Sale!

Computer Security Art and Science 1st edition by Matt Bishop ISBN 013428951X 978-0134289519

Name: Computer Security Art and Science 1st edition by Matt Bishop ISBN 013428951X 978-0134289519
SKU: EB-16360
Availability: InStock

Original price was: $50.00.Current price is: $25.00.

Authors:Matt Bishop , Series:Cyber Security [17] , Tags:Computers; Security; General , Author sort:Bishop, Matt , Ids:Google; 9780201440997 , Languages:Languages:eng , Published:Published:Apr 2003 , Publisher:Addison-Wesley Professional , Comments:Comments:The importance of computer security has increased dramatically during the past few years. Bishop provides a monumental reference for the theory and practice of computer security. This is a textbook intended for use at the advanced undergraduate and introductory graduate levels, non-University training courses, as well as reference and self-study for security professionals. Comprehensive in scope, this covers applied and practical elements, theory, and the reasons for the design of applications and security techniques. Bishop treats the management and engineering issues of computer. Excellent examples of ideas and mechanisms show how disparate techniques and principles are combined (or not) in widely-used systems. Features a distillation of a vast number of conference papers, dissertations and books that have appeared over the years, providing a valuable synthesis. This book is acclaimed for its scope, clear and lucid writing, and its combination of formal and theoretical aspects with real systems, technologies, techniques, and policies.

SKU: EB-16360 Category: eBook PDF Tags: Art and Science, Computer Security, Matt Bishop

Description

Computer Security: Art and Science 1st edition by Matt Bishop – Ebook PDF Instant Download/Delivery. 013428951X 978-0134289519
Full download Computer Security: Art and Science 1st edition after payment

Product details:

ISBN 10: 013428951X
ISBN 13: 978-0134289519
Author: Matt Bishop

The importance of computer security has increased dramatically during the past few years. Bishop provides a monumental reference for the theory and practice of computer security. This is a textbook intended for use at the advanced undergraduate and introductory graduate levels, non-University training courses, as well as reference and self-study for security professionals. Comprehensive in scope, this covers applied and practical elements, theory, and the reasons for the design of applications and security techniques. Bishop treats the management and engineering issues of computer. Excellent examples of ideas and mechanisms show how disparate techniques and principles are combined (or not) in widely-used systems. Features a distillation of a vast number of conference papers, dissertations and books that have appeared over the years, providing a valuable synthesis. This book is acclaimed for its scope, clear and lucid writing, and its combination of formal and theoretical aspects with real systems, technologies, techniques, and policies.

Computer Security: Art and Science 1st Table of contents:

Part I: Introduction and Basic Concepts

Chapter 1: Introduction to Computer Security
1.1. What is Security?
1.2. Threats, Attacks, and Defenses
1.3. The Security Context
1.4. Security and Usability
1.5. Security Models and Policies
1.6. A Brief History of Computer Security
1.7. The Challenges of Securing Systems
1.8. Overview of the Book

Chapter 2: Security Models and Policies
2.1. Formal Models of Security
2.2. Security Policies
2.3. Access Control Models
2.4. The Bell-LaPadula Model
2.5. The Biba Model
2.6. The Clark-Wilson Model
2.7. Brewer and Nash Model
2.8. Lattice-Based Models
2.9. Comparison of Security Models
2.10. Evaluating Security Models

Part II: Cryptography

Chapter 3: Classical Cryptography
3.1. Cryptographic Terminology
3.2. Classical Ciphers
3.3. Substitution Ciphers: Caesar Cipher and Monoalphabetic Ciphers
3.4. Transposition Ciphers
3.5. Historical Ciphers and Their Strengths/Weaknesses
3.6. Cryptanalysis of Classical Systems
3.7. Modern Cryptography and Its Evolution

Chapter 4: Modern Cryptographic Techniques
4.1. Symmetric Key Cryptography
4.2. Asymmetric Key Cryptography
4.3. Cryptographic Hash Functions
4.4. Digital Signatures
4.5. Key Management
4.6. Public Key Infrastructure (PKI)
4.7. Elliptic Curve Cryptography
4.8. Cryptographic Protocols: SSL/TLS
4.9. Attacks on Cryptographic Systems
4.10. Cryptography in Practice

Part III: Security Mechanisms

Chapter 5: Authentication
5.1. Principles of Authentication
5.2. Passwords and Authentication
5.3. Multi-Factor Authentication
5.4. Biometric Authentication
5.5. Public Key Authentication
5.6. Authentication Protocols
5.7. Kerberos
5.8. Federated Identity Management
5.9. Single Sign-On (SSO)

Chapter 6: Access Control
6.1. Principles of Access Control
6.2. Discretionary Access Control (DAC)
6.3. Mandatory Access Control (MAC)
6.4. Role-Based Access Control (RBAC)
6.5. Attribute-Based Access Control (ABAC)
6.6. Access Control Models and Mechanisms
6.7. The Role of the Operating System in Access Control
6.8. Access Control in Databases
6.9. The Principle of Least Privilege
6.10. Auditing and Logging Access Control

Part IV: Operating System Security

Chapter 7: Operating System Security
7.1. OS Security Models
7.2. Buffer Overflows and Memory Corruption
7.3. System Call Interception and Privilege Escalation
7.4. Malware: Viruses, Worms, and Trojans
7.5. Security Features in Modern Operating Systems
7.6. Protecting Against Malware
7.7. Security for File Systems
7.8. OS Hardening Techniques

Chapter 8: Network Security
8.1. Network Threats and Attacks
8.2. Firewalls and Intrusion Detection Systems (IDS)
8.3. Network Security Protocols: IPSec, SSL/TLS, VPNs
8.4. Network Security Architecture
8.5. Denial-of-Service (DoS) and Distributed Denial-of-Service (DDoS) Attacks
8.6. Wireless Network Security
8.7. Securing Network Protocols
8.8. Network Monitoring and Intrusion Prevention

Part V: Web and Application Security

Chapter 9: Web Security
9.1. Web Application Vulnerabilities
9.2. Cross-Site Scripting (XSS)
9.3. Cross-Site Request Forgery (CSRF)
9.4. SQL Injection
9.5. Secure Software Development Practices
9.6. Secure Coding Guidelines
9.7. Web Application Firewalls
9.8. Protecting Web Applications with HTTPS
9.9. Web Security Protocols

Chapter 10: Software Security
10.1. Software Development and Security
10.2. Secure Software Lifecycle
10.3. Common Software Vulnerabilities
10.4. Buffer Overflow Attacks
10.5. Input Validation and Sanitization
10.6. Code Review and Static Analysis
10.7. Secure Coding Practices
10.8. Patch Management and Updates

Part VI: Advanced Topics

Chapter 11: Security in Distributed Systems
11.1. Principles of Distributed Systems
11.2. Consensus Algorithms
11.3. Secure Distributed File Systems
11.4. Blockchain and Cryptocurrencies
11.5. Cloud Security
11.6. Virtualization Security
11.7. Security in Distributed Databases

Chapter 12: Security Policies and Risk Management
12.1. Risk Management Principles
12.2. Risk Assessment Techniques
12.3. Security Policies and Frameworks
12.4. Incident Response Planning
12.5. Security Auditing and Monitoring
12.6. Compliance: Regulatory and Legal Aspects
12.7. Business Continuity and Disaster Recovery

Part VII: Case Studies and Applications

Chapter 13: Case Studies in Computer Security
13.1. Case Study 1: Securing a Web Application
13.2. Case Study 2: Protecting an Enterprise Network
13.3. Case Study 3: Handling a Data Breach
13.4. Case Study 4: Protecting Sensitive Data
13.5. Lessons Learned from Real-World Security Incidents