Security+: Implementing Secure Systems Design

Introduction

The Sy0-501 exam seeks to test a candidate’s knowledge about a wide range of protocols throughout its structure, and we will take a look at how Domain 2.6 seeks to test this knowledge. Having a real world understanding about how 32 bit addressing schemes is a good idea, such as IPV4, but the exam also tests out IPV6 knowledge in the test taker as well. Below is a breakdown of the exam objectives of Domain 2.6, and the key points that it raises. A copy of the official Exam Objectives can be found on the CompTIA website in PDF format, the direct link can be found here.

Protocols

When a candidate is thinking about getting ready for the Security+ Sy0-501 exam they should be familiar with secure protocols such as DNSSEC, SSH, S/MIME, SRTP, LDAPS, FTPS, SFTP, SNMPv3, SSL, HTTPS and Secure POP/IMAP. There is a lot to take in for this section, but we won’t be diving into the inner workings of each protocol. Instead, we will look at what you need to know about the protocols in relation to the exam, and more specifically, the Sy0-501.

Having said that, it is important to remember that TCP/IP is the primary protocol that is used in communications today, especially over the internet. It is therefore very important for candidates to be familiar with TCP/IP for the exam. Understand what the differences are between the v4 and v6 implementations of this protocol, and general usage and operation. If you find that these concepts are a bit too advanced for you, then you may have to look at revising the information that you learned from your Network+.

DNSSEC – You must understand the basic operational behaviour and requirements of DNS for this content in the exam, and know that (Read more...)

*** This is a Security Bloggers Network syndicated blog from InfoSec Resources authored by Graeme Messina. Read the original post at: http://feedproxy.google.com/~r/infosecResources/~3/rwFo52QYelE/