Chapter 17

Security

The following CompTIA A+ 220-802 Exam objectives are covered in this chapter:

  • 2.1 Apply and use common prevention methods.
    • Physical security: Lock doors, Tailgating, Securing physical documents/passwords/shredding, Biometrics, Badges, Key fobs, RFID badge, RSA token, Privacy filters, Retinal
    • Digital security: Antivirus, Firewalls, Antispyware, User authentication/strong passwords, Directory permissions
    • User education
    • Principle of least privilege
  • 2.2 Compare and contrast common security threats.
    • Social engineering
    • Malware
    • Rootkits
    • Phishing
    • Shoulder surfing
    • Spyware
    • Viruses: Worms, Trojans
  • 2.3 Implement security best practices to secure a workstation.
    • Setting strong passwords
    • Requiring passwords
    • Restricting user permissions
    • Changing default user names
    • Disabling guest account
    • Screensaver required password
    • Disable autorun
  • 2.4 Given a scenario, use the appropriate data destruction/disposal method.
    • Low level format vs. standard format
    • Hard drive sanitation and sanitation methods: Overwrite, Drive wipe
    • Physical destruction: Shredder, Drill, Electromagnetic, Degaussing tool
  • 2.5 Given a scenario, secure a SOHO wireless network.
    • Change default user-names and passwords
    • Changing SSID
    • Setting encryption
    • Disabling SSID broadcast
    • Enable MAC filtering
    • Antenna and access point placement
    • Radio power levels
    • Assign static IP addresses
  • 2.6 Given a scenario, secure a SOHO wired network.
    • Change default usernames and passwords
    • Enable MAC filtering
    • Assign static IP addresses
    • Disabling ports
    • Physical security

Think of how much simpler an administrator’s life was in the days before every user had to be able to access the Internet. Think of how much simpler it must have been when you only had to maintain a number of dumb terminals connected to a minitower. Much of what has created headaches for an administrator since then is the inherent security risk that comes about as the network expands. As our world—and our networks—have become more connected, the need to secure data and keep it away from the eyes of those who can do harm has increased exponentially.

Realizing this, CompTIA added the security domain to the A+ exams a few years back. Security is now a topic that every administrator and technician must not only be aware of and care about but also be actively involved in. In the world of production, quality may be job one, but in the IT world, it is security.

This chapter looks at security primarily from the standpoint of what you need to know to pass the exam. All of the topics relevant to the security domain of the 220-802 exam are covered, and a thorough overview of each topic is provided.

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.
Reset
18.221.12.140