IT & CybersecurityIntermediate

CompTIA Security+ (SY0-701)

Name: CompTIA Security+ (SY0-701)
Price: 49 USD
Availability: InStock

Cybersecurity fundamentals and best practices

Modules

200

Practice Questions

Field Missions

SY0-701

CompTIA

$49one-time purchase

Pay once. Own forever. No subscription.

Secure payment via Stripe. Own this course forever.

Exam Details

Exam CodeSY0-701

Exam BodyCompTIA

Exam Fee$425

DifficultyIntermediate

Free Preview — Module 1

Module 1 — Security Fundamentals and Cryptography Basics

Every security decision traces back to the CIA Triad. Master the foundations — cryptography, PKI, and access control models — that underpin all five Security+ domains.

The CIA Triad and Core Security Principles

Confidentiality, Integrity, Availability — plus Defense in Depth and Zero Trust as the modern extension of the perimeter model.

Cryptography Fundamentals

Symmetric vs. asymmetric encryption, AES vs. RSA vs. ECC, hash functions, and how TLS uses hybrid cryptography in practice.

Public Key Infrastructure (PKI)

Digital certificates, Certificate Authorities, the chain of trust, CRLs, and OCSP for real-time revocation checking.

Authentication and Access Control Models

Authentication factors, MFA, SSO, and the four access control models: DAC, MAC, RBAC, and ABAC.

Sample Practice Questions

Question 1

A company discovers that an attacker modified financial records in their database without being detected for three months. Which element of the CIA Triad was primarily violated?

a.Confidentiality

b.Availability

c.Non-repudiation

d.Integrity

The attacker modified data without authorization — a direct Integrity violation. Confidentiality is violated when unauthorized parties access data. Availability is violated when systems become inaccessible. Non-repudiation is not part of the CIA Triad.

Question 2

A security architect needs to implement encryption for a database processing millions of transactions per hour. Performance is critical. Which encryption approach is most appropriate?

a.RSA with 4096-bit keys

b.Elliptic Curve Cryptography (ECC)

c.AES with 256-bit keys

d.Asymmetric encryption with certificate-based key exchange

AES is symmetric encryption — fast, computationally efficient, and designed for bulk data encryption. RSA and ECC are asymmetric algorithms that are far too slow for high-volume transaction processing.

Question 3

A user receives a digitally signed email and the signature verification succeeds. What has been confirmed?

a.The email was encrypted and unreadable by unauthorized parties

b.The email server that delivered the message is trusted

c.The message content has not been altered and the sender cannot deny sending it

d.The sender's identity was verified by a government-issued certificate

A successful digital signature confirms integrity (content unmodified) and non-repudiation (sender can't deny it — only they hold the private key used to sign). Digital signatures do not encrypt content; that is a separate operation.

Full course includes 6 modules, 200 practice questions, and 5 field missions.

Need team licenses?

One purchase covers your entire crew. No per-seat fees.

View Team Pricing