
StudyGuideforCyberSecurityComprehensiveExam
Recommendedbooks:
• Conklinetal.,PrinciplesofComputerSecurity
• WilliamStallings,CryptographyandNetworkSecurity,PrinciplesandPractices,
• MarieWrightandJohnKakalik,InformationSecurity‐ContemporaryCases
• SimsonGarfinkel,WebSecurity,PrivacyandE‐Commerce
ReviewTopicsandDesiredLearningOutcomes,groupedbyarea:
SecurityArchitectureandThreats
1. UnderstandwhatconstitutesOSIX.800securitymodelandITU‐TX.805model
2. Understandkindsofsecurityattacks,securitymechanisms,andsecurityservices.
3. Understandtherelationshipbetweenservicesandattacks,andbetweenmechanismsand
attacks.
4. UnderstandC(Confidentiality),I(Integrity)A(availability)andhowCIArelatestosecurity
services,mechanismsandattacks.
Cryptography
1. Understandthetypesofattacksforcryptography.
2. Understandthebasicsubstitutionandtranspositiontechniques,solveitbyexamples.
3. Understandtheblockcipherandstreamcipher,thedifferencebetweentwoandthecipher
algorithmsthatusethem.
4. Understandwhatthelinktolinkencryptionandendtoendencryptionare.
5. Understandmultipleencryptions,solveitbysimpleexamples
6. Abletodescribevariantsof3‐DESwithtwokeysandthreekeys.
7. AbletodescribewhattheMan‐in‐the‐middleattackis.UnderstandwhyDiffieHellmankey
exchangeprotocolissubjecttothemaninthemiddleattack.
8. UnderstandthemeaningofeachBlockCiphermodesandtheircorrespondingapplications.
Abbreviationofeachmode.LikeCBCandCFB,.etc.
9. UnderstandinhighlevelhowRC4works,andwhataretheapplicationsusingRC4.Doyoualso
knowwhereDESmightbeused?AnswerforDESisGovernments,financialsectors,andVPN.
10. Understandtheprinciplesofpublickeycryptographyanditssixcomponents.
11. UnderstandthedifferencesbetweenAsymmetricandSymmetricalgorithmsintermsof
algorithms,efficiency,security,applications,.etc.
12. DescribeRSAalgorithminhighlevel,andknowhowtouseitbyexamplesshownintheslides
andattheon‐linesession.
13. UnderstandDSSandECCandtheirapplication.
14. AbletodescribehowDigitalSignatureworks.
AuthenticationandemailSecurity