The important thing to remember when gathering evidence is that the more evidence the better - that is, the more evidence you gather to demonstrate your skills, the more confident an assessor can be that you have learned the skills not just at one point in time, but are continuing to apply and develop those skills (as opposed to just learning for the test!). Furthermore, one piece of evidence that you collect will not usualy demonstrate all the required criteria for a unit of competency, whereas multiple overlapping pieces of evidence will usually do the trick!
From the Wiki University
What evidence can you provide to prove your understanding of each of the following citeria?
Determine business security requirements
|
|
Identify level of security required based on the business and commercial intent of the website Completed |
Evidence:
|
Identify whether password protection is needed for the site or part of the site Completed |
Evidence:
|
Decide minimum or maximum password protection solutions based on business requirements Completed |
Evidence:
|
Ensure web server security
|
|
Ensure that web server password is obscure and non-traceable Completed |
Evidence:
|
Install and maintain an effective intrusion detection system according to business requirements Completed |
Evidence:
|
Ensure that user accounts have only the required permissions on the server Completed |
Evidence:
|
Ensure that interpreters’ programs that run common gateway interfaces (CGIs) are not stored in the CGI-bin directory Completed |
Evidence:
|
Ensure that web forms check data before passing it to the server Completed |
Evidence:
|
Ensure protocol security
|
|
Protect fixed internet connection and internet protocol (IP) address Completed |
Evidence:
|
Protect shared network resources from intrusion according to business requirements Completed |
Evidence:
|
Ensure that personal computer (PC) protocols and preferences follow security protocols Completed |
Evidence:
|
Disable control protocol or internet protocol (TCP/IP) bindings for file and printer sharing Completed |
Evidence:
|
Ensure that network basic input/output system (NetBIOS) over TCP/IP is disabled Completed |
Evidence:
|