The Rainbow Series (sometimes known as the Rainbow Books) is a series of computer security standards published by the United States government in the 1980s and 1990s. They were originally published by the U.S. Department of Defense Computer Security Center, and then by the National Computer Security Center.

These standards describe a process of evaluation for trusted systems. In some cases, U.S. government entities (as well as private firms) would require formal validation of computer technology using this process as part of their procurement criteria. Many of these standards have influenced, and have been superseded by, the Common Criteria.

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

The books have nicknames based on the color of its cover. For example, the Trusted Computer System Evaluation Criteria was referred to as “The Orange Book.” In the book entitled Applied Cryptography, security expert Bruce Schneier states of NCSC-TG-021 that he “can’t even begin to describe the color of [the] cover” and that some of the books in this series have “hideously colored covers.” He then goes on to describe how to receive a copy of them, saying “Don’t tell them I sent you.”

(Source: http://en.wikipedia.org/wiki/Rainbow_Series)

• Redbook – Trusted Network Interpretation (TNI)
• Time and technological changes lessen the relevancy of the TNI to contemporary networking
• Deals with technical issues outside the scope of the Orange Book with regards to networks
• Redbook interprets the Orange Book

Orange Book – Trusted Computer Security Evaluation Criteria

• A document published by the US Department of Defense which contains criteria used for evaluating the degree of security in a networked system. It characterizes security from D (the minimum) to A1 (very secure). Most OPERATING SYSTEMS and NETWORK OPERATING SYSTEMS are classified at the C2 level. It is also known as the Orange Book and is often abbreviated to TCSEC.

TNI Evaluation Classes

• D – Minimal protection
• C – Discretionary protection
• C1 – Discretionary Security Protection
• C2 – Controlled Access protection
• B – Mandatory
• B1 – Labeled Security
• B2 – Structured
• B3 – Security Domains

Protocols – a standard set of rules that determines how computers communicate with each other across networks despite their differences

Layered architecture – An architecture in which data moves from one defined level of processing to another. Communications protocols are a primary example (i.e the OSI model)

• Shows how communication should take place
• Clarify the general functions of a communication process
• To break down complex networking processes into more manageable sub-layers
• Using industry standard interfaces enables interoperability
• To change the features of one layer without changing the code in every layer
• Easier troubleshooting

Salami Attack – a series of minor computer crimes that are part of a larger crime

One common method of attack involves saturating the target (victim) machine with external communications requests, such that it cannot respond to legitimate traffic, or responds so slowly as to be rendered effectively unavailable. In general terms, DoS attacks are implemented by either forcing the targeted computer(s) to reset, or consuming its resources so that it can no longer provide its intended service or obstructing the communication media between the intended users and the victim so that they can no longer communicate adequately.Denial-of-service attacks are considered violations of the IAB’s Internet proper use policy, and also violate the acceptable use policies of virtually all Internet Service Providers. They also commonly constitute violations of the laws of individual nations. (Source: http://en.wikipedia.org/wiki/Denial-of-service_attack)

Planning to take the CISSP Exam? Get a copy of my personal notes (300plus pages worth) that I used to pass the exam for only $25.00. Click the Add To Cart Button to Purchase Plus you will also get copies of notes from other CISSPs. Learn more about this package by visiting this blog entry: CISSP REVIEW NOTES I USED TO PASS THE EXAM. CLICK BELOW TO MAKE YOUR PURCHASE NOW. All Purchases are securely processed through Paypal. Once you click the button please check your shopping cart at the upper right hand side of the page to complete your order. IMPORTANT NOTICE: I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECEIVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

Common DoS Attacks

• Filling hard drive space with e-mail attachments
• Sending a message that resets a targets host subnet mask causing routing disruption
• Using up all the target’s resources to accept network connections

Additional DoS Attacks

• Buffer Overflow Attack
  • When a process receives much more data that expected
  • Since buffers are created to contain a finite amount of data, the extra information, which has to go somewhere – can overflow in adjacent buffers, corrupting or overwriting the valid data held in them
  • PING – Packet Internet Groper – uses ICMP – Internet Control Message Protocol
  • PING of Death – Intruder sends a PING that consists of an illegally modified and very large IP datagram, thus overfilling the system buffers and causing the system to reboot or hang
• SYN Attack
  • Attacks the buffer space during a TCP handshake
  • Attacker f;ppds the target system’s “in-process” queue with connection requests causing the system to timeout
• Teardrop Attack
  • Modifying the length of the fragmentation fields in the IP packet
  • When a machine receives this attack, it is unable to handle the data and can exhibit behavior ranging from a lost Internet connection to the infamous BSOD, the machine becomes confused and crashes
• Smurf Attack
  • Source site sends spoofed network requests to a large network (bounce site) and all machines responds to a target site
  • Exploits IP broadcast addressing
• Fraggle Attack
  • “Cousin” of the Smurf Attack
  • uses UDP echo packets in the same fashion as the ICMP echo packet

So I decided to go Spartan and go old school. I read the Shon Harris book and the official CISSP book for at least 2 hours every morning with the target of finishing a Domain per week. All the while highlighting stuff that I thought would be useful and worth highlighting. So you can imagine that process took me at least 20 weeks, reading two books.

After reading the books, I then started taking notes based on the items that I highlighted. Woke up at 4AM every morning, had the books in front of me and typed in as much as I could before I head to work. Took me another 10 weeks or so.

Using what I had studied at this point, I scoured the web for additional information and docs that I could find that will help me review. From those documents, I combined and created notes from them as well. Another 10 week process.

Taking notes worked well for me since typing or writing what I am reading helps me focus and remember better. Studying early in the morning has worked for me since grade school, since the morning is when my head is the clearest. Have you ever noticed how the first song you hear in the morning typically sticks to your head the rest of the day? Well, reading and studying works the same way for me.

To round up my study I bought a couple of practice exam CDs and an Exam Cram book to simulate the exam. I felt very confident that I will do pretty decent in the real CISSP exam when I passed the simulation exams on the first try.

I found these notes very useful, I still use them as a reference for all things related to Information Security. I even used them as a reference when I was studying for the CISM (Certified Information Systems Manager) exam.

I figured my notes could help out quite a few of you aspiring CISSPs out there. You can get a copy of them here.

Please click on the button to purchase

Simply click the button below to purchase this must have CISSP Review package for a very low price of $25.00

All Purchases are securely processed through Paypal.

IMPORTANT NOTICE:

I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

So what do you get for $25.00?

1. The first set of my review notes that I took from reading the Shon Harris and the official CISSP book. Over 160 pages worth of notes mostly typewritten in Times New Roman 11 font. So you can imagine it will have more pages if it was in 12 font. I was not skimming, I was STUDYING. HARD.
2. The second set of my notes that I took from re-reading the first set of notes, visiting countless blogs, forums and libraries and from reading a slew of other docs and reviewers that I downloaded from across the web. A little bit under 160 pages worth of notes, mostly written in Times New Roman 12 font. This set is a little bit more focused.
3. And a Bonus package of all the other docs, notes and reviewers that other CISSPs across the web have shared and I downloaded. Stuff that I cross-checked to help create my 2 sets of notes.

You may also want to consider these CISSP resources from Amazon.com

I am imagining a reviewer set with this amount of information and detail will easily cost you $80 to $100. Most Prep Guide Books in Amazon are sold at an average discounted price of around $50.00.

So do the math… As a CISSP candidate, I believe you can do some basic Risk Assessment and Cost-Benefit Analysis …

That said, I hope you find value in this notes. Best of luck to you, and thanks in advance for your consideration…

Please click on the button to purchase

Simply click the button below to purchase this must have CISSP Review package for a very low price of $25.00

All Purchases are securely processed through Paypal.

IMPORTANT NOTICE:

I MANUALLY REVIEW ALL ORDERS. SO ONCE YOU PURCHASE THE PRODUCT, THERE WILL BE SOME DELAY ON YOU RECIEVING AN E-MAIL FROM ME WITH THE LINK TO THE DOWNLOAD AREA OF THE PRODUCT. YOU WILL GET A RESPONSE FROM ME WITHIN 24-48 HOURS.

You may also want to consider these CISSP resources from Amazon.com