Overview
-
Learn about the security architecture topics you need to know to pass the CompTIA Advanced Security Practitioner+ (CASP+) (CAS-004) exam.
Syllabus
-
Introduction
- Welcome
- About the exam
- Securing networks
- Switches
- Routers
- Wireless and mesh
- Firewalls
- Proxies
- Gateways
- IDS and IPS
- Network access control
- Remote access
- Unified communication
- Cloud vs. on-premises
- DNSSEC
- Load balancer
- Securing architectures
- Traffic mirroring
- Network sensors
- Host sensors
- Layer 2 segmentation
- Network segmentation
- Server segmentation
- Zero trust
- Merging networks
- Software-defined networking
- Infrastructure design
- Scalability
- Resiliency issues
- Automation
- Performance design
- Virtualization
- Containerization
- Cloud and virtualization
- Cloud deployment models
- Cloud service models
- Deployment considerations
- Provider limitations
- Extending controls
- Provisioning and deprovision
- Storage models
- Virtualization
- Software applications
- Systems development lifecycle
- Software development lifecycle
- Development approaches
- Software assurance
- Baselines and templates
- Best practices
- Integrating applications
- Data security
- Data lifecycle
- Data classification
- Labeling and tagging
- Deidentification
- Data encryption
- Data loss prevention (DLP)
- DLP detection
- Data loss detection
- Authentication and authorization
- Access control
- Credential management
- Password policies
- Multi-factor authentication
- Authentication protocols
- Federation
- Root of trust
- Attestation
- Identity proofing
- Cryptography
- Privacy and confidentiality
- Integrity
- Compliance and policy
- Data states
- Cryptographic use cases
- PKI use cases
- Emerging technology
- Artificial intelligence and machine learning
- Deep learning
- Big data
- Blockchain distributed consensus
- Passwordless authentication
- Homomorphic encryption
- Virtual and augmented reality
- 3D printing
- Quantum computing
- Conclusion
