Archiv:Security bei Kerzenschein/CISSP: Unterschied zwischen den Versionen

aus Metalab, dem offenen Zentrum für meta-disziplinäre Magier und technisch-kreative Enthusiasten.
Wechseln zu: Navigation, Suche
K (Security by Candlelight CISSP Portal: Closed an open quote.)
(mit Vorlage)
Zeile 1: Zeile 1:
== [[Security_by_Candlelight|Security by Candlelight]] CISSP Portal==
|valign="top" width="220px"|
| <small>
'''Can I get there by Candlelight'''?<br>
  How many miles to Babylon?<br>
  Three score and ten.<br>
  Can I get there by candlelight?<br>
  Aye, and back again.<br>
  If your feet are nimble and light<br>
  You'll get there by candlelight.</small>
<small><div align="right">-- Nursery Rhyme</div></small>
|valign="top" style="padding-left: 0.5em;"|
[[Bild:433081 candle light 1.jpg|right|thumb|Security bei Kerzenschein]]
Starting in January 2013 Security by Candlelight focuses on the Certified Information Systems Security Professional (CISSP)® Common Body of Knowledge (CBK)®.
The CISSP certification is a well respected, vendor neutral certification from the International Information Systems Security Certification Consortium or [ (ISC)²]
The CISSP covers 10 Domains (or in other words fields of knowledge):
* Access Control
* Telecommunications and Network Security
* Information Security Governance and Risk Management
* Software Development Security
* Cryptography
* Security Architecture and Design
* Operations Security
* Business Continuity and Disaster Recovery Planning
* Legal, Regulations, Investigations and Compliance
* Physical (Environmental) Security
''' Location: ''' The "[[Location|Library]]" at the Metalab in Vienna: [[Lage|Map]]
'''Hosted by:''' Michael "[[Benutzer:MiKa|MiKa]]" Kafka and René "[[Benutzer:Lynx|Lynx]]" Pfeiffer
'''[ Twitter]:''' @MetaLabSbC
== What to expect ==
== What to expect ==

Version vom 4. Januar 2013, 03:58 Uhr

Security by Candlelight

Can I get there by Candlelight?
How many miles to Babylon?
Three score and ten.
Can I get there by candlelight?
Aye, and back again.
If your feet are nimble and light
You'll get there by candlelight.
-- Nursery Rhyme

Security bei Kerzenschein/CISSP
433081 candle light 1.jpg
Status: |active
All things pertinent to physical and IT-Security
Lynx, MiKa
#metalab at
People interested in improving the security of all kinds.
Yes, by candlelight. Really!
Zuletzt aktualisiert: 04.01.2013

Security sometimes seems like a hard and long journey

But properly equipped it will be just like snapping with your fingers. I'm afraid we will not have a "Babylon Candle" to get us there but at least it will be much more fun to travel in a group and talk about the things and wonders we see along the road.

A Meeting Place for Security Enthusiasts at the Metalab in Vienna

  • Open for everyone, no special skills required. Just be curious, playful and interested.
  • Bring your own Ideas, not your own beer - we have plenty of beer/Club Mate in the fridge. We want your input and active participation (not to say your soul) - don't be shy :)
  • Security by Candlelight is not a workshop or a lecture type of event (although it appears to be sometimes) but a discussion and exchange about different aspects of security.
  • We want to cover hacking and defending systems, we want to talk about physical, network and application security. We want to discuss about social hacking and security awareness, we want to do things and try some cool hacks on our own.
  • Our goal is to meet two times a month at the Metalab Library in a relaxed setting with changing hosts and topics, with presentations, workshops or discussion rounds.

Location: The "library" at the Metalab in Vienna: Map

Twitter: @MetaLabSbC

SbC Mailing List Subscribe here

What to expect

With the CISSP CBK Review we want to establish a study-group or a workshop to learn the details of information systems security and security management togehter in a group. The focus is not on technical details like SQL-injections, Cross-Site-Scripting or buffer overflows etc... instead we focus on high-level topics which are theoretical, abstract and annoyingly formal.

This will not be a classical training with an instructor who teaches you everything necessary. You will need to devote a lot of time for self-study, reading and learning inbetween the meetings.

Who should come?

We recommend these events to security specialists and those who want to become one.

The material is serious business and only suited for those who have a deep interest and are willing to work and learn hard. It is lengthy, highly thoretical and requires quite a bit of prerequisites to fully understand and appreciate the topics.


The recommended duration of the source material is 5 Days. We plan to cover the topics in aprx. 20 meetings, 2 hours each (plus discussion time). Target is every first and third Tuesday each month. Final decision will be made at our "Zero Day" and this text will be updated.

It is highly recommended to cover the suggested reading and links between our meetings which will be roughly two times a month.


The series of meetings is based on the Creative Commons Licensed Training by Alfred Ouyang.

Creative Commons Material can be accessed here:

I recommend to start with References/CISSP_Glossary_v1.1.docx

Recommended Textbook:

CISSP All-in-One Exam Guide, 5th Edition, by Shon Harris

  • McGraw-Hill Osborne Media; (February 8, 2010)
  • ISBN-10: 0071602178 - ISBN-13: 978-0071602174

Contributions and Discussions

CISSP CBK Meetings

# Date Topic and Host(s)
#00 2013-01-22 Tue 19:00 Revival of Security by Candlelight: CISSP CBK Zero Day
Certified Information Systems Security Professional (CISSP)® Common Body of Knowledge (CBK)® Review. Based on a Creative Commons Training by Alfred Ouyang

Hosted by MiKa. Location: The Library. CISSP Portal