Cyber space is easily the most complex thing humans have ever created. With billions of people and devices all connected together, vulnerability and compromise are inevitable. The complexity continues to grow, and with it comes the emergent insecurity brought by an ever-developing frontier where digital devices and connected people meet. Security challenges present themselves increasingly often and with ever-greater impacts. This is not going to change anytime soon.
Although the internet has transformed communication, business, and social life for the better, the construct of 'cyber space' is incredibly fragile and presents endless risk. Connecting every corner of our lives to those of billions across the world, the frontier is slender between the good and the bad, benefit and catastrophe, real and fake, security and insecurity. Cyber security advice can be confusing, contradictory, and sometimes utterly detached from reality. Too easily, people feel guilty for not knowing what to do, or failing to live up to expectations. People, particularly business leaders and policy makers, must daily make security-sensitive decisions, sometimes unknowingly, without being security experts.
Securing the Digital Frontier doesn't offer easy answers, but instead explains sixteen dimensions of this dynamic problem and its current partial solutions. The strong technology of encryption has become commonplace, and is a huge benefit if deployed well: but how can you tell? Programming errors give rise to security problems, but why can we not eliminate them? Privacy is tied up with security, but can the two work against each other? Cyber space is international: how can domestic laws protect us? And what happens when those laws come into conflict with technologies like encryption? Why do you need a punctuation symbol and a capital letter in your password, anyway? Through a grasp of the big picture, through technical and human perspectives, we can begin to explore ways to unwind some of the complexity and find ways to contain the risk.
Sprache
Verlagsort
Zielgruppe
Maße
Höhe: 237 mm
Breite: 154 mm
Dicke: 27 mm
Gewicht
ISBN-13
978-0-19-892013-7 (9780198920137)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Klassifikation
Professor Andrew Martin is a leading researcher, educator, and thinker with over twenty years' experience in the cyber security community, based at the University of Oxford. From a background of doctoral research in the mathematical theory of software engineering, he has promoted the study of how the changes to the smallest details of hardware design can produce huge benefits for the security of contemporary cloud and internet of things applications. With extensive international experience, including post-doctoral studies at the University of Queensland, Andrew's work is motivated by the need to see security as both a technical and a human challenge.
Autor*in
Professor of Systems SecurityProfessor of Systems Security, Department of Computer Science, University of Oxford
List of Figures
0. Mind Your Cybers: Introduction
Interlude I. DigiNotar: A Cautionary Tale
1. Was It Encrypted?: Applied Cryptography
2. We're Only Human: Human Factors
INTERLUDE II. Guessing Passwords
3. In the Round: Secure Systems
4. Know Your Enemy: Adversarial Behaviours
5. Choose Your Priorities: Risk Management
INTERLUDE III. Identity
6. Permission Denied: Authentication, Authorization,and Accountability
7. Who's Watching You?: Privacy and Online Rights
Interlude IV. Phil Zimmermann and Pretty Good Privacy
8. Shall I love Big Brother?: Law and Regulation
9. Getting Ahead of the Bear: Security Operations and Incident Management
10. It's All in Code: 'Software Security'
Interlude V. Device and Service Identity
11. Connections are Crucial: Network Security
12. No More White Coats: Operating Systems Security
13. Software with Malice: Malware and Attack Technologies
Interlude VI. Stuxnet: Cyber Weapons Come of Age
14. No One is in Charge of the Chains?: Distributed Systems and Distributed Ledgers
15. I Don't Want a Turing Machine: Hardware Security
Interlude VII. Turing Machine: A Conceptual Computer
16. The Internet of Everything: Cyber-Physical Systems
Afterword
Acknowledgements
Glossary
Books for Further Reading
Papers and Reports
Resources
Index
