SWG (Secure Web Gateway) - NG-SWG

 URL Filter & Content Filter

For the Security+ exam, both the URL filter and content filter have been renamed SWG (Secure Web Gateway).

SWG (Secure Web Gateway):

• URL filter
• Content filter
• DLP (Data Loss Prevention)
• CASB (Cloud Access Security Broker)

NG-SWG (Next-Generation Secure Web Gateway) adds:

• Intrusion detection/prevention
• Proxy-based firewall

Certificate Validation: Notes for the Security+ exam

 Checking the Validity of Certificates

On this exam, there are only 2 ways to check the validity of a certificate:

• CRL (Certificate Signing Request)
• OCSP (Online Certificate Status Protocol)

CRL

• You can use OCSP in case/instead.
• You have to download it from the CA (Certificate Authority), which is recommended twice daily.

OCSP

• Real-time
• Good, revoked, or unknown
• Public CA 
• Internet CA
• You can use a CRL in case/instead

If there is too much traffic to intermediate CA, then use stapling.

Answer for CRL in the question:

• OCSP

Answers for OCSP in the question:

• CRL
• Stapling

Reasons for revoking a certificate:

Employee leaves the organization

A system is decommissioned

A certificate is superseded

The private key is compromised

The certificate was issued fraudulently

Certificates that have expired do not need to be revoked.  

Digital Signature: Exam notes CompTIA Security+

 Digital Signature

Listed below are the items you need to know for the exam:

Digital signatures provide:

• Non-repudiation
• Authentication
• Integrity

Creating the digital signature is a 2 step process:

• First, hash the email/message
• Second, the private key digitally signs (encrypts) the hash

The digital signature is created with the "sender's" keys. 

The digital signature is an encrypted wrapper for the sender's public key.

The recipient's system extracts the public key and decrypts the digital signature to validate the sender.

RSA and DSA (Digital Signature Algorithm) are used to create digital signatures.

Windows God Mode

God Mode

Here is a great management tool built into Windows. Just right-click on your desktop to create a new Folder. Name it (with brackets): 

God Mode. {ED7BA470-8E54-465E-825C-99712043E01C}.

All of your Windows management tools will now be located in one app. 

CompTIA CySA+ (Cs0-003) Questions

 CompTIA CySA+ (CS0-003)

We will try to add questions as time permits. If this tends to be popular, we will add questions for Security+, the SY0-701 version.

Create Personality Quiz With ProProfs

Acronym flashcards for CompTIA Security+ (SY0-701

 Security+ (SY0-701) Acronym Flashcards

CompTIA Security+ SY0 701 Acronym Flashcards » Flashcards

CompTIA SY- 701 (Security+) Acronyms

 CompTIA SY0-701 Acronyms

This is a video option for the flashcards for the acronyms for Security+ (SY0-701)

Jailbreaking, Rooting, and Sideloading

Sideloading: Installing an app from a different source than the official app store.

This can be achieved on an Android by enabling the setting.

To do this on an iPhone requires that the device is jailbroken. 

Jailbreaking / Rooting

These methods are used to gain elevated privileges to system files on mobile devices. MDM (Mobile Device Management) can prevent this.

Jailbreaking: iOS (iPad, iPhone)

Rooting: Android