Certified Network Security Professional

TABLE OF CONTENT

Networking Concepts

• Basics of Communication Systems
• LAN, MAN and WAN
• Transmission Media, OSI and TCP/IP stack
• Internet Protocol
• Transport Layer
• TCP/IP Applications

Security Concepts

• Security Principles
• Identification and Authentication
• Attack Types
• Social Engineering
• Physical Security
• Steganography

Security Planning and Policy

• Security Planning
• Security Policies and Guidelines

Security Models

• Security Models
• Trust Models
• Access Controls

Cryptography

• Evolution and Data Encryption Methods
• Symmetric and Asymmetric Key Cryptography
• Private and Public Key Exchange
• Secret Key Cryptography
• Message Authentication and Hash functions
• Public Key Infrastructure
• Electronic Signature

Hardware Security

• Smart Card
• Access Token
• Biometrics

Router Hardening and ACL

• Routing Process and Router Security
• Create and Implement Access Control Lists (ACL)
• Remove Unwanted Services and Router Logging

IDS

• IDS Concepts and Types
• Signature Detection and Log Analysis

Firewalls

• Concept, Components and Types
• Firewall Policy and Rule Sets
• Proxy Server, Bastion Host, DMZ and Honeypot
• Forefront TMG 2010 Server and iptables

Wireless Security

• WAP and AP security
• Wireless PKI
• Wireless Security Solutions and Auditing

System Security

• Desktop Security
• Email Security
• Web Security
• VPN Types and Architecture

OS Security

• OS Vulnerabilities, updates and patches
• OS Integrity Checks
• OS Hardening (Linux and Windows)
• Trusted OS

Security Management

• Network Management and SNMP
• Incident Response
• BCP and DR

Regulations and Compliance

• Law and policies
• IT Act, IPC and Copyright act
• Privacy
• Email policy

Web Security

• Web Server Attacks
• Web Application Attacks
• Cloud Computing and Security
• Identity Access Management