CIW Security 1D0-470
This series is designed to prepare the student to pass the Certified Internet Webmaster (CIW) Security 1D0-470 exam. It helps the student achieve proficiency in identifying security threats, developing countermeasures, and using firewall systems and attack recognition technologies. It covers the fundamental concepts and principles of network security, and it describes the most common types of attacks that can occur. It covers basic networking models, such as TCP/IP and the OSI reference model, and it explains the security vulnerabilities of protocols used at each layer in the model. It also covers the basic tools and procedures used to protect a network, including firewalls, encryption, auditing, and log analysis.
This series is for professionals who wish to learn more about network security and those wanting to attain Certified Internet Webmaster certification on the CIW Security 1D0-470 exam. This online course contains 10 lessons and should take approximately 39 hours to complete.
Security Fundamentals
This course covers basic security concepts and principles It introduces the major elements that go into a security implementation, including encryption, authentication, access control lists, execution control lists, and auditing and teaches you how to list the basic elements of a security matrix, explain the types of security threats that are now common, and describe the most common elements of a security system, including encryption, authentication, access control lists, execution control lists, and auditing.
Attack Types and Encryption
This course provides a detailed introduction to the encryption process for e-mail and other Internet applications, including the interaction of symmetric, asymmetric (public key), and hash encryption, SSL, and S-HTTP It also provides an introduction to security attacks and how they can be prevented and teaches you how to explain the e-mail encryption process and its components, explain the differences between SSL and S-HTTP, use common applications to encrypt messages and files, list and describe the categories of security attack: brute force/dictionary, buffer overflow, Trojan, DOS/DDOS, and man in the middle, and list methods of preventing each type of attack.
Protocol Layers and Security
This course covers the basic models used to conceptualize network communications, including the TCP/IP and OSI reference models It provides information on the protocols used at each layer of the model and how hackers commonly exploit network protocols It also explains how to perform security testing on existing and new systems and teaches you how to describe the TCP/IP protocol stack, diagram the OSI reference model and explain how it functions, list protocols used at the Network, Transport, and Application layers of each model, identify the major security vulnerabilities of network protocols, list basic steps you can take to protect network services, identify the security vulnerabilities of e-mail servers, and explain the processes used for security testing.
Firewalls
This course introduces users to firewall and VPN design Basic firewall concepts are covered including bastion hosts, packet filters, screening routers, and proxies and teaches you how to explain the role and purpose of a firewall, distinguish between packet-filters, application-layer proxies, and circuit-level proxies, describe the role and possible configurations of a bastion host, outline how PKI works, write rules for a basic packet filter, describe the four basic firewall designs and discuss their advantages and disadvantages, use WinRoute to configure NAT or a proxy on a Windows machine, and use Ipchains and Iptables to configure packet-filtering on Linux.
Operating System Security
This course introduces security issues that arise at the operating system level in a network It covers the major areas of vulnerability for operating systems such as Windows 2000 and Linux It shows how built-in security features can be activated, how to configure password settings, and how to set permissions on files, folders, and shares and teaches you how to describe the most widely-used industry security standards, list the key vulnerabilities of Windows 2000 and Linux operating systems, describe the built-in security features of Windows 2000, use Pluggable Authentication Modules to improve authentication on Linux systems, configure password settings for improved security, and set permissions on files, folders and shares.
Assessing and Reducing Risk
This course examines specific modifications to harden UNIX and Windows-based operating systems, including changes to the Windows Registry and UNIX rlogin, NIS, and NFS and teaches you how to identify general and specific operating system attacks, describe the function of a keylogger program, scan a system to view its services and assess security risks, explain Linux security concerns including rlogin, NIS, and NFS, explain the purpose and importance of system patches and fixes, modify the Windows 2000 Registry to increase security, and lock down and remove services for effective security in Windows 2000 and Linux.
Security Auditing
This course provides basic information on security auditing concepts, methods, and applications It covers several categories of auditing software, including DNS utilities, ping and port scanners, network discovery applications, and enterprise-grade vulnerability scanners and teaches you how to describe the activities of auditors in their various roles, including that of security manager, consultant, and insider, list and describe the three basic stages of a security audit, identify and utilize auditing software, including DNS utilities, ping and port scanners, and enterprise-grade vulnerability scanners, and classify information revealed during audits.
Auditing and the Control Phase
This course examines each type of attack with respect to auditing It covers the file locations used by root kits, as well as methods of penetration and the goals a hacker has during the control phase It also covers illicit servers and teaches you how to identify common targets of attack, discuss penetration strategies and methods, list potential physical, OS, and TCP/IP stack attacks, identify and analyze specific brute-force and DoS attacks, implement methods designed to thwart penetration, define control procedures, identify control methods, and list ways to document control procedures and methods.
Attack Detection and Response
This course provides information on how to detect, distract, and deter hacker activity, and suggests ways to create a security and response policy and teaches you how to deter and distract hackers using proactive detection techniques, describe the different types of IDS architectures, audit and create rules using eTrust, audit your network using Snort, and create and implement a response policy.
Auditing and Log Analysis
This course provides information on how to define a baseline of network performance for security auditing, analyze log files, create a network security assessment report, and suggest ways to improve compliance to a security policy and teaches you how to audit network activity in Windows NT/2000 and Linux, use log analysis to identify suspicious network activity, create a security audit report, recommend steps for improving security compliance, enable proactive detection of security problems, configure a personal firewall, and use SSH for data security and authentication.