Security & Encryption Books - Page 12

Modern Cryptanalysis: Techniques for Advanced Code Breaking

Christopher Swenson

Amazon Price: $33.95 List Price: $50.00 Usually ships in 24 hours By: Wiley Amazon Marketplace: 43 new & used starting at $26.28

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Computers & Internet -> Networking -> Data in the Enterprise -> General

Customer Reviews:
Total reviews: 3 Average rating: 3.5 of 5

quick understanding of modern ciphers 4 out of 5 stars.
4 of 8 people found this review helpful.

The book is brief compared to other standard texts on the subject, like Schneier's Applied Cryptography: Protocols, Algorithms, and Source Code in C, Second Edition and Bishop's Introduction to Computer Security. Swanson downplays the maths behind the algorithms. Instead, he quickly goes through a summary of the main types of ciphers, arriving quickly at those used nowadays, that necessitate a computer.

You get to understand the essence of the computational difficulties in breaking modern ciphers, like trying to solve the discrete logarithm problem. Or trying to factor a large integer into its primes. There is also a brief discussion of cryptanalysis of hash functions. Pondering whether collisions can be generated with non-random input strings.

Editorial Review:

As an instructor at the University of Tulsa, Christopher Swenson could find no relevant text for teaching modern cryptanalysisso he wrote his own. This is the first book that brings the study of cryptanalysis into the 21st century. Swenson provides a foundation in traditional cryptanalysis, examines ciphers based on number theory, explores block ciphers, and teaches the basis of all modern cryptanalysis: linear and differential cryptanalysis. This time-honored weapon of warfare has become a key piece of artillery in the battle for information security.

Computer Forensics: Principles and Practices (Prentice Hall Security Series)

Linda Volonino, Reynaldo Anzaldua, Jana Godwin

Amazon Price: $87.00 List Price: $96.67 Usually ships in 24 hours By: Prentice Hall Amazon Marketplace: 28 new & used starting at $65.25

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Computers & Internet -> Home Computing -> Internet -> General AAS

Customer Reviews:
Total reviews: 5 Average rating: 3.5 of 5

Practical and usefull 4 out of 5 stars.
2 of 2 people found this review helpful.

Computer Forensics: Principles and Practices is a great teaching tool for forensic investigators of all skill levels. For a beginner, the book takes you through the investigative process from A to Z and doesn't leave out the more advanced and complicated processes of data carving, email reconstruction and mobile device analysis.

For the advanced user, there is plenty of information that is both relevant and useful, some of which you may not have seen before. I appreciated this most because of the specific processes outlined and the tools that were described. I am a big fan of books that can help you apply examples to your own processes, something this book does very well.

Everything from A to Z, this book provides excellent material focusing on process and step-by-step analysis using the latest tools available.

Editorial Review:

For introductory and intermediate courses in computer forensics, digital investigations, or computer crime investigation By applying information systems, computer security, and criminal justice principles and practices to crime investigations and other legal actions, this text teaches students how to use forensically-sound methodologies and software to acquire admissible electronic evidence (e-evidence) with coverage of computer and email forensics, cell phone and IM forensics, and PDA and Blackberry forensics.

State of War: Tom Clancy's Net Force #7

Segriff, Steve, Larry Perry

Amazon Price: $15.71 List Price: $29.95 Usually ships in 24 hours By: audible.com

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Hacking
Subjects -> Computers & Internet -> Web Development -> Security & Encryption -> Viruses
Subjects -> Nonfiction -> Current Events -> Terrorism

Customer Reviews:
Total reviews: 18 Average rating: 2.0 of 5

Total Disappointment 1 out of 5 stars.
0 of 0 people found this review helpful.

This is, simply put, one of the worst books I have ever read. The book lacked substance and interest. The characters were unrealistic and the story line was completely predictable. At times I felt that the book was written by "Tim the Toolman Taylor" -- especially when the author named and then described weapons in vivid detail -- argh...argh...argh.

I finished the book (I thought it might get better...it didn't) and walked away thinking that Clancy should revoke the rights to anyone else writing on his behalf.

Editorial Review:

In the year 2010, computers are the new superpowers. Those who control them control the world. To enforce the Net Laws, Congress has created the ultimate computer security agency within the FBI: Net Force.

Minor viruses are eating away at the Net Force computers. The e-mial shut-downs and flickering monitors are hardly emergencies -- but they've been keeping the tech department hopping. Same with the sudden rash of time-consuming lawsuits. No one in the Net Froce has a moment to spare, which is exactly the way Mitchell Townsend Ames wants it. Because when the shadowy mastermind launches his master plan, he wants Net Force to be looking the other way...

Secure Coding: Principles and Practices

Mark G. Graff, Kenneth R. Van Wyk

Amazon Price: $19.77 List Price: $29.95 In stock soon. Order now to get in line. First come, first served. By: O'Reilly Media, Inc. Amazon Marketplace: 19 new & used starting at $3.46

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Computer Science -> Software Engineering -> Information Systems
Subjects -> Computers & Internet -> Programming -> General
Subjects -> Computers & Internet -> Programming -> General AAS

Customer Reviews:
Total reviews: 17 Average rating: 4.5 of 5

Editorial Review:

Practically every day, we read about a new type of attack on computer systems and networks. Viruses, worms, denials of service, and password sniffers are attacking all types of systems -- from banks to major e-commerce sites to seemingly impregnable government and military computers --at an alarming rate.

Despite their myriad manifestations and different targets, nearly all attacks have one fundamental cause: the code used to run far too many systems today is not secure. Flaws in its design, implementation, testing, and operations allow attackers all-too-easy access.

"Secure Coding," by Mark G. Graff and Ken vanWyk, looks at the problem of bad code in a new way. Packed with advice based on the authors' decades of experience in the computer security field, this concise and highly readable book explains why so much code today is filled with vulnerabilities, and tells readers what they must do to avoid writing code that can be exploited by attackers. Writing secure code isn't easy, and there are no quick fixes to bad code. To build code that repels attack, readers need to be vigilant through each stage of the entire code lifecycle:

Architecture: during this stage, applying security principles such as "least privilege" will help limit even the impact of successful attempts to subvert software.

Design: during this stage, designers must determine how programs will behave when confronted with fatally flawed input data. The book also offers advice about performing security retrofitting when you don't have the source code -- ways of protecting software from being exploited even if bugs can't be fixed.

Implementation: during this stage, programmers must sanitize all programinput (the character streams representing a programs' entire interface with its environment -- not just the command lines and environment variables that are the focus of most security

analysis).

Testing: during this stage, programs must be checked using both static code checkers and runtime testing methods -- for example, the fault injection systems now available to check for the presence of such flaws as buffer overflow.

Operations: during this stage, patch updates must be installed in a timely fashion. In early 2003, sites that had diligently applied Microsoft SQL Server updates were spared the impact of the Slammer worm that did serious damage to thousands of systems.

Beyond the technical, "Secure Coding" sheds new light on the economic, psychological, and sheer practical reasons why security vulnerabilities are so ubiquitous today. It presents a new way of thinking about these vulnerabilities and ways that developers can compensate for the factors that have produced such unsecured software in the past. It issues a challenge to all those concerned about computer security to finally make a commitment to building code the right way.

Managing Security with Snort and IDS Tools

Christopher Gerg

Amazon Price: $26.37 List Price: $39.95 Usually ships in 24 hours By: O'Reilly Media, Inc. Amazon Marketplace: 51 new & used starting at $1.47

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Certification Central -> Exams -> Security+
Subjects -> Computers & Internet -> Networking -> Networks, Protocols & APIs -> General
Subjects -> Computers & Internet -> Networking -> Networks, Protocols & APIs -> General AAS

Customer Reviews:
Total reviews: 9 Average rating: 4.5 of 5

Editorial Review:

Intrusion detection is not for the faint at heart. But, if you are a network administrator chances are you're under increasing pressure to ensure that mission-critical systems are safe--in fact impenetrable--from malicious code, buffer overflows, stealth port scans, SMB probes, OS fingerprinting attempts, CGI attacks, and other network intruders. Designing a reliable way to detect intruders before they get in is a vital but daunting challenge. Because of this, a plethora of complex, sophisticated, and pricy software solutions are now available. In terms of raw power and features, SNORT, the most commonly used Open Source Intrusion Detection System, (IDS) has begun to eclipse many expensive proprietary IDSes. In terms of documentation or ease of use, however, SNORT can seem overwhelming. Which output plugin to use? How do you to email alerts to yourself? Most importantly, how do you sort through the immense amount of information Snort makes available to you? Many intrusion detection books are long on theory but short on specifics and practical examples. Not Managing Security with Snort and IDS Tools. This new book is a thorough, exceptionally practical guide to managing network security using Snort 2.1 (the latest release) and dozens of other high-quality open source other open source intrusion detection programs. Managing Security with Snort and IDS Tools covers reliable methods for detecting network intruders, from using simple packet sniffers to more sophisticated IDS (Intrusion Detection Systems) applications and the GUI interfaces for managing them. A comprehensive but concise guide for monitoring illegal entry attempts, this invaluable new book explains how to shut down and secure workstations, servers, firewalls, routers, sensors and other network devices. Step-by-step instructions are provided to quickly get up and running with Snort. Each chapter includes links for the programs discussed, and additional links at the end of the book give administrators access to numerous web sites for additional information and instructional material that will satisfy even the most serious security enthusiasts. Managing Security with Snort and IDS Tools maps out a proactive--and effective--approach to keeping your systems safe from attack.

Core Security Patterns: Best Practices and Strategies for J2EE(TM), Web Services, and Identity Management (Sun Core Series)

Christopher Steel, Ramesh Nagappan, Ray Lai

Amazon Price: $40.94 List Price: $64.99 Usually ships in 24 hours By: Prentice Hall PTR Amazon Marketplace: 68 new & used starting at $9.75

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Small Business & Entrepreneurship -> Entrepreneurship
Subjects -> Business & Investing -> Small Business & Entrepreneurship -> New Business Enterprises
Subjects -> Computers & Internet -> Certification Central -> Exams -> Security+

Customer Reviews:
Total reviews: 32 Average rating: 4.5 of 5

Editorial Review:

Praise for Core Security Patterns Java provides the application developer with essential security mechanisms and support in avoiding critical security bugs common in other languages. A language, however, can only go so far. The developer must understand the security requirements of the application and how to use the features Java provides in order to meet those requirements. Core Security Patterns addresses both aspects of security and will be a guide to developers everywhere in creating more secure applications. --Whitfield Diffie, inventor of Public-Key Cryptography A comprehensive book on Security Patterns, which are critical for secure programming. --Li Gong, former Chief Java Security Architect, Sun Microsystems, and coauthor of Inside Java 2 Platform Security As developers of existing applications, or future innovators that will drive the next generation of highly distributed applications, the patterns and best practices outlined in this book will be an important asset to your development efforts. --Joe Uniejewski, Chief Technology Officer and Senior Vice President, RSA Security, Inc.This book makes an important case for taking a proactive approach to security rather than relying on the reactive security approach common in the software industry. --Judy Lin, Executive Vice President, VeriSign, Inc. Core Security Patterns provides a comprehensive patterns-driven approach and methodology for effectively incorporating security into your applications. I recommend that every application developer keep a copy of this indispensable security reference by their side. --Bill Hamilton, author of ADO.NET Cookbook, ADO.NET in a Nutshell, and NUnit Pocket Reference As a trusted advisor, this book will serve as a Java developers security handbook, providing applied patterns and design strategies for securing Java applications. --Shaheen Nasirudheen, CISSP,Senior Technology Officer, JPMorgan Chase Like Core J2EE Patterns, this book delivers a proactive and patterns-driven approach for designing end-to-end security in your applications. Leveraging the authors strong security experience, they created a must-have book for any designer/developer looking to create secure applications.- -John Crupi, Distinguished Engineer, Sun Microsystems, coauthor of Core J2EE Patterns Core Security Patterns is the hands-on practitioners guide to building robust end-to-end security into J2EE enterprise applications, Web services, identity management, service provisioning, and personal identification solutions. Written by three leading Java security architects, the patterns-driven approach fully reflects todays best practices for security in large-scale, industrial-strength applications. The authors explain the fundamentals of Java application security from the ground up, then introduce a powerful, structured security methodology; a vendor-independent security framework; a detailed assessment checklist; and twenty-three proven security architectural patterns. They walk through several realistic scenarios, covering architecture and implementation and presenting detailed sample code.They demonstrate how to apply cryptographic techniques; obfuscate code; establish secure communication; secure J2ME applications; authenticate and authorize users; and fortify Web services, enabling single sign-on, effective identity management, and personal identification using Smart Cards and Biometrics. Core Security Patterns covers all of the following, and more: *What works and what doesnt: J2EE application-security best practices, and common pitfalls to avoid*Implementing key Java platform security features in real-world applications*Establishing Web Services security using XML Signature, XML Encryption, WS-Security, XKMS, and WS-I Basic security profile*Designing identity management and service provisioning systems using SAML, Liberty, XACML, and SPML*Designing secure personal identification solutions using Smart Cards and Biometrics*Security design methodology, patterns, best practices, reality checks, defensive strategies, and evaluation checklists*End-to-end security architecture case study: architecting, designing, and implementing an end-to-end security solution for large-scale applications

CCNA Security Exam Cram (Exam IINS 640-553) (Exam Cram)

Eric Stewart

Amazon Price: $26.39 List Price: $39.99 Usually ships in 24 hours By: Que Amazon Marketplace: 35 new & used starting at $18.85

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Computers & Internet -> Certification Central -> Exams -> CCNA

Editorial Review:

 

In this book you’ll learn how to:

• Build a secure network using security controls
• Secure network perimeters
• Implement secure management and harden routers
• Implement network security policies using Cisco IOS firewalls
• Understand cryptographic services
• Deploy IPsec virtual private networks (VPNs)
• Secure networks with Cisco IOS® IPS
• Protect switch infrastructures
• Secure endpoint devices, storage area networks (SANs), and voice networks

 

WRITTEN BY A LEADING EXPERT:

Eric Stewart is a self-employed network security contractor who finds his home in Ottawa, Canada. Eric has more than 20 years of experience in the information technology field, the last 12 years focusing primarily on Cisco® routers, switches, VPN concentrators, and security appliances. The majority of Eric’s consulting work has been in the implementation of major security infrastructure initiatives and architectural reviews with the Canadian Federal Government. Eric is a certified Cisco instructor teaching Cisco CCNA, CCNP®, and CCSP® curriculum to students throughout North America and the world.

 

CD Features MeasureUp Practice Questions!

• This book includes a CD-ROM that features:
• Practice exams with complete coverage of CCNA® Security exam topics
• Detailed explanations of correct and incorrect answers
• Multiple exam modes
• Flash Card format
• An electronic copy of the book

 

informit.com/examcram

ISBN-13: 978-0-7897-3800-4

ISBN-10: 0-7897-3800-7

 

U.S. $39.99

CAN. $43.99

Net U.K. £25.99

 

Cryptography: Theory and Practice, Third Edition (Discrete Mathematics and Its Applications)

Douglas R. Stinson

Amazon Price: $55.96 List Price: $69.95 Usually ships in 24 hours By: Chapman & Hall/CRC Amazon Marketplace: 39 new & used starting at $25.00

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Computer Science -> Software Engineering -> Information Systems
Subjects -> Computers & Internet -> Operating Systems -> General
Subjects -> Computers & Internet -> Operating Systems -> General AAS

Customer Reviews:
Total reviews: 14 Average rating: 3.5 of 5

Editorial Review:

THE LEGACY… First introduced in 1995, Cryptography: Theory and Practice garnered enormous praise and popularity, and soon became the standard textbook for cryptography courses around the world. The second edition was equally embraced, and enjoys status as a perennial bestseller. Now in its third edition, this authoritative text continues to provide a solid foundation for future breakthroughs in cryptography. WHY A THIRD EDITION? The art and science of cryptography has been evolving for thousands of years. Now, with unprecedented amounts of information circling the globe, we must be prepared to face new threats and employ new encryption schemes on an ongoing basis. This edition updates relevant chapters with the latest advances and includes seven additional chapters covering: · Pseudorandom bit generation in cryptography · Entity authentication, including schemes built from primitives and special purpose "zero-knowledge" schemes · Key establishment including key distribution and protocols for key agreement, both with a greater emphasis on security models and proofs · Public key infrastructure, including identity-based cryptography · Secret sharing schemes · Multicast security, including broadcast encryption and copyright protection THE RESULT… Providing mathematical background in a "just-in-time" fashion, informal descriptions of cryptosystems along with more precise pseudocode, and a host of numerical examples and exercises, Cryptography: Theory and Practice, Third Edition offers comprehensive, in-depth treatment of the methods and protocols that are vital to safeguarding the mind-boggling amount of information circulating around the world.

Understanding PKI: Concepts, Standards, and Deployment Considerations (2nd Edition) (Kaleidoscope)

Carlisle Adams, Steve Lloyd

Amazon Price: $40.85 List Price: $59.99 Usually ships in 24 hours By: Addison-Wesley Professional Amazon Marketplace: 44 new & used starting at $10.00

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Privacy
Subjects -> Computers & Internet -> Networking -> Networks, Protocols & APIs -> General
Subjects -> Computers & Internet -> Networking -> Networks, Protocols & APIs -> General AAS

Customer Reviews:
Total reviews: 14 Average rating: 4.0 of 5

Has value for Technical Architects / Security Analysts 3 out of 5 stars.
6 of 6 people found this review helpful.

I think there's some merit to people expecting a more hands on approach in a book like this. But those expectations seems unrealistic. The book is not titled "Implementing PKI," it's called "Understanding PKI."

There is value in a concepts book. For experienced technical professional trying to get a grip on the terminologies and concepts of security and PKI, this book is succinct and touches all the major points.

For those looking for screenshots of people right clicking icons, there's a thousand other books like that! Most of those so called "technical books" are not that technical. It's nice to have a book that's not product specific for a change.

This book does what it intends to do well. There is a need for more technical books but this book is valuable in it's present form. I have given several copies to peers.

I hope this review helps you balance out your opinions before deciding for or against this book.

Editorial Review:

Covers a broad range of material related to PKIs, including certification, operational considerations and standardization efforts, as well as deployment issues and considerations.

Configuring Sonicwall Firewalls

Chris Lathem, Benjamin W. Fortenberry, Joshua Reed

Amazon Price: $32.97 List Price: $49.95 Usually ships in 24 hours By: Syngress Amazon Marketplace: 22 new & used starting at $27.97

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Networking -> Network Security
Subjects -> Computers & Internet -> Web Development -> Security & Encryption -> Viruses
Subjects -> Computers & Internet -> Security & Encryption -> Firewalls

Customer Reviews:
Total reviews: 7 Average rating: 3.0 of 5

Mediocre, but it is the first book on Sonicwall available 3 out of 5 stars.
2 of 2 people found this review helpful.

Certainly not enough coverage on VPN to make you feel comfortable. The authors basically took alot of the marketing information and assembled this collage. There is nothing on SonicPoints... Why not? This is a fundamental piece of a Sonicwall "Firewall" topology. No information on configuring the Sonicwall with 3rd party products, such as ISA Server, Cisco, Linksys, etc - It would have been nice to get a few scenerios. I gave it 3 stars, because it is the first book on the topic. I am not trying to be overly critical, I liked the overview of this book, but I find myself searching and using Sonicwall's own documentation and whitepapers far more effectively than this book, as I found it incomplete.

Editorial Review:

Configuring SonicWALL Firewal is the first book to deliver an indepth look at the SonicWALL firewall product line. It covers all of the aspects of the SonicWALL product line from the SOHO devices to the Enterprise SonicWALL firewalls. Also covered are advanced troubleshooting techniques and the SonicWALL Security Manager. This book offers novice users a complete opportunity to learn the SonicWALL firewall appliance. Advanced users will find it a rich technical resource.