Table of Contents

Part I: Authentication 1: General Security Concepts Part II: Malware and Attacks 2: Types of Attacks and Malicious Software Part III: Security in Transmissions 3: Remote Access 4: E-Mail 5: Web Components 6: Wireless and Instant Messaging Part VI: Security for the Infrastructure 7: Infrastructure Security 8: Intrusion Detection Systems 9: Security Baselines Part V: Cryptography and Applications 10: Cryptography 11: Public Key Infrastructure 12: Standards and Protocols Part VI: Operational Security 13: Operational/Organizational Security 14: Disaster Recovery, Business Continuity, and Organizational Policies Part VII: Administrative Controls 15: Security and Law 16: Privilege Management 17: Computer Forensics 18: Risk Management 19: Change Management Part VIII: Appendixes A: About the CD-ROM B: OSI Model and Internet Protocols

About the Author

Greg White (San Antonio, TX), Security+, CISSP, is an Associate Professor in the Department of Computer Science at the University of Texas at San Antonio. Dr. White is the Director of the Center for Infrastructure Assurance and Security at UTSA, and was the author of the first edition of the Security+ All-in-One Exam Guide from McGraw-Hill.