Ebook: CISSP Study Guide

Front Cover -- CISSP® Study Guide -- Copyright -- Contents -- Acknowledgments -- About the authors -- Lead Author -- Contributing Authors -- About the Technical Editor -- Chapter 1: Introduction -- How to Prepare for the Exam -- The CISSP exam is a management exam -- The notes card approach -- Practice tests -- Read the glossary -- Readiness checklist -- Taking the Exam -- Steps to becoming a CISSP -- Computer-based testing (CBT) -- How to take the exam -- The two-pass method -- Pass one -- Pass two -- The three-pass method -- After the exam -- Good Luck! -- References -- Chapter 2: Domain 1 -- Unique Terms and Definitions -- Introduction -- Cornerstone Information Security Concepts -- Confidentiality, integrity, and availability -- Confidentiality -- Integrity -- Availability -- Tension between the concepts -- Disclosure, alteration, and destruction -- Identity and authentication, authorization, and accountability (AAA) -- Identity and authentication -- Authorization -- Accountability -- Non-repudiation -- Least privilege and need to know -- Subjects and objects -- Defense in depth -- Access Control Models -- Discretionary Access Control (DAC) -- Mandatory Access Control (MAC) -- Non-discretionary access control -- Content- and context-dependent access controls -- Centralized access control -- Decentralized access control -- Access provisioning lifecycle -- User entitlement, access review, and audit -- Access control protocols and frameworks -- RADIUS -- Diameter -- TACACS and TACACS+ -- PAP and CHAP -- Microsoft Active Directory Domains -- Procedural Issues for Access Control -- Labels, clearance, formal access approval, and need to know -- Labels -- Clearance -- Formal access approval -- Need to know -- Rule-based access controls -- Access control lists -- Access Control Defensive Categories and Types -- Preventive -- Detective -- Corrective.;The CISSP certification is the most prestigious, globally-recognized, vendor neutral exam for information security professionals. The newest edition of this acclaimed study guide is aligned to cover all of the material included in the newest version of the exam's Common Body of Knowledge. The ten domains are covered completely and as concisely as possible with an eye to acing the exam. Each of the ten domains has its own chapter that includes specially designed pedagogy to aid the test-taker in passing the exam, including: Clearly stated exam objectives; Unique terms/Definitions; Exam W.