Chapter Summary

From studying this chapter, you should have gained a basic understanding of security concepts in general. You should, at the very least, be familiar with general security-related terms, access control models and techniques, authentication methods, security monitoring and auditing techniques, and the most common system and network related attacks.

For a chapter titled “General Security Concepts,” this chapter might have seemed quite intense. Although the CompTIA Security+ exam is described as an entry-level certification exam, you must keep in mind that the topic of security is a very broad subject that covers a plethora of different material. Some of the topics described in this book might seem trivial while others seem more complex and require detailed explanations. As proven with other available security certification exams, it is a good understanding of all the domain subject matter that will most likely get you Security+ certified.

If you are an employer, you should seriously consider staffing a full-time network security specialist. Your network administrators, Web developers, and database programmers are likely much too busy to do their own jobs properly and keep security policies, devices, and procedures in working order. Hackers, crackers, and even plain computer novices alike are working full time to figure out ways to ruin your profits. Just do it. Put security at the top of your budget priority list or you will eventually pay the price.

Next, see if you have covered the material in this chapter well enough to answer all of the review questions correctly. Warning! One too many wrong answers on the real exam can be the difference between pass and fail.