Engineering Information Security: The Application of Systems Engineering Concepts to Achieve Information Assurance, 2nd Edition (IEEE Press Series on Information and Communication Networks Security) - Hardcover

Jacobs, Stuard

 
9781119101604: Engineering Information Security: The Application of Systems Engineering Concepts to Achieve Information Assurance, 2nd Edition (IEEE Press Series on Information and Communication Networks Security)
Hardcover
ISBN 10: 1119101603 ISBN 13: 9781119101604
Verlag: Wiley-IEEE Press, 2015

Inhaltsangabe

Engineering Information Security covers all aspects of information security using a systematic engineering approach and focuses on the viewpoint of how to control access to information.

  • Includes a discussion about protecting storage of private keys, SCADA, Cloud, Sensor, and Ad Hoc networks
  • Covers internal operations security processes of monitors, review exceptions, and plan remediation
  • Over 15 new sections
  • Instructor resources such as lecture slides, assignments, quizzes, and a set of questions organized as a final exam
If you are an instructor and adopted this book for your course, please email ieeeproposals@wiley.com to get access to the additional instructor materials for this book.

Die Inhaltsangabe kann sich auf eine andere Ausgabe dieses Titels beziehen.

Über die Autorin bzw. den Autor

STUART JACOBS is a Lecturer at Boston University, teaching graduate courses on Network and Computer Security and Enterprise Information Security, along with advising on security curricula issues. Mr. Jacobs also serves as an Industry Security Subject Matter Expert for the Alliance for the Telecommunications Industry Solutions (ATIS) and as the Technical Editor of the ATIS Technical Report "Information and Communications Security for NGN Converged Services IP Networks and Infrastructure" and ITU-T M.3410, "Guidelines and Requirements for Security Management Systems". He holds an MSc degree and CISSP Certification, and is a member of IEEE and IEEE Computer Society, Association for Computing Machinery (ACM), International Information Systems Security Certification Consortium (ISC)2, Information Systems Security Association (ISSA) and InfraGuard.

Von der hinteren Coverseite

<p><b>This book considers the complete security lifecycle of products and services starting with requirements and policy development and progressing through deployment, operations, and decommissioning.</b> <p>Engineering Information Security covers all aspects of information security using a systematic engineering approach and focuses on the viewpoint of how to control access to information. Unlike other books that focus on security mechanisms, threats, and vulnerabilities, this book presents a methodology for addressing security concerns in any organization. The methodology is based on a set of concepts that are designed to examine, analyze, and document objectives, and the functional and performance capabilities that need to exist to achieve the stated goals. <p>This book begins by considering the importance of information security. Legal, technical, competitive, criminal, and consumer forces and influences that are rapidly changing our information dependent society are also discussed. Concepts of systems engineering are explored, as well as the value they provide to new products and services along with the maintenance and evolution to existing products and services. A discussion of security services follow along with what technical and procedural controls instantiate these services. Network protocols are examined focusing on exploitable vulnerabilities. An in&#45;depth discussion of computer security capabilities is provided followed by consideration of modern networking security controls. The book concludes with a discussion of operations security as part of information security governance. <p><b>This new edition includes:</b> <ul> <li>Fifteen new sections throughout</li> <li>Additional discussions on SCADA, Cloud, Sensor, Ad Hoc networks, and HTTP Basic and</li> <li>Digest authentication</li> <li>Coverage of code reviews, code scanning tools and testing, and SSL VPNs</li> <li>Instructor resources include lecture slides, example quizzes, assignments, and a</li> <li>final examination</li> <li>Seven online appendices that include: example information security policies, security</li> <li>requirements, a security Statement of Work, and risk management tables suitable for</li> <li>SQL implementation</li> </ul> <p>Over time, the technologies used for processing, storing, and communicating information have changed dramatically and rapidly. By presenting a systems engineering approach to information security, this book will assist security practitioners to cope with these rapid changes.

„Über diesen Titel“ kann sich auf eine andere Ausgabe dieses Titels beziehen.

Verlag
Wiley-IEEE Press
Erscheinungsdatum
2015
Sprache
Englisch
ISBN 10 
1119101603
ISBN 13 
9781119101604
Einband
Tapa dura
Auflage
2
Anzahl der Seiten
782
Kontakt zum Hersteller
Nicht verfügbar
Verantwortliche Person
Nicht verfügbar