| Terms you'll need to understand: -
Virtual Private Network (VPN) -
Layer 2 Tunneling Protocol (L2TP) -
Point-to-Point Tunneling Protocol (PPTP) -
Terminal Access Controller Access Control System (TACACS) -
Remote Authentication Dial-In User Service (RADIUS) -
Secure Sockets Layer (SSL) -
Internet Protocol Security (IPSec) -
Secure Shell (SSH) -
Open Systems Interconnection (OSI) model -
Pretty Good Privacy (PGP) -
Secure Multipurpose Internet Mail Extension (S/MIME) -
Hypertext Transport Protocol over Secure Sockets (HTTPS) -
Transport Layer Security (TLS) Techniques you'll need to master: -
Understanding the use of encapsulating protocols in the creation of a Virtual Private Network over a public network -
Recognizing the use of IPSec to create a secured encapsulation of client and server data -
Being able to identify the use of HTTP and HTTPS protocol connections over ports 80 and 443 The hallmark of modern computer use involves network connectivity over many local area network (LAN) and wide area network (WAN) protocols. A wide variety of solutions for connectivity are available, although the most universally available addressing scheme involves the TCP/IP-based global network commonly referred to as the Internet . This connectivity creates the need for many security considerations, including encapsulation and authentication mechanisms, internetworking communications (such as email and Web-based connectivity), and issues surrounding the transfer of data across distributed public networks. In this chapter, we discuss the security- related issues surrounding communications through modern network technologies. | | If you are following along with CompTIA's objective list for this exam, note that several topics listed in the objectives under Communication Security are covered in Chapter 5, "Online Vulnerabilities." The domain 2.0 sections "1.3.4. Vulnerabilities," "1.4. DirectoryRecognition not administration," "1.5. File transfer," and "1.6. Wireless" have been moved to Chapter 5 for organizational purposes. | |