Prepare for the first domain of the CompTIA Security+ (SY0-701) exam, General Security Concepts.
Overview
Syllabus
Introduction
- Security concepts
- The goals of information security
- Authentication, authorization, and accounting (AAA)
- Categorizing security controls
- Conducting a gap analysis
- Zero Trust
- Physical access control
- Physical security personnel
- Deception technologies
- Change management
- Understanding encryption
- Symmetric and asymmetric cryptography
- Goals of cryptography
- Choosing encryption algorithms
- The cryptographic lifecycle
- Data de-identification
- Data obfuscation
- Data Encryption Standard (DES)
- 3DES
- AES, Blowfish, and Twofish
- Steganography
- Rivest, Shamir, Adleman (RSA)
- PGP and GnuPG
- Elliptic-curve and quantum cryptography
- Tor and perfect forward secrecy
- Key exchange
- Diffie-Hellman
- Key escrow
- Key stretching
- Hardware security modules
- Trust models
- PKI and digital certificates
- Hash functions
- Digital signatures
- Digital signature standard
- Create a digital certificate
- Revoke a digital certificate
- Certificate stapling
- Certificate authorities
- Certificate subjects
- Certificate types
- Certificate formats
- TLS and SSL
- Blockchain
- Continuing your studies
Taught by
Mike Chapple