CISSP Domain #4: Communications and Network Security
CISSP is one of the most valued network security certifications in the world. As the certificate itself demonstrates that the candidate has required knowledge and experience to perform the duties of security officer both beginners and experienced officers in security domains are willing to attain this golden certification. However, right before candidates dwell themselves into the CISSP Training and certification they need to have keen knowledge about the domains it covers.
In our previous blogs, we have explained about different domains of CISSP certification. Following the same path in this blog, we will explain the “Communication and network security” which is the fourth domain of the CISSP certification.
The Importance of Communication and Network Security
Nowadays, everyone right from the individual, companies, and government are heavily relying on the networks, systems and another electronic device to exchange, communicate and store the information. Smartphones and computers that have become part of our day-to-day lives are built upon these interconnected servers and devices. This background makes the security in cybersecurity a way more complicated than it already is. The bequest systems can have a number of penetration points for malicious hackers. On top of this, the web of interconnected computer systems makes it crucial for cybersecurity professionals to understand threats beyond only one dimension.
To prepare the security professional of tomorrow the CISSP includes Communication and network security as a prime domain of the certification. International Information System Security Certification Consortium (ISC2) understands that as the career of the security officer will proceed in the industry they will have to face diverse challenges. Hence, it is crucial to prepare them in advance with the authoritative Cyber Security Training Course for the information technology workflow.
Aspirants who are preparing for the CISSP certification can any of the two fundamental approaches to reach the subject:
- Secure communication protocols
- Authentication protocols
As it is not possible to cover both protocols in this blog, we will provide a quick overview of both security protocols. If you are in a hurry and can’t wait for the next blog post then, feel free to enroll in the CISSP Certification Training Course at ProICT Training.
Secure communication protocols
As you can already figure out from the term itself the “secure communication protocol” defines the rules for different devices exchanging information. These rules can be either syntax, semantic or the error detection of the data packets. The key examples of secure communication protocols as given below:
- Secure Sockets Layer (SSL)
- Transport Layer Security (TLS)
- swIPe IP Security Protocol (swIPe)
- Secure Remote Procedure Call (S-RPC)
- Secure Electronic Transaction (SET)
Authentication protocols
The mechanism of secure communication relies upon proper authentication. As a CISSP aspirant, you must learn the difference between the authentications and authorization. There are several ways to authorize devices including via username, password, and more. Some of the most common examples of Authentication protocols are:
- Password Authentication Protocol (PAP)
- Challenge Handshake Authentication Protocol (CHAP)
- Extensible Authentication Protocol (EAP)
All of the above points will be described in detail in our next blogs. Until then, you can stay connected to the ProICT Training to read other related blogs and articles.
Leave a Reply