cissp guide

review on the market, although the content is similar, but the level of writing style is very different, some pursue vivid and easy-to-understand language, some are more detailed and boring. How do you choose the cissp review materials that suit you? J0ker thinks that the selection criteria should be determined by the examinee's own language level and informationSecurityExperience determines that, when the language level is similar, if the examinee h

Previous Article 《 How to obtain cissp certification (1)", J0ker introduced the conditions for becoming a cissp and the registration process for the cissp exam. Next, j0ker will first introduce the implementation of the cissp examination and the procedures after passing the examination, and then use the Article 10 to d

conducive to the development of security awareness education projects, the cissp official guide provides a specific sample: Sample -- goal of Consciousness Education: Enterprise Employees must be aware of the following items:1. Security policies, standards, processes, bottom line and guidance2. security threats to physical and information assets3. Security Threats to the open network environment4. Laws and

. In addition, organizations can reorganize their business processes and information processing needs through information classification processes. General information classification processDifferent organizations have different information classification projects because of their own situations. The cissp official guide provides a more effective and general process. j0ker will list it below, and briefly in

First, review afterJune 4, 2016 enrolled in the training of Zhe CISSP. June because there are other chores, basically did not read. At the end of June participated in the CISSP training, because did not prepare, only listened to the first two days, understand what the teacher said, how. Dong Junfei Teacher is good at speaking.July 2016 began to read, look at the AIO 6/English version, with one months of rap

activities for a higher security level, or have a better understanding of information security.Procedure: the security process is to provide organizations and their members with feasible and specific steps and standards in the operating environment, documents that meet the requirements of security policies, security standards, and security bottom line. The cissp Official Guide also provides simple examples

650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M02/48/87/wKioL1QJWB-g8E6AAAI8cYhw8d0852.jpg "Title =" qq20140905142747.jpg "alt =" wKioL1QJWB-g8E6AAAI8cYhw8d0852.jpg "/> After a period of hard work, the cissp course has been recorded and uploaded to the 51cto course video. This time, the recording of the cissp video has gone through great determination, because it is too difficult to record a pu

In the previous article "review access control" in the cissp development path series specially planned by 51cto Security channel, j0ker introduced the basic concepts of access control and the basic principles of three access control types (physical, logical, and management. We know that information security and every security-related technology aim to protect the confidentiality, integrity, and availability of information assets (CIA) from any or all

In the previous article "distributed access control methods" on the path to the Development of cissp, j0ker introduced several distributed access control methods used to control user resource access. In practical applications, we often need to perform more detailed access control on data and information. For example, enterprises need to allow financial departments to access the detailed financial reports of enterprises in the first half of this year,

The security model is just a concept. to apply it to practice, you need to use the protection mechanism described in this article. It is more specific than the security model and closer to the actual application concept, the foundation of many operating systems and security software products is built on it (remind me that the cissp test does not involve specific product and technical details ). The purpose of the protection mechanism is to isolate al

In the previous article "explaining the authentication process" in the cissp development path series specially planned by 51cto Security channel, j0ker describes the three verification elements, passwords, passphrases, and their safe use principles for user authentication. As a user verification solution with the lowest technical implementation difficulty and cost, the password-based user verification solution is widely used in our daily life and work

In the previous article "detailed security threat control measures" in the cissp development path series specially planned by 51cto Security Channel, j0ker briefly introduced the Identity Recognition Knowledge in access control CBK. After accessing entities (users, processes, and so on) to provide their own unique identification information for access to information resources, the information system needs to use some technical means to determine wheth

In the previous article "User creden" in the cissp development path series specially planned by 51cto Security channel, j0ker introduces the second authentication factor used for user verification-the credential held by the user. The creden held by the user can add a level of security protection on the basis of the most basic user password verification. However, the creden held by the user will increase the security solution procurement cost, in addit

In 51cto Security J0ker introduced the threat information in the previous article "detail network threat types" in the cissp's growth path series specially planned by the channel. Assets Confidentiality, integrity, and availability threats. Controlling access to information resources is an effective means to defend against these threats. Therefore, j0ker intends, this section describes in detail the threat control methods and existing technologies and tools in the

This chapter presents the following:identification methods and technologiesauthentication methods, models, and technologiesdiscretionary, mandatory, and nondiscretionary modelsaccountability, monitoring, and auditing practicesemanation Security and

Article Description: to the open beta-bean in the Product Shopping guide page after testing some feelings. From the results of the overall test, although the prototype of the commodity Shopping guide has been formed, but watercress to be in the field of electrical business, the road ahead to go a long way. After all, this is only watercress use of commodity shopping gui