Candidates for the CISSP-ISSAP professional certification need to not only demonstrate a thorough understanding of the six domains of the ISSAP CBK, but also need to have the ability to apply this in-depth knowledge to develop a detailed security architecture.Supplying an authoritative review of the key concepts and requirements of the ISSAP CBK, the Official (ISC)2® Guide to the ISSAP® CBK®, Second Edition provides the practical understanding required to implement the latest security protocols to improve productivity, profitability, security, and efficiency. Encompassing all of the knowledge elements needed to create secure architectures, the text covers the six domains: Access Control Systems and Methodology, Communications and Network Security, Cryptology, Security Architecture Analysis, BCP/DRP, and Physical Security Considerations.Newly Enhanced Design - This Guide Has It All!

Access Control Systems & MethodologyAccess Control ConceptsAuthentication, Authorization, and Accounting (AAA)Access Control Administration and Management ConceptsCommunications & Network SecurityVoice and Facsimile CommunicationsNetwork ArchitectureNetwork Security Design ConsiderationsInteroperability and Associated RisksAudits and AssessmentsOperating EnvironmentSecure Sourcing StrategyCryptographic PrinciplesApplications of CryptographyVet Proprietary Cryptography & Design Testable Cryptographic SystemsComputational Overhead & Useful LifeKey ManagementKey Life CyclePublic Key InfrastructureDesign ValidationSecurity Architecture Analysis Risk Analysis Product Assurance Evaluation CriteriaAssurance through EvaluationArchitecture FrameworksDesign ProcessTechnology Related Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP) Planning Phases and DeliverablesRisk AnalysisBusiness Impact AnalysisSelecting a Recovery Strategy for TechnologyBringing It All Together - A Sample "Walk Through" of a DR PlanStep by Step Guide for Disaster Recovery Planning for Security ArchitectsReferencesPhysical Security ConsiderationsPhysical Security Policies and StandardsPhysical Security RisksProtection PlansAnswers to Review Questions