Computer and Information Security Handbook

This book presents information on how to analyse risks to your networks and the steps needed to select and deploy the appropriate countermeasures to reduce your exposure to physical and network threats. It also imparts the skills and knowledge needed to identify and counter some fundamental security risks and requirements, including Internet security threats and measures (audit trails IP sniffing/spoofing etc.) and how to implement security policies and procedures. In addition, this book also covers security and network design with respect to particular vulnerabilities and threats. It also covers risk assessment and mitigation and auditing and testing of security systems. From this book, the reader will also learn about applying the standards and technologies required to build secure VPNs, configure client software and server operating systems, IPsec-enabled routers, firewalls and SSL clients. Chapter coverage includes identifying vulnerabilities and implementing appropriate countermeasures to prevent and mitigate threats to mission-critical processes. Techniques are explored for creating a business continuity plan (BCP) and the methodology for building an infrastructure that supports its effective implementation. A public key infrastructure (PKI) is an increasingly critical component for ensuring confidentiality, integrity and authentication in an enterprise. This comprehensive book will provide essential knowledge and skills needed to select, design and deploy a PKI to secure existing and future applications. This book will include a discussion of vulnerability scanners to detect security weaknesses and prevention techniques, as well as allowing access to key services while maintaining systems security. It includes chapters contributed by leaders in the field of cover theory and practice of computer security technology, allowing the reader to develop a new level of technical expertise. This book's comprehensive and up-to-date coverage of security issues facilitates learning and allows the reader to remain current and fully informed from multiple viewpoints. It presents methods of analysis and problem-solving techniques, enhancing the readers grasp of the material and ability to implement practical solutions.

About the Author :
John Vacca is an information technology consultant and internationally known best-selling author based in Pomeroy, Ohio. Since 1982, John has authored 60 books (some of his most recent books include: "Biometric Technologies and Verification Systems," /Publisher: Elsevier Science & Technology Books (March 16, 2007); "Practical Internet Security" (Hardcover), /Publisher: Springer (October 18, 2006); "Optical Networking Best Practices Handbook" (Hardcover), /Publisher: Wiley-Interscience (November 28, 2006); "Guide to Wireless Network Security,"/Publisher: Springer (August 19, 2006); "Computer Forensics: Computer Crime Scene Investigation (With CD-ROM), 2nd Edition"/Publisher: Charles River Media (May 26, 2005); "Firewalls: Jumpstart For Network And Systems Administrators," Publisher: Elsevier Digital Press (December, 2004); "Public Key Infrastructure: Building Trusted Applications and Web Services,"/Publisher: Auerbach Publications (May 11, 2004); "Identity Theft,"/Publisher: Prentice Hall PTR (September 12, 2002 ("Identity Theft: The Michelle Brown Story," Lifetime Television for Women, Starring Kimberly Williams-Paisley and Annabella Sciorra [Expert Source and Inspiration for: "Quiz: Are You At Risk," by Sara Eckel,Release Date: 11-1-2004.)); "The World's 20 Greatest Unsolved Problems"/Publisher: Pearson Education (was rated by Amazon as number 10 of their Best Books of 2004: Top 10 Editors' Picks: Computers & Internet and, more than 600 articles in the areas of advanced storage, computer security and aerospace technology (copies of articles and books are available upon request). John was also a configuration management specialist, computer specialist, and the computer security official (CSO) for NASA's space station program(Freedom) and the International Space Station Program, from 1988 until his early retirement from NASA in 1995. In addition, John is also an Independent online book reviewer. Finally, John was also one of the security consultants for the MGM

Review :
R1: Tom Karygiannis/Senior Research Scientist, NIST "The author has assembled an excellent team of chapter authors. Each chapter is devoted to a particular topic. It seems that each chapter would serve as a good primer for the topic, but someone interested in that specific topic would have to buy books dedicated to that specific topic to round out their knowledge on the subject.... The best and possibly the widest audience is professionals that are not computer security experts and are looking for a primer on various computer security topics....[Author is] very well known, and one of the major strengths of the proposal." R2-- David Harley, Independent Security Author (Syngress, etc.) and Consultant/UK: "Its main strengths are the authoring experience of its editor, and the fact that it calls upon a wide range of authors to address a wide range of topics that might well appeal to those in need of a comprehensive but fairly general resource. Its weaknesses are that the proposal has a few gaps in coverage addressed above." R1: Tom Karygiannis/Senior Research Scientist, NIST "The author has assembled an excellent team of chapter authors. Each chapter is devoted to a particular topic. It seems that each chapter would serve as a good primer for the topic, but someone interested in that specific topic would have to buy books dedicated to that specific topic to round out their knowledge on the subject.... The best and possibly the widest audience is professionals that are not computer security experts and are looking for a primer on various computer security topics....[Author is] very well known, and one of the major strengths of the proposal." R2-- David Harley, Independent Security Author (Syngress, etc.) and Consultant/UK: "Its main strengths are the authoring experience of its editor, and the fact that it calls upon a wide range of authors to address a wide range of topics that might well appeal to those in need of a comprehensive but fairly general resource. Its weaknesses are that the proposal has a few gaps in coverage addressed above."