Security Plus SY0-701 Domain 1 Handout

Introduction

  • Presenter: Pete Zerger, vCISO, CISSP, MVP

  • Exam Focus: SECURITY+ EXAM CRAM covering SY0-701

  • Purpose: Provide an overview of topics in the official exam syllabus.

Study Materials

  • Save 10% on CompTIA Exam Vouchers.

  • Ninth Edition Study Guide includes:

    • 500 practice questions and two practice exams

    • One year of free access to the interactive online learning environment and study tools

    • Features include 100 flashcards and a searchable glossary.

General Security Concepts

Overview

  • Focus on line-by-line review of official exam content.

Compare and Contrast Security Controls

Categories of Security Controls

  • Technical: Hardware/software mechanisms to protect resources.

  • Physical: Mechanisms protecting facilities and tangible items.

  • Managerial: Policies and procedures defined by security policy.

  • Operational: Ensures compliance with security through daily operations.

Types of Controls

  • Preventive: Stops unwanted activity before it happens.

  • Deterrent: Discourages violation of security policies.

  • Detective: Discovers unwanted activities after occurrence.

  • Corrective: Restores systems to normal after an incident.

  • Compensating: Provides alternatives to existing controls.

  • Directive: Controls actions to enforce compliance.

Categories of Security Controls

Examples

Technical Controls

  • Encryption, Smart cards, Passwords, Firewalls, IDS/IPS.

Physical Controls

  • Guards, Fences, Motion detectors, CCTV.

Managerial Controls

  • Policies, Procedures, Background checks, Risk assessments.

Operational Controls

  • Awareness training, Configuration management.

Domain 1: Security Controls

Security Measures

  • Security controls are measures to counteract vulnerabilities.

  • Safeguards are proactive; countermeasures are reactive.

Control Types

  • Deterrent: Discourages violations (e.g., fences, alarms).

  • Preventive: Prevents unwanted activity (e.g., access control).

  • Detective: Identifies issues (e.g., IDS).

  • Corrective: Fixes issues post-event (e.g., backups).

  • Compensating: Alternatives to existing controls.

Security Control Overlap

Definition

  • Controls may serve multi-purposes; context affects classification.

Keywords to Identify Controls

  • Deterrent: Warning signs and visibility.

  • Preventive: Access control and encryption.

  • Detective: Audit and logging.

  • Corrective: Backup and restore.

General Security Concepts - CIA

Core Principles

  • Confidentiality: Ensures only authorized access to data.

  • Integrity: Ensures data is not modified without permission.

  • Availability: Systems must be ready for access when needed.

Non-Repudiation

Definition

  • Ensures that actions or transactions cannot be denied later.

Role of Digital Signatures

  • Prove sender's identity and integrity of the message.

Authentication, Authorization, and Accountability (AAA)

  • Authentication: Proving identity through credentials.

  • Authorization: Granting access based on roles and permissions.

  • Accounting: Tracking user activity through logs.

Access Control Models

Types

  • Discretionary Access Control (DAC): Owner controls access.

  • Role Based Access Control (RBAC): Permissions assigned based on roles.

  • Mandatory Access Control (MAC): Access decided by system policy, not users.

  • Attribute-Based Control: Uses characteristics to determine access.

Change Management Overview

Importance

  • Changes must be documented, approved, tested, and communicated to avoid risks.

Components of Change Management

  • Approval Process: Ensures management reviews changes.

  • Impact Analysis: Assesses potential change effects.

  • Testing: Verifies changes in a safe environment.

Configuration Management

Definition

  • Maintains consistent configurations through baselines, helping mitigate security risks from unauthorized changes.

Cryptographic Solutions Overview

Importance

  • Protects data at rest, in transit, and in use through various methods.

Key Components

  • PKI: Manages keys and issues digital certificates.

  • Encryption Levels: Different forms exist—file, volume, full-disk, etc.

Tools and Techniques

  • Encryption Algorithms: Symmetric (e.g., AES) vs. Asymmetric (e.g., RSA).

  • Hashing and Salting: Ensuring data integrity and security against attacks.

Final Notes

Study Resources

  • Use outlined materials for preparation.

  • Focus on security principles and control types for clarity in exam.