Information Security: Principles and Practices

摘要: Now updatedyour expert guide to twenty-first century information securityInformation security is a rapidly evolving field. As businesses and consumers become increasingly dependent on complex multinational systems, it more imperative than ever protect the confidentiality integrity of data. Featuring wide array new most current issues, this fully updated revised edition Information Security: Principles Practice provides skills knowledge readers need tackle any challenge. Taking practical approach by focusing real-world examples, book organized around four major themes: Cryptography: classic cryptosystems, symmetric key cryptography, public hash functions, random numbers, hiding, cryptanalysisAccess control: authentication authorization, password-based security, ACLs capabilities, multilevel compartments, covert channels inference control, models such as BLP Biba's model, firewalls, intrusion detection systemsProtocols: simple protocols, session keys, perfect forward secrecy, timestamps, SSH, SSL, IPSec, Kerberos, WEP, GSMSoftware: flaws malware, buffer overflows, viruses worms, malware detection, software reverse engineering, digital rights management, secure development, operating systems securityThis Second Edition features discussions relevant topics SSH WEP RSA timing attacks, botnets, certification. New background material has been added, including section Enigma cipher coverage "orange book" view security. Also featured are greatly expanded upgraded set homework problems many figures, tables, graphs illustrate clarify problems. A comprehensive classroom-tested PowerPoint slides solutions manual available assist in course development.Minimizing theory while providing clear, accessible content, Security remains premier text for students instructors technology, computer science, well professionals working these fields.