点此搜书

安全之美  英文版  影印本
  • 作 者:AndyOram,JohnViega编
  • 出 版 社:南京:东南大学出版社
  • 出版年份:2010
  • ISBN:9787564122713
  • 标注页数:281 页
  • PDF页数:293 页
  • 请阅读订购服务说明与试读!

文档类型

价格(积分)

购买连接

试读

PDF格式

10

立即购买

点击试读

订购服务说明

1、本站所有的书默认都是PDF格式,该格式图书只能阅读和打印,不能再次编辑。

2、除分上下册或者多册的情况下,一般PDF页数一定要大于标注页数才建议下单购买。【本资源293 ≥281页】

图书下载及付费说明

1、所有的电子图书为PDF格式,支持电脑、手机、平板等各类电子设备阅读;可以任意拷贝文件到不同的阅读设备里进行阅读。

2、电子图书在提交订单后一般半小时内处理完成,最晚48小时内处理完成。(非工作日购买会延迟)

3、所有的电子图书都是原书直接扫描方式制作而成。

1 PSYCHOLOGICAL SECURITY TRAPS&by Peiter"Mudge"Zatko 1

Learned Helplessness and Na?veté 2

Confirmation Traps 10

Functional Fixation 14

Summary 20

2 WIRELESS NETWORKING:FERTILE GROUND FOR SOCIAL ENGINEERING&by Jim Stickley 21

Easy Money 22

Wireless Gone Wild 28

Still,Wireless Is the Future 31

3 BEAUTIFUL SECURITY METRICS&by Elizabeth A.Nichols 33

Security Metrics by Analogy:Health 34

Security Metrics by Example 38

Summary 60

4 THE UNDERGROUND ECONOMY OF SECURITY BREACHES&by Chenxi Wang 63

The Makeup and Infrastructure of the Cyber Underground 64

The Payoff 66

How Can We Combat This Growing Underground Economy? 71

Summary 72

5 BEAUTIFUL TRADE:RETHINKING E-COMMERCE SECURITY&by Ed Bellis 73

Deconstructing Commerce 74

Weak Amelioration Attempts 76

E-Commerce Redone:A New Security Model 83

The New Model 86

6 SECURING ONLINE ADVERTISING:RUSTLERS AND SHERIFFS IN THE NEW WILD WEST&by Benjamin Edelman 89

Attacks on Users 89

Advertisers As Victims 98

Creating Accountability in Online Advertising 105

7 THE EVOLUTION OF PGP'S WEB OF TRUST&by Phil Zimmermann and Jon Callas 107

PGP and OpenPGP 108

Trust,Validity,and Authority 108

PGP and Crypto History 116

Enhancements to the Original Web of Trust Model 120

Interesting Areas for Further Research 128

References 129

8 OPEN SOURCE HONEYCLIENT:PROACTIVE DETECTION OF CLIENT-SIDE EXPLOITS&by Kathy Wang 131

Enter Honeyclients 133

Introducing the World's First Open Source Honeyclient 133

Second-Generation Honeyclients 135

Honeyclient Operational Results 139

Analysis of Exploits 141

Limitations of the Current Honeyclient Implementation 143

Related Work 144

The Future of Honeyclients 146

9 TOMORROW'S SECURITY COGS AND LEVERS&by Mark Curphey 147

Cloud Computing and Web Services:The Single Machine Is Here 150

Connecting People,Process,and Technology:The Potential for Business Process Management 154

Social Networking:When People Start Communicating,Big Things Change 158

Information Security Economics:Supercrunching and the New Rules of the Grid 162

Platforms of the Long-Tail Variety:Why the Future Will Be Different for Us All 165

Conclusion 168

Acknowledgments 169

10 SECURITY BY DESIGN&by John McManus 171

Metrics with No Meaning 172

Time to Market or Time to Quality? 174

How a Disciplined System Development Lifecycle Can Help 178

Conclusion:Beautiful Security Is an Attribute of Beautiful Systems 181

11 FORCING FIRMS TO FOCUS:IS SECURE SOFTWARE IN YOUR FUTURE?&by Jim Routh 183

Implicit Requirements Can Still Be Powerful 184

How One Firm Came to Demand Secure Software 185

Enforcing Security in Off-the-Shelf Software 190

Analysis:How to Make the World's Software More Secure 193

12 OH NO,HERE COME THE INFOSECURITY LAWYERS!&by Randy V.Sabett 199

Culture 200

Balance 202

Communication 207

Doing the Right Thing 211

13 BEAUTIFUL LOG HANDLING&by Anton Chuvakin 213

Logs in Security Laws and Standards 213

Focus on Logs 214

When Logs Are Invaluable 215

Challenges with Logs 216

Case Study:Behind a Trashed Server 218

Future Logging 221

Conclusions 223

14 INCIDENT DETECTION:FINDING THE OTHER 68%&by Grant Geyer and Brian Dunphy 225

A Common Starting Point 226

Improving Detection with Context 228

Improving Perspective with Host Logging 232

Summary 237

15 DOING REAL WORK WITHOUT REAL DATA&by Peter Wayner 239

How Data Translucency Works 240

A Real-Life Example 243

Personal Data Stored As a Convenience 244

Trade-offs 244

Going Deeper 245

References 246

16 CASTING SPELLS:PC SECURITY THEATER&by Michael Wood and Fernando Francisco 247

Growing Attacks,Defenses in Retreat 248

The Illusion Revealed 252

Better Practices for Desktop Security 257

Conclusion 258

CONTRIBUTORS 259

INDEX 269

购买PDF格式(10分)
返回顶部