Study Notes and Theory

I was just working on Stories of a CISSP: Change Management  for the CISSP Course when I started to recall my first day at my first security job. When I look back now, I realize each task could be mapped to confidentiality, integrity, and availability. The three core information security concepts of the CISSP.   My manager gave me the following tasks:   * Generate my own public and private key in order to gain SSH access to customer firewall   * Figure out how many subnets a

A CISSP’s job is to reduce risk. If you know the goals , objectives , and mission of the company, then it becomes easier to know what to protect from risk, and how to protect it. CISSPs need senior management support. Senior management teams are the ones setting the goals, objectives, and mission statement. You might also need the authoritative approval to boss around a security administrator or a network engineer in order to put in risk mitigation controls. It’s easier

You might see a lot of questions on the CISSP practice exam questions about rule-based and role-based access. Firewalls are an example of rule-based access. Active Directory user profiles are a form of role-based access. Role and Rule-based controls are called Non-Discretionary controls. 8 years ago when I was just a junior systems administrator, the IT Director provisioned me a new desktop computer networked to Active Directory. I wanted to immediately change the desktop

Rijndael can use different block sizes, but AES uses a fixed block size of 128-bits. So for AES, the block size must always be 128-bits!!! Key Size Block Size 128 128 192 128 256 128 Basic Information for Rijndael Official NIST standard Won first place out of 15 other AES contestants Pronounced “Rhine Dall” Named after its developers Vincent Rijmen and Joan Daemen Rijndael is the actual name of the algorithm, AES is the standard Symmetric block cipher Proved to have the best

Before you read this post, just remember that whether you are a soldier, a criminal, an investment banker, or a superhero…at the end of the day there is only one set of morals you follow: your own.   “Hello Luke, do you know where I may obtain Shon Harris CISSP Study Guide 9th Edition ?”   “Sure, you can get it at Amazon.com for a really great deal!”   “Oh I mean, can you tell me where I can get the PDF version for free?”   Does everyone see the irony in this scenario?   If