Google Links

Follow the links below to find material targeted to the unit's elements, performance criteria, required skills and knowledge

Elements and Performance Criteria

1. Determine encryption methods
   • Analyse enterprise data security requirements
   • Create a new or review an existing security plan to determine appropriate encryption methods
   • Review a range of encryption technologies and rank the most appropriate options
   • Assess the costs associated with each encryption option
   • Document encryption options and costs, and forward to appropriate person for decision
2. Implement encryption
   • Apply encryption technologies to the enterprise system
   • Analyse effect of encryption technologies on user roles and responsibilities
   • Inform user of new encryption technologies and the effect it has on their responsibilities
3. Monitor encryption
   • Analyse implementation of the encryption technologies, confirming function and performance
   • Review help desk records for problems concerning implementation and take appropriate action
   • Review system logs for encryption issues and compromises
   • Document encryption issues and compromises, and notify appropriate person

Performance Evidence

Evidence of the ability to:

analyse enterprise data security requirements

create or review existing security plan to determine the appropriate encryption methods

rank and document appropriate encryption methods

implement encryption systems and inform users of any impacts

monitor and document encryption issues and compromises, and notify appropriate person.

Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.

---

Knowledge Evidence

To complete the unit requirements safely and effectively, the individual must:

explain certificate related infrastructure (certificate authorities, registration authorities, repository services)

summarise common asymmetric key algorithms and their usage

explain common symmetric key algorithms and their usage, such as:

advanced encryption standard (AES)

data encryption standard (DES)

triple data encryption algorithm (triple DES)

Blowfish

explain encryption strength

summarise various encryption types, including public key, secret key, hash key

summarise the functions and features of:

access control permissions

digital signatures

symmetric encryption, asymmetric encryption and one-way encryption

timestamps

explain one-way message digests, such as message digest algorithm 5 (MD5) and secure hash algorithm (SHA)

explain public key infrastructure (PKI), pretty good privacy (PGP) and GNU Privacy Guard (GnuPG)

outline replay security

outline possible sources of security threats, including eavesdropping, data interception, data corruption, data falsification and authentication issues

explain transmission control protocol or internet protocol (TCP/IP) protocols and applications

summarise security problems and challenges that arise from organisational issues

outline wired equivalent privacy (WEP), Wi-Fi protected access (WPA) and Wi-Fi protected access 2 (WPA2).

---