Presents information on how to analyze risks to your networks and the steps needed to select and deploy the appropriate countermeasures to reduce your exposure to physical and network threats. Also imparts the skills and knowledge needed to identify and counter some fundamental security risks and requirements, including Internet security threats and measures (audit trails IP sniffing/spoofing etc.) and how to implement security policies and procedures. In addition, this book covers security and network design with respect to particular vulnerabilities and threats. It also covers risk assessment and mitigation and auditing and testing of security systems as well as application standards and technologies required to build secure VPNs, configure client software and server operating systems, IPsec-enabled routers, firewalls and SSL clients. This comprehensive book will provide essential knowledge and skills needed to select, design and deploy a public key infrastructure (PKI) to secure existing and future applications.
Rezensionen / Stimmen
"I believe that this book contains something for everyone no matter what your experience level or specialty in the information security field... I think John did a great job putting together this handbook and the team of experts to deliver this information and I would recommend this book for anyone in the information security field." --PenTestMag.com, March 2012, page 1
"[T]here is a lot of information covering many topics contained within this book making it a valuable desk reference book or a textbook for a course in Information Security. I believe that this book contains something for everyone no matter what your experience level or specialty in the information security field... I think John did a great job putting together this handbook and the team of experts to deliver this information and I would recommend this book for anyone in the information security field." --PenTest Extra, June 2012, page 54
Sprache
Verlagsort
Verlagsgruppe
Elsevier Science & Technology
Zielgruppe
Für höhere Schule und Studium
The primary audience for this professional handbook consists of researchers and practitioners in industry and academia, as well as security technologists and engineers working with or interested in all aspects of computer security. This comprehensive reference will also be of value to students in upper-division undergraduate and grad level courses in computer security.
Illustrationen
Approx. 330 illustrations
Maße
Höhe: 279 mm
Breite: 216 mm
Gewicht
ISBN-13
978-0-12-374354-1 (9780123743541)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Klassifikation
John Vacca is an independent information technology consultant and researcher, professional writer, editor, reviewer, and author based in Pomeroy, Ohio, USA. Since 1982, John has authored, edited, and published more than 85 books, including Smart Cities Policies and Financing: Approaches and Solutions, Elsevier; Cloud Computing Security: Foundations and Challenges, Taylor and Francis/CRC Press; Solving Urban Infrastructure Problems Using Smart City Technologies: Handbook on Planning, Design, Development, and Regulation, Elsevier; Online Terrorist Propaganda, Recruitment, and Radicalization, Taylor and Francis/CRC Press; Nanoscale Networking and Communications Handbook, Taylor and Francis/CRC Press; Handbook of Sensor Networking: Advanced Technologies and Applications, Taylor and Francis/CRC Press; Network and System Security 2/e, Elsevier/Syngress; Cyber Security and IT Infrastructure Protection, Elsevier/Syngress; and Managing Information Security 2/e, Elsevier/Syngress; among many others.
John was a Configuration Management Specialist, Computer Specialist, and the Computer Security Official (CSO) for NASA's space station program (Freedom) and the International Space Station Program from 1988 until his retirement from NASA in 1995. John has also been a security consultant for major motion pictures, including AntiTrust, Collateral, and Identity Theft: The Michelle Brown Story. He received his M.Sc. from Kansas State University and an MBA from Emporia State University and served in the United States Air Force from 1967-1971.
PART I: OVERVIEW OF SYSTEM AND NETWORK SECURITY: A COMPREHENSIVE INTRODUCTION Chapter 1: Building a Secure Organization Chapter 2: A Cryptography Primer Chapter 3: Verifying User and Host Identity Chapter 4: Preventing System Intrusions Chapter 5: Guarding Against Network Intrusions Chapter 6: Ensuring Network Confidentiality Chapter 7: UNIX and Linux Security Chapter 8: Internet Security Chapter 9: Intranet Security Chapter 10: Local Area Network (LAN) Security Chapter 11: Wireless Network Security Chapter 12: RFID Security
PART II: MANAGING INFORMATION SECURITY
Chapter 13: Security Essentials for IT Managers: Protecting Mission-Critical Systems Chapter 14: Security Management Systems Chapter 15: IT Security Management Chapter 16: ID Management Chapter 17: Intrusion Detection and Prevention Systems Chapter 18: Computer Forensics Chapter 19: Firewalls Chapter 20: Penetration Testing Chapter 21: Vulnerability Assessment
PART III: ENCRYPTION TECHNOLOGY
Chapter 22: Data Encryption
Chapter 23: Satellite Encryption
Chapter 24: Public Key Infrastructure
Chapter 25: Instant Messaging Security
PART IV: PRIVACY AND ACCESS MANAGEMENT
Chapter 26: Net Privacy
Chapter 27: Virtual Private Networks
Chapter 28: Identity Theft
Chapter 29: Access Management
Chapter 30: IPSec Versus SSL VPNs For Secure Remote Access Chapter 31: VoIP Security
PART V: STORAGE SECURITY
Chapter 32: SAN Security
Chapter 33: Disaster Recovery
Chapter 34: Risk Management
PART VI: PHYSICAL SECURITY
Chapter 35: Physical Security Essentials Chapter 36: Facilities Security Management Chapter 37: Biometerics Chapter 38: Homeland Security Chapter 39: Information Warfare
