I INF 453 Study Guide - Comprehensive Final Exam Guide - Malware, Virtual Private Network, Phishing

Certifications: cissp: certified information systems security professional, sscp: systems security certified practitioner, other, co(cid:373)ptia-security , isacs cism: certified information security manager, ec-council -ceh: certified ethical hacker, sans i(cid:374)stitute -gsec: sans giac security essentials. Id: authentication, authorization, accounting, teleco(cid:373)(cid:373)u(cid:374)icatio(cid:374)s a(cid:374)d net(cid:449)ork security, confidentiality. Integrity: availability, information security governance and risk management, security governance and policy. Information classification/ownership: contractual agreements and procurement processes, risk management concepts [risk analysis, personnel security, security education, training, and awareness, certification and accreditation, soft(cid:449)are de(cid:448)elop(cid:373)e(cid:374)t security, system feasibility, software plans and requirements, product design, detailed design, coding. Industry: physical security, availability, authentication, access controls, safety, compliance. Passwords: cha(cid:374)ge ofte(cid:374, do(cid:374)"t (cid:396)euse, hould (cid:374)ot (cid:271)e displayed, hould (cid:374)ot (cid:271)e sha(cid:396)ed (cid:449)ith othe(cid:396)s. Multi-factor authentication: hould (cid:271)e so(cid:373)ethi(cid:374)g you k(cid:374)o(cid:449) + so(cid:373)ethi(cid:374)g you ha(cid:448)e/a(cid:396)e. 1. amazon tech support gave access to partial cc number. 2. same partial cc number used by apple icouldfor verification. 4. attempt to restore iphone on laptop g(cid:373)ail asked fo(cid:396) pin ne(cid:448)e(cid:396) setup a pin.