1. IP Security
1.1. Authentication Header
1.1.1. 1) The Authentication Header provides support for data integrity and authentication of IP packets
1.1.2. 2) The data integrity feature ensures that undetected modification to a packet's content in transit is not possible
1.1.3. 3) The authentication feature enables an end system or network device to authenticate the user or application and filter traffic accordingly
1.1.4. 4) It also prevents the address spoofing attacks observed in today's Internet
1.1.5. 5 )The AH also guards against the replay attack
1.2. Encapsulating Security Payload (ESP)
1.2.1. 1) The Encapsulating Security Payload provides confidentiality services, including confidentiality of message contents and limited traffic flow confidentiality.
1.2.2. 2) As an optional feature, ESP can also provide an authentication service.
1.3. Combining Security Associations
1.4. Key Management
2. Web Security
2.1. Secure Socket Layer (SSL)
2.2. Transport Layer Security (TLS)
2.3. Secure Electronic Transaction (SET)
3. Planning for Security
3.1. InfoSec Policy, Standards and Practices
3.2. Architecture
3.2.1. Defence in Depth
3.2.2. Security Perimeter
3.3. Contingency Plan
3.3.1. Incident Response
3.3.2. Disaster Recovery
3.3.3. Business Continuity
3.4. Safeguards
3.4.1. Managerial Control
3.4.2. Operational Control
3.4.3. Technical Control
3.5. Business Impact Analysis
4. Security Technology
4.1. Physical Design
4.2. Firewalls
4.2.1. Packet Filtering
4.2.2. Application Gateways
4.2.3. Circuit Gateways
4.2.4. MAC layer Firewalls
4.2.5. Hybrids
4.3. Protecting Remote Connections
5. Electronic Mail Security
5.1. Pretty Good Privacy (PGP)
5.1.1. 1) PGP provides authentication through the use of digital signature, confidentiality through the use of symmetric block encryption
5.1.2. 2) It based on algorithms are considered extremely secure. Specifically, the package includes RSA, DSS, and Diffie-Hellman for public-key encryption; CAST-128, IDEA, and 3DES for symmetric encryption; and SHA-1 for hash coding
5.1.3. 3) It has a wide applicability and is now on an Internet standards track (RFC 3156)