100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
Previously searched by you
Thomas R. Peltier, Patrick D. Howard, Bob Cartwright - The Total CISSP Exam Prep Book_ Practice Questions, Answers, and Test Taking Tips and Techniques (2002)$16.49
Add to cart
Thomas R. Peltier, Patrick D. Howard, Bob Cartwright - The Total CISSP Exam Prep Book_ Practice Questions, Answers, and Test Taking Tips and Techniques (2002)
7 views 0 purchase
Course
CISSP
Institution
CISSP
Thomas R. Peltier, Patrick D. Howard, Bob Cartwright - The Total CISSP Exam Prep Book_ Practice Questions, Answers, and Test Taking Tips and Techniques (2002)
SECTION I: PRACTICE STUDY QUESTIONS
1 Access Control Systems and Methodology Domain .............................11
2 Telecommunications and Network Security Domain...........................23
3 Security Management Practices Domain.................................................33
4 Applications and System Development Security Domain ...................45
5 Cryptography Domain ...............................................................................59
6 Security Architecture and Models Domain ............................................69
7 Operations Security Domain.....................................................................79
8 Business Continuity Planning and Disaster Recovery
Planning Domain ........................................................................................91
9 Law, Investigations, and Ethics Domain...............................................103
10 Physical Security Domain ........................................................................113
SECTION II: APPENDICES
Appendix A Bibliography.............................................................................127
Appendix B Sample CISSP Exam ................................................................133
Appendix C Sample CISSP Exam with Answers ......................................179
Index ....................................................................................................................277
xv
,PRACTICE STUDY I
QUESTIONS
, Chapter 1
Access Control Systems and
Methodology Domain
The Access Control domain addresses the collection of mechanisms that
permits system managers to exercise a directing or restraining influence over
the behavior, use, and content of a system. Access control permits management
to specify what users can do, what resources they can access, and what
operations they can perform on a system.
Given the realization that information is valuable and must be secured
against misuse, disclosure, and destruction, organizations implement access
controls to ensure the integrity and security of the information which they use
to make critical business decisions. Controlling access to computing resources
and information can take on many forms. However, regardless of the method
utilized, whether technical or administrative, access controls are fundamental to
a well-developed and well-managed information security program.
This domain addresses user identification and authentication, access control
techniques and the administration of those techniques, and the evolving and
innovative methods of attack against implemented controls.
Biometrics are used to identify and authenticate individuals and are rapidly
becoming a popular approach for imposing control over access to information
because they provide the ability to positively identify someone by their
personal attributes, typically a person’s voice, handprint, fingerprint, or retinal
pattern. Although biometric devices have been around for years, new inno-
vations continue to emerge. Understanding the potential as well as the limi-
tations of these important tools is necessary so that the technology can be
applied appropriately and most effectively. We will lay the foundation here
and follow up with more detail in Domain 10, Physical Security.
Nowhere is the use of access controls more apparently important than in
protecting the privacy, confidentiality, and security of patient healthcare infor-
mation. Outside North America, especially in European countries, privacy has
11
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller japplications987. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $16.49. You're not tied to anything after your purchase.
