrishasauthoredseveralprintandonlinebooksonPCrepair,CompTIAA+,CompTIASecurity+,andMicrosoftWindows.Hehasalsoservedastechnicaleditorandcontentcontributoronnumeroustechnicaltitlesforseveraloftheleadingpublishingcompanies.Heholdsnumerousindustrycertifications,hasbeenrecognizedwithmanyprofessionalteachingawards,andhasservedasastate-levelSkillsUSAcompetitionjudge.
Page 13 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 13 preview imageCONTENTSATAGLANCEPartIThreats,Attacks,andVulnerabilitiesChapter1SocialEngineeringTechniquesChapter2TypeofAttackIndicatorsChapter3__ApplicationAttackIndicatorsChapter4NetworkAttackIndicatorsChapter5ThreatActors,Vectors,andIntelligenceSourcesChapter6VulnerabilitiesChapter7SecurityAssessmentsChapter8PenetrationTestingPartITArchitectureandDesignChapter9EnterpriseSecurityArchitectureChapter10_VirtualizationandCloudSecurityChapter11SecureApplicationDevelopment,Deployment,andAutomationConceptsChapter12AuthenticationandAuthorizationChapter13_CybersecurityResilienceChapter14EmbeddedandSpecializedSystemsChapter15_PhysicalSecurityControlsChapter16CryptographicConceptsPartITIImplementation
Page 14 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 14 preview imageChapter17_SecureProtocolsChapter18HostandApplicationSecurityChapter19SecureNetworkDesignChapter20WirelessSecurityChapter21SecureMobileSolutionsChapter22ImplementingCloudSecurityChapter23_IdentityandAccountManagementControlsChapter24ImplementAuthenticationandAuthorizationChapter25_PublicKeyInfrastructurePartIV_OperationsandIncidentResponseChapter26_Tools/AssessOrganizationalSecurityChapter27IncidentResponsePolicies,Processes,andProceduresChapter28_InvestigationsChapter29MitigationTechniquesandControlsChapter30_DigitalForensicsPartV_Governance,Risk,andComplianceChapter31_SecurityControlsChapter32_Regulations,Standards,andFrameworksChapter33_OrganizationalPoliciesChapter34RiskManagementChapter35_PrivacyPartVIAppendixesandGlossaryAppendixAOSIModelandInternetProtocolsAppendixB_AbouttheOnlineContent
Page 15 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 15 preview imageGlossaryIndex
Page 16 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 16 preview imageCONTENTSPrefaceAcknowledgmentsIntroductionObjectiveMap:ExamSY0-601PartIThreats,Attacks,andVulnerabilitiesChapter1SocialEngineeringTechniquesSocialEngineeringMethodsToolsPhishingSmishingVishingSpamSpamoverInstantMessaging(SPIM)SpearPhishingDumpsterDivingShoulderSurfingPharmingTailgatingElicitingInformationWhalingPrependingIdentityFraudInvoiceScamsCredentialHarvestingReconnaissanceHoax
Page 17 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 17 preview imageImpersonationThird-PartyAuthorizationContractors/OutsidePartiesOnlineAttacksDefensesWateringHoleAttackTyposquattingPretextingInfluenceCampaignsPrinciples(ReasonsforEffectiveness)AuthorityIntimidationConsensusScarcityFamiliarityTrustUrgencyDefensesChapterReviewQuestionsAnswersChapter2TypeofAttackIndicatorsMalwareRansomwareTrojansWormsPotentiallyUnwantedProgramsFilelessVirusesCommandandControlBotsCrypto-malwareLogicBombsSpywareKeyloggersRemote-AccessTrojans(RATS)
Page 18 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 18 preview imageRootkitBackdoorsPasswordAttacksSprayingDictionaryBruteForceRainbowTablesPlaintext/UnencryptedPhysicalAttacksMaliciousUniversalSerialBus(USB)CableMaliciousFlashDrivesCardCloningSkimmingAdversarialArtificialIntelligence(AI)TaintedTrainingDataforMachineLearning(ML)SecurityofMachineLearningAlgorithmsSupply-ChainAttacksCloud-Basedvs.On-PremisesAttacksCryptographicAttacksBirthdayCollisionDowngradeChapterReviewQuestionsAnswersChapter3__ApplicationAttackIndicatorsPrivilegeEscalationCross-SiteScriptingInjectionAttacksStructuredQueryLanguage(SQL)Dynamic-LinkLibrary(DLL)LightweightDirectoryAccessProtocol(LDAP)ExtensibleMarkupLanguage(XML)Pointer/ObjectDereferenceDirectoryTraversal
Page 19 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 19 preview imageBufferOverflowRaceConditionTimeofCheck/TimeofUseImproperErrorHandlingImproperInputHandlingReplayAttacksSessionReplayIntegerOverflowRequestForgeryServer-SideRequestForgeryCross-SiteRequestForgeryApplicationProgrammingInterface(API)AttacksResourceExhaustionMemoryLeakSecureSocketsLayer(SSL)StrippingDriverManipulationShimmingRefactoringPasstheHashChapterReviewQuestionsAnswersChapter4NetworkAttackIndicatorsWirelessEvilTwinRogueAccessPointBluesnarfingBluejackingDisassociationJammingRadioFrequencyIdentification(RFID)NearFieldCommunication(NFC)InitializationVector(IV)On-pathAttackLayer2Attacks
Page 20 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 20 preview imageAddressResolutionProtocol(ARP)PoisoningMediaAccessControl(MAC)FloodingMACCloningDomainNameSystem(DNS)DomainHijackingDNSPoisoningUniversalResourceLocator(URL)RedirectionDomainReputationDistributedDenial-of-Service(DDoS)NetworkApplicationOperationalTechnology(OT)MaliciousCodeandScriptExecutionPowerShellPythonBashMacrosVisualBasicforApplications(VBA)ChapterReviewQuestionsAnswersChapter5__ThreatActors,Vectors,andIntelligenceSourcesActorsandThreatsAdvancedPersistentThreats(APTs)InsiderThreatsStateActorsHacktivistsScriptKiddiesCriminalSyndicatesHackersShadowITCompetitorsAttributesofActorsInternal/ExternalLevelofSophistication/Capability
Page 21 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 21 preview imageResources/FundingIntent/MotivationVectorsDirectAccessWirelessE-mailSupplyChainSocialMediaRemovableMediaCloudThreatIntelligenceSourcesOpenSourceIntelligence(OSINT)Closed/ProprietaryVulnerabilityDatabasesPublic/PrivateInformationSharingCentersDarkWebIndicatorsofCompromiseAutomatedIndicatorSharing(AIS)StructuredThreatInformationExpression(STIX)/TrustedAutomatedExchangeofIntelligenceInformation(TAXI)PredictiveAnalysisThreatMapsFile/CodeRepositoriesResearchSourcesVendorWebsitesVulnerabilityFeedsConferencesAcademicJournalsRequestsforComment(RFCs)LocalIndustryGroupsSocialMediaThreatFeedsAdversaryTactics,Techniques,andProcedures(TTPs)ChapterReview
Page 22 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 22 preview imageQuestionsAnswersChapter6__VulnerabilitiesCloud-basedvs.On-premisesVulnerabilitiesZeroDayWeakConfigurationsOpenPermissionsUnsecureRootAccountsErrorsWeakEncryptionUnsecureProtocolsDefaultSettingsOpenPortsandServicesThird-PartyRisksVendorManagementSupplyChainOutsourcedCodeDevelopmentDataStorageImproperorWeakPatchManagementFirmwareOperatingSystem(OS)ApplicationsLegacyPlatformsImpactsDataLossDataBreachesDataExfiltrationIdentityTheftFinancialReputationAvailabilityLossChapterReviewQuestionsAnswers
Page 23 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 23 preview imageChapter7SecurityAssessmentsThreatHuntingIntelligenceFusionThreatFeedsAdvisoriesandBulletinsManeuverVulnerabilityScansFalsePositivesFalseNegativesLogReviewsCredentialedvs.Non-CredentialedIntrusivevs.Non-IntrusiveApplicationWebApplicationNetworkCommonVulnerabilitiesandExposures(CVE)/CommonVulnerabilityScoringSystem(CVSS)ConfigurationReviewSyslog/SecurityInformationandEventManagement(SIEM)ReviewReportsPacketCaptureDataInputsUserBehaviorAnalysisSentimentAnalysisSecurityMonitoringLogAggregationLogCollectorsSecurityOrchestration,Automation,andResponse(SOAR)ChapterReviewQuestionsAnswersChapter8PenetrationTestingPenetrationTestingKnownEnvironmentUnknownEnvironment
Page 24 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 24 preview imagePartiallyKnownEnvironmentRulesofEngagementLateralMovementPrivilegeEscalationPersistenceCleanupBugBountyPivotingPassiveandActiveReconnaissanceDronesWarFlyingWarDrivingFootprintingOSINTExerciseTypesRedTeamBlueTeamWhiteTeamPurpleTeamChapterReviewQuestionsAnswersPartITArchitectureandDesignChapter9EnterpriseSecurityArchitectureConfigurationManagementDiagramsBaselineConfigurationStandardNamingConventionsInternetProtocol(IP)SchemaDataSovereigntyDataProtectionDataLossPrevention(DLP)MaskingEncryption
Page 25 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 25 preview imageAtRestInTransit/MotionInProcessingTokenizationRightsManagementGeographicalConsiderationsResponseandRecoveryControlsSecureSocketsLayer(SSL)/TransportLayerSecurity(TLS)InspectionHashingAPIConsiderationsSiteResiliencyHotSitesWarmSitesColdSitesDeceptionandDisruptionHoneypotsHoneyfilesHoneynetsFakeTelemetryDNSSinkholeChapterReviewQuestionsAnswersChapter10_VirtualizationandCloudSecurityCloudModelsInfrastructureasaService(IaaS)PlatformasaService(PaaS)SoftwareasaService(SaaS)AnythingasaService(XaaS)LevelofControlintheHostingModelsPublicCommunityPrivateHybrid
Page 26 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 26 preview imageCloudServiceProvidersManagedServiceProvider(MSP)/ManagedSecurityServiceProvider(MSSP)On-Premisesvs.Off-PremisesFogComputingEdgeComputingThinClientContainersMicroservices/APIInfrastructureasCodeSoftware-DefinedNetworking(SDN)Software-DefinedVisibility(SDV)ServerlessArchitectureServicesIntegrationResourcePoliciesTransitGatewayVirtualizationTypelTypeIIVirtualMachine(VM)SprawlAvoidanceVMEscapeProtectionChapterReviewQuestionsAnswersChapter11SecureApplicationDevelopment,Deployment,andAutomationConceptsEnvironmentDevelopmentTestStagingProductionQualityAssurance(QA)ProvisioningandDeprovisioningIntegrityMeasurementSecureCodingTechniques
Page 27 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 27 preview imageNormalizationStoredProceduresObfuscation/CamouflageCodeReuseandDeadCodeServer-Sidevs.Client-SideExecutionandValidationMemoryManagementUseofThird-PartyLibrariesandSoftwareDevelopmentKits(SDKs)DataExposureOpenWebApplicationSecurityProject(OWASP)SoftwareDiversityCompilersBinariesAutomation/ScriptingAutomatedCoursesofActionContinuousMonitoringContinuousValidationContinuousIntegrationContinuousDeliveryContinuousDeploymentElasticityScalabilityVersionControlChapterReviewQuestionsAnswersChapter12AuthenticationandAuthorizationAuthenticationMethodsDirectoryServicesFederationAttestationTechnologiesSmartCardAuthenticationBiometricsFingerprint
Page 28 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 28 preview imageRetinaIrisFacialVoiceVeinGaitAnalysisEfficacyRatesFalseAcceptanceFalseRejectionCrossoverErrorRateMultifactorAuthentication(MFA)FactorsandAttributesFactorsAttributesAuthentication,Authorization,andAccounting(AAA)Cloudvs.On-premisesRequirementsChapterReviewQuestionsAnswersChapter13_CybersecurityResilienceRedundancyGeographicDispersalDiskNetworkPowerReplicationStorageAreaNetwork(SAN)VMOn-premisesvs.CloudBackupTypesFullIncrementalSnapshotDifferentialTapeDisk
Page 29 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 29 preview imageCopyNetworkAttachedStorage(NAS)StorageAreaNetwork(SAN)CloudImageOnlinevs.OfflineDistanceConsiderationsNonpersistenceReverttoKnownStateLastKnown-GoodConfigurationLiveBootMediaHighAvailabilityScalabilityRestorationOrderDiversityTechnologiesVendorsCryptoControlsChapterReviewQuestionsAnswersChapter14EmbeddedandSpecializedSystemsEmbeddedSystemsRaspberryPiFieldProgrammableGateArrays(FPGAs)ArduinoSupervisoryControlandDataAcquisition(SCADA)/IndustrialControlSystem(ICS)FacilitiesIndustrialManufacturingEnergyLogisticsInternetofThings(IoT)
Page 30 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 30 preview imageSensorsSmartDevicesWearablesFacilityAutomationWeakDefaultsSpecializedSystemsMedicalSystemsVehicleSystemsAircraftSystemsSmartMetersVoiceoverIP(VoIP)Heating,Ventilation,AirConditioning(HVAC)DronesMultifunctionPrinters(MEPs)Real-timeOperatingSystems(RTOSs)SurveillanceSystemsSystemonaChip(SoC)CommunicationConsiderations5GNarrow-BandRadioBasebandRadioSubscriberIdentityModule(SIM)CardsZigbeeConstraintsPowerComputeNetworkCryptographicFunctionsInabilitytoPatchAuthenticationRangeCostImpliedTrustChapterReviewQuestions
Page 31 of 31
CompTIA Security+ All-in-One SY0-601 Exam Guide, 6th Edition (2021) - Page 31 preview imageAnswersChapter15_PhysicalSecurityControlsBollards/BarricadesAccessControlVestibulesBadgesAlarmsSignageCamerasMotionRecognitionObjectDetectionClosed-CircuitTelevision(CCTV)IndustrialCamouflagePersonnelGuardsRobotSentriesReceptionTwo-PersonIntegrity/ControlLocksBiometricsElectronicPhysicalCableLocksUSBDataBlockerLightingFencingFireSuppressionSensorsMotionDetectionNoiseDetectionProximityReaderMoistureDetectionCardsTemperatureDronesVisitorLogs
Preview Mode

This document has 1093 pages. Sign in to access the full document!

Study Now!

X-Copilot AI
Unlimited Access
Secure Payment
Instant Access
24/7 Support
Document Chat

Document Details

Subject
CompTIA Certifications

Related Documents

View all
Certification Guides

CompTIA Security+ Practice Tests: Exam SY0-701 (2024)

4.5
00
Certification Guides

CompTIA CySA+ Study Guide, 3rd Edition (2023)

4.7
00
Certification Guides

CompTIA CySA+ Practice Tests: Exam CS0-003 (2023)

4.8
00
Certification Guides

CompTIA DataX Study Guide: Exam DY0-001 (2024)

4.7
00
Certification Guides

CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide (Exam CS0-003) (2024)

4.1
00
Certification Guides

CompTIA Network+ Practice Tests: Exam N10-009 (2024)

4.4
00
Certification Guides

CompTIA Tech+ CertMike Exam FC0-U71 (2024)

4.1
00
Certification Guides

CompTIA Security+ Study Guide with over 500 Practice Test Questions : Exam SY0-701 (2023)

4.1
00
Certification Guides

CompTIA Network+ Study Guide: Exam N10-009 (2024)

4.6
00
Certification Guides

CompTIA DataSys+ Study Guide : Exam DS0-001 (2023)

4.8
00