CISSPWStudyGuideCISSPWStudyGuideEricConradSethMisenarJoshuaFeldmanTechnicalEditorKevinRigginsAMSTERDAM•BOSTON•HEIDELBERG•LONDONNEWYORK•OXFORD•PARIS•SANDIEGOSANFRANCISCO•SINGAPORE•SYDNEY•TOKYOSyngressisanimprintofElsevierAcquiringEditor:RachelRoumeliotisDevelopmentEditor:MatthewCaterProjectManager:AndreCuelloDesigner:AlisaAndreolaSyngressisanimprintofElsevier30CorporateDrive,Suite400,Burlington,MA01803,USA#2010Elsevier,Inc.Allrightsreserved.CISSP�and(ISC)2areregisteredmarksoftheInternationalInformationSystemsSecurityCertificationConsortium,Inc.(ISC)2.Noendorsementbyorassociationwith(ISC)2isexpressedorimpliedbytheuseofthemarks.Nopartofthispublicationmaybereproducedortransmittedinanyformorbyanymeans,electronicormechanical,includingphotocopying,recording,oranyinformationstorageandretrievalsystem,withoutpermissioninwritingfromthepublisher.Detailsonhowtoseekpermission,furtherinformationaboutthePublisher’spermissionspoliciesandourarrangementswithorganizationssuchastheCopyrightClearanceCenterandtheCopyrightLicensingAgency,canbefoundatourwebsite:www.elsevier.com/permissions.ThisbookandtheindividualcontributionscontainedinitareprotectedundercopyrightbythePublisher(otherthanasmaybenotedherein).NoticesKnowledgeandbestpracticeinthisfieldareconstantlychanging.Asnewresearchandexperiencebroadenourunderstanding,changesinresearchmethodsorprofessionalpractices,maybecomenecessary.Practitionersandresearchersmustalwaysrelyontheirownexperienceandknowledgeinevaluatingandusinganyinformationormethodsdescribedherein.Inusingsuchinformationormethodstheyshouldbemindfuloftheirownsafetyandthesafetyofothers,includingpartiesforwhomtheyhaveaprofessionalresponsibility.Tothefullestextentofthelaw,neitherthePublishernortheauthors,contributors,oreditors,assumeanyliabilityforanyinjuryand/ordamagetopersonsorpropertyasamatterofproductsliability,negligenceorotherwise,orfromanyuseoroperationofanymethods,products,instructions,orideascontainedinthematerialherein.LibraryofCongressCataloging-in-Publi...
