If professional assistance is required, the services of a competent professional person should be sought.

This work is sold with the understanding that the publisher is not engaged in rendering legal, accounting, or other professional services. The advice and strategies contained herein may not be suitable for every situation.

No warranty may be created or extended by sales or promotional materials. Limit of Liability/Disclaimer of Warranty: The publisher and the author make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation warranties of fitness for a particular purpose. Requests to the Publisher for permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at. Senior Acquisitions Editor: Kenyon Brown Development Editor: Gary Schwartz Technical Editors: Russ Christy and Brent Hamilton Senior Production Editor: Christine O’Connor Copy Editor: Judy Flynn Editorial Manager: Pete Gaughan Production Manager: Kathleen Wisor Executive Editor: Jim Minatel Book Designers: Judy Fung and Bill Gibson Proofreader: Nancy Carrasco Indexer: Johnna VanHoose Dinse Project Coordinator, Cover: Brent Savage Cover Designer: Wiley Cover Image: Getty Images Inc./Jeremy Woodhouse Copyright © 2019 by John Wiley & Sons, Inc., Indianapolis, Indiana Published simultaneously in Canada ISBN: 978-4-8 ISBN: 978-1-6 (ebk.) ISBN: 978-7-9 (ebk.) Manufactured in the United States of America No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording, scanning or otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright Act, without either the prior written permission of the Publisher, or authorization through payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 646-8600. Includes interactive online learning environment and study tools:Ģ custom practice exams 100 electronic flashcards Searchable key term glossary

Content: Introduction xxviiAssessment Test lxiChapter 1 Cryptographic Tools and Techniques 1Chapter 2 Comprehensive Security Solutions 47Chapter 3 Securing Virtualized, Distributed, and Shared Computing 97Chapter 4 Host Security 143Chapter 5 Application Security and Penetration Testing 195Chapter 6 Risk Management 265Chapter 7 Policies, Procedures, and Incident Response 313Chapter 8 Security Research and Analysis 357Chapter 9 Enterprise Security Integration 413Chapter 10 Security Controls for Communication and Collaboration 459Appendix A Answers to Review Questions 519Appendix B CASP+ Lab Manual 533Index 591 Citation preview