Presentation is loading. Please wait.

Presentation is loading. Please wait.

CompTIA Security+ Study Guide (SY0-501)

Published byKristian Hampton Modified over 5 years ago

Similar presentations

Presentation on theme: "CompTIA Security+ Study Guide (SY0-501)"— Presentation transcript:

1 CompTIA Security+ Study Guide (SY0-501)
Chapter 10: Social Engineering and Other Foes

2 Chapter 10: Social Engineering and Other Foes
Compare and contrast types of attacks Explain the importance of physical security controls Compare and contrast various types of controls Given a scenario, carry out data security and privacy practices

3 Social Engineering Social engineering
The process by which intruders gain access to your facilities, your network, and even to your employees by exploiting the generally trusting nature of people. Social engineering attacks (types of) Shoulder surfing Dumpster diving Tailgating Impersonation Hoaxes Whaling Vishing

4 Principles Behind Social Engineering
Authority Intimidation Consensus/social proof Scarcity Urgency Familiarity/liking Trust

5 Physical Security Access controls Physical barriers
A critical part of physical security Physical barriers Objective: to prevent access to computers and network systems Multiple barrier system Having more than one physical barrier to cross Systems should have a minimum of three physical barriers

6

7 Chapter 10: Social Engineering and Other Foes
Hardware locks and security Involves applying physical security modifications to secure the system(s)and prevent them from leaving the facility Mantraps Require visual identification, as well as authentication, to gain access

8 Hardware Locks

9 Chapter 10: Social Engineering and Other Foes
Video surveillance Camera vs. guard Fencing/perimeter security Access list Proper lighting Signs Guards Barricades

10 Chapter 10: Social Engineering and Other Foes
Biometrics Use some kind of unique biological trait to identify a person, such as fingerprints, patterns on the retina, and handprints Protected distribution Alarms Motion detection

11 Chapter 10: Social Engineering and Other Foes
Environmental controls HVAC Fire suppression EMI shielding

12 EMI Interference

13 Products that Solve Most Electrical Line Problems:
Surge protectors Protect electrical components from momentary or instantaneous increases (called spikes) in a power line Power conditioners Active devices that effectively isolate and regulate voltage in a building Backup power Generally used in situations where continuous power is needed in the event of a power loss

14 Chapter 10: Physical and Hardware-Based Security
EMI shielding Electromagnetic interference (EMI) frequency interference (RFI) The process of preventing electronic emissions from your computer systems from being used to gather intelligence and preventing outside electronic emissions from disrupting your information-processing abilities Hot and cold aisles

15 Hot and Cold Aisles

Download ppt "CompTIA Security+ Study Guide (SY0-501)"

Similar presentations

1 COMPUTER GENERATED & STORED RECORDS CONTROLS Presented by COSCAP-SA.

1 COMPUTER GENERATED & STORED RECORDS CONTROLS Presented by COSCAP-SA.
A guide to Real Power Protection

A guide to Real Power Protection
Chapter 7: Physical & Environmental Security

Chapter 7: Physical & Environmental Security
Ethics, Privacy and Information Security

Ethics, Privacy and Information Security
Computer Security Computer Security is defined as:

Computer Security Computer Security is defined as:
Social Engineering J Nivethan. Social Engineering The process of deceiving people into giving away access or confidential information Onlinne Phone Offline.

Social Engineering J Nivethan. Social Engineering The process of deceiving people into giving away access or confidential information Onlinne Phone Offline.
Security: Playing in Safe By: Matt Hill Identification and Access Identification and Access | When Disaster Strikes | Disaster Recovery Plan | Software.

Security: Playing in Safe By: Matt Hill Identification and Access Identification and Access | When Disaster Strikes | Disaster Recovery Plan | Software.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.

Dr. Bhavani Thuraisingham The University of Texas at Dallas (UTD) June 2011 Physical (Environmental) Security.
General Security Principles and Practices Chapter 3.

General Security Principles and Practices Chapter 3.
Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.

Sanjay Goel, School of Business/Center for Information Forensics and Assurance University at Albany Proprietary Information 1 Unit Outline Qualitative.
Information Security Principles and Practices

Information Security Principles and Practices
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 16: Physical and Infrastructure Security.

Computer Security: Principles and Practice EECS710: Information Security Professor Hossein Saiedian Fall 2014 Chapter 16: Physical and Infrastructure Security.
Physical Security Chapter 9.

Physical Security Chapter 9.
1 Lesson 3 Computer Protection Computer Literacy BASICS: A Comprehensive Guide to IC 3, 3 rd Edition Morrison / Wells.

1 Lesson 3 Computer Protection Computer Literacy BASICS: A Comprehensive Guide to IC 3, 3 rd Edition Morrison / Wells.
Chapter 3.  Security Framework  Operational Security Lifecycle  Security Perimeter  Access Control  Social Engineering  Environmental Issues.

Chapter 3.  Security Framework  Operational Security Lifecycle  Security Perimeter  Access Control  Social Engineering  Environmental Issues.
CIST 1601 Information Security Fundamentals Chapter 10 Physical and Hardware-Based Security Collected and Compiled By JD Willard MCSE, MCSA, Network+,

CIST 1601 Information Security Fundamentals Chapter 10 Physical and Hardware-Based Security Collected and Compiled By JD Willard MCSE, MCSA, Network+,
1 12. Physical Security ISA 562 Internet Security Theory & Practice.

1 12. Physical Security ISA 562 Internet Security Theory & Practice.
Technology and Hotel Security Hotel Mgmt. Hospitality Services R. McCann.

Technology and Hotel Security Hotel Mgmt. Hospitality Services R. McCann.

Similar presentations

Ads by Google