CISSPStudyNotesfromCISSPPrepGuide(SecondEdition)ThesenoteswerepreparedfromtheTheCISSPPrepGuide2010(SecondEdition):MasteringtheTenDomainsofComputerSecuritybyRonaldL.Krutz,RussellDeanVines,EdwardM.Strozandarenotintendedtobeareplacementtothebook.InadditiontotheCISSPPrepGuideIusedthefollowingresourcestopreparefortheexam:nTheInformationSecurityManagementHandbook,FourthEditionbyMickiKrauseandHaroldF.TiptonnTherevisedMichaelOverlynotesnTheBosonQuestions#2and#3nLotsofmisc.websitesnAndofcoursewww.cccure.orgGoodLuck!JWG,CISSPCISSPSTUDYNOTESFROMCISSPPREPGUIDE...............................................................................1DOMAIN1–SECURITYMANAGEMENTPRACTICES......................................................................2DOMAIN2–ACCESSCONTROLSYSTEMS.........................................................................................7DOMAIN3–TELECOMANDNETWORKSECURITY......................................................................13DOMAIN4–CRYPTOGRAPHY..............................................................................................................34DOMAIN5–SECURITYARCHITECTUREANDMODELS..............................................................46DOMAIN6–OPERATIONSSECURITY................................................................................................56DOMAIN7–APPLICATIONSANDSYSTEMDEVELOPMENT......................................................63DOMAIN8–BUSINESSCONTINUITYANDDISASTERRECOVERYPLANNING.....................70DOMAIN9–LAW,INVESTIGATIONANDETHICS..........................................................................78Domain10–PhysicalSecurity......................................................................................................................871Domain1–SecurityManagementPracticesTheBigThree-C.I.A.nConfidentiality–PreventdisclosureofdatanIntegrity–PreventmodificationofdatanAvailability–EnsurereliabletimelyaccesstodataOtherImportantConceptsnIdentification–Meansinwhichuserc...
