CompTIASecurity+学习指南_comptiasecurity+资源-CSDN文库

软件工程

需积分: 50 21 浏览量 2020-01-24 14:20:11 上传评论 2 收藏 7.61MB PDF 举报

资源推荐

资源详情

资源评论

Professor Messer’s

CompTIA Security+

SY0-401 Study Guide

hp://www.ProfessorMesser.com

Network Devices

hp://www.ProfessorMesser.com

Professor Messer’s CompTIA SY0-401 Security+ Study Guide - Page 1

Switch

• An OSI layer 2 device

• Hardware bridging ASICs (very fast!)

• Forwards trac based on MAC address

• The core of an enterprise network

• High bandwidth - Many simultaneous packets

Router

• An OSI layer 3 device

• Routes trac between IP subnets

• Routers inside of switches are somemes

called “layer 3 switches”

• Layer 2 = Switch, Layer 3 = Router

• Oen connects diverse network types -

LAN, WAN, copper, ber

Firewall

• OSI layer 4 (TCP/UDP), some rewalls lter

through OSI layer 7

• Filters trac by port number

• Can encrypt trac into/out of the network

and between sites

• Can proxy trac - A common security technique

• Most rewalls can be layer 3 devices (routers)

Load balancer

• Distributes the load over many physical servers

• Very common in large environments

Proxy

• Sits between the users and the external network

• Receives the user requests and sends

the request on their behalf (the proxy)

• Applicaons may need to know how to

use the proxy (explicit)

• Some proxies are invisible (transparent)

All-in-one security appliance

• Unied Threat Management (UTM) /

Web security gateway

• URL lter / Content inspecon, malware

inspecon, spam lter, CSU/DSU, router, switch,

rewall, IDS/IPS, bandwidth shaper, VPN endpoint

VPN concentrator

• The connecon point

for remote users

• Trac is encrypted across the

Internet and decrypted on the

internal private network

Intrusion detecon/prevenon system

• Protects against OS and applicaon exploits

• Detecon

• Alerts but does not stop the aack

• Prevenon

• Blocks the aack

Protocol analyzer

• Captures network packets

• Decodes each part of the communicaon

• Sees all of the network conversaon

Spam Filters

• Stop unsolicited email at the gateway

• Whitelist

• Only receive email from trusted senders

• SMTP standards checking

• Block anything that doesn’t follow RFC standards

• rDNS - Reverse DNS

• Block email where the sender’s domain doesn’t match

the IP address

• Tarping

• Intenonally slow down the server conversaon

• Recipient ltering

• Block all email not addressed to a valid

recipient email address

Web Applicaon Firewall

• Applies rules to HTTP conversaons

• Allow or deny based on expected input

• Protects against exploits like SQL injecons

and buer overows

• Focus of Payment Card Industry Data

Security Standard (PCI DSS)

Applicaon-aware Security Devices

• Network-based Firewalls

• Control trac ows based on the applicaon

• Microso SQL Server, Twier, YouTube

• Intrusion Prevenon Systems

• Idenfy the applicaon

• Apply applicaon-specic vulnerability signatures

to the trac

• Host-based rewalls

• Work with the OS to determine the applicaon

Version 0x04

Network Administraon Principles

hp://www.ProfessorMesser.com

Professor Messer’s CompTIA SY0-401 Security+ Study Guide - Page 2

VLANs

Conguring rewall rules

• Allow or disallow trac based on security tuples

• Source IP, Desnaon IP, port number,

me of day, applicaon, etc.

• Evaluated top-to-boom

• There’s an implicit deny at the boom

VLANs

• Logically separate your switch ports into subnets

• VLANs cannot communicate to each

other without a router

• Group users together by funcon

Secure router conguraon

• Always change the default login / password

• Protect conguraon le transfers

• TFTP - in the clear

• SCP - encrypted

• HTTPS - encrypted

Access Control Lists (ACLs)

• Permissions associated with an object

• Used in le systems, network devices,

operang systems, and more

Switch port security

• IEEE 802.1X

• Port-based Network Access Control (PNAC)

• Makes extensive use of EAP and RADIUS

• Extensible Authencaon Protocol

• Remote Authencaon Dial In User Service

• Disable your unused ports

• Enable duplicate MAC address checking / spoong

Flood Guards

• Commonly seen on intrusion prevenon systems

• DoS / DDoS

• Denial of Service

• SYN oods

• Overload a server

• Ping oods / ping scans

• Overwhelm the network

• Idenfy what’s out there

• Port oods / port scans

• Idenfy open ports on a device

Spanning Tree Protocol (STP)

• IEEE standard 802.1D

• Prevents loops in bridged (switched) networks

• Built into the switch conguraon opons

Network Separaon

• Separate switches, separate routers, no overlap

• Used in sensive environments

• Logical separaon

• Virtualizaon of the network infrastructure

Log Analysis

• Good for post-event analysis

• Can provide useful real-me analysis

• Automaon and consolidaon is the key

DMZ

DMZ (Demilitarized Zone)

• A layer of security between your internal network

and the Internet

• Protects external-facing services

• Usually less trusted than the Internal network connecon

• Logically separate your switch ports into subnets

• VLANs cannot communicate to each other without a router

• The router/rewall becomes the gatekeeper

• Control your organizaon’s trac from within

• Group users together by funcon

• Be careful not to separate users too far from their resources

• Is oen integrated with the NAC

• Move people automacally into their VLAN based on credenals

Stac NAT / Desnaon NAT

PAT (Port Address Translaon) / Source NAT

hp://www.ProfessorMesser.com

Professor Messer’s CompTIA SY0-401 Security+ Study Guide - Page 3

Network Design

Remote Access

• An important requirement

• We are increasingly mobile

• Take advantage of encrypon technologies

• Keep everything private

• Consider adding addional authencaon

technologies (One-me passwords)

• Constantly audit your access logs

Telephony

• One of the newest digital technologies

• And one of the most dicult to secure

• Firewalls generally don’t like VoIP technologies

• You’ll need protocol-specic applicaon gateways

• Don’t forget your legacy telephony!

• Long distance sll costs money

Network Access Control

• A complex technology

• But powerful when well engineered

• Very useful in large open environments

• Universies and large enterprises

• Requires a large security infrastructure

• Authencaon is crical

• Redundancy is required

Virtualizaon

• Huge cost savings

• Security has to catch up to the speed of change

• The control of physical objects is gone

• Also dicult to apply external security components

• Requires addional insight

• Harder to view intra-server communicaon

• Take advantage of your logs

• They’ll tell you much more than you can see

Defense in Depth

• Good security has many layers

• Firewall, DMZ, authencaon, intrusion detecon,

VPN access, an-virus and an-malware soware

Plaorm as a Service (PaaS)

• No servers, no soware, no maintenance team

• No hardware of any kind

• Someone else handles the plaorm, you handle the product

• You don’t have direct control of the data, people, or infrastructure

• SalesForce.com is an example of PaaS

Soware as a service (SaaS)

• On-demand soware, no local installaon

• Used for common business funcons such as payroll services

• Data and applicaons are centrally managed

• Gmail and Google Docs is an example of SaaS

Infrastructure as a service (IaaS)

• Somemes called Hardware as a Service (HaaS)

• Equipment is outsourced

• You are sll responsible for the overall device and applicaon management

• You’re also responsible for the security

• Your data is out there, but more within your control

• Web hosng and email services would be an example of IaaS

Cloud Deployment Models

• Private - A virtualized data center

• Public - Available to everyone over the Internet

• Hybrid - A mix of public and private

• Community - Several organizaons share the same resources

Cloud Compung

IPv4 and IPv6

IPv4 Addressing

fe80::5d18:652:cffd:8f52

fe80:0000:0000:0000:5d18:0652:cffd:8f52

fe80

1111111010000000

0000

0000000000000000

0000

0000000000000000

0000

0000000000000000

5d18

0101110100011000

0652

0000011001010010

cffd

1100111111111101

8f52

1000111101010010

16 bits 2 bytes=

128 bits = 16 bytes

2 octets=

IPv6 Addressing

Storage Area Networking

• Network Aached Storage (NAS)

• Connect to a shared storage device across

the network

• File-level access

• Storage Area Network (SAN)

• Looks and feels like a local storage device

• Block-level access

• Fibre Channel over Ethernet (FCoE)

• Run Fiber Channel on Ethernet, not routable

• Fibre Channel over IP (FCIP)

• Encapsulate Fibre Channel frames into IP

• iSCSI - Internet Small Computer Systems Interface

• Send SCSI commands over an IP network

hp://www.ProfessorMesser.com

Professor Messer’s CompTIA SY0-401 Security+ Study Guide - Page 4

Ports and Protocols

OSI Model

Protocol Descrip,onNamePort

DNS udp/53,+tcp/53 Convert+domain+names+to+IP+addressesDomain+Name+Services

SNMP udp/161 Gather+sta?s?cs+and+manage+network+devicesSimple+Network+Management+Protocol

Telnet tcp/23 Remote+console+login+to+network+devicesTelecommunica?on+Network

SSH tcp/22 Encrypted+console+loginSecure+Shell

FTP

TFTP

tcp/20,+tcp/21 Sends+and+receives+ﬁles+between+systems

udp/69 A+very+simple+ﬁle+transfer+applica?on

File+Transfer+Protocol

Trivial+File+Transfer+Protocol

HTTP tcp/80 Web+server+communica?onHypertext+Transfer+Protocol

HTTPS tcp/443

Web+server+communica?on+with+encryp?on

Hypertext+Transfer+Protocol+Secure

TLS/SSL tcp/443 Secure+protocols+for+web+browsing

Transport+Layer+Security+and+Secure+Sockets+Layer

SCP tcp/22 Rela?vely+simple+ﬁle+copy+over+SSHSecure+Copy

SFTP tcp/22 SSH+ﬁle+transfer+with+ﬁle+managementSecure+File+Transfer+Protocol

FTPS tcp/990,+tcp/989

Adds+security+to+FTP+with+TLS/SSL

FTP+over+SSL

NetBIOS

tcp/139

NetBIOS+over+TCP+X+Session+serviceNetwork+Basic+Input/Output+System

IPsec Various

Authen?ca?on,+integrity,+conﬁden?ality,+and+encryp?on

Internet+Protocol+Security

ICMP N/A

Management+protocol

Internet+Control+Message+Protocol

NetBIOS udp/137,+udp/138 NetBIOS+over+UDP+X+Name+service,+Datagram+serviceNetwork+Basic+Input/Output+System

IMAP tcp/143

Retrieve+and+store+email

Internet+Message+Access+Protocol

Layer&7&(&Applica.on The$layer$we$see$+$Google$Mail,$Twi2er,$Facebook

Encoding$and$encryp;on$(SSL$/$TLS)

UDP

Layer&6&(&Presenta.on

Layer&5&(&Session

Layer&4&(&Transport

Layer&3&(&Network

Layer&2&(&Data&Link

Layer&1&(&Physical

Communica;on$between$devices$(control$protocols,$tunneling$protocols)

The$"post$oﬃce"$layer$(TCP$segments,$UDP$datagrams)

The$rou;ng$layer$(IP$addresses,$routers,$packets)

The$switching$layer$(frames,$MAC$addresses,$EUI+48,$EUI+64,$switches)

Signaling,$cabling,$connectors$(cables,$NICs,$hubs)

OSI Mnemonics

• Please Do Not Trust Sales Person’s Answers

• All People Seem To Need Data Processing

• Please Do Not Throw Sausage Pizza Away!

hp://www.ProfessorMesser.com

Professor Messer’s CompTIA SY0-401 Security+ Study Guide - Page 5

Wireless Encrypon and Authencaon

WEP

• 64-bit or 128-bit key size

• Cryptographic vulnerabiles found in 2001

• WEP is no longer used

WPA

• Short-term workaround aer WEP

• Used RC4 cipher as a TKIP (Temporal Key Integrity Protocol)

• TKIP has its own vulnerabilies

WPA2

• Replaced TKIP with CCMP (Counter Mode with Cipher Block Chaining

Message Authencaon Code Protocol)

• Replaced RC4 with AES (Advanced Encrypon Standard)

• WPA2 is the latest and most secure wireless encrypon method

WPA2-Enterprise

• WPA2-Enterprise adds 802.1x

• RADIUS server authencaon

EAP (Extensible Authencaon Protocol)

• An authencaon framework

• WPA and WPA2 use ve EAP types as

authencaon mechanisms

LEAP (Lightweight Extensible Authencaon Protocol)

• Cisco proprietary

• Uses passwords only

• No detailed cercate management

• Based on MS-CHAP

(including MS-CHAP security shortcomings)

PEAP (Protected Extensible Authencaon Protocol)

• Created by Cisco, Microso, and RSA Security

• Encapsulates EAP in a TLS tunnel

• Only one cercate needed, on the server

MAC (Media Access Control) ltering

• Access is controlled through the physical hardware address

• It’s easy to nd a working MAC addresses through wireless LAN analysis

• MAC addresses can be spoofed

• Security through obscurity

SSID (Service Set Idener) Management

• The SSID is the name of the wireless network

• i.e., LINKSYS, DEFAULT, NETGEAR

• Change the SSID to something appropriate for its use

• The SSID broadcasts can be disabled

• You can sll determine the SSID through wireless network analysis

• Security through obscurity

Temporal Key Integrity Protocol

• Created when WEP was broken

• We needed a stopgap to make 802.11 stronger

• Mixed the keys - Combines the secret root key with the IV

• Adds sequence counter - Prevents replay aacks

• 64-bit Message Integrity Check - Protects against tampering

• Used in WPA (Wi-Fi Protected Access) prior to the creaon of WPA2

CCMP

• Counter Mode with Cipher Block Chaining

Message Authencaon Code Protocol

• Replaced TKIP when WPA2 was published

• A more advanced security protocol

• Based on AES and uses a 128-bit key and a 128-bit block size

• Requires addional compung resources

• Data condenality - Only authorized pares can access the informaon

• Authencaon - Provides proof of genuineness of the user

• Access control - Allow or disallow access to the network

Site Surveys

• Sample the exisng wireless spectrum

• Idenfy exisng access points

• Work around exisng frequencies - layout and plan for interference

• Plan for ongoing site surveys - things will certainly change

VPN over Wireless Networks

• Wireless from your local coee shop - no encrypon

• Everyone around the coee shop can see your trac

• Exceponally easy to capture your data

• Some of your data might be encrypted with HTTPS. Maybe.

• Protect all of your trac with a VPN tunnel

Capve Portal

• Authencaon to a network

• Common on wireless networks

• Access table recognizes a lack of authencaon

• Redirects your web access to a capve portal page

• Username / password

• And addional authencaon factors

• Once proper authencaon is provided,

the web session connues

• Unl the capve portal removes your access

Wireless Security

Omnidireconal Antennas

• One of the most common

• Included on most access points

• Signal is evenly distributed on all sides

• Omni=all

• Good choice for most environments

• You need coverage in all direcons

• No ability to focus the signal

• A dierent antenna will be required

Direconal Antennas

• Focus the signal - Increased distances

• Send and receive in a single direcon

• Focused transmission and listening

• Antenna performance is measured in dB

• Double power every 3dB of gain

• Yagi antenna - Very direconal and high gain

• Parabolic antenna - Focus the signal to a single point

剩余35页未读，继续阅读

评论收藏

内容反馈

fengxingtianxia7

粉丝: 0
资源: 1

CompTIA Security+ 学习指南

最新资源

CompTIA Security+ 学习指南

CompTIA Security (Study Notes).pdf

CompTIA Security+ Study Guide Exam SY0-501(7th) azw3

CompTIA Security+ Deluxe Study Guide

CompTIA Security+ All in One Complete Training Guide

CompTIA Security+ SY0-501 Cert Guide, 4th Edition [pdf]

CompTIA Security+ SY0-601 PDF V21.75

secplus601:包含主要来自梅塞尔教授的COMPTIA Security +（SY0-601）注释

Comptia-sec-601-:在UTSA学习网络安全时，Comptia security +是每位信息安全专业人员都应获得的证书。 此仓库是我获得证书的过程

Mike Meyers' CompTIA Security+ Certification Guide(2nd) (Exam SY0-501) 无水印原版pdf

CompTIA.Security.Study.Guide.

securityplus-flashcards:CompTIA Security +抽认卡学习应用程序

CompTIA-Security-SY0-501-Complete-Course-and-Practice-Exam:CompTIA Security +（SY0-501）

CompTIA_Security_Notes.pdf

securityplus：我的CompTIA Security +认证考试笔记

CompTIA网络安全分析员认证学习资料

security+ 备考专用笔记

Security+认证考试复习资料

CompTIA Security+ SY0-601 V42.95.pdf

Testking comptia security+ sy0-101 V20

谷安天下Security+ ppt

CompTIA Security SY0-501 Exam Q&amp;amp;A.zip

CompTIA Advanced Security Practitioner (CASP) 信息安全认证模拟题

CompTIA Security Practice Tests--2018

McGrawHill_CompTIA_Security _Certification_Practice_Exams.zip

CompTIA-Security-Exam-SY0-501

Darril_Gibson_CompTIA_Security _.zip

SY0-301 CompTIA Security+ Certification Exam题库 [2011.10.9]

CompTIA_Security _Certification.pdf

最新资源

Comptia-sec-601-:在UTSA学习网络安全时，Comptia security +是每位信息安全专业人员都应获得的证书。此仓库是我获得证书的过程

CompTIA Security SY0-501 Exam Q&A.zip