Oreilly - CISSP Video Course Domain 2 – Access Control
by Shon L. Harris | Publisher: Pearson IT Certification | Release Date: May 2009 | ISBN: 9780789740144
The fast, powerful way to prepare for your CISSP exam!30+ hours of personal video training from leading security expert Shon HarrisAchieving the (ISC)2's globally recognized CISSP can give your IT career a lift. In this DVD, the world's #1 CISSP trainer brings her legendary five-day boot camp to your computer screen. Packed with over 30 hours of instruction adapted from Shon's classes, this video course includes realistic labs, scenarios, case studies, and animations designed to build and test your knowledge in real-word settings. Preparing for the CISSP has never been this easy or convenient.Master the skills and concepts you need for all ten CISSP common body of knowledge domains:Access ControlApplication SecurityBusiness Continuity and Disaster Recovery PlanningCryptographyInformation Security and Risk ManagementLegal, Regulations, Compliance, and InvestigationsOperations SecurityPhysical (Environmental) SecuritySecurity Architecture and DesignTelecommunications and Network SecuritySystem RequirementsOPERATING SYSTEM: Windows 2000, XP, or Vista; Mac OS X 10.4 (Tiger) or later MULTIMEDIA: DVD drive; 1024 x 768 or higher display; sound card with speakers COMPUTER: 500MHz or higher CPU; 128MB RAM or more
- Course Introduction 00:07:24
- Domain 2 – Access Control 00:00:39
- Agenda 1 00:01:16
- Access Control Mechanism Examples 00:01:03
- Technical Controls 00:00:54
- Access Control Characteristics 00:03:25
- Preventive Controls 00:03:01
- Control Combinations 00:00:15
- Detective – Administrative Control 00:02:08
- Detective Examples 00:00:48
- Administrating Access Control 00:03:01
- Authorization Creep 00:00:59
- Accountability and Access Control 00:01:26
- Trusted Path 00:03:00
- Fake Login Pages Look Convincing 00:01:44
- Who Are You? 00:02:08
- Identification Issues 00:00:48
- Authentication Mechanisms Characteristics 00:00:44
- Strong Authentication 00:02:01
- Fraud Controls 00:02:41
- Internal Control Tool: Separation of Duties 00:01:14
- Authentication Mechanisms in Use Today 00:03:08
- Verification Steps 00:01:12
- What a Person Is 00:00:21
- Why Use Biometrics? 00:01:01
- Identification or Authentication? 00:01:21
- Iris Sampling 00:00:40
- Finger Scan 00:00:58
- Hand Geometry 00:04:03
- Downfalls to Biometric Use 00:00:54
- Biometrics Error Types 00:01:59
- Crossover Error Rate 00:01:45
- Biometric System Types 00:02:52
- Passwords 00:05:06
- Password Attacks 00:01:05
- Attack Steps 00:02:50
- Many Tools to Break Your Password 00:00:53
- Rainbow Table 00:01:27
- Passwords Should NOT Contain… 00:01:26
- Countermeasures for Password Cracking 00:01:06
- Cognitive Passwords 00:00:47
- One-Time Password Authentication 00:01:36
- Synchronous Token 00:01:02
- One Type of Solution 00:03:09
- Administrator Configures 00:00:13
- Challenge Response Authentication 00:04:17
- Asynchronous Token Device 00:03:27
- Challenge Response Authentication 00:00:21
- Cryptographic Keys 00:00:44
- Passphrase Authentication 00:01:30
- Key Protection 00:00:25
- Memory Cards 00:01:25
- Memory Card Characteristics 00:00:25
- Smart Card 00:00:56
- Characteristics 00:01:09
- Card Types 00:00:50
- Smart Card Attacks 00:01:34
- Software Attack 00:01:02
- Side Channel Attack 00:01:19
- Side Channel Data Collection 00:00:51
- Microprobing 00:00:53
- Identity Management 00:02:19
- How Are These Entities Controlled? 00:00:55
- Some Current Issues 00:01:22
- Management 00:03:01
- Typical Chaos 00:00:49
- Different Identities 00:01:45
- Identity Management Technologies 00:00:48
- Directory Component 00:01:17
- Enterprise Directory 00:00:48
- Directory Responsibilities 00:01:03
- Authoritative Sources 00:01:47
- Meta Directory 00:02:26
- Directory Interactions 00:01:46
- Web Access Management 00:01:27
- Web Access 00:05:09
- Password Management 00:02:21
- Legacy Single Sign-On 00:02:47
- Account Management Systems 00:02:23
- Provisioning Component 00:04:42
- Profile Update 00:01:29
- Working Together 00:03:29
- Enterprise Directory 00:01:00
- Identity Management Solution Components 00:02:52
- Federated Identity 00:02:59
- Identity Theft 00:01:19
- Fake Login Tools 00:02:17
- Instructional Emails 00:01:26
- Knowing What You Are Disposing of Is Important 00:01:18
- Other Examples 00:00:46
- Another Danger to Be Aware of… Spyware 00:02:07
- Is Someone Watching You? 00:02:11
- What Does This Have to Do with My Computer? 00:01:37
- New Spyware Is Being Identified Every Week 00:01:09
- How to Prevent Spyware 00:01:19
- Different Technologies 00:00:57
- Single Sign-on Technology 00:04:21
- Security Domain 00:01:27
- Domains of Trust 00:01:03
- Thin Clients 00:00:59
- Example 00:01:13
- Kerberos as a Single Sign-on Technology 00:13:13
- Tickets 00:03:43
- Why Go Through All of this Trouble? 00:01:02
- Issues Pertaining to Kerberos 00:01:25
- Kerberos Issues 00:01:31
- SESAME as a Single Sign-on Technology 00:00:38
- SESAME Steps for Authentication 00:02:18
- Combo 00:01:22
- Models for Access 00:00:54
- Access Control Models 00:01:00
- ACL Access 00:01:51
- File Permissions 00:01:09
- Security Issues 00:01:20
- Mandatory Access Control Model 00:01:50
- MAC Enforcement Mechanism – Labels 00:02:06
- Formal Model 00:00:57
- Software and Hardware 00:00:58
- Software and Hardware Guards 00:02:25
- MAC versus DAC 00:01:14
- Role-Based Access Control 00:01:14
- RBAC Hierarchy 00:03:17
- Rule-Based Access Control 00:02:16
- Firewall Example 00:00:14
- Access Control Matrix 00:02:11
- Temporal Access Control 00:00:54
- Access Control Administration 00:02:13
- Remote Centralized Administration 00:01:35
- RADIUS 00:01:34
- RADIUS Characteristics 00:01:17
- TACACS+ Characteristics 00:01:36
- Diameter Characteristics 00:02:27
- Diameter Protocol 00:01:01
- Mobile IP 00:01:36
- Diameter Architecture 00:01:41
- Two Pieces 00:01:09
- AVP 00:03:46
- Decentralized Access Control Administration 00:01:45
- Controlling Access to Sensitive Data 00:04:51
- IDS 00:02:19
- IDS Steps 00:01:26
- Network IDS Sensors 00:02:00
- Host IDS 00:01:31
- Combination 00:01:38
- Types of IDSs 00:02:32
- Signature-Based Example 00:02:29
- Behavior-Based IDS 00:03:32
- Statistical Anomaly 00:01:05
- Statistical IDS 00:00:45
- Protocol Anomaly 00:01:45
- What Is a Protocol Anomaly? 00:01:30
- Protocol Anomaly Issues 00:00:48
- Traffic Anomaly 00:03:47
- IDS Response Mechanisms 00:01:10
- Responses to Attacks 00:01:37
- IDS Issues 00:04:38
- Vulnerable IDS 00:02:30
- Domain 2 Review 00:02:29
TO MAC USERS: If RAR password doesn't work, use this archive program:
RAR Expander 0.8.5 Beta 4 and extract password protected files without error.
TO WIN USERS: If RAR password doesn't work, use this archive program:
Latest Winrar and extract password protected files without error.