Successful completion of this exam will demonstrate a candidate's ability to detect different types of web service (protocols such as: HTTP, HTTPS, ICP, HTCP, WCCP, SOCKS, PHP, CGI, ODBC, HTML, and XML) attacks and recognize the toolkits, malicious code, and techniques used by a specific intruder. The candidate's understanding of the associated risks, effects, severity, and the prevention, mitigation, and recovery methods for different attacks will also be demonstrated.
Successful completion of this exam will demonstrate the candidate's ability to understand at a high level the methods in securing web services and preventing web services related attacks. The candidate shall demonstrate their abilities in transport encoding / confidentiality, server / user authentication and message integrity / confidentiality.
The materials within this course focus on the Knowledge Skills and Abilities (KSAs) identified within the Specialty Areas listed below. Click to view Specialty Area details within the interactive National Cybersecurity Workforce Framework.