By: Shon Harris
Publisher: Pearson Certification
Pub. Date: May 10, 2009
Print ISBN-10: 0-7897-4183-0
Print ISBN-13: 978-0-7897-4183-7
Running Time: 35 hours 34 minutes 17 seconds
Safari User Rating: 
[0 Ratings]
SSCP Video Course
Shon Harris
30+ hours of personal video training from leading security expert Shon Harris
The fast, powerful way to prepare for your SSCP exam!
Get all the hands-on training you need to pass (ISC)²’s tough SSCP exam, get certified, and move forward in your IT security career! In this easy-to-use video, the world’s #1 information security trainer walks you through every skill and concept you’ll need to master. This video contains 30+ full hours of videos adapted from Shon Harris’s legendary five-day SSCP boot camps–including realistic labs, scenarios, case studies, and animations designed to build and test your knowledge in real-world settings!
Comprehensive coverage of all seven SSCP domains of knowledge:
. Access controls
. Analysis and monitoring
. Risk, response, and recovery
. Cryptography
. Security operations and administration
. Networking and telecom
. Malicious code
About the Shon Harris Security Series
This video is part of a complete library of books, online services, and videos designed to help security professionals enhance their skills and prepare for their certification exams. Every product in this series reflects Shon Harris’s unsurpassed experience in teaching IT security professionals.
Category: Security
System Requirements
OPERATING SYSTEM: Windows 2000, XP, or
Vista; Mac OS X 10.4 (Tiger) or later
MULTIMEDIA: DVD drive; 1024 x 768 or higher display; sound card
with speakers
COMPUTER: 500MHz or higher CPU; 128MB RAM or more
Average Safari Rating: 
Based on 0 Ratings
No Safari Subscribers have provided a review for this video.
Top Level Categories:
Certification
Sub-Categories:
Certification > Overview/Introduction
Free Sample
Time
Free Sample
01:07
Domain 1 - Access Controls
Free Sample
01:05
Definitions
Free Sample
01:02
Access Control Mechanism Examples
Free Sample
00:54
Technical Controls
Free Sample
03:25
Access Control Characteristics
Free Sample
00:55
Preventive Controls
Free Sample
02:20
Preventive – Administrative Controls
Free Sample
02:08
Detective – Administrative Control
Free Sample
00:48
Detective Examples
Free Sample
01:24
Administrating Access Control (1)
Free Sample
00:36
OS, Application, Database
Free Sample
01:00
Administrating Access Control (2)
Free Sample
00:58
Authorization Creep
Free Sample
01:25
Accountability and Access Control
Free Sample
02:59
Trusted Path
Free Sample
01:44
Fake Login Pages Look Convincing
Free Sample
02:07
Who Are You?
Free Sample
00:48
Identification Issues
Free Sample
00:43
Authentication Mechanisms Characteristics
Free Sample
02:01
Strong Authentication
Free Sample
02:40
Fraud Controls
Free Sample
01:38
Internal Control Tool: Separation of Duties
Free Sample
01:31
Biometrics Technology
Free Sample
01:11
Example (1)
Free Sample
01:11
Verification Steps
Free Sample
00:59
What a Person Is
Free Sample
00:22
Biometric Type
Free Sample
01:21
Identification or Authentication?
Free Sample
00:40
Iris Sampling
Free Sample
00:57
Finger Scan
Free Sample
00:39
Hand Geometry
Free Sample
01:43
Facial Recognition
Free Sample
00:51
Comparison
Free Sample
01:42
Biometrics Verification
Free Sample
01:59
Biometrics Error Types
Free Sample
01:44
Crossover Error Rate
Free Sample
02:51
Biometric System Types
Free Sample
00:39
Passwords
Free Sample
00:55
Password Generators
Free Sample
03:01
Password “Shoulds”
Free Sample
00:29
Support Issues
Free Sample
01:05
Password Attacks
Free Sample
02:50
Attack Steps
Free Sample
00:52
Many Tools to Break Your Password
Free Sample
01:27
Rainbow Table
Free Sample
01:25
Passwords Should NOT Contain…
Free Sample
01:06
Countermeasures for Password Cracking
Free Sample
00:47
Cognitive Passwords
Free Sample
01:36
One-Time Password Authentication
Free Sample
01:02
Synchronous Token
Free Sample
02:33
One Type of Solution
Free Sample
00:35
Synchronous Steps
Free Sample
04:30
Administrator Configures
Free Sample
00:35
Asynchronous Token Device
Free Sample
02:52
Asynchronous Steps
Free Sample
01:04
Challenge Response Authentication (2)
Free Sample
01:29
Passphrase Authentication
Free Sample
02:14
Key Protection
Free Sample
00:56
Smart Card
Free Sample
01:09
Characteristics
Free Sample
00:50
Card Types
Free Sample
01:34
Smart Card Attacks
Free Sample
03:11
Software Attack
Free Sample
00:53
Microprobing
Free Sample
02:19
Identity Management
Free Sample
00:55
How Are These Entities Controlled?
Free Sample
01:22
Some Current Issues
Free Sample
03:00
Management
Free Sample
00:48
Typical Chaos
Free Sample
01:45
Different Identities
Free Sample
00:47
Identity Management Technologies
Free Sample
02:04
Directory Component
Free Sample
01:02
Directory Responsibilities
Free Sample
01:47
Authoritative Sources
Free Sample
02:26
Meta Directory
Free Sample
01:45
Directory Interactions
Free Sample
01:27
Web Access Management
Free Sample
05:09
Web Access
Free Sample
02:20
Password Management
Free Sample
02:46
Legacy Single Sign-On
Free Sample
02:23
Account Management Systems
Free Sample
01:56
Provisioning Component
Free Sample
01:59
Provisioning
Free Sample
00:46
Not Just Computers
Free Sample
01:28
Profile Update
Free Sample
03:28
Working Together
Free Sample
00:59
Enterprise Directory (2)
Free Sample
00:35
Identity Management Solution Components
Free Sample
02:16
Right for Your Company
Free Sample
02:58
Federated Identity
Free Sample
01:18
Identity Theft
Free Sample
00:41
Fake Login Tools
Free Sample
00:33
How Do These Attacks Work?
Free Sample
01:02
Attempts to Get Your Credentials
Free Sample
01:25
Instructional Emails
Free Sample
01:17
Knowing What You Are Disposing of Is Important
Free Sample
00:46
Other Examples
Free Sample
02:06
Another Danger to Be Aware of… Spyware
Free Sample
02:10
Is Someone Watching You?
Free Sample
01:37
What Does This Have to Do with My Computer?
Free Sample
00:40
New Spyware Is Being Identified Every Week
Free Sample
01:47
Spyware Comes in Many Different Forms
Free Sample
00:56
Different Technologies
Free Sample
02:19
Single Sign-on Technology
Free Sample
01:04
Directory Services as a Single Sign-on Technology
Free Sample
00:57
Active Directory
Free Sample
01:27
Security Domain
Free Sample
01:03
Domains of Trust
Free Sample
00:58
Thin Clients
Free Sample
01:13
Example (2)
Free Sample
00:51
Kerberos as a Single Sign-on Technology
Free Sample
01:47
Kerberos Components Working Together
Free Sample
01:24
Pieces and Parts
Free Sample
09:08
Kerberos Steps
Free Sample
01:59
Tickets
Free Sample
01:16
Steps of Validation
Free Sample
01:29
Kerberos Security
Free Sample
01:25
Issues Pertaining to Kerberos
Free Sample
01:31
Kerberos Issues
Free Sample
00:38
SESAME as a Single Sign-on Technology
Free Sample
02:18
SESAME Steps for Authentication
Free Sample
01:21
Combo
Free Sample
00:53
Models for Access
Free Sample
00:59
Access Control Models (1)
Free Sample
02:59
ACL Access
Free Sample
01:19
Security Issues
Free Sample
01:49
Mandatory Access Control Model
Free Sample
02:06
MAC Enforcement Mechanism – Labels
Free Sample
00:57
Formal Model
Free Sample
00:58
Software and Hardware
Free Sample
01:09
Software and Hardware Guards
Free Sample
00:44
Where Are They Used?
Free Sample
00:30
SELinux
Free Sample
01:13
MAC versus DAC
Free Sample
01:13
Role-Based Access Control
Free Sample
01:44
RBAC Hierarchy
Free Sample
00:45
RBAC and SoD
Free Sample
00:47
Acquiring Rights and Permissions
Free Sample
02:30
Rule-Based Access Control
Free Sample
01:37
Access Control Matrix (1)
Free Sample
00:34
Capability Tables
Free Sample
00:53
Temporal Access Control
Free Sample
00:42
Access Control Administration
Free Sample
00:35
Access Control Methods
Free Sample
00:54
Centralized Approach
Free Sample
01:35
Remote Centralized Administration
Free Sample
00:38
RADIUS
Free Sample
00:54
RADIUS Steps
Free Sample
01:16
RADIUS Characteristics
Free Sample
01:36
TACACS+ Characteristics
Free Sample
02:27
Diameter Characteristics
Free Sample
01:01
Diameter Protocol
Free Sample
01:35
Mobile IP
Free Sample
01:40
Diameter Architecture
Free Sample
01:09
Two Pieces
Free Sample
03:46
AVP
Free Sample
01:45
Decentralized Access Control Administration
Free Sample
02:00
Controlling Access to Sensitive Data
Free Sample
02:05
Protecting Access to System Logs
Free Sample
00:44
Accountability = Auditing Events
Free Sample
00:38
Access Control Models (2)
Free Sample
00:52
Policy versus Model
Free Sample
02:17
State Machine
Free Sample
01:37
Information Flow
Free Sample
00:35
Information Flow Model
Free Sample
05:28
Bell-LaPadula
Free Sample
00:55
Tranquility Types
Free Sample
01:39
Biba
Free Sample
00:41
Definition of Integrity
Free Sample
02:00
Biba Access Rules
Free Sample
00:56
Clark-Wilson
Free Sample
02:02
Goals of Model
Free Sample
02:32
Clark Wilson Components
Free Sample
00:45
Clark-Wilson (Cont.)
Free Sample
01:34
Clark-Wilson Model
Free Sample
01:21
Non-Interference Model
Free Sample
03:29
Lattice-Based Access Control
Free Sample
00:52
Access Control Matrix Model
Free Sample
01:07
Access Control Matrix (2)
Free Sample
02:10
Brewer and Nash Model – Chinese Wall
Free Sample
01:29
Take-Grant Model
Free Sample
02:00
Domain 1 Review
Free Sample
01:41
Domain 2 – Security Operations and Administration
Free Sample
00:50
Mainframe Days
Free Sample
02:26
In the Good Old Days – Who Knew?
Free Sample
01:36
Today’s Environment
Free Sample
01:14
Security Definitions
Free Sample
00:45
Vulnerabilities
Free Sample
02:09
Examples of Some Vulnerabilities that Are Not Always Obvious
Free Sample
02:10
Risk – What Does It Really Mean?
Free Sample
02:01
Relationships
Free Sample
01:17
Who Deals with Risk?
Free Sample
01:30
Overall Business Risk
Free Sample
00:43
Who?
Free Sample
00:48
AIC Triad
Free Sample
00:51
Availability
Free Sample
01:05
Integrity
Free Sample
00:48
Confidentiality
Free Sample
02:04
Who Is Watching?
Free Sample
04:06
Social Engineering
Free Sample
01:13
What Security People Are Really Thinking
Free Sample
01:00
Security Concepts
Free Sample
04:57
Security?
Free Sample
02:37
The Bad Guys Are Motivated
Free Sample
00:14
Open Standards
Free Sample
01:42
Common Open Standards
Free Sample
01:03
Without Standards
Free Sample
04:42
“Soft” Controls
Free Sample
00:41
Holistic Security
Free Sample
00:40
Not Always So Easy
Free Sample
02:16
What Is First?
Free Sample
03:21
Different Types of Law
Free Sample
01:21
How Is Liability Determined?
Free Sample
02:00
Examples of Due Diligence
Free Sample
02:30
Prudent Person Rule
Free Sample
00:19
Prudent Person
Free Sample
00:49
Components of Security Program
Free Sample
01:21
A Layered Approach
Free Sample
00:51
In Security, You Never Want Any Surprises
Free Sample
00:46
Building Foundation (1)
Free Sample
03:30
Security Roadmap
Free Sample
00:56
Functional and Assurance Requirements
Free Sample
01:27
Building Foundation (2)
Free Sample
02:46
Most Organizations
Free Sample
01:21
Silo Security Structure
Free Sample
00:33
Islands of Security Needs and Tools
Free Sample
01:38
Get Out of a Silo Approach
Free Sample
01:04
Approach to Security Management
Free Sample
00:26
Result of Battling Management
Free Sample
01:11
Industry Best Practices Standards
Free Sample
01:11
ISO/IEC 17799
Free Sample
01:10
Numbering
Free Sample
01:27
New ISO Standards
Free Sample
01:13
COBIT
Free Sample
01:37
COBIT – Control Objectives
Free Sample
01:54
Information Technology Infrastructure Library
Free Sample
04:59
Security Governance
Free Sample
00:28
Security Program Components
Free Sample
01:03
Policy Framework
Free Sample
00:54
Organizational Policy
Free Sample
00:51
Policy Approved – Now What?
Free Sample
00:45
Issue-Specific Policies
Free Sample
01:38
System-Specific Policies
Free Sample
02:13
Standards
Free Sample
01:18
Baseline (1)
Free Sample
01:16
Data Collection for Metrics (1)
Free Sample
00:33
Guidelines
Free Sample
00:36
Procedures
Free Sample
01:16
Tying Them Together
Free Sample
00:41
Program Support
Free Sample
01:05
Senior Management’s Role
Free Sample
04:07
Security Roles
Free Sample
00:55
Information Classification
Free Sample
00:45
Data Leakage
Free Sample
00:52
Do You Want to End Up in the News?
Free Sample
00:47
Types of Classification Levels
Free Sample
00:52
Data Protection Levels
Free Sample
02:01
Classification Program Steps
Free Sample
01:02
Information Classification Components
Free Sample
00:40
Classification Levels
Free Sample
01:14
Information Classification Criteria
Free Sample
00:34
Criteria Example
Free Sample
00:45
Or Not
Free Sample
00:50
Information Owner Requirements
Free Sample
01:00
Clearly Labeled
Free Sample
00:59
Testing Classification Program
Free Sample
01:13
Employee Management
Free Sample
00:47
Employee Position and Management
Free Sample
04:48
Hiring and Firing Issues
Free Sample
01:52
Security Awareness and Training
Free Sample
00:34
Training Characteristics
Free Sample
00:38
Awareness
Free Sample
00:52
Security Enforcement Issues
Free Sample
00:57
Computer Operations
Free Sample
00:45
What Do We Have?
Free Sample
01:01
Hardware Protection
Free Sample
01:35
ITIL – Problem Management
Free Sample
01:26
Problem Management Procedures for Processing Problems
Free Sample
00:21
Data Output Controls
Free Sample
03:01
Administrative Controls Personnel Controls
Free Sample
01:09
Security Operations Personnel
Free Sample
00:54
Change Control
Free Sample
00:44
Another Example
Free Sample
00:57
Agenda 1
Free Sample
01:05
Library Maintenance
Free Sample
00:29
Media Labels
Free Sample
00:49
Media Controls
Free Sample
01:21
Software Escrow
Free Sample
02:47
Media Reuse
Free Sample
02:00
Zeroization
Free Sample
00:45
Physical Destruction
Free Sample
01:46
Why Not Just Delete the Files?
Free Sample
00:58
Mainframes
Free Sample
00:38
Agenda 2
Free Sample
01:08
HSM
Free Sample
00:07
Off-Line
Free Sample
01:07
Backup Types
Free Sample
01:15
Incremental Backup
Free Sample
02:35
Incremental
Free Sample
02:02
Differential Backup
Free Sample
01:16
Backup Protection
Free Sample
01:17
Agenda 3
Free Sample
00:58
Mean Time Between Failure
Free Sample
03:21
Single Point of Failure
Free Sample
00:42
Mirroring Data
Free Sample
00:42
Disk Duplexing
Free Sample
05:36
Redundant Array of Independent Disks
Free Sample
00:49
Massive Array of Inactive Disks (MAID)
Free Sample
00:34
Redundant Array of Independent Tapes (RAIT)
Free Sample
00:49
Serial Advanced Technology Architecture
Free Sample
01:13
SAN
Free Sample
02:05
Fault Tolerance
Free Sample
01:13
Redundancy Mechanism
Free Sample
01:17
Backup Configuration Files
Free Sample
01:09
Trusted Recovery of Software
Free Sample
00:50
After System Crash
Free Sample
01:31
Security Concerns
Free Sample
00:04
Agenda 4
Free Sample
01:18
Contingency Planning
Free Sample
03:19
Agenda 5
Free Sample
01:31
Remote Access
Free Sample
01:36
Administering Systems Remotely
Free Sample
01:31
Facsimile Security
Free Sample
01:24
Support Systems
Free Sample
02:23
Configuration Management (2)
Free Sample
03:01
Change Control Roles in CM
Free Sample
01:19
Configuration Management Plan
Free Sample
01:20
Change Control-Security Environment
Free Sample
01:33
Process of Change Management
Free Sample
01:24
Baseline (2)
Free Sample
02:44
Risk-based Cost Effective Controls
Free Sample
00:30
Software Programming
Free Sample
04:23
Security Considered at Each Phase
Free Sample
01:41
Waterfall Model
Free Sample
01:20
WaterFall Stages
Free Sample
01:16
Requirement Analysis
Free Sample
01:01
Design
Free Sample
02:07
Development
Free Sample
01:44
Verification
Free Sample
02:27
Operation and Maintenance
Free Sample
02:32
Iterative Development Model
Free Sample
02:29
Exploratory Model
Free Sample
01:39
Rapid Application Development (RAD) Model
Free Sample
04:33
Spiral Model
Free Sample
01:34
Reuse Model
Free Sample
05:07
Computer Aided Software Engineering Model (CASE)
Free Sample
01:53
Extreme Programming
Free Sample
01:09
Trusted Computer System Evaluation Criteria (TCSEC)
Free Sample
00:40
TCSEC
Free Sample
01:57
TCSEC Rating Breakdown
Free Sample
01:21
Evaluation Criteria – ITSEC
Free Sample
01:12
ITSEC Ratings
Free Sample
00:27
Common Criteria
Free Sample
00:46
Security Functional Requirements
Free Sample
02:03
Common Criteria Components
Free Sample
00:40
Common Criteria Requirements
Free Sample
01:09
Common Criteria Outline
Free Sample
00:37
Certification versus Accreditation
Free Sample
01:01
Security Levels
Free Sample
03:12
Modes of Operation
Free Sample
00:39
MAC Modes (Cont.)
Free Sample
03:26
Sets of Ethics
Free Sample
00:36
Computer Ethics Institute
Free Sample
02:03
Internet Architecture Board
Free Sample
01:42
Domain 2 Review
Free Sample
00:59
Domain 3 – Risk, Response and Recovery
Free Sample
00:56
Risk Management
Free Sample
01:23
Why Is Risk Management Difficult?
Free Sample
00:56
Necessary Level of Protection Is Different for Each Organization
Free Sample
01:42
Security Team/Committee
Free Sample
00:44
Risk Management Process
Free Sample
00:50
Analysis Paralysis
Free Sample
02:04
Planning Stage – Scope
Free Sample
01:00
Planning Stage – Analysis Method
Free Sample
01:50
Risk Management Tools
Free Sample
02:24
Defining Acceptable Levels
Free Sample
00:52
Acceptable Risk Level
Free Sample
01:04
Collecting and Analyzing Data Methods
Free Sample
00:48
What Is a Company Asset?
Free Sample
01:00
Data Collection – Identify Assets
Free Sample
01:34
Data Collection – Assigning Values
Free Sample
01:02
Asset Value
Free Sample
01:19
Data Collection – Identify Threats
Free Sample
01:37
Data Collection – Calculate Risks
Free Sample
00:43
Scenario Based – Qualitative
Free Sample
00:40
Risk Approach (1)
Free Sample
00:55
Qualitative Analysis Steps
Free Sample
00:52
Want Real Answers?
Free Sample
01:21
Qualitative Risk Analysis Ratings
Free Sample
01:18
Quantitative Analysis (1)
Free Sample
00:37
How Often Will This Happen?
Free Sample
06:50
ARO Values and Their Meaning
Free Sample
00:55
ALE Calculation
Free Sample
01:25
Can a Purely Quantitative Analysis Be Accomplished?
Free Sample
00:38
Risk Types
Free Sample
00:34
Examples of Types of Losses
Free Sample
00:50
Delayed Loss
Free Sample
00:57
Cost/Benefit Analysis
Free Sample
01:21
Cost of a Countermeasure
Free Sample
02:55
Cost/Benefit Analysis Countermeasure Criteria
Free Sample
01:00
Calculating Cost/Benefit
Free Sample
00:29
Controls
Free Sample
01:30
Control Selection Requirements
Free Sample
01:38
Quantitative Analysis (2)
Free Sample
00:30
Qualitative Analysis Approach
Free Sample
00:48
Qualitative Analysis Disadvantages
Free Sample
00:20
Can You Get Rid of All Risk?
Free Sample
02:13
Calculating Residual Risk
Free Sample
01:10
Uncertainty Analysis
Free Sample
01:20
Dealing with Risk
Free Sample
01:50
Management’s Response to Identified Risks
Free Sample
01:42
Risk Acceptance
Free Sample
01:08
Risk Analysis Process Summary
Free Sample
00:38
Needs for BCP
Free Sample
02:32
Is Your Organization Prepared?
Free Sample
00:37
Is Your Company Prepared?
Free Sample
00:55
9/11 Changed Mentalities About BCP
Free Sample
00:42
Disaster Affected Many
Free Sample
00:36
America Is Rebuilding
Free Sample
00:53
Partial FEMA Disaster List for 2005
Free Sample
02:14
Do We Have a Plan?
Free Sample
02:25
What Is the Purpose of a BCP?
Free Sample
02:02
More Reasons to Have Plans in Place
Free Sample
00:38
Framework
Free Sample
01:00
BCP Is a Core Component of Every Security Program
Free Sample
01:56
Steps of BCP Process
Free Sample
01:14
Different BCP Model
Free Sample
01:08
Documentation
Free Sample
01:43
BCP Policy Outlines
Free Sample
01:51
Who Is In Charge and Who Can We Blame?
Free Sample
00:51
What’s Needed In a Team?
Free Sample
01:30
BCP Development Team
Free Sample
01:43
Project Sizing
Free Sample
00:49
Properly Determining Scope Is Important
Free Sample
02:10
BCP Risk Analysis Steps
Free Sample
01:27
BIA Steps
Free Sample
01:17
Information from Different Sources
Free Sample
01:08
Analysis
Free Sample
03:08
Critical Functions
Free Sample
00:44
Interdependencies
Free Sample
00:53
Well, Of Course an Organization Knows How It Works!
Free Sample
02:15
Business Silos
Free Sample
02:26
BIA Steps (Cont.)
Free Sample
00:38
Who Connects to Who?
Free Sample
02:00
BIA Steps (Cont.)
Free Sample
00:30
MTD
Free Sample
01:52
Example
Free Sample
01:15
MTD Definitions
Free Sample
02:53
BIA Steps (Cont.)
Free Sample
00:55
Thinking Outside of the Box What If…
Free Sample
00:46
Biological Threats
Free Sample
00:55
BIA Steps (Cont.)
Free Sample
02:25
Potential Disasters
Free Sample
00:42
Risk Approach (2)
Free Sample
01:01
Ranking by Risk Level
Free Sample
01:13
Potential Losses
Free Sample
02:59
Include All RISK Components
Free Sample
01:27
BIA Steps (Cont.)
Free Sample
02:36
Alternate Business Process Procedures
Free Sample
02:02
Business Process Reconstruction
Free Sample
00:38
Facility Recovery
Free Sample
00:51
Facility Backups – Hot Site
Free Sample
00:58
Facility Backups – Warm Site
Free Sample
00:42
Facility Backups – Cold Site
Free Sample
02:03
Compatibility Issues with Offsite Facility
Free Sample
00:56
Tertiary Sites
Free Sample
02:16
Subscription Costs
Free Sample
00:50
Multiple Processing Centers
Free Sample
01:07
Location, Location, Location
Free Sample
01:51
Other Offsite Approaches
Free Sample
01:12
Security Does Not Stop
Free Sample
02:01
More Options
Free Sample
00:57
Rolling Hot Site
Free Sample
00:40
Recovery Strategies (Cont.)
Free Sample
01:44
Supply and Technology Recovery
Free Sample
01:07
VoIP
Free Sample
03:23
Equipment Replacement
Free Sample
01:31
What Items Need to Be Considered?
Free Sample
00:09
Priorities
Free Sample
00:41
Anything Else?
Free Sample
01:43
Replacements
Free Sample
03:14
Recovery Strategies (Cont.)
Free Sample
00:51
Co-Location
Free Sample
01:51
Data Recovery
Free Sample
01:51
Backup Redundancy
Free Sample
00:41
Recovering Data
Free Sample
02:04
Automated Backup Technologies
Free Sample
01:58
Tape Vaulting
Free Sample
00:40
Data Recovery (Cont.)
Free Sample
01:30
Clustering for Fault Tolerance
Free Sample
01:26
Disk or Database Shadowing
Free Sample
00:30
Which Option to Use
Free Sample
01:13
Cost Effective Measures
Free Sample
00:45
Resources, Time, Solutions
Free Sample
01:30
Determining Recovery Solutions
Free Sample
00:53
Cost and Recovery Times
Free Sample
01:10
Proactive
Free Sample
00:48
Recovery Solutions
Free Sample
01:17
Preventative Measures
Free Sample
00:50
Reviewing Insurance
Free Sample
01:11
Results from the BIA
Free Sample
01:50
Now Ready to Develop the Plan
Free Sample
01:05
Products That Can Help
Free Sample
01:38
Plan Components
Free Sample
01:24
External Groups
Free Sample
00:42
Policy Components
Free Sample
01:39
Damage Assessment
Free Sample
01:16
Notifying Personnel
Free Sample
00:42
Plan Activation
Free Sample
00:47
Emergency Response
Free Sample
00:35
Policy Components (Cont.)
Free Sample
00:44
Recovery Procedures
Free Sample
01:11
Documentation of Recovery Steps
Free Sample
02:40
Policy Components (Cont.)
Free Sample
01:09
Returning to Original Facility
Free Sample
01:05
Disaster Hit – Now What?
Free Sample
01:05
Termination of BCP
Free Sample
00:48
Life Cycle
Free Sample
00:51
Who Has the Plan?
Free Sample
00:32
Results
Free Sample
03:49
Types of Tests to Choose From
Free Sample
01:02
Test Objectives
Free Sample
01:21
Training Requirements
Free Sample
00:36
Lessons Learned
Free Sample
00:51
What Is Success?
Free Sample
01:00
Out of Date?
Free Sample
00:52
Keeping It Current
Free Sample
00:58
Change Control
Free Sample
01:23
Resulting Plan Should Contain…
Free Sample
00:54
Phases of the BCP
Free Sample
02:43
Agenda 2
Free Sample
01:00
Countries Working Together
Free Sample
00:38
Security Principles for International Use
Free Sample
00:48
Determine If a Crime Has Indeed Been Committed
Free Sample
01:41
Bringing In Law Enforcement
Free Sample
01:50
Citizen versus Law Enforcement Investigation
Free Sample
00:34
Role of Evidence In a Trial
Free Sample
00:37
Evidence Requirements
Free Sample
00:58
Chain of Custody (1)
Free Sample
01:19
How Is Evidence Processed?
Free Sample
01:06
Hearsay Evidence
Free Sample
02:16
Agenda 3
Free Sample
01:56
Evidence Collection Topics
Free Sample
02:07
Computer Forensics
Free Sample
05:25
Hidden Secrets
Free Sample
04:09
Trying to Trap the Bad Guy
Free Sample
03:05
Companies Can Be Found Liable
Free Sample
02:41
Why Incident Response?
Free Sample
01:37
Incident Response Alarms
Free Sample
00:45
Threats
Free Sample
05:04
Incident Response Framework
Free Sample
02:28
Preparation and Planning
Free Sample
03:55
IRT – Incident Response Team
Free Sample
02:02
Incident Response Team – Mission
Free Sample
04:49
Incident Response Team – Objectives
Free Sample
02:13
Incident Response Team – Priorities
Free Sample
05:28
Incident Response Team – Liaisons
Free Sample
01:29
Detection
Free Sample
01:34
Chain of Custody (2)
Free Sample
01:00
Poking into Network Traffic
Free Sample
02:12
Snort
Free Sample
01:00
Containment
Free Sample
02:44
Containment – Some Considerations
Free Sample
02:17
Notification
Free Sample
01:42
Investigation
Free Sample
02:07
Rules of Evidence
Free Sample
02:18
Acceptable Evidence
Free Sample
00:54
Exclusionary Rules
Free Sample
00:53
Evidence Recognition
Free Sample
01:45
Evidence Discovery
Free Sample
02:00
Search and Seizure
Free Sample
04:48
Network Monitoring
Free Sample
01:51
Reviewing System Logs
Free Sample
01:15
Interviewing
Free Sample
01:20
Terminating the Investigation
Free Sample
00:55
Recovery
Free Sample
01:18
Response
Free Sample
03:33
Follow-Up
Free Sample
01:57
Electronic Forensic
Free Sample
00:43
Media Analysis Procedures
Free Sample
02:52
Media Analysis – IACIS Framework
Free Sample
00:56
Step 1 – Sterile Media
Free Sample
00:59
Step 2 – Legal Software
Free Sample
01:50
Step 3 – Physical Examination of the Evidence
Free Sample
02:29
Step 4 – Avoid Altering the Evidence
Free Sample
01:55
Step 5 – Capture Date/Time and CMOS (RTC/NVRAM) Information
Free Sample
00:55
Step 6 – Create an Exact Image
Free Sample
01:53
Step 7 – Logically Examine the Image
Free Sample
01:04
Step 8 – Examine the Boot Record Data and User-Defined Files
Free Sample
01:35
Step 9 – Recover and Examine All Deleted Files
Free Sample
01:05
Step 10 – Create a Listing of All Files
Free Sample
00:55
Step 11 – Examine Unallocated Space for Lost or Hidden Data
Free Sample
02:51
Step 12 – Examine File Slack
Free Sample
02:19
Step 13 – Examine All User Created Files
Free Sample
01:14
Step 14 – Unlock and Examine Password-Protected Files
Free Sample
01:40
Step 15 – Create Printouts of All of the Apparent Evidence
Free Sample
01:32
Step 16 – Examine Executable Files and Run Applications
Free Sample
01:29
Step 17 – Write the Forensic Analysis Report
Free Sample
02:28
Domain 3 Review
Free Sample
00:47
Domain 4 – Analysis and Monitoring
Free Sample
00:33
Security Auditing
Free Sample
00:52
What Are Security Audits?
Free Sample
03:06
Why Are Security Audits Performed?
Free Sample
01:52
Audit Participant’s Role
Free Sample
02:20
Defining the Audit Scope
Free Sample
00:46
Defining the Audit Plan
Free Sample
03:24
Audit Data Collection Methods
Free Sample
02:17
Post Audit Activities
Free Sample
01:53
Controls
Free Sample
01:48
Control Checks
Free Sample
00:38
Control Checks – User Access Control
Free Sample
02:52
Control Checks – Network Access
Free Sample
00:42
Network Configurations
Free Sample
03:24
DMZ Configurations
Free Sample
04:47
Firewall Comparisons
Free Sample
01:51
Network Devices – Firewalls
Free Sample
02:21
Host Isolation – Audit Questions
Free Sample
01:25
Firewalls – Audit Questions
Free Sample
01:54
Intrusion Detection System
Free Sample
02:10
IDS – Audit Questions
Free Sample
01:12
Network Monitoring
Free Sample
02:01
Control Checks – Monitoring
Free Sample
01:40
Monitoring – Audit Questions
Free Sample
03:14
Control Checks – System Hardening
Free Sample
01:06
Patching – Audit Questions
Free Sample
01:05
Control Checks – Anti-Virus
Free Sample
01:52
Control Checks – Encryption
Free Sample
01:14
Control Checks – Logging
Free Sample
01:07
Protecting Access to System Logs
Free Sample
03:24
Audit Process
Free Sample
00:47
Security Testing
Free Sample
01:17
Overview
Free Sample
00:58
Why?
Free Sample
01:12
When?
Free Sample
02:30
Who?
Free Sample
01:48
Security Testing Goals
Free Sample
01:24
Security Testing – Tools
Free Sample
01:43
Before Carrying Out Vulnerability Testing
Free Sample
01:05
Testing for Vulnerabilities
Free Sample
02:23
Vulnerability Assessments
Free Sample
05:31
Security Testing Issues
Free Sample
00:51
Vulnerability Scanning
Free Sample
01:04
Vulnerability Scans
Free Sample
02:27
Penetration Testing (1)
Free Sample
01:40
Penetration Testing Variations
Free Sample
03:11
Types of Testing
Free Sample
04:53
Step In Attack Chart
Free Sample
02:14
Testing Steps
Free Sample
01:42
Automated Pen Testing Tools Canvas™ Operation
Free Sample
03:15
Penetration Testing (2)
Free Sample
01:06
Automated Pen Testing Tools Core Impact™ Operation
Free Sample
03:34
Test Type Chart
Free Sample
00:53
Reconnaissance
Free Sample
00:46
Reconnaissance – Social Engineering
Free Sample
00:42
Reconnaissance – WHOIS Information
Free Sample
03:11
Reconnaissance – DNS Zone Transfer
Free Sample
01:51
Network Mapping
Free Sample
00:55
Network Mapping – Host/Port Mapping
Free Sample
01:05
Vulnerability Assessment
Free Sample
00:39
Security Gateway Testing
Free Sample
02:10
Security Monitoring Testing
Free Sample
01:17
Weeding Out False Positives
Free Sample
00:50
Security Monitoring
Free Sample
01:01
Post-Testing and Assessment Steps
Free Sample
00:50
Motivation Behind Attacks
Free Sample
01:19
Intrusions
Free Sample
01:07
What Is Acceptable?
Free Sample
00:47
Security Monitoring for Everyday Life
Free Sample
01:46
Security Monitoring for Computing Systems
Free Sample
02:47
Security Monitoring Issues
Free Sample
04:34
Monitoring Terminologies
Free Sample
01:12
Intrusion Detection Systems
Free Sample
00:55
IDS Categories
Free Sample
01:20
Network-based IDS
Free Sample
02:33
Host-based IDS
Free Sample
01:22
Anomaly Detection
Free Sample
01:43
Signature-based IDS
Free Sample
01:23
IDS as a Patch for Firewall
Free Sample
01:45
Event Logging
Free Sample
00:53
Event Logging – Usefulness
Free Sample
01:24
Log Sources
Free Sample
01:19
Centralized Logging infrastructure
Free Sample
00:47
Log Reviews
Free Sample
01:08
Logging Priority
Free Sample
01:39
Secure Logging
Free Sample
01:31
Event Alerting and Interpretation
Free Sample
01:42
Accountability = Auditing Events
Free Sample
03:12
Security Monitoring Evasion
Free Sample
01:03
Obfuscation
Free Sample
00:35
Fragmentation
Free Sample
02:08
Encryption
Free Sample
00:43
Overloading
Free Sample
00:47
Slow Scans
Free Sample
01:25
Log Alteration
Free Sample
00:47
Security Monitoring Implementation Issues
Free Sample
02:07
Criticality Based Deployment
Free Sample
00:50
Maintenance and Tuning
Free Sample
00:59
Data Collection for Incident Response
Free Sample
01:32
Monitoring Response Techniques
Free Sample
01:13
Active Response Pitfalls
Free Sample
02:11
IDS
Free Sample
01:25
IDS Steps
Free Sample
02:00
Network IDS Sensors
Free Sample
01:31
Host IDS
Free Sample
01:37
Combination
Free Sample
02:31
Types of IDSs
Free Sample
02:28
Signature-Based Example
Free Sample
03:32
Behavior-Based IDS
Free Sample
01:04
Statistical Anomaly
Free Sample
00:45
Statistical IDS
Free Sample
01:44
Protocol Anomaly
Free Sample
01:30
What Is a Protocol Anomaly?
Free Sample
00:48
Protocol Anomaly Issues
Free Sample
03:47
Traffic Anomaly
Free Sample
01:09
IDS Response Mechanisms
Free Sample
01:37
Responses to Attacks
Free Sample
01:54
IDS Issues
Free Sample
02:43
Intrusion Prevention System
Free Sample
00:47
Vulnerable IDS
Free Sample
01:42
Trapping an Intruder
Free Sample
01:30
Domain 4 Review
Free Sample
01:16
Domain 5 – Cryptography
Free Sample
01:13
Services Provided by Cryptography
Free Sample
01:15
Cryptographic Definitions
Free Sample
01:35
Cipher
Free Sample
01:09
A Few More Definitions
Free Sample
01:12
Need Some More Definitions?
Free Sample
00:46
Symmetric Cryptography – Use of Secret Keys
Free Sample
00:47
Historical Uses of Symmetric Cryptography – Hieroglyphics
Free Sample
01:02
Scytale Cipher
Free Sample
01:55
Substitution Ciphers
Free Sample
01:18
Simple Substitution Cipher Atbash
Free Sample
01:59
Simple Substitution Cipher Caesar Cipher
Free Sample
01:33
Simple Substitution Cipher ROT13
Free Sample
01:14
Historical Uses
Free Sample
00:37
Polyalphabetic Cipher – Vigenere Cipher
Free Sample
00:17
Polyalphabetic Substitution
Free Sample
01:54
Vigenere Algorithm
Free Sample
02:33
Enigma Machine
Free Sample
02:40
U-Boats Had Enigma Machines
Free Sample
03:31
Code Book
Free Sample
01:30
Agenda 1
Free Sample
02:27
Key and Algorithm Relationship
Free Sample
00:35
Does Size Really Matter?
Free Sample
01:19
Key Space
Free Sample
01:52
Ways of Breaking Cryptosystems – Brute Force
Free Sample
00:44
Brute Force Components
Free Sample
01:40
Ways of Breaking Cryptosystems – Frequency Analysis
Free Sample
01:40
Strength of a Cryptosystem
Free Sample
00:36
Do You Know What You Are Doing?
Free Sample
01:14
Developing Cryptographic Solutions In-House
Free Sample
02:47
Characteristics of Strong Algorithms
Free Sample
01:23
Open or Closed More Secure?
Free Sample
00:39
Agenda 2
Free Sample
01:08
Type of Symmetric Cipher – Block Cipher
Free Sample
01:32
S-Boxes Used In Block Ciphers
Free Sample
01:24
Binary Mathematical Function 1
Free Sample
01:42
Type of Symmetric Cipher – Stream Cipher
Free Sample
00:46
Symmetric Characteristics
Free Sample
01:41
Initialization Vectors
Free Sample
05:07
Security Holes
Free Sample
01:01
Strength of a Stream Cipher
Free Sample
01:30
Symmetric Key Cryptography
Free Sample
01:56
Out-of-Band Transmission
Free Sample
02:05
Symmetric Key Management Issue
Free Sample
00:46
Symmetric Downfalls
Free Sample
00:34
Why?
Free Sample
00:57
Asymmetric Cryptography
Free Sample
00:55
Key Functions
Free Sample
02:53
Public Key Cryptography Advantages
Free Sample
01:14
Asymmetric Algorithm Disadvantages
Free Sample
01:38
Confusing Names
Free Sample
00:59
Symmetric versus Asymmetric
Free Sample
04:29
Questions 1
Free Sample
01:44
When to Use Which Key
Free Sample
00:39
Using the Algorithm Types Together
Free Sample
02:28
Encryption Steps
Free Sample
00:42
Receiver’s Public Key Is Used to Encrypt the Symmetric Key
Free Sample
01:16
Receiver’s Private Key Is Used to Decrypt the Symmetric Key
Free Sample
01:07
Digital Envelope
Free Sample
01:01
Secret versus Session Keys
Free Sample
00:06
Asymmetric Algorithms We Will Dive Into
Free Sample
01:22
Asymmetric Algorithm – Diffie-Hellman
Free Sample
05:05
Diffie-Hellman
Free Sample
00:48
Key Agreement Schemes
Free Sample
01:34
Asymmetric Algorithm – RSA
Free Sample
01:56
Factoring Large Numbers
Free Sample
01:07
RSA Operations
Free Sample
01:00
RSA Key Size
Free Sample
00:40
El Gamal
Free Sample
01:10
ECC
Free Sample
00:50
ECC Benefits
Free Sample
03:34
Asymmetric Mathematics
Free Sample
00:46
Asymmetric Security
Free Sample
00:42
Mathematics
Free Sample
06:11
Symmetric Ciphers We Will Dive Into
Free Sample
01:06
Block Cipher
Free Sample
01:35
Double DES
Free Sample
00:58
Evolution of DES
Free Sample
01:13
Modes of 3DES
Free Sample
01:42
Encryption Modes
Free Sample
01:42
Block Cipher Modes – CBC
Free Sample
00:46
IV and CBC
Free Sample
01:28
Different Modes of Block Ciphers – ECB
Free Sample
00:31
ECB versus CBC
Free Sample
04:06
Block Cipher Modes – CFB and OFB
Free Sample
01:41
CFB and OFB Modes
Free Sample
02:47
Counter Mode
Free Sample
01:45
Modes Summary
Free Sample
01:53
Symmetric Cipher – AES
Free Sample
00:41
IDEA
Free Sample
01:09
RC4 and RC5
Free Sample
00:37
Agenda 3
Free Sample
00:15
Data Integrity
Free Sample
01:05
Hashing Steps
Free Sample
01:01
Protecting the Integrity of Data
Free Sample
02:22
Hashing Algorithms
Free Sample
01:23
Data Integrity Mechanisms
Free Sample
00:34
Hashing Strength
Free Sample
01:06
Question 1
Free Sample
00:40
More Protection in Data Integrity
Free Sample
01:12
MAC
Free Sample
00:34
HMAC – Sender
Free Sample
01:15
HMAC – Receiver
Free Sample
01:03
Another Look
Free Sample
00:37
What Services
Free Sample
03:05
Authentication Types
Free Sample
00:59
Integrity?
Free Sample
01:29
What Services?
Free Sample
01:25
Question 2
Free Sample
02:07
Digital Signatures
Free Sample
00:35
One More Look 1
Free Sample
01:03
U.S. Government Standard
Free Sample
01:11
What Is…
Free Sample
01:07
Zero Knowledge Proof
Free Sample
01:01
Message Integrity Controls
Free Sample
01:22
Security Issues In Hashing
Free Sample
02:59
Example of a Birthday Attack
Free Sample
00:51
Birthday Attack Issues
Free Sample
01:42
Key Management
Free Sample
00:30
Key Backup
Free Sample
00:37
Key Management (Cont.)
Free Sample
01:33
Key Usage
Free Sample
00:39
Cryptoperiod
Free Sample
01:46
M-of-N
Free Sample
01:21
Key Types
Free Sample
01:36
Agenda 4
Free Sample
00:37
Components of PKI
Free Sample
00:46
PKI
Free Sample
01:06
PKI Steps
Free Sample
02:28
RA Roles
Free Sample
00:34
CA
Free Sample
01:36
Let’s Walk Through an Example
Free Sample
02:24
Digital Certificates
Free Sample
00:45
Certificate
Free Sample
00:52
Signing the Certificate
Free Sample
03:34
Verifying the Certificate
Free Sample
01:29
Trusted CA’s
Free Sample
02:48
Non-Trusted CA
Free Sample
00:40
One More Look 2
Free Sample
05:01
What Do You Do with a Certificate?
Free Sample
02:21
Components of PKI, Repository, and CRLs
Free Sample
01:50
Revoked?
Free Sample
02:45
CRL Process
Free Sample
02:12
Different Uses for Certificates
Free Sample
02:57
Cross Certification
Free Sample
01:40
PKI and Trust
Free Sample
00:37
Agenda 5
Free Sample
00:53
Historical Uses of Symmetric Cryptography – Vernam Cipher
Free Sample
02:18
Binary Mathematical Function 2
Free Sample
00:45
One-Time Pad In Action
Free Sample
03:32
One-Time Pad Characteristics
Free Sample
01:57
Steganography
Free Sample
01:10
Digital Watermarking
Free Sample
03:01
Link versus End-to-End Encryption
Free Sample
01:28
End-to-End Encryption
Free Sample
01:14
Encryption Location
Free Sample
02:15
Email Standards
Free Sample
02:40
You Decide
Free Sample
01:47
Non-Hierarchical
Free Sample
02:18
Secure Protocols
Free Sample
04:12
SSL Connection Setup
Free Sample
01:09
Example – SSL
Free Sample
00:58
Validating Certificate
Free Sample
02:15
Secure Protocols (Cont.)
Free Sample
01:56
SSL and the OSI Model
Free Sample
04:15
E-Commerce
Free Sample
00:45
How Are You Doing?
Free Sample
00:42
Hard the First Times Through
Free Sample
02:05
Secure Email Standard
Free Sample
02:57
Agenda 6
Free Sample
01:48
IPSec Key Management
Free Sample
00:59
IPSec Handshaking Process
Free Sample
01:54
VPN Establishment
Free Sample
03:03
SAs in Use
Free Sample
01:51
Key Issues Within IPSec
Free Sample
00:32
Configuration of SA Parameters
Free Sample
00:44
IPSec Configuration Options
Free Sample
03:16
IPSec Is a Suite of Protocols
Free Sample
02:12
AH and ESP Modes
Free Sample
01:13
IPSec Modes of Operation
Free Sample
02:04
VPN Establishment (Cont.)
Free Sample
02:07
Review
Free Sample
02:20
Questions 2
Free Sample
00:43
Attack Types
Free Sample
01:23
Attacks on Cryptosystems
Free Sample
01:52
Known-Plaintext Attack
Free Sample
01:10
Chosen-Plaintext Attack
Free Sample
02:01
Chosen-Ciphertext Attack
Free Sample
00:59
Adaptive Attacks
Free Sample
01:17
Side Channel Attacks
Free Sample
01:30
Domain 5 Review
Free Sample
00:37
Domain 6 – Networking and Telecom
Free Sample
00:30
Agenda 1
Free Sample
01:39
OSI Model
Free Sample
00:59
OSI Layers
Free Sample
00:39
Networking Communications
Free Sample
01:40
An Older Model
Free Sample
02:01
Data Encapsulation
Free Sample
02:33
Application Layer
Free Sample
01:21
Presentation Layer
Free Sample
01:15
OSI – Presentation Layer
Free Sample
01:00
OSI – Session Layer
Free Sample
00:56
Client/Server Model
Free Sample
01:14
Client/Server Session Layer
Free Sample
02:59
Transport Layer
Free Sample
00:56
OSI – Network Layer
Free Sample
01:06
Here to There
Free Sample
00:43
Network Layer
Free Sample
01:48
OSI – Data Link
Free Sample
02:05
Data Link
Free Sample
01:57
Sublayers
Free Sample
00:20
OSI – Physical Layer
Free Sample
01:13
Physical Layer
Free Sample
00:29
Layers Working Together
Free Sample
05:53
Protocols at Each Layer
Free Sample
02:16
Devices Work at Different Layers
Free Sample
01:26
Types of Networks
Free Sample
00:37
Network Topologies – Physical Layer
Free Sample
00:51
Topology Type – Bus
Free Sample
01:45
Topology Type – Ring
Free Sample
00:55
Topology Type – Star
Free Sample
01:48
Network Topologies – Mesh
Free Sample
01:10
Summary of Topologies
Free Sample
01:10
Agenda 2
Free Sample
00:52
Media Access
Free Sample
00:41
One Goal of Media Access Technologies
Free Sample
00:58
Collision Domain
Free Sample
01:29
Back Off, Buddy
Free Sample
01:10
Carrier Sense Multiple Access
Free Sample
01:24
CSMA/Collision Avoidance (CSMA/CA)
Free Sample
02:08
Media Access Technologies – Ethernet
Free Sample
02:54
Media Access Technologies – Token Passing
Free Sample
00:45
Token’s Role
Free Sample
01:07
Other Technologies
Free Sample
01:02
Media Access Technologies – Polling
Free Sample
01:38
Agenda 3
Free Sample
01:29
Cabling Types – Twisted Pair
Free Sample
00:55
Cable Types
Free Sample
01:12
Multimode versus Single Mode
Free Sample
00:51
Signal and Cable Issues
Free Sample
01:04
Signaling Issues
Free Sample
01:52
Transmission Types – Analog and Digital
Free Sample
00:57
Transmission Types – Synchronous
Free Sample
00:41
Asynchronous
Free Sample
02:08
Transmission Types
Free Sample
01:56
Cabling Issues – Plenum-Rated
Free Sample
02:30
Transmission Types – Number of Receivers
Free Sample
00:53
Internet Group Management Protocol
Free Sample
00:51
Multicasting
Free Sample
01:13
Network Technologies
Free Sample
00:42
Extranet
Free Sample
01:13
Network Technologies (Cont.)
Free Sample
00:37
EDI Evolution
Free Sample
04:03
Networking Devices
Free Sample
01:21
Forwarding Table Example
Free Sample
00:55
Network Devices – Switch
Free Sample
01:23
Virtual LAN
Free Sample
00:52
VLAN
Free Sample
02:14
Interfaces and VLANs
Free Sample
03:12
Sniffers
Free Sample
02:14
Networking Devices – Router
Free Sample
00:55
Hops
Free Sample
00:49
Routers
Free Sample
01:29
Bridges Compared to Routers
Free Sample
00:54
Network Devices – Gateway
Free Sample
02:09
Agenda 4
Free Sample
01:33
Client Ports
Free Sample
00:47
Conceptual Use of Ports
Free Sample
01:08
TCP/IP Suite
Free Sample
02:29
UDP versus TCP
Free Sample
00:49
TCP Segment
Free Sample
03:29
SYN Flood
Free Sample
02:04
Teardrop Attack
Free Sample
01:02
Source Routing
Free Sample
00:51
Source Routing Types
Free Sample
02:55
IP Address Ranges
Free Sample
02:35
IPv6
Free Sample
01:08
Protocols – ARP
Free Sample
00:49
IP to MAC Mapping
Free Sample
01:27
How ARP Works
Free Sample
01:13
ARP Poisoning
Free Sample
01:22
ICMP Packets
Free Sample
01:19
A Way Hackers Use ICMP
Free Sample
01:29
Ping Steps
Free Sample
00:48
Protocols – SNMP
Free Sample
03:19
SNMP in Action
Free Sample
01:48
SNMP
Free Sample
00:58
SNMP Output
Free Sample
00:47
POP3 and SMTP
Free Sample
02:33
Protocols – SMTP
Free Sample
02:36
Protocols – FTP, TFTP, Telnet
Free Sample
01:17
Protocols – RARP and BootP
Free Sample
01:03
DHCP – Dynamic Host Configuration Protocol
Free Sample
01:49
Agenda 5
Free Sample
01:06
Network Configurations
Free Sample
01:05
DMZ Configurations
Free Sample
00:43
Firewall Comparisons
Free Sample
02:25
Network Devices – Firewalls
Free Sample
01:55
Packet Filtering Firewall
Free Sample
00:56
Packet Filtering Firewall Weaknesses
Free Sample
00:35
Packet Filtering
Free Sample
01:21
Rule Set Example
Free Sample
07:36
Firewall Types
Free Sample
00:44
Application-Layer Proxy Advantages
Free Sample
01:00
Application-Layer Proxy Disadvantages
Free Sample
00:57
Dedicated Proxy Servers
Free Sample
04:42
Firewall Types – Stateful
Free Sample
03:58
State Table
Free Sample
01:30
Firewall Types – Kernel Proxies
Free Sample
00:50
Firewall Based VPN Devices
Free Sample
02:58
Best Practices
Free Sample
01:18
Firewall Placement
Free Sample
00:36
Packet Filtering (Cont.)
Free Sample
01:13
Screened Host
Free Sample
01:24
Firewall Architecture Types – Multi- or Dual-Homed
Free Sample
02:24
Screened Subnet
Free Sample
00:46
Agenda 6
Free Sample
00:45
Dial-Up Protocol – SLIP
Free Sample
01:00
Dial-Up Protocol – PPP
Free Sample
00:51
PPP
Free Sample
01:30
PPP versus SLIP
Free Sample
00:44
Authentication Protocols – PAP
Free Sample
02:15
Authentication Protocols – CHAP
Free Sample
01:23
Authentication Protocol – EAP
Free Sample
03:43
Data Inspection
Free Sample
01:17
Virtual Private Network Technologies
Free Sample
01:01
Analogy
Free Sample
00:58
Tunneling Protocols – Examples
Free Sample
01:08
Tunneling Protocols – PPTP
Free Sample
02:35
Tunneling Protocols – L2TP
Free Sample
00:30
L2TP Encapsulation
Free Sample
00:48
Tunneling Protocols – IPSec
Free Sample
03:55
IPSec Basic Features
Free Sample
00:34
IPSec Modes
Free Sample
04:01
Security Associations (SAs)
Free Sample
02:13
Combining Sas
Free Sample
00:27
Iterated Tunnelling
Free Sample
01:20
Agenda 7
Free Sample
00:59
Layer 3 at Layer 2
Free Sample
01:08
MPLS
Free Sample
01:13
Multiprotocol Label Switching
Free Sample
01:47
Quality of Service (QoS)
Free Sample
00:49
QoS Services
Free Sample
02:03
Autonomous Systems
Free Sample
02:15
Routing Protocols
Free Sample
01:51
Routing
Free Sample
02:04
Routing Protocols (Cont.)
Free Sample
01:22
OSPF
Free Sample
00:40
IGRP
Free Sample
02:39
BGP
Free Sample
00:54
Routing Protocol Attacks
Free Sample
04:03
MAN Technologies
Free Sample
01:29
Connecting Networks
Free Sample
02:46
Network Services
Free Sample
03:31
Name Resolving Steps
Free Sample
01:02
Split DNS
Free Sample
03:37
Host Name Resolution Attacks
Free Sample
04:25
Network Service – NAT
Free Sample
00:43
NIS
Free Sample
00:45
Storing Data
Free Sample
00:37
NIS+ Authentication
Free Sample
01:09
Agenda 8
Free Sample
00:58
PSTN
Free Sample
00:40
Circuit Switching
Free Sample
00:45
Steps of Connections
Free Sample
01:39
Multiplexing
Free Sample
00:53
Types of Multiplexing
Free Sample
01:43
TDM Process
Free Sample
01:24
FDM
Free Sample
02:28
Packet Switching
Free Sample
01:23
Circuit versus Packet Switching
Free Sample
00:17
WAN Technologies – Packet Switched
Free Sample
00:53
WAN Technologies – X.25
Free Sample
01:08
X.25
Free Sample
01:47
WAN Technologies – Frame Relay
Free Sample
00:43
WAN Example
Free Sample
05:34
Frame Relay
Free Sample
02:09
WAN Technologies – ISDN
Free Sample
02:38
WAN Technologies – DSL
Free Sample
01:37
WAN Technologies – Cable Modem
Free Sample
00:54
Cable Modems
Free Sample
00:32
Cable Network
Free Sample
00:39
Satellites
Free Sample
00:52
Hybrid Connection
Free Sample
00:40
Satellite Coverage
Free Sample
01:02
Network Perimeter Security
Free Sample
01:04
Complexity Only Increases
Free Sample
00:36
A Layered Approach
Free Sample
00:43
Agenda 9
Free Sample
01:54
PSTN (Cont.)
Free Sample
01:49
Private Branch Exchange
Free Sample
01:33
PBX Vulnerabilities
Free Sample
01:44
PBX Best Practices
Free Sample
03:36
Voice Over IP
Free Sample
00:32
Media Gateways
Free Sample
00:51
PBX and VoIP
Free Sample
00:26
Voice over…
Free Sample
01:14
IP Telephony Issues
Free Sample
00:36
Telephony Protection Mechanisms
Free Sample
02:39
Telephony Security
Free Sample
00:32
IP Telephony with Wireless
Free Sample
02:13
IP Phones Security
Free Sample
01:55
Mobile Technology Generations
Free Sample
01:23
Mobile Phone Security
Free Sample
01:22
Mobile Device Security
Free Sample
02:39
Cell Phone
Free Sample
02:18
Agenda 10
Free Sample
01:10
Wireless Frequencies
Free Sample
06:01
Alphabet Soup of Standards
Free Sample
05:49
Spread Spectrum
Free Sample
00:41
OFDM
Free Sample
02:10
Where Does Spread Spectrum Work?
Free Sample
01:08
802.11n
Free Sample
01:01
Wireless Technologies – Access Point (Cont.)
Free Sample
00:46
Architectures
Free Sample
01:46
Wireless Technologies – Service Set ID
Free Sample
01:03
Authenticating to an AP
Free Sample
02:27
802.11 Authentication
Free Sample
01:58
Wireless Technologies – WEP
Free Sample
02:41
Wireless Technologies – More WEP Woes
Free Sample
00:33
Lack of Integrity
Free Sample
01:11
WEP Security Issues
Free Sample
01:19
Frequency Management
Free Sample
04:11
802.11 Security Solutions
Free Sample
01:20
802.1x
Free Sample
05:07
802.1x Authentication
Free Sample
01:22
Types of 802.11 Security
Free Sample
02:07
IEEE 802.11i Standard
Free Sample
05:50
Wireless EAP
Free Sample
07:29
Wireless Technologies – Common Attacks
Free Sample
00:34
Wireless Reconnaissance Output
Free Sample
01:32
Warchalking
Free Sample
04:55
Countermeasures
Free Sample
02:09
Wireless Attacks
Free Sample
00:47
Wormhole Attack
Free Sample
00:43
Wireless Technologies – WAP
Free Sample
01:30
Wireless Technologies – WTLS
Free Sample
00:36
i-mode
Free Sample
01:01
Bluetooth
Free Sample
03:01
Instant Messaging
Free Sample
01:21
Domain 6 Review
Free Sample
01:22
Domain 7 – Malicious Code
Free Sample
00:35
Vulnerabilities at Different Layers
Free Sample
00:53
Tiered Network Architectures
Free Sample
02:00
Sensitive Data Availability
Free Sample
02:34
Cookies
Free Sample
00:46
Find Out Where You Have Been
Free Sample
01:02
Pulling Data
Free Sample
00:35
Web Server Error Pages
Free Sample
01:52
Common Web Server Flaws
Free Sample
01:22
Improper Data Validation
Free Sample
02:00
Directory Traversal
Free Sample
01:58
Buffer Overflow
Free Sample
01:31
Cross Site Scripting Attack
Free Sample
01:37
Common SQL Injection Attack
Free Sample
02:38
CGI Information
Free Sample
01:20
Logging Activities
Free Sample
03:18
Best Practices
Free Sample
00:36
Agenda (1)
Free Sample
00:45
Are ALL Patches Applied?
Free Sample
02:39
Patching Process Chart
Free Sample
01:40
Patching Issues
Free Sample
02:11
Agenda 2
Free Sample
00:46
Boot Sector Invasion
Free Sample
00:51
Types of Viruses
Free Sample
01:47
More Malware
Free Sample
01:21
Blended Malware
Free Sample
01:00
Hoaxes
Free Sample
03:51
Agenda 3
Free Sample
00:56
Attack Characteristics
Free Sample
01:49
Disclosing Data in an Unauthorized Manner
Free Sample
01:28
Covert Storage Channel
Free Sample
01:34
Covert Timing Channel
Free Sample
01:03
Circumventing Access Controls
Free Sample
01:46
Attacks
Free Sample
01:35
Attack Type – Race Condition
Free Sample
02:23
Attacking Through Applications
Free Sample
01:00
How a Buffer Overflow Works
Free Sample
01:18
Watching Network Traffic
Free Sample
01:16
Traffic Analysis
Free Sample
03:19
Functionally Two Different Types
Free Sample
01:53
Double File Extensions
Free Sample
01:37
Denial of Service Definition
Free Sample
00:49
History of Denial of Service
Free Sample
01:10
Denial of Service Attacks
Free Sample
01:21
SYN Flood
Free Sample
01:53
SYN Attacks
Free Sample
02:26
SYN Attacks Defense
Free Sample
03:30
DDoS
Free Sample
00:45
Distributed DoS
Free Sample
01:42
DoS Tools
Free Sample
01:33
Other DDoS Variations
Free Sample
04:50
DDoS Defenses
Free Sample
00:56
DDoS Countermeasures
Free Sample
02:55
RPC Null Fragment Attack
Free Sample
01:54
Another Danger to Be Aware of…Spyware
Free Sample
00:55
New Spyware Is Being Identified Every Week
Free Sample
05:51
Passwords
Free Sample
01:33
Password Generators
Free Sample
03:08
Password Attacks
Free Sample
02:47
Rainbow Table
Free Sample
05:35
Countermeasures for Password Cracking
Free Sample
01:44
Cognitive Passwords
Free Sample
00:48
One-Time Password Authentication
Free Sample
02:12
Synchronous Token
Free Sample
01:07
One Type of Solution
Free Sample
01:34
Synchronous Steps
Free Sample
03:45
Challenge/Response Authentication
Free Sample
02:13
Asynchronous Steps
Free Sample
01:39
Cryptographic Keys
Free Sample
01:36
Passphrase Authentication
Free Sample
00:49
Memory Cards
Free Sample
02:05
Smart Card
Free Sample
01:39
Characteristics
Free Sample
01:03
Card Types
Free Sample
01:52
Home Page Hijacking
Free Sample
00:45
Webpage Defacement
Free Sample
00:55
Precautions
Free Sample
00:36
Password Verifier
Free Sample
00:51
Online Attack
Free Sample
01:34
Offline Attack
Free Sample
02:15
Salt
Free Sample
01:35
Ping
Free Sample
02:07
Ping of Death
Free Sample
01:06
Session Hijacking
Free Sample
01:25
Attack Steps
Free Sample
05:46
Spoofing
Free Sample
05:21
Man-in-the-Middle (MiM) Attack
Free Sample
01:59
Mobile Code with Active Content
Free Sample
03:55
Types of Mobile Code Attacks
Free Sample
02:01
Attacks and Exploits
Free Sample
01:50
JavaScript and Visual Basic Script
Free Sample
04:19
Structure and Focus of Malicious Code Attacks
Free Sample
03:27
Phases of an Attack
Free Sample
02:34
Reconnaissance
Free Sample
01:13
DNS Commands and Tools
Free Sample
01:56
Whois Tool Screen Capture
Free Sample
01:01
Tools
Free Sample
01:45
SNMP Tools
Free Sample
00:54
Port Scanning
Free Sample
01:02
Security Probes – Nessus
Free Sample
02:33
Access and Privilege Escalation
Free Sample
06:22
Hackers
Free Sample
02:33
Motivations
Free Sample
08:06
Internal Risk
Free Sample
01:26
Defense In Depth
Free Sample
03:53
Application Defenses
Free Sample
02:59
Operating System Defenses
Free Sample
02:37
Network Defenses
Free Sample
03:31
Anti-Virus Software
Free Sample
00:50
Patch Management
Free Sample
01:01
Issues with Patches
Free Sample
02:22
Automatic Patch Management Solutions
Free Sample
02:30
Vulnerability Management
Free Sample
00:50
Network Monitors and Analyzers
Free Sample
01:31
Content/Context Filtering
Free Sample
04:35
Honeypot
Free Sample
00:58
Honeynet
Free Sample
01:02
Attack Prevention Techniques
Free Sample
02:42
Safe Recovery Techniques and Practices
Free Sample
01:16
File Backup and Restoration Plan
Free Sample
01:03
Domain 7 Review
Free Sample
19:05
Course Closure
On this page you can select the video player you prefer, download the most recent version of that player, and select the Closed Captioning option if it is available for this video.
The publisher has provided additional content related to this title.
Description | Content |
|---|---|
These links have been provided by the publisher. |
About Safari Books Online •
Terms of Service •
Privacy Policy •
Contact Us •
Corporate Licenses •
Help •
Accessibility |
Copyright 2009 Safari Books Online. All rights reserved.
