Book Image

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By : Ian Neil
Book Image

CompTIA Security+: SY0-601 Certification Guide - Second Edition

By: Ian Neil

Overview of this book

The CompTIA Security+ certification validates the fundamental knowledge required to perform core security functions and pursue a career in IT security. Authored by Ian Neil, a world-class CompTIA certification trainer, this book is a best-in-class study guide that fully covers the CompTIA Security+ 601 exam objectives. Complete with chapter review questions, realistic mock exams, and worked solutions, this guide will help you master the core concepts to pass the exam the first time you take it. With the help of relevant examples, you'll learn fundamental security concepts from certificates and encryption to identity and access management (IAM). As you progress, you'll delve into the important domains of the exam, including cloud security, threats, attacks and vulnerabilities, technologies and tools, architecture and design, risk management, cryptography, and public key infrastructure (PKI). You can access extra practice materials, including flashcards, performance-based questions, practical labs, mock exams, key terms glossary, and exam tips on the author's website at securityplus.training. By the end of this Security+ book, you'll have gained the knowledge and understanding to take the CompTIA exam with confidence.
Table of Contents (24 chapters)
1
Objectives for the CompTIA Security+ 601 exam
Free Chapter
2
Section 1: Security Aims and Objectives
7
Section 2: Monitoring the Security Infrastructure
12
Section 3: Protecting the Security Environment
17
Section 4: Mock Tests
18
Chapter 13: Mock Exam 1
19
Mock Exam 1 Solutions
20
Chapter 14: Mock Exam 2
21
Mock Exam 2 Solutions

Mock Exam 1 Solutions

  1. Answer: c

    Concept: A self-signed certificate is the cheapest certificate for internally-facing servers.

    Wrong Answers:

    a. A Wildcard would be the cheapest certificate for public-facing servers.

    b. A domain certificate proves who the owner is of a domain name.

    d. A SAN certificate is used for multiple domain names rather than multiple servers from the same domain.

  2. Answers: b, c

    Concept: The two-hour period is the RPO, after which time your company cannot operate effectively without its systems. The event that must happen before this two-hour period is the RTO, when your systems are back to an operational state.

    Wrong Answers:

    a. The RTO is the time that a system returns to operational state and not the two-hour period that is known as the RPO

    d. The system that must be back up to an operational state is known as the RTO, not the RPO.

  3. Answer: b

    Concept: A watering hole attack uses a well-known and trusted website as its attack vector.

    Wrong Answers:

    a. In...