This chapter examines some of the security concepts implemented on a typical enterprise network. The Network+ exam expects candidates to be familiar with these basic concepts.

In this chapter, you'll learn everything you need to know about Network+ objective 4.1, including the following topics:

• Confidentiality, integrity, availability (CIA)
• Threats
• Vulnerabilities
• Exploits
• Least privilege
• Role-based access
• Zero trust
• Defense in depth
• Authentication methods
• Risk management
• Security information and event management (SIEM)

CONFIDENTIALITY, INTEGRITY, AND AVAILABILITY

The fundamental security goals of an enterprise network are to maintain the confidentiality, ...