Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.
Security in Computing, Fourth Edition
By: Charles P.Pfleeger Consulting Group Pfleeger; Shari LawrenceRAND Corporation Pfleeger
Publisher: Prentice Hall
Pub. Date: October 13, 2006
Print ISBN-10: 0-13-239077-9
Print ISBN-13: 978-0-13-239077-4
Pages in Print Edition: 880
Subscriber Rating:
4.5 [4 Ratings] Subscriber Reviews
Overview
The New State-of-the-Art in Information Security: Now Covers the Economics of Cyber Security and the Intersection of Privacy and Information Security
For years, IT and security professionals and students have turned to Security in Computing as the definitive guide to information about computer security attacks and countermeasures. In their new fourth edition, Charles P. Pfleeger and Shari Lawrence Pfleeger have thoroughly updated their classic guide to reflect today's newest technologies, standards, and trends.
The authors first introduce the core concepts and vocabulary of computer security, including attacks and controls. Next, the authors systematically identify and assess threats now facing programs, operating systems, database systems, and networks. For each threat, they offer best-practice responses.
Security in Computing, Fourth Edition, goes beyond technology, covering crucial management issues faced in protecting infrastructure and information. This edition contains an all-new chapter on the economics of cybersecurity, explaining ways to make a business case for security investments. Another new chapter addresses privacy--from data mining and identity theft, to RFID and e-voting.
New coverage also includes
Programming mistakes that compromise security: man-in-the-middle, timing, and privilege escalation attacks
Web application threats and vulnerabilities
Networks of compromised systems: bots, botnets, and drones
Rootkits--including the notorious Sony XCP
Wi-Fi network security challenges, standards, and techniques
New malicious code attacks, including false interfaces and keystroke loggers
Improving code quality: software engineering, testing, and liability approaches
Biometric authentication: capabilities and limitations
Using the Advanced Encryption System (AES) more effectively
Balancing dissemination with piracy control in music and other digital content
Countering new cryptanalytic attacks against RSA, DES, and SHA
Responding to the emergence of organized attacker groups pursuing profit
Subscriber Reviews
Average Rating: 
Based on 4 Ratings
"Worth it" - by zzx375 on 30-DEC-2010
Reviewer Rating: 
For a soup to nuts coverage of Information Security, this is a good foundational book. It focuses upon concepts and IT security principals not on vendor specifics. For example you get a better idea of the full range of network vulnerabilities and what they impact not the Cisco or Juniper syntax for egress filtering of IP directed broadcasts or IP unreachable.
Report as Inappropriate
"Security in Computing, Fourth Edition" - by Pamos on 03-JUL-2010
Reviewer Rating:
Arriving to IT security from a hands on security operative perspective, I found this book gives a valuable insight into a minimum functional requirement.
Report as Inappropriate
"homework" - by diane on 29-JAN-2010
Reviewer Rating:
homework
Report as Inappropriate
Browse Similar Topics
Top Level Categories:
Information Technology & Software Development
Sub-Categories:
Information Technology & Software Development > Networking
Networking > Security
Table of Contents
