Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP
Will be published approx. on 16. September 2012
Book
Paperback/Softback
288 pages
978-0-07-177251-8 (ISBN)
Description
Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.
Master the latest digital security automation technologies
Achieve a unified view of security across your IT infrastructure using the cutting-edge techniques contained in this authoritative volume. Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP lays out comprehensive technical, administrative, and operational strategies for security management. Discover how to define baseline requirements, automatically confirm patches and updates, identify vulnerabilities, write customized auditing content, and evaluate compliance across your enterprise. Throughout, the authors provide detailed case studies and tips on selecting appropriate security components.
Understand SCAP (Security Content Automation Protocol) technologies and standards
Track compliance using benchmarks and scoring systems
Build machine-readable configuration checks using XCCDF, OVAL, and OCIL
Perform vulnerability assessments and find misconfiguration
Maximize product interoperability through the use of standard enumeration
Assess and monitor residual risk using CVSS values
Use SCAP editors and XML to create and debug automated checks
Accurately assess threats using software assurance automation
Master the latest digital security automation technologies
Achieve a unified view of security across your IT infrastructure using the cutting-edge techniques contained in this authoritative volume. Security Automation Essentials: Streamlined Enterprise Security Management & Monitoring with SCAP lays out comprehensive technical, administrative, and operational strategies for security management. Discover how to define baseline requirements, automatically confirm patches and updates, identify vulnerabilities, write customized auditing content, and evaluate compliance across your enterprise. Throughout, the authors provide detailed case studies and tips on selecting appropriate security components.
Understand SCAP (Security Content Automation Protocol) technologies and standards
Track compliance using benchmarks and scoring systems
Build machine-readable configuration checks using XCCDF, OVAL, and OCIL
Perform vulnerability assessments and find misconfiguration
Maximize product interoperability through the use of standard enumeration
Assess and monitor residual risk using CVSS values
Use SCAP editors and XML to create and debug automated checks
Accurately assess threats using software assurance automation
More details
Language
English
Place of publication
New York
United States
Publishing group
McGraw-Hill Education - Europe
Target group
Professional and scholarly
Product notice
Paperback (trade)
Unsewn / adhesive bound
Illustrations
75 Illustrations
Dimensions
Height: 237 mm
Width: 189 mm
Thickness: 18 mm
Weight
487 gr
ISBN-13
978-0-07-177251-8 (9780071772518)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Persons
Greg Witte leads the U.S. Federal civilian customer support team at G2, Inc., a security firm committed to solving the most complex challenges related to the ability of the U.S. to collect, utilize, and defend digital information.
Melanie Cook is an information systems engineer at G2, Inc. She previously worked at the National Security Agency and at the National Institute of Standards and Technology where she contributed to SCAP efforts.
Matt Kerr is G2's Director of Research and Development. He helped develop the DISA Gold Disk application, the primary compliance assessment utility for Department of Defense systems.
Shane Shaffer is the Technical Director of Security Automation for G2. He served as the lead architect of the Department of Defense's Vulnerability Management System and has been a key contributor to the development of SCAP.
Melanie Cook is an information systems engineer at G2, Inc. She previously worked at the National Security Agency and at the National Institute of Standards and Technology where she contributed to SCAP efforts.
Matt Kerr is G2's Director of Research and Development. He helped develop the DISA Gold Disk application, the primary compliance assessment utility for Department of Defense systems.
Shane Shaffer is the Technical Director of Security Automation for G2. He served as the lead architect of the Department of Defense's Vulnerability Management System and has been a key contributor to the development of SCAP.
Content
Ch 1. Introduction
Ch 2. What Is SCAP
Ch 3. SCAP Languages
Ch 4. SCAP Enumerations (with case study)
Ch 5. SCAP Vulnerability Measurement (with case study)
Ch 6. Putting the Pieces Together (with case study)
Ch 7. Using SCAP In Your Enterprise (with case study)
Ch 8. Emerging SCAP Technologies
Ch 9. Conclusion
Appendices
Index
Ch 2. What Is SCAP
Ch 3. SCAP Languages
Ch 4. SCAP Enumerations (with case study)
Ch 5. SCAP Vulnerability Measurement (with case study)
Ch 6. Putting the Pieces Together (with case study)
Ch 7. Using SCAP In Your Enterprise (with case study)
Ch 8. Emerging SCAP Technologies
Ch 9. Conclusion
Appendices
Index