Packt+ | Advance your knowledge in tech

You're reading from CompTIA Security+ Certification Guide Master IT security essentials and exam topics for CompTIA Security+ SY0-501 certification

Product type Paperback

Published in Sep 2018

Publisher Packt

ISBN-13 9781789348019

Length 532 pages

Edition 1st Edition

Concepts

Network Security

Author (1):

Ian Neil

View More author details

Table of Contents (22) Chapters

Title Page

Packt Upsell

Contributor

Preface

1. Understanding Security Fundamentals FREE CHAPTER

2. Conducting Risk Analysis

3. Implementing Security Policies and Procedures

4. Delving into Identity and Access Management

5. Understanding Network Components

6. Understanding Cloud Models and Virtualization

7. Managing Hosts and Application Deployment

8. Protecting Against Attacks and Vulnerabilities

9. Implementing the Public Key Infrastructure

10. Responding to Security Incidents

11. Managing Business Continuity

12. Mock Exam 1

13. Mock Exam 2

1. Preparing for the CompTIA Security+ 501 Exam

2. Acronyms

3. Assessment

4. Other Books You May Enjoy

Leave a review - let other readers know what you think

Index

Comparing and contrasting basic concepts of cryptography

The most common asymmetric algorithms include the Diffie Hellman, which creates a secure session so that symmetric data can flow securely. An example of this would be the L2TP/IPsec VPN. RSA is the commonly used asymmetric algorithm that was the very first of its kind, creating public and private key pairs. Elliptic Curve Cryptography is an asymmetric algorithm used for the encryption of small mobile devices.

Asymmetric – PKI

Asymmetric keys are obtained from a CA. If you are selling products or services with external entities, then you need to obtain your X509s from a public CA, otherwise your internal certificates will not be accepted.

Asymmetric – weak/depreciated algorithms

A SSL should now be depreciated as it is weak; an example of an exploit is the POODLE attack, which is a man-in-the-middle attack that exploits the vulnerabilities of SSL 3.0 and SSL 3.0 (CBC). Asymmetric algorithms should not be using a key whose strength is 2046...