1. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Objectives
In this session, you will learn to:
Identify methods for securing wireless communications.
Identify appropriate responses to social engineering attacks.
Install and configure security measures.
Maintain and troubleshoot security measures.
Ver. 1.0 Session 15 Slide 1 of 22
2. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Wireless Security
Increase in the number of wireless computing devices has
given rise to the need for protecting wireless network
communications.
Ver. 1.0 Session 15 Slide 2 of 22
3. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Wireless Encryption Methods
The protocols that are available to encrypt and secure
wireless communications are:
WEP
WTLS
802.1x
WPA
802.11i
Ver. 1.0 Session 15 Slide 3 of 22
4. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Security Methods for Wireless Access Points
The methods that increase the security on wireless access
points are:
User authentication
Data encryption
Anitvirus software
Security patches
MAC filters
Static IP
Use firewall
Change default username
Alter or disable SSID
Configure vendor’s security settings
Ver. 1.0 Session 15 Slide 4 of 22
5. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Wireless Client Configuration Options
The options for increasing the security on wireless clients
are:
• Data encryption
• Antivirus software
• Security patches
• Secure the wireless access point.
Ver. 1.0 Session 15 Slide 5 of 22
6. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Social Engineering
• Social engineering is a technique used to obtain
confidential information by manipulating the computer
system users.
Ver. 1.0 Session 15 Slide 6 of 22
7. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Social Engineering Attacks
• A social engineering attack is a type of attack that uses
the steps to gather information from users:
1. Attacker obtains credentials from user
2. Attacker uses credentials to mount attack
1
User name
Password
2
Attacker
Target
Ver. 1.0 Session 15 Slide 7 of 22
8. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Social Engineering Prevention
The most effective way to prevent damage from social
engineering attacks is to train individuals to recognize and
respond to these attacks properly.
Types of biometrics are:
Fingerprint scan
Retinal scan
Voice recognition
Face recognition
Biometric authentication token
Ver. 1.0 Session 15 Slide 8 of 22
9. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Install and Configure Security Measures
To implement the appropriate security measures you must
first install and configure security measures.
As a computer support technician you will need to have the
security knowledge and skills to install the proper measures
so that systems are protected and users can access the
resources they need.
Ver. 1.0 Session 15 Slide 9 of 22
10. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Windows Security Policies
• Windows security policies are Windows configuration
settings that control the overall security behavior of the
system. Policies set centrally
for computer
Configuratio
n settings
Security Settings
node in policy
object
Ver. 1.0 Session 15 Slide 10 of 22
11. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Windows Firewall
• Windows Firewall is a software-based firewall available
with Service Pack 2 for Windows XP.
Ver. 1.0 Session 15 Slide 11 of 22
12. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Software Firewall Configuration Settings
• Most software-based firewalls offer configuration settings for
common security options, such as:
Global security level
Application access
Security log
Unsolicited traffic blocking
Ver. 1.0 Session 15 Slide 12 of 22
13. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Computer Security Measures
When you select and apply computer security measures,
you must:
Protect system
Protect applications and data
Permit legitimate access
Ver. 1.0 Session 15 Slide 13 of 22
14. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Activity 15-1
Activity on Configuring
Windows Firewall
Ver. 1.0 Session 15 Slide 14 of 22
15. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Activity 15-2
Activity on Configuring
NTFS Permissions
Ver. 1.0 Session 15 Slide 15 of 22
16. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Activity 15-3
Activity on Using File
Encryption
Ver. 1.0 Session 15 Slide 16 of 22
17. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Maintaining and Troubleshooting Security Measures
• System security is a ongoing process, so once the security
measures are installed they must be maintained to:
To avoid attacks.
Troubleshoot in response to user access problems.
Address directly or escalate.
Ver. 1.0 Session 15 Slide 17 of 22
18. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Common Computer Security Issues
The common computer security issues are:
BIOS security
Biometric security
Authentication
Malicious software
File system security
Data access issues
Backup security
Ver. 1.0 Session 15 Slide 18 of 22
19. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Common Software Firewall Issues
• The common software firewall issues are:
Disabling
Open ports
LAN and VPN traffic
Firewall conflicts
Program dependencies
Outgoing traffic
User errors
Ver. 1.0 Session 15 Slide 19 of 22
20. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Common Wireless Client Configuration Issues
The common wireless client configuration issues are:
Protocol compatibility
WEP
SSL on WAP
Buffer overflow
Viruses
Data in plain text
Lack of authentication
Site surveys
Unused connections
Ver. 1.0 Session 15 Slide 20 of 22
21. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Common Encryption Issues
• The common encryption issues are:
Effectiveness of encryption:
• Computational power
• Size of encryption key
• New attacks and exploits
Problems with encryption:
• Lost or corrupted keys
• User does not own data
Ver. 1.0 Session 15 Slide 21 of 22
22. CompTIA A+ Certification: Personal Computer Security Concepts and
Installing Windows XP Professional Using Attended Installation
Supporting Personal Computer Security
Summary
In this session, you learned that :
Protecting wireless communications is necessary to have an
secure wireless communication.
Social engineering is a technique used to obtain confidential
information by manipulating the users of computer system.
The measures that are necessary to be taken to prevent social
engineering attacks.
The steps taken to install and configure security measures.
The issues to be considered for maintaining and
troubleshooting security measures.
Ver. 1.0 Session 15 Slide 22 of 22