Table of Contents

Domain 1.0 General Security Concepts Chapter 1: General Security Concepts: AAA Chapter 2: General Security Concepts: Attacks Domain 2.0 Communication Security Chapter 3: Communication Security: Remote Access and E-mail Chapter 4: Communication Security: Wireless Chapter 5: Communication Security: Web Services Domain 3.0 Infrastructure Security Chapter 6: Infrastructure Security: Devices and Media Chapter 7: Infrastructure Security: Topologies and IDS Chapter 8: Infrastructure Security: System Hardening Domain 4.0 Basics of Cryptography Chapter 9: Basics of Cryptology Chapter 10: Public Key Infrastructure Domain 5.0 Operational and Organizational Security Chapter 11: Operational and Organization Security: Incident Response Chapter 12: Operational and Organization Security: Policies and Disaster Recovery Appendix A: Self Test Appendix


No. of pages:
© 2007
Print ISBN:
Electronic ISBN:

About the authors

Jeremy Faircloth

Jeremy Faircloth (CISSP, Security+, CCNA, MCSE, MCP+I, A+) is an IT practitioner with a background in a wide variety of technologies as well as experience managing technical teams at multiple Fortune 50 companies. He is a member of the Society for Technical Communication and frequently acts as a technical resource for other IT professionals through teaching and writing, using his expertise to help others expand their knowledge. Described as a “Renaissance man of IT” with over 20 years of real-world IT experience, he has become an expert in many areas including Web development, database administration, enterprise security, network design, large enterprise applications, and project management. Jeremy is also an author that has contributed to over a dozen technical books covering a variety of topics and teaches courses on many of those topics.

Ido Dubrawsky

Ido Dubrawsky (CISSP, CCNA, CCDA) is the Chief Security Advisor for Microsoft’s Communication Sector North America, a division of the Mobile and Embedded Devices Group. Prior to working at Microsoft, Ido was the acting Security Consulting Practice Lead at AT&T’s Callisma subsidiary and a Senior Security Consultant. Before joining AT&T, Ido was a Network Security Architect for Cisco Systems, Inc., SAFE Architecture Team. He has worked in the systems and network administration field for almost 20 years in a variety of environments from government to academia to private enterprise. He has a wide range of experience in various networks, from small to large and relatively simple to complex. Ido is the primary author of three major SAFE white papers and has written, and spoken, extensively on security topics. He is a regular contributor to the SecurityFocus website on a variety of topics covering security issues. Previously, he worked in Cisco Systems, Inc. Secure Consulting Group, providing network security posture assessments and consulting services for a wide range of clients. In addition to providing penetration-testing consultation, he also conducted security architecture reviews and policy and process reviews. He holds a B.Sc. and a M.Sc. in Aerospace Engineering from the University of Texas at Austin.