SY0-601 - CompTIA Security+: Implementing Secure Protocols & Application Security Solutions


Overview/Description
Expected Duration
Lesson Objectives
Course Number
Expertise Level


Overview/Description

In this CompTIA Security+ SY0-601 course, you'll explore a variety of core secure protocols.

You'll examine Domain Name System Security Extension (DNSSEC), SSH, Secure/Multipurpose Internet Mail Exchanger (S/MIME), Secure Real-time Protocol (SRTP), LDAPS, File Transfer Protocol Secure (FTPS), Secured File Transfer Protocol (SFTP), Simple Network Management Protocol version 3 (SNMPv3), Hypertext Transfer Protocol over SSL/TLS (HTTPS), IPsec, Authentication Header (AH), and Encapsulated Security Payload (ESP) and its tunnel/transport modes.

You'll move on to list several use cases for these concepts. You'll then describe endpoint protection, boot integrity mechanisms, database security mechanisms, and hardening targets. Finally, you'll identify several advanced application security techniques. This course can be used in preparation for the CompTIA Security+ SY0-601 certification exam.



Expected Duration (hours)
0.8

Lesson Objectives

SY0-601 - CompTIA Security+: Implementing Secure Protocols & Application Security Solutions

  • discover the key concepts covered in this course
  • describe an array of secure protocols including DNSSEC, SSH, S/MIME, SRTP, LDAPS, FTPS, SFTP, and SNMPv3
  • describe IPsec in terms of Authentication Header (AH), Encapsulated Security Payload (ESP), and tunnel vs. transport mode
  • list various use cases which include voice and video, time synchronization, email, web, file transfer, directory services, and remote access
  • describe endpoint protection in terms of antivirus, anti-malware, RDE, DLP, next-generation firewalls, HIDS, and HIPS
  • outline boot integrity mechanisms such as boot security/Unified Extensible Firmware Interface (UEFI), measured boot, and boot attestation
  • recognize specific database security mechanisms like tokenization, salting, and hashing
  • define various application security measures like input validations, secure cookies, code signing, whitelisting, and blacklisting
  • describe hardening targets like open ports and services, registry, disk encryption, and patch management
  • identify advanced application security techniques like self-encrypting drives (SED), full-disk encryption (FDE), Opal, hardware root of trust, Trusted Platform Module (TPM), and sandboxing
  • summarize the key concepts covered in this course

    • Course Number:
    it_cssecp2020_13_enus

    Expertise Level
    Intermediate