Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.
Video Description
This section covers the important topic of wireless networking. It's a broad overview of the topic and doesn't dig too deeply into the various protocols and encryption standards surrounding wireless communications. For that, you'll need to check out other study tracks such as CompTIA Security+. We start out be noting that wireless access points without a router component are much like hubs. They bridge the gap from wired to wireless media. A network comprised of a series of wireless cards installed on PCs is what's known as an ad-hoc network. The discussion then moves into the topic of wireless security and the various wireless encryption standards. We also discuss best practices for securing wireless networks. Threats targeting wireless networks are unauthorized access, sniffing, war driving, and "man in the middle" attacks using rogue access points. A basic precaution when setting up a wireless network is to disable broadcast, but keep in mind, this is far from bullet-proof. The strongest layer of wireless defense is data encryption and comes in several generations of progressively stronger standards. WEP or Wired Equivalent Privacy is the oldest, and not surprisingly, the weakest of wireless encryption standards. It's easily crackable and for that reason not a good choice, however, it's far from obsolete. We point out that routers supplied by many ISPs still use it! WPA is a bit stronger than WEP, but it's been comprised for a while now due to its use of RC-4. WPA2 is the strongest of the three and uses AES (Advanced Encryption Standard) which uses a more complex block cipher. There is also an enterprise version of WPA2 that uses RADIUS authentication for additional strength. The video concludes with a discussion of PANs (Personal Area Networks) with Bluetooth being the most popular. As useful as Bluetooth is, it's wide open to a multitude of attacks. Some of which are blue jacking, blue snarfing, eavesdropping and some which can result in a full takeover of your phone! Precautions when working with Bluetooth are disabling auto-discovery along with auto-pairing for a layered defense. Perhaps the best defense is to turn off Bluetooth entirely when not in use!
Course Modules
ISC2 CISSP - Archive
CISSP Introduction Module
CISSP Module 01
03:30
Part 1 - Intro
11:46
Part 2 - CIA and IAAA
11:48
Part 3 - Tenets of Secure Design
07:16
Part 4 - Risk Intro
06:24
Part 5 - Risk Assessment
08:38
Part 6 - Risk Analysis
09:57
Part 7 - Risk Mitigation
04:53
Part 8 - Governance vs Management
12:58
Part 9 - Frameworks and Senior Management's Role
08:09
Part 10 - Policies Procedures Standards and Guidelines
04:37
Part 11 - Knowledge Transfer
10:28
Part 12 - Types of Laws
07:35
Part 13 - Specific Laws
07:26
Part 14 - BCP Intro
02:03
Part 15 - BCP Phases
09:01
Part 16 - BCP Roles and Responsibilities
03:03
Part 17 - BCP Subplans
07:50
Part 18 - BCP Remaining Phases
10:23
Part 19 - BIA
02:44
Part 20 - Chapter 1 Review
CISSP Module 02
CISSP Module 03
01:23
Part 01 - Intro
06:11
Part 02 - Trusted Computing
08:35
Part 03 - Computer Architecture CPU
07:22
Part 04 - Memory
15:32
Part 05 - Security Models and Access Control Models
16:47
Part 06 - Common Architectures
03:14
Part 07 - Cryptography Intro
06:56
Part 08 - History of Crypto
02:38
Part 09 - Security Services of Crypto
14:05
Part 10 - Crypto Definitions
12:04
Part 11 - Symmetric Cryptography
10:44
Part 12 - Asymmetric Cryptography
06:21
Part 13 - Hybrid Cryptography
06:20
Part 14 - Symmetric vs Asymmetric Cryptography
04:43
Part 15 - RSA Diffie Hellman and ECC
11:29
Part 16 - Hashing
04:58
Part 17 - Digital Signatures MACs and Hashes
17:02
Part 18 - PKI Public Key Infrastructures
07:09
Part 19 - IPSec Part I
08:29
Part 20 - IPSec Part II
05:41
Part 21 - Attacks on Cryptography
02:05
Part 22 - Cryptography Review
CISSP Module 04
02:38
Part 01 - Intro
07:39
Part 02 - OSI Intro
08:23
Part 03 - Layer 1 Physical
10:27
Part 04 - Layer 2 Data Link Part I Media Access
05:18
Part 05 - Layer 2 Data Link Part II Switches
04:17
Part 06 - Layer 3 Network Routers VLANs Switches
05:08
Part 07 - Layer 3 Protocols and Attacks
08:08
Part 08 - Layer 4 Transport TCP and UDP
03:26
Part 09 - Layer 5 and 6 Session and Presentation
05:47
Part 10 - Layer 7 Application
03:59
Part 11 - TCP IP Model and Review
11:11
Part 12 - Common Attacks
14:14
Part 13 - Firewalls, Proxies and NAT
07:39
Part 14 - WAN
07:58
Part 15 - Wireless
05:55
Part 16 - Cloud Computing
01:05
Part 17 - Telecom Review
CISSP Module 05
02:02
Part 01 - Intro to ID
04:05
Part 02 - Defining Identity and Access Management
03:56
Part 03 - Core Security Requirements
06:34
Part 04 - Access Control Models
06:37
Part 05 - Authentication TYPE I
06:02
Part 06 - Authentication TYPE II
05:44
Part 07 - Authentication TYPE III
16:52
Part 08 - SSO and Kerberos
05:23
Part 09 - Access Control Methods
06:43
Part 10 - RADIUS
02:26
Part 11 - Emanations
01:16
Part 12 - ID and Access Management Review
CISSP Module 06
CISSP Module 07
00:50
Part 01 - Intro
08:16
Part 02 - Incident Response
02:11
Part 03 - Intro to Forensics
07:17
Part 04 - Forensic Investigation Process
03:46
Part 05 - Types of Evidence
04:04
Part 06 - Spares and RAID
02:46
Part 07 - Clustering and Web Farms
04:09
Part 08 - Backups
01:30
Part 09 - Additional Data Redundancy
01:48
Part 10 - Review
CISSP Module 08
02:56
Part 01 - Intro
06:16
Part 02 - Why is Software Unsecure
07:08
Part 03 - Development Methodologies
16:47
Part 04 - Common Architectures
09:05
Part 05 - Monitoring and Auditing
07:38
Part 06 - Adversaries and Review
15:23
Part 07 - OWASP 1 thru 5
10:07
Part 08 - OWASP 6 thru 10
11:36
Part 09 - Defensive Coding
07:24
Part 10 - Change Management
08:02
Part 11 - Vulnerability Scans and Penetration Testing
04:04
Part 12 - Verification Validation Certification and Accreditation
01:00
Part 13 - DB Intro
02:25
Part 14 - DB Models
08:03
Part 15 - Relational Databases
CISSP Module 09
Instructed By
Kelly Handerhan
Instructor