Chapter 12

               Secure Communications and Network Attacks


               THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER

               INCLUDE:

                      Domain 4: Communication and Network Security

                        4.3 Implement secure communication channels according to
                        design

                             4.3.1 Voice

                             4.3.2 Multimedia collaboration

                             4.3.3 Remote access

                             4.3.4 Data communications

                             4.3.5 Virtualized networks














                                       Data residing in a static form on a storage device is
               fairly simple to secure. As long as physical access control is maintained
               and reasonable logical access controls are implemented, stored files
               remain confidential, retain their integrity, and are available to
               authorized users. However, once data is used by an application or

               transferred over a network connection, the process of securing it
               becomes much more difficult.

               Communications security covers a wide range of issues related to the
               transportation of electronic information from one place to another.
               That transportation may be between systems on opposite sides of the
               planet or between systems on the same business network. Once it is
               involved in any means of transportation, data becomes vulnerable to a