The InfoSec Handbook

Continuity
a. Recovery Plan
b. Continuity Plan
c. Evaluation of Effectiveness
3. Risk Management
a. Risk Analysis
b. Threat Identification
c. Control Documentation
4. Incident Response
a. Incident Response Plan
i. Information Gathering
ii. Computer Security Incident Response Team (CSIRT)
iii. Evaluation of Effectiveness
5. Chapter Summary

Section III
- Application Security
Chapter 7: Section Introduction
1. General Introduction
- Introduce the reader to the actual software side of security. The worries of applications becoming outdated and vulnerable to attack. As well as cryptography which offers application level solutions to storing information safely.
Chapter 8: Malicious Software
1. Introduction
2. What is malware?
a. Description
- Simple explanation of what malware is (malicious software).
3. Propagation
a. Examples of how quickly it can spread
- This can be followed up by the 'Historical Malware' section.
4. Types
- Basic descriptions and single example of what each is and how they function.
a. Virus
b. Worm
c. Trojan
d. Botnet
e. Spyware
f. Adware
5. Historical Malware
6. Chapter Summary
Chapter 9: Anti-Virus
1. Introduction
2. Anti-Virus
- Explain what anti-virus is. The reader should understand already, but this should also explain why it is so important and what it protects the user from.
3. Benefits of using Anti-Virus
4. Managing Anti-Virus
- This will be a basic explanation of how you maintain an anti-virus
.a. Updates
5. Common Anti-Virus
- Talk about the different popular anti-virus options and what each offers.
a. Norton
b. AVG
c. Avast
d. Others
6. Chapter Summary
Chapter 10: Cryptography
1. Introduction
2. Cryptography
- Explain what cryptography is. Basic definitions and how it works in a simple scenario. The reader must understand it at a simple level before learning the more complex parts.
3. History of Cryptography
a. Historical Cryptography
i. Caesar cipher
ii. Scytale
b. Modern Cryptography
4. Application Usage
- Applications like TrueCrypt, list some that are popular and their usage.
5. Network Usage
- This is in terms of things like VPN's and HTTPS.
6. Keys
a. Symmetric
b. Asymmetric
7. Certificates
- Discuss how certificates can be used in cryptographic transactions.
8. Hashing algorithms
a. Examples
i. Secure Hash Algorithm
ii. Message-Digest Algorithm
9. File Encryption Tools
- Restate some of the tools discussed earlier and offer links to obtain them.
10. Chapter Summary
Section IV
- Network Security
Chapter 11: Section Introduction
1. General Introduction
- This section will discuss everything network related. The reader needs to understand the network and how it functions. This is followed by them understanding some of the more key points involved.
Chapter 12: Understanding the network
1. Introduction
- A pretty basic section to either explain how a network works to the reader or remind them some of the key points. This isn't meant to be a huge section explaining everything. Some of the key points involved in the process of things and that's all.
2. Basic networking
a. How does it work?
3. Models
- Explain the different models in detail, including images and examples to ensure they have a good grasp of them.
a. OSI Mode
l b. TCP/IP Model
4. Chapter Summary
Chapter 13: Firewalls
1. Introduction
- Basic section explaining firewalls and their functionality.
2. What does it do?
3. Why is it important?
4. Types
- There have been different generations throughout the years. Explain the different versions that have existed and how they are different.
a. Network Layer
i. Packet Filteringl
b. Transport Layer
i. Stateful Filterl
c. Application Layer
5. Custom Rules
6. Exceptions
7. Chapter Summary
Chapter 14: Intrusion Detection &
- Prevention Systems
1. Introduction
2. Purpose of IDS/IPS
- Explain the reasons for using and maintaining an IDS/IPS system as well as the importance of having them.
a. Uses for it
3. Detection Methodologies
- Talk about how the different methods work, which is the most common and why.
a. Signature-Based
b. Anomaly
c. Stateful Protocol Analysis
4. Types of IDS/IPS Technologies
- There are several different technologies that exist to perform the required tasks discussed. Describe some of the common ones that exist and how they function.
a. Network-Based
b. Wireless
c. Network Behavior Analysis
d. Host-Based
5. Chapter Summary
Chapter 15: Virtual Private Networks
1. Introduction
2. What is VPN?
- Give a lot of detail when explaining what a VPN actually is. Descriptive examples and images will also help the reader understand what they are and how they are used.
a. Cryptographic traffic
3. Usage
4. Types of VPN
- Explain the different types in good detail. How they work, what they are used for, etc.
a. Remote Access
b. Site-to-Site
5. Protocols
- Explain some of the protocols used to make VPN's effective.
6. Chapter Summary
Chapter 16: Data Backups &
- Cloud Computing
1. Introduction
2. Backup
- This section of the chapter will explain to the user the usage and benefits of backing up data. This is obviously followed by the cloud information, which will add to backups.
a. Benefits of using backup
b. Dangers of not having backup
c. Types
i. On-line
ii. Near-line
iii. Off-line
iv. Off-site
v. DRC (Data Recovery Centers)
3. Cloud Computing
- Here you will explain the benefits of the cloud, and how it is used. This includes for backup, as well as other services.
a. Deployment Models
i. Public
ii. Community
iii. Private
iv. Hybrid
b. Service Models
i. Infrastructure
ii. Platform
iii. Software
c. Issues
i. Privacy
ii. Compliance
- for regulations
4. Chapter Summary

Section V
- Physical Security
Chapter 17: Section Introduction
1. General Introduction
- This section is short, however it is still important for the reader to understand. They need to understand that there are other security risks that aren't all inside of the computer systems. There are physical methods of gaining access and they are very common and effective.
Chapter 18: Biometrics
1. Introduction
2. What is Biometrics?
a. Fact vs. Fiction (Misconceptions from movies and other media)
3. Increasing popularity
4. Functionality
a. Characteristics
- Characteristics that they all use. Explain them and their importance.
i. Universal
ii. Measurable
iii. Acceptance
b. Analysis
- Based on the biometric being used, the measurements are going to be different. However you can give the reader various examples of what some different biometrics use to measure and analyze the input.
i. Measurements
1. Examples
5. Multi-Biometric Systems
6. Issues &
- Controversy
7. Chapter Summary
Chapter 19: Social Engineering
1. Introduction
2. What is Social Engineering?
- The reader needs to understand how effective social engineering can be. It is something that happens more often than people think because of how easily and undetectable it can be.
a. Effectiveness
b. Risk
3. Techniques
- All of the techniques discussed need good examples of how they work and why.
a. Pretexting
b. Diverse Thief
c. Phishing
d. Vishing
e. Baiting
f. Tailgating
4. Notable Social Engineers -Interesting section for the reader to learn about some of the people who have become successful at social engineering and published their exploits.
5. Chapter Summary

Section VI
- Conclusion &
- Appendices
Chapter 20: Summary / Conclusion
1. Summary
- A final summary of the whole book. This will review over each section that was covered. Giving final bits of information and advice about each.
a. Section I
b. Section II
c. Section III
d. Section IV
e. Section V
2. Conclusion
- Short chapter concluding all of the information that has been gone over in the book.
3. Closing Statement
- Final chapter leading the book to a close. This will include the thanks to the reader for sticking though it. It will also give further reading suggestions to the reader in there is extra interest.
Appendix A: Glossary Appendix B: Resources
1. Books
2. Websites
Appendix C: References