CISSP: Certified Information Systems Security Professional by James M. Stewart, Ed Tittel, Mike Chapple

By James M. Stewart, Ed Tittel, Mike Chapple

Construction at the renowned Sybex learn consultant technique, CISSP: qualified info platforms protection expert examine consultant, 4th version presents a hundred% assurance of the CISSP physique of data examination targets. locate transparent and concise info on an important safety issues, useful examples and insights drawn from real-world adventure, and state of the art examination instruction software program, together with full-length bonus checks and digital flashcards. organize your self through reviewing the foremost examination subject matters, together with entry keep an eye on, software safeguard, enterprise continuity and catastrophe restoration making plans, cryptography; info safeguard and danger administration, and protection structure and layout telecommunications and community protection.

Show description

Read or Download CISSP: Certified Information Systems Security Professional Study Guide PDF

Best information systems books

The Multinational Enterprise Revisited: The Essential Buckley and Casson

Incorporating essays from over thirty years, this ebook includes key writings through the authors at the way forward for the multinational enterprise. Along with their seminal writings, a new advent and end are incorporated to tie those items jointly in a entire review of the idea of the multinational firm.

Ethical Money: How to Invest in Sustainable Enterprises and Avoid the Exploiters and Polluters

Socially dependable funding is the quickest turning out to be region of the collective funding undefined. via its development and robust monetary functionality, it has proved to be an enormous funding strength in the monetary international. moral funding is definitely no longer a monetary protest circulation within which humans anticipate to lose their cash for an excellent reason.

Business Geography and New Real Estate Market Analysis (Spatial Information Systems)

This paintings makes a speciality of integrating land-use place technological know-how with the expertise of geographic info structures (GIS). The textual content describes the elemental ideas of situation choice and the potential for utilizing them to be able to increase the true property choice.

GIS Applications in Agriculture, Volume Three: Invasive Species

Whereas many "alien" plant and animal species are purposefully brought into new components as ornamentals, farm animals, vegetation, or even pets, those species can break out into different components and threaten agricultural and local ecosystems inflicting monetary and environmental damage, or damage to human well-being. more and more, scientists are utilizing Geographic details platforms (GIS) to trace and deal with the invaders, mitigate the capability cost of unfold and point of influence, and guard the local economic system and atmosphere.

Extra info for CISSP: Certified Information Systems Security Professional Study Guide

Example text

The major flaw in such an approach is that large massive structures often have minor weakness and flaws; are difficult if not impossible to reconfigure, adjust, or move; and are easily seen and avoided by would-be attackers (in other words, they find easier ways into protected areas). In a layered security or defense-in-depth deployment, your assets are surrounded by a layer of protection provided for by administrative access controls, which in turn is surrounded by a layer of protection consisting of logical or technical access controls, which is finally surrounded by a layer of protection that includes physical access controls.

In most cases, the system evaluates an access control matrix that compares the subject, the object, and the intended activity (we discuss the access control matrix in greater detail in Chapter 11, “Principles of Computer Design”). If the specific action is allowed, the subject is authorized. If the specific action is not allowed, the subject is not authorized. Keep in mind that just because a subject has been identified and authenticated, it does not automatically mean it has been authorized. It is possible for a subject to log onto a network (in other words, be identified and authenticated) yet be blocked from accessing a file or printing to a printer (in other words, by not being authorized to perform such activities).

Buffer overflow C. SYN flood D. Distributed denial of service 17. What is the value of the logical operation shown here? X: Y: X ⊕ Y: 0 1 1 0 1 0 0 0 1 1 0 1 ? A. 0 1 1 1 1 1 B. 0 1 1 0 1 0 C. 0 0 1 0 0 0 D. fm Page xxxviii Thursday, May 22, 2008 10:26 AM xxxviii Assessment Test 18. In what type of cipher are the letters of the plain-text message rearranged to form the cipher text? A. Substitution cipher B. Block cipher C. Transposition cipher D. One-time pad 19. What is the length of a message digest produced by the MD5 algorithm?

Download PDF sample

Rated 4.76 of 5 – based on 46 votes