{"aaData":[[1,"Symmetric vs. asymmetric encryption<\/a>","0"],[2,"Bell-LaPadula access control model<\/a>","0"],[3,"Session hijacking<\/a>","0"],[4,"Secure Electronic Transactions (SET) Protocol<\/a>","0"],[5,"DHCP<\/a>","0"],[6,"Advanced Encryption Standard (AES)<\/a>","0"],[7,"Inference and Aggregation<\/a>","0"],[8,"Database security<\/a>","0"],[9,"Firewall rules<\/a>","0"],[10,"Add-on security<\/a>","0"],[11,"Polyinstanciation<\/a>","0"],[12,"Point-to-point tunnelling protocol (PPTP)<\/a>","0"],[13,"Point to point Protocol (PPP)<\/a>","0"],[14,"Common Criteria<\/a>","0"],[15,"Secure Sockets Layer (SSL)<\/a>","0"],[16,"Orange Book (TCSEC) classes and required functionality<\/a>","0"],[17,"Discretionary access control<\/a>","0"],[18,"Access control attacks and countermeasures<\/a>","0"],[19,"Digital signatures<\/a>","0"],[20,"Application and system development attacks and countermeasures","0"],[21,"Flooding attacks<\/a>","0"],[22,"Communications and networks attacks and countermeasures<\/a>","0"],[23,"Biometrics<\/a>","0"],[24,"Identification and authentication techniques<\/a>","0"],[25,"Individual accountability<\/a>","0"],[26,"Mandatory access control<\/a>","0"],[27,"Kerberos<\/a>","0"],[28,"Trojan horses<\/a>","0"],[29,"Account, log and journal monitoring","0"],[30,"Passwords<\/a>","0"],[31,"Separation of duties and responsibilities<\/a>","0"],[32,"Badges","0"],[33,"Role-based access control<\/a>","0"],[34,"Single Sign-On (SSO)<\/a>","0"],[35,"Network sniffing","0"],[36,"Denial of service attacks<\/a>","0"],[37,"Principle of least privilege\/Need to know<\/a>","0"],[38,"Smart cards and memory cards<\/a>","0"],[39,"Threats and vulnerabilites<\/a>","0"],[40,"Multi-factor authentication<\/a>","0"],[41,"SESAME<\/a>","0"],[42,"Application system controls","0"],[43,"Access control administration<\/a>","0"],[44,"Access control techniques<\/a>","0"],[45,"Rule-based access control<\/a>","0"],[46,"Non-discretionary access control<\/a>","0"],[47,"Lattice-based access control<\/a>","0"],[48,"Callback systems","0"],[49,"One-time passwords<\/a>","0"],[50,"Tokens<\/a>","0"],[51,"Replay attacks<\/a>","0"],[52,"Password guessing<\/a>","0"],[53,"Remote Authentication Dial-In Service (RADIUS)<\/a>","0"],[54,"Challenge Handshake Authentication Protocol (CHAP)<\/a>","0"],[55,"TACACS<\/a>","0"],[56,"Monitoring and intrusion detection systems (IDS)<\/a>","0"],[57,"Host-based intrusion detection<\/a>","0"],[58,"Network-based intrusion detection<\/a>","0"],[59,"User monitoring","0"],[60,"Information and asset valuation","0"],[61,"Database views<\/a>","0"],[62,"Access controls lists (ACLs)<\/a>","0"],[63,"Capability tables","0"],[64,"Access control matrix","0"],[65,"Honeypots<\/a>","0"],[66,"Wardialing","0"],[67,"Signature-based intrusion detection systems<\/a>","0"],[68,"Audit trails<\/a>","0"],[69,"Password management<\/a>","0"],[70,"Account administration","0"],[71,"File and data owners, custodians, and users<\/a>","0"],[72,"Biba access control model<\/a>","0"],[73,"PIN Codes","0"],[74,"Access control methodologies and implementation","0"],[75,"Centralized\/remote authentication access controls","0"],[76,"Brute force (exhaustive) attacks<\/a>","0"],[77,"Dictionary attacks<\/a>","0"],[78,"Confidentiality, integrity and availability<\/a>","0"],[79,"Risk management<\/a>","0"],[80,"Risk mitigation<\/a>","0"],[81,"Software licensing","0"],[82,"Sensitivity labels<\/a>","0"],[83,"Security domains<\/a>","0"],[84,"Secure HTTP<\/a>","0"],[85,"Databases and data warehousing<\/a>","0"],[86,"Statistical intrusion detection<\/a>","0"],[87,"Access control objectives","0"],[88,"Clipping level<\/a>","0"],[89,"Passphrases<\/a>","0"],[90,"Buffer overflows<\/a>","0"],[91,"Vulnerability assessment","0"],[92,"Intrusion response","0"],[93,"Clark and Wilson access control model<\/a>","0"],[94,"Non-repudiation<\/a>","0"],[95,"IPSec<\/a>","0"],[96,"Firewalls and packet filters<\/a>","0"],[97,"ISO\/OSI model and layers<\/a>","0"],[98,"Address Resolution Protocol (ARP and RARP)<\/a>","0"],[99,"Network and communication protocols<\/a>","0"],[100,"TCP\/IP characteristics and vulnerabilities","0"],[101,"Network ports and monitoring<\/a>","0"],[102,"Inter-networking devices and connectivity hardware<\/a>","0"],[103,"TCP\/IP model and layers<\/a>","0"],[104,"TCP and UDP<\/a>","0"],[105,"Network monitors and packet sniffers","0"],[106,"TCP\/IP addressing<\/a>","0"],[107,"Physical media characteristics<\/a>","0"],[108,"Local area networks (LANs)<\/a>","0"],[109,"Mobile, wireless and satellite technologies and security","0"],[110,"Internet, Intranets and Extranets<\/a>","0"],[111,"Certification and accreditation","0"],[112,"E-mail security<\/a>","0"],[113,"Common security models, architectures, and evaluation criteria","0"],[114,"Network security","0"],[115,"Telecommunication infrastructures","0"],[116,"Network availability<\/a>","0"],[117,"Remote access and telecommuting<\/a>","0"],[118,"Incident handling and response<\/a>","0"],[119,"RAID Technology<\/a>","0"],[120,"Backups and offsite storage<\/a>","0"],[121,"Network topologies<\/a>","0"],[122,"Secure Shell (SSH)<\/a>","0"],[123,"Key distribution and management<\/a>","0"],[124,"Simple Key Management for Internet Protocols (SKIP)<\/a>","0"],[125,"Proxies<\/a>","0"],[126,"Demilitarized zones (DMZ) and Bastion hosts<\/a>","0"],[127,"Communications security","0"],[128,"Wide Area Networks (WANs)<\/a>","0"],[129,"Frame Relay<\/a>","0"],[130,"Assurance","0"],[131,"Communication services","0"],[132,"Malicious code<\/a>","0"],[133,"Resource misuse and abuse<\/a>","0"],[134,"IP v6<\/a>","0"],[135,"Application layer security protocols","0"],[136,"Transport layer security protocols","0"],[137,"Virtual Private Networks (VPNs)<\/a>","0"],[138,"Networks and communications security techniques","0"],[139,"Routing protocols","0"],[140,"Layer 2 Tunnelling Protocol (L2TP)<\/a>","0"],[141,"Media access methods","0"],[142,"LAN Transmission methods","0"],[143,"Asynchronous Transfer Mode (ATM)","0"],[144,"Spoofing attacks<\/a>","0"],[145,"LAN transmission protocols","0"],[146,"Serial Line Internet Protocol (SLIP)<\/a>","0"],[147,"xDSL","0"],[148,"Remote Procedure Call and Secure-RPC protocols<\/a>","0"],[149,"Firewall implementations","0"],[150,"Network Address Translation (NAT)<\/a>","0"],[151,"Network Services","0"],[152,"Synchronous vs asynchronous communications","0"],[153,"Domain Name System (DNS)<\/a>","0"],[154,"Packet switching<\/a>","0"],[155,"Mirroring","0"],[156,"Ethernet<\/a>","0"],[157,"Encryption and decryption","0"],[158,"Networks and telecommunications management","0"],[159,"Security policies<\/a>","0"],[160,"Computer crime","0"],[161,"Risk assessment tools and techniques","0"],[162,"Security management practices and planning<\/a>","0"],[163,"Security awareness, training and education<\/a>","0"],[164,"Qualitative and quantitative risk assessment<\/a>","0"],[165,"Employment policies and practices","0"],[166,"Hiring and termination practices","0"],[167,"Sensitive information and media handling<\/a>","0"],[168,"Control types<\/a>","0"],[169,"Due care and due diligence<\/a>","0"],[170,"Data classification<\/a>","0"],[171,"Policies, standards, guidelines and procedures<\/a>","0"],[172,"Security controls","0"],[173,"Trap doors<\/a>","0"],[174,"Active and passive attacks","0"],[175,"Disaster recovery planning<\/a>","0"],[176,"Change and configuration control\/management","0"],[177,"Security design and control architecture","0"],[178,"Covert channels<\/a>","0"],[179,"Multi-level security","0"],[180,"Programming languages, techniques and tools<\/a>","0"],[181,"System development life cycle<\/a>","0"],[182,"Distributed environments","0"],[183,"Software capability maturity model (SCMM)","0"],[184,"Public key infrastructure (PKI)<\/a>","0"],[185,"Certification authorities (CA)<\/a>","0"],[186,"Cryptography implementations<\/a>","0"],[187,"X.509 Digital certificates<\/a>","0"],[188,"Authentication<\/a>","0"],[189,"Certificate revocation list (CRL)","0"],[190,"Hybrid cryptography","0"],[191,"User involvment","0"],[192,"Software prototyping and CASE tools","0"],[193,"Viruses<\/a>","0"],[194,"System and application testing<\/a>","0"],[195,"Knowledge-based systems<\/a>","0"],[196,"Security modes<\/a>","0"],[197,"Software development models","0"],[198,"Public (Asymmetric) Key Cryptography","0"],[199,"Public Key Algorithms<\/a>","0"],[200,"Secret (Symmetric) Key Cryptography<\/a>","0"],[201,"Secret Key Algorithms<\/a>","0"],[202,"Data Encryption Standard (DES)<\/a>","0"],[203,"One-time pads<\/a>","0"],[204,"One-way cryptography","0"],[205,"Key lengths and strengths","0"],[206,"Pretty Good Privacy (PGP)<\/a>","0"],[207,"Rivest Shamir Adleman (RSA)<\/a>","0"],[208,"Elliptic Curve Cryptosystems (ECC)<\/a>","0"],[209,"Cryptography attacks and countermeasures<\/a>","0"],[210,"Message digests and hash functions<\/a>","0"],[211,"Cryptography history","0"],[212,"Key escrow and key recovery<\/a>","0"],[213,"Cryptography issues","0"],[214,"Link encryption<\/a>","0"],[215,"Steganography<\/a>","0"],[216,"Stream ciphers and block ciphers<\/a>","0"],[217,"Cipher types<\/a>","0"],[218,"Cryptographic Codes","0"],[219,"Public vs secret cryptography<\/a>","0"],[220,"Clipper Chip<\/a>","0"],[221,"Cryptography weaknesses","0"],[222,"Uses of cryptography","0"],[223,"Reference monitors and security kernels<\/a>","0"],[224,"System-high security mode<\/a>","0"],[225,"Multi-level security mode<\/a>","0"],[226,"Objects and subjects<\/a>","0"],[227,"System assurance<\/a>","0"],[228,"Data hiding","0"],[229,"Trusted Computing Base (TCB)<\/a>","0"],[230,"Information labels","0"],[231,"Compartmented security mode<\/a>","0"],[232,"Application security","0"],[233,"Data remanence and object reuse protection<\/a>","0"],[234,"Security models controls","0"],[235,"ITSEC classes and required assurance and functionality","0"],[236,"Integrity checkers","0"],[237,"Access matrix model","0"],[238,"Take-Grant access control model","0"],[239,"Common computer and network organizations, architectures and designs","0"],[240,"Address space and addressing","0"],[241,"Attributability","0"],[242,"Input and parameter checking","0"],[243,"Storage types","0"],[244,"Protection rings","0"],[245,"Security models","0"],[246,"Non-interference model","0"],[247,"Trusted Network Interpretation (Red Book-TNI)<\/a>","0"],[248,"System protection mechanisms","0"],[249,"Process isolation","0"],[250,"Trusted systems","0"],[251,"Security perimeter and DMZ","0"],[252,"Protection domains","0"],[253,"Initialization and failure states","0"],[254,"Roles and responsibilities","0"],[255,"Two-man control","0"],[256,"Dual control","0"],[257,"Configuration management<\/a>","0"],[258,"Controlled (partitioned) security mode","0"],[259,"Illegal and inappropriate activities<\/a>","0"],[260,"Operations security threats and Countermeasures","0"],[261,"Operations controls<\/a>","0"],[262,"Monitoring tools and techniques","0"],[263,"Penetration testing (ethical hacking)<\/a>","0"],[264,"Traffic analysis<\/a>","0"],[265,"Attacker types, profiles and motivations<\/a>","0"],[266,"Service level agreements (SLAs)<\/a>","0"],[267,"Security audits<\/a>","0"],[268,"Social engineering<\/a>","0"],[269,"Job rotation","0"],[270,"Alternate sites<\/a>","0"],[271,"Contingency planning testing<\/a>","0"],[272,"Business Impact Assessment (BIA)<\/a>","0"],[273,"Recovery and redundancy techniques<\/a>","0"],[274,"Business Continuity Planning (BCP)","0"],[275,"BCP\/DRP Events","0"],[276,"Recovery point and recovery time objectives","0"],[277,"Insurance","0"],[278,"Maximum tolerable downtime","0"],[279,"Recovery strategy","0"],[280,"Elements of contingency planning","0"],[281,"Recovery plan maintenance","0"],[282,"Relocation to primary site","0"],[283,"Management involvement in BCP\/DRP<\/a>","0"],[284,"End-user involvement in BCP\/DRP","0"],[285,"Telecommunications continuity","0"],[286,"Business continuity plan testing","0"],[287,"Alternate processes","0"],[288,"Risk assessment<\/a>","0"],[289,"Business continuity scope and planning","0"],[290,"External communications","0"],[291,"BCP\/DRP controls","0"],[292,"Emergency Response","0"],[293,"Investigations","0"],[294,"Computer crime evidence<\/a>","0"],[295,"Evidence types and admissibility<\/a>","0"],[296,"Evidence collection and preservation<\/a>","0"],[297,"Chain of custody of evidence<\/a>","0"],[298,"Computer laws<\/a>","0"],[299,"Hacker tools","0"],[300,"Computer crime types<\/a>","0"],[301,"Masquerading attacks","0"],[302,"Legal liability<\/a>","0"],[303,"Protection of personal information","0"],[304,"Damage assessment","0"],[305,"Entrapment and enticement","0"],[306,"Physical security threats (prevention, detection and suppression)<\/a>","0"],[307,"Humidity and environmental controls","0"],[308,"Power considerations<\/a>","0"],[309,"Fire and smoke detection and suppression systems<\/a>","0"],[310,"Physical security controls<\/a>","0"],[311,"Facility Requirements<\/a>","0"],[312,"Security guards, guns, dogs","0"],[313,"Layered security","0"],[314,"Technical physical security controls","0"],[315,"Motion detectors, sensors, and alarms","0"],[316,"Site Selection, Facility Design, and Configuration<\/a>","0"],[317,"Administrative physical security controls","0"],[318,"Closed Circuit Television (CCTV)","0"],[319,"System accountability<\/a>","0"],[320,"Access Controls<\/a>","16"],[321,"Implement Authentication Mechanisms<\/a>","6"],[322," Single\/multifactor authentication<\/a>","4"],[323," Single sign-on<\/a>","2"],[324," Device authentication<\/a>","0"],[325,"Operate Internetwork Trust Architectures (e.g., extranet, third-party connections, federated access<\/a>","0"],[326," One-way trust relationships<\/a>","0"],[327," Two-way trust relationships<\/a>","0"],[328," Transitive trust<\/a>","0"],[329,"Participate in the Identity-Management Lifecycle<\/a>","3"],[330," Authorization<\/a>","2"],[331," Proofing<\/a>","0"],[332," Provisioning<\/a>","0"],[333," Maintenance<\/a>","0"],[334," Entitlement<\/a>","0"],[335,"Implement Access Controls (e.g., subject-based, object-based)<\/a>","2"],[336," Mandatory<\/a>","0"],[337," Non-Discretionary<\/a>","0"],[338," Discretionary<\/a>","0"],[339," Role-based<\/a>","0"],[340," Attribute-based<\/a>","0"],[341,"Password<\/a>","0"],[342,"Security Operations and Administration<\/a>","4"],[343,"Understand and Comply with Codes of Ethics<\/a>","0"],[344,"Understand Security Concepts<\/a>","0"],[345," (ISC)\u00b2 Code of Ethics<\/a>","0"],[346," Organizational code of ethics<\/a>","0"],[347,"confidentiality<\/a>","0"],[348,"integrity<\/a>","0"],[349,"availability<\/a>","0"],[350,"accountability<\/a>","1"],[351,"privacy<\/a>","0"],[352,"non-repudiation<\/a>","0"],[353,"least privilege<\/a>","3"],[354,"separation of duties<\/a>","0"],[355,"Document and Operate Security Controls<\/a>","3"],[356," Deterrent controls<\/a>","0"],[357," Preventative controls<\/a>","0"],[358," Detective controls<\/a>","1"],[359," Corrective controls<\/a>","1"],[360," Compensating controls<\/a>","1"],[361,"Participate in Asset Management<\/a>","0"],[362," Lifecycle<\/a>","1"],[363," Hardware<\/a>","0"],[364," Software<\/a>","0"],[365," Data<\/a>","2"],[366,"Implement and Assess Compliance with Controls<\/a>","0"],[367," Technical controls<\/a>","1"],[368," Operational controls<\/a>","0"],[369," Managerial controls (e.g., security policies, baselines, standards, and procedures)<\/a>","1"],[370,"Participate in Change Management<\/a>","1"],[371," Implementation of Configuration Management Plan<\/a>","0"],[372," Security impact assessment<\/a>","0"],[373," System architecture\/interoperability of systems<\/a>","1"],[374," Testing \/implementing patches, fixes, and updates (e.g., operating system, applications, SDLC)<\/a>","2"],[375,"Participate in Security Awareness and Training<\/a>","0"],[376,"Participate in Physical Security Operations (e.g., security assessment, cameras, locks)<\/a>","0"],[377,"Understand the Risk Management Process","0"],[378,"Perform Security Assessment Activities","0"],[379,"Operate and Maintain Monitoring Systems (e.g., continuous monitoring)","1"],[380,"Analyze Monitoring Results","0"],[381,"Risk Visibility and Reporting (e.g., risk register, sharing threat intelligence)","0"],[382,"Risk management concepts (e.g., impacts, threats, vulnerabilities)","1"],[383,"Risk assessment","1"],[384,"Risk treatment (accept, transfer, mitigate, avoid)","0"],[385,"Audit fndings","0"],[386,"Participation in security testing and evaluation","0"],[387,"Interpretation and reporting of scanning and testing results","2"],[388,"Events of interest","0"],[389,"Logging","0"],[390,"Source systems","0"],[391,"Security analytics, metrics, and trends (e.g., baseline)","0"],[392,"Visualization","0"],[393,"Event data analysis (e.g., log, packet dump, machine data)","1"],[394,"Communicate fndings","0"],[395,"Incident Response and Recovery<\/a>","5"],[396,"Participate in Incident Handling<\/a>","1"],[397," Discovery<\/a>","0"],[398," Escalation<\/a>","0"],[399," Reporting and feedback loops (lessons learned)<\/a>","0"],[400," Incident response<\/a>","3"],[401," Implementation of countermeasures<\/a>","2"],[402,"Understand and support forensic investigations (e.g., first responder, evidence handling, chain of custody, preservation of scene)<\/a>","3"],[403,"Understand and Support Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP)<\/a>","8"],[404," Emergency response plans and procedures (e.g., information system contingency plan)<\/a>","1"],[405," Interim or alternate processing strategies<\/a>","1"],[406," Restoration planning<\/a>","0"],[407," Backup and redundancy implementation<\/a>","2"],[408," Testing and drills<\/a>","0"],[409,"Cryptography<\/a>","4"],[410,"Understand and Apply Fundamental Concepts of Cryptography<\/a>","1"],[411," Hashing<\/a>","2"],[412," Salting<\/a>","0"],[413," Symmetric\/asymmetric encryption<\/a>","9"],[414," Digital signatures<\/a>","1"],[415," Non-repudiation<\/a>","0"],[416,"Understand Requirements for Cryptography (e.g., data sensitivity, regulatory requirements, end-user training)<\/a>","2"],[417,"Understand and Support Secure Protocols (e.g., differences in implementation, appropriate use)<\/a>","0"],[418,"Operate and implement cryptographic systems<\/a>","0"],[419," Fundamental key management concepts (e.g., key rotation, key composition, cryptographic attacks)<\/a>","0"],[420," Public key infrastructure<\/a>","2"],[421," Administration and validation (e.g., key creation, exchange, revocation, escrow)<\/a>","2"],[422," Web of Trust (e.g., PGP)<\/a>","0"],[423," Implementation of secure protocols (e.g., IPSec, SSL\/TLS, S\/MIME)<\/a>","4"],[424,"Public Key Infrastructure (PKI)<\/a>","3"],[425,"Network and Communications Security<\/a>","5"],[426,"Understand Security Issues Related to Networks<\/a>","0"],[427," OSI and TCP\/IP models<\/a>","9"],[428," Network topographies and relationships (e.g., ring, star, bus, mesh, tree)<\/a>","0"],[429," Commonly used ports and protocols<\/a>","2"],[430,"Protect Telecommunications Technologies<\/a>","2"],[431," Converged communications<\/a>","0"],[432," Attacks and countermeasures<\/a>","4"],[433,"Control Network Access<\/a>","1"],[434," Access control and monitoring (e.g., NAC, remediation, quarantine, admission)<\/a>","1"],[435," Access control standards and protocols (e.g., IEEE 802.1X, Radius, TACACS)<\/a>","2"],[436," Remote access operation and configuration (e.g., thin client, SSL VPN, IPSec VPN, telework)<\/a>","0"],[437,"Manage LAN-based security<\/a>","0"],[438," Separation of data plane and control plane<\/a>","0"],[439," Segmentation (e.g., VLAN, ACLs)<\/a>","0"],[440," Secure device management<\/a>","0"],[441,"Operate and Configure Network-Based Security Devices<\/a>","0"],[442," Firewalls and proxies<\/a>","2"],[443," Network intrusion detection\/prevention systems<\/a>","1"],[444," Routers and switches<\/a>","1"],[445," Traffic-shaping devices (e.g., WAN optimization)<\/a>","0"],[446,"Implement and Operate Wireless Technologies<\/a>","2"],[447," Transmission security (e.g., WPA, WPA2\/802.11i, AES, TKIP)<\/a>","1"],[448," Wireless security devices (e.g., dedicated\/integrated WIPS, WIDS)<\/a>","4"],[449," Attacks and countermeasures (e.g., management protocols)<\/a>","0"],[450,"Systems and Application Security<\/a>","0"],[451,"Identify and Analyze Malicious Code and Activity<\/a>","0"],[452," Malicious code (e.g., malware)<\/a>","7"],[453," Malicious code countermeasures (e.g., scanners, anti-malware, code signing, sandboxing)<\/a>","0"],[454," Malicious activity (e.g., social engineering, insider threat, data theft, DDoS, spoofing, phishing, pharming,<\/a>","6"],[455,"spam, Botnet)<\/a>","0"],[456," Malicious activity countermeasures (e.g., user awareness, system hardening, patching, sandboxing)<\/a>","1"],[457,"Implement and Operate Endpoint Device Security (e.g., virtualization, thin clients, thick clients, USB devices)<\/a>","0"],[458," HIDS<\/a>","0"],[459," Host-based firewalls<\/a>","0"],[460," Application white listing<\/a>","0"],[461," Endpoint encryption<\/a>","0"],[462," Trusted platform module<\/a>","0"],[463," Mobile device management (e.g., COPE, BYOD, telework)<\/a>","1"],[464," Secure browsing (e.g., sandbox)<\/a>","0"],[465,"Operate and Configure Cloud Security<\/a>","1"],[466," Operation models (e.g., public, private, hybrid)<\/a>","0"],[467," Service models (e.g., DNS, email, proxy, VPN)<\/a>","1"],[468," Virtualization (e.g., hypervisor)<\/a>","1"],[469," Legal and privacy concerns (e.g., surveillance, data ownership, jurisdiction, eDiscovery)<\/a>","1"],[470," Data storage and transmission (e.g., archiving, recovery, resilience)<\/a>","0"],[471," Third-party\/outsourcing requirements (e.g., SLA, data portability, data destruction, auditing)<\/a>","0"],[472,"Secure Big Data Systems<\/a>","0"],[473," Application vulnerabilities<\/a>","2"],[474," Architecture or design vulnerabilities<\/a>","0"],[475,"Operate and Secure Virtual Environments<\/a>","0"],[476," Software-defined networking<\/a>","0"],[477," Hypervisor<\/a>","0"],[478," Virtual appliances<\/a>","0"],[479," Continuity and resilience<\/a>","0"],[480," Attacks and countermeasures<\/a>","1"],[481," Shared storage<\/a>","0"]],"sEcho":"","iTotalRecords":481,"iTotalDisplayRecords":481}