Beautiful Security : O'Reilly Ser. - Andy Oram

Instant online reading.

Beautiful Security

By: Andy Oram

Write A Review

Paperback | 12 May 2009

At a Glance

Paperback
300 Pages

Dimensions(cm)
23 x 18 x 1.5

Boxing Day Sale

Up to 60% off* RRP on a great range of titles.

Ends 12/01/26

View Promotion >

Paperback

Limited Stock Available

RRP $76.00

$30.00

61%OFF

or 4 interest-free payments of $7.50 with

In Stock and Ships in 1-2 business days

Although most people don't give security much attention until their personal or business systems are attacked, this thought-provoking anthology demonstrates that digital security is not only worth thinking about, it's also a fascinating topic. Criminals succeed by exercising enormous creativity, and those defending against them must do the same. Beautiful Security explores this challenging subject with insightful essays and analysis on topics that include: * The underground economy for personal information: how it works, the relationships among criminals, and some of the new ways they pounce on their prey * How social networking, cloud computing, and other popular trends help or hurt our online security * How metrics, requirements gathering, design, and law can take security to a higher level * The real, little-publicized history of PGP This book includes contributions from: * Peiter "Mudge" Zatko * Jim Stickley * Elizabeth Nichols * Chenxi Wang * Ed Bellis * Ben Edelman * Phil Zimmermann and Jon Callas * Kathy Wang * Mark Curphey * John McManus * James Routh * Randy V. Sabett * Anton Chuvakin * Grant Geyer and Brian Dunphy * Peter Wayner * Michael Wood and Fernando Francisco All royalties will be donated to the Internet Engineering Task Force (IETF).

Shipping

	Standard Shipping	Express Shipping
Metro postcodes:	$9.99	$14.95
Regional postcodes:	$9.99	$14.95
Rural postcodes:	$9.99	$14.95

Orders over $79.00 qualify for free shipping.

How to return your order

At Booktopia, we offer hassle-free returns in accordance with our returns policy. If you wish to return an item, please get in touch with Booktopia Customer Care.

Additional postage charges may be applicable.

Defective items

If there is a problem with any of the items received for your order then the Booktopia Customer Care team is ready to assist you.

For more info please visit our Help Centre.

You Can Find This Book In

Non-Fiction Computing & I.T.Computer Networking & Communications Network Security Computer Security Data Encryption Information Technology General Issue Legal Aspects of IT Ethical & Social Aspects of IT Computer Science Booktopia Publisher Services John Wiley & Sons Publishers UK

Bargains Non-Fiction Bargains Autobiography and Biography Bargains

Preface	p. xi
Psychological Security Traps	p. 1
Learned Helplessness and Naïveté	p. 2
Confirmation Traps	p. 10
Functional Fixation	p. 14
Summary	p. 20
Wireless Networking: Fertile Ground for Social Engineering	p. 21
Easy Money	p. 22
Wireless Gone Wild	p. 28
Still, Wireless is the Future	p. 31
Beautiful Security Metrics	p. 33
Security Metrics by Analogy: Health	p. 34
Security Metrics by Example	p. 38
Summary	p. 60
The Underground Economy of Security Breaches	p. 63
The Makeup and Infrastructure of the Cyber Underground	p. 64
The Payoff	p. 66
How Can We Combat This Growing Underground Economy?	p. 71
Summary	p. 72
Beautiful Trade: Rethinking E-Commerce Security	p. 73
Deconstructing Commerce	p. 74
Weak Amelioration Attempts	p. 76
E-Commerce Redone: A New Security Model	p. 83
The New Model	p. 86
Securing Online Advertising: Rustlers and sheriffs in The New Wild West	p. 89
Attacks on Users	p. 89
Advertisers As Victims	p. 98
Creating Accountability in Online Advertising	p. 105
The Evolution of PGP's Web of Trust	p. 107
PGP and OpenPGP	p. 108
Trust, Validity, and Authority	p. 108
PGP and Crypto History	p. 116
Enhancements to the Original Web of Trust Model	p. 120
Interesting Areas for Further Research	p. 128
References	p. 129
Open Source Honeyclient: Proactive Detection of Client-Side Exploits	p. 131
Enter Honeyclients	p. 133
Introducing the World's First Open Source Honeyclient	p. 133
Second-Generation Honeyclients	p. 135
Honeyclient Operational Results	p. 139
Analysis of Exploits	p. 141
Limitations of the Current Honeyclient Implementation	p. 143
Related Work	p. 144
The Future of Honeyclients	p. 146
Tomorrow's Security Cogs and Levers	p. 147
Cloud Computing and Web Services: The Single Machine Is Here	p. 150
Connecting People, Process, and Technology: The Potential for Business Process Management	p. 154
Social Networking: When People Start Communicating, Big Things Change	p. 158
Information Security Economics: Supercrunching and the New Rules of the Grid	p. 162
Platforms of the Long-Tail Variety: Why the Future Will Be Different for Us All	p. 165
Conclusion	p. 168
Acknowledgments	p. 169
Security By Design	p. 171
Metrics with No Meaning	p. 172
Time to Market or Time to Quality?	p. 174
How a Disciplined System Development Lifecycle Can Help	p. 178
Conclusion: Beautiful Security Is an Attribute of Beautiful Systems	p. 181
Forcing Firms to Focus: Is Secure Software in Your Future?	p. 183
Implicit Requirements Can Still Be Powerful	p. 184
How One Firm Came to Demand Secure Software	p. 185
Enforcing Security in Off-the-Shelf Software	p. 190
Analysis: How to Make the World's Software More Secure	p. 193
Oh No, Here Come The Infosecurity Lawyers!	p. 199
Culture	p. 200
Balance	p. 202
Communication	p. 207
Doing the Right Thing	p. 211
Beautiful Log Handling	p. 213
Logs in Security Laws and Standards	p. 213
Focus on Logs	p. 214
When Logs Are Invaluable	p. 215
Challenges with Logs	p. 216
Case Study: Behind a Trashed Server	p. 218
Future Logging	p. 221
Conclusions	p. 223
Incident Detection: Finding The Other 68%	p. 225
A Common Starting Point	p. 226
Improving Detection with Context	p. 228
Improving Perspective with Host Logging	p. 232
Summary	p. 237
Doing Real Work Without Real Data	p. 239
How Data Translucency Works	p. 240
A Real-Life Example	p. 243
Personal Data Stored As a Convenience	p. 244
Trade-offs	p. 244
Going Deeper	p. 245
References	p. 246
Casting Spells: PC Security Theater	p. 247
Growing Attacks, Defenses in Retreat	p. 248
The Illusion Revealed	p. 252
Better Practices for Desktop Security	p. 257
Conclusion	p. 258
Contributors	p. 259
Index	p. 269
Table of Contents provided by Ingram. All Rights Reserved.

Beautiful Security

At a Glance

Boxing Day Sale

Up to 60% off* RRP on a great range of titles.

Paperback

Shipping

How to return your order

Defective items

You Can Find This Book In

More in Data Encryption

The New Age of Sexism

How the AI Revolution is Reinventing Misogyny

Crypto Engine Design

Cyber Shorts

Crypto Engine Design

Cyber Shorts

Computer Security

Art and Science

Foundations of Information Security

Cybersecurity All-in-One For Dummies

For Dummies

Rinsed

From Cartels to Crypto: How the Tech Industry Washes Money for the World's Deadliest Crooks

Quantum Leaps

How Maths is Shaping the Future

Black Hat Python, 2nd Edition

Python Programming for Hackers and Pentesters

Crafting an Information Security Playbook

Security Risk Management Body of Knowledge

Wiley Series in Systems Engineering and Management

Principles of Information Security

7th edition

CompTIA Security+

8th Edition - Guide to Network Security Fundamentals

Cryptography and Network Security

8th Edition - Principles and Practice, Global Edition

The Web Application Hacker's Handbook

Finding and Exploiting Security Flaws 2E

Cloud Native Application Protection Platforms

A Guide to CNAPPs and the Foundations of Comprehensive Cloud Security

Container Security

Fundamental Technology Concepts That Protect Containerized Applications

Comprehensive Primer on Privacy Management

Five-Book Bundle

Mitigating the Risks of AI Deepfakes

Beyond The Invisible Nexus

Dark Web, Dark AI and Offensive Security

Beyond The Invisible Nexus

Dark Web, Dark AI and Offensive Security

Modern Benford's Law

State of the Art Techniques for Audit and Compliance Professionals

Modern Benford's Law

State of the Art Techniques for Audit and Compliance Professionals

AI Forensics

Investigation and Analysis of Artificial Intelligence Systems

This product is categorised by