Secrets and Lies: Digital Security in a Networked World
by Bruce Schneier
|
List Price: ££11.99
Our Price: ££7.03
Your Save: £ ( % )
Availability: Usually dispatched within 24 hours
Manufacturer: John Wiley & Sons
|
Average Customer Rating:  
|
|
Binding: Paperback
Dewey Decimal Number: 005.8
EAN: 9780471453802
ISBN: 0471453803
Label: John Wiley & Sons
Number Of Items: 1
Number Of Pages: 448
Publication Date: 2004-01-23
Publisher: John Wiley & Sons
Studio: John Wiley & Sons
|
|
|
|
|
|
Spotlight customer reviews:
|
Customer Rating:
Summary: An fantastic read
Comment: This book is without a doubt my favourite IT book. Its an excellent read for both those involved in security and those who are not. The book covers a broad range of topics, starting with some general, non IT security concepts. The book then details among many other things, PKIs, digital signitures, biometrics. The kind of common methods used to attack or eavesdrop on systems, such as buffer overflow vulnerabilities and man-in-the-middle techniques. All in all a great read, highly recommended.
Customer Rating: 
Summary: Good read for an average Internet user
Comment: The book is a nice and easy read for an average user of the Internet or a middle level manager looking for information on data security. However it cannot be used as an academic source, since lots of opinion is very biased and rarely supported by fact or trustworthy sources. Nevertheless it is quite amuzing how the author pinpoints the formet USSR in almost every chapter of the book.
Customer Rating:
Summary: Info a-go-go
Comment: I've actually had to read this book for module on my university course (had the exam last week, think it went pretty well), and it's a shame that many people will likely avoid it for fear of it requiring in-depth technial knowledge of the internet, other networks and computers in general. Whilst a little knowledge of such things is needed, is only along the lines of what they are and what they are used for. The book has been written as a start-to-finish book, i.e. it's not meant for reading the different chapters at leisure - there is definite follow-on. It never reaches too steep a learning curve, but more impressive is the fact that it manages to cover as wide a range of sub-topics that "digital security" covers, as it does, whilst never feeling like it's skimped on any of those sub-topics. It helps that it's not meant to look at any particular sub-topic too closely - you find full details on how to build a firewall, for instance, or how to design a cryptographic algorithm. But it also provides a little background on topics of especial interest, such as the US and UK governments' usage of digital security (in particular cryptography and their citizens' right to privacy versus the need for evidence gathering). Most interesting of all, are the main important points that network administrators and users should really take note of (this includes people who use the internet). Most of them, I must admit, I kind of knew already (however reading them from one of the foremost security experts around helps keep them in my mind), but I still don't follow all of them as I should. I do follow them better than the average internet user, though, otherwise e-mail worms and trojans and those stupid hoax e-mails would not continue being so successful.
In short, if you use the internet regularly, or some kind of computer network at work, this really is a must read.
Customer Rating:
Summary: And I thought I was paranoid!
Comment: This book is amazing. 'Cryptography' huh? That just sounds way to complicated for me. This book is brilliantly written and there's a laugh on nearly every page. This is a refreshing academic resource, where the author clearly knows a mammouth amount on the subject, but makes it available for everyone in a language we all understand. It's chock-full of interesting examples and explanations in plain English. Well done Bruce!
Customer Rating:
Summary: Essential Reading for anyone interested in Security
Comment: I first tried reading the Authors other book, Applied Cryptography, but that was way too technical for my needs.
Then along comes this book, at just the right level. I encourage everyone to read this to get a basic appreciation of the issues and underlying principles. The only disappointment was there is very little material on Chip/Smart Cards; this is a fast-evolving area of study, and I hope there is another edition soon with a chapter on this topic.
|
|
|
|
Editorial Reviews: |
|
Customer Rating:
Summary: An fantastic read
Comment: This book is without a doubt my favourite IT book. Its an excellent read for both those involved in security and those who are not. The book covers a broad range of topics, starting with some general, non IT security concepts. The book then details among many other things, PKIs, digital signitures, biometrics. The kind of common methods used to attack or eavesdrop on systems, such as buffer overflow vulnerabilities and man-in-the-middle techniques. All in all a great read, highly recommended.
Customer Rating:
Summary: Good read for an average Internet user
Comment: The book is a nice and easy read for an average user of the Internet or a middle level manager looking for information on data security. However it cannot be used as an academic source, since lots of opinion is very biased and rarely supported by fact or trustworthy sources. Nevertheless it is quite amuzing how the author pinpoints the formet USSR in almost every chapter of the book.
Customer Rating:
Summary: Info a-go-go
Comment: I've actually had to read this book for module on my university course (had the exam last week, think it went pretty well), and it's a shame that many people will likely avoid it for fear of it requiring in-depth technial knowledge of the internet, other networks and computers in general. Whilst a little knowledge of such things is needed, is only along the lines of what they are and what they are used for. The book has been written as a start-to-finish book, i.e. it's not meant for reading the different chapters at leisure - there is definite follow-on. It never reaches too steep a learning curve, but more impressive is the fact that it manages to cover as wide a range of sub-topics that "digital security" covers, as it does, whilst never feeling like it's skimped on any of those sub-topics. It helps that it's not meant to look at any particular sub-topic too closely - you find full details on how to build a firewall, for instance, or how to design a cryptographic algorithm. But it also provides a little background on topics of especial interest, such as the US and UK governments' usage of digital security (in particular cryptography and their citizens' right to privacy versus the need for evidence gathering). Most interesting of all, are the main important points that network administrators and users should really take note of (this includes people who use the internet). Most of them, I must admit, I kind of knew already (however reading them from one of the foremost security experts around helps keep them in my mind), but I still don't follow all of them as I should. I do follow them better than the average internet user, though, otherwise e-mail worms and trojans and those stupid hoax e-mails would not continue being so successful.
In short, if you use the internet regularly, or some kind of computer network at work, this really is a must read.
Customer Rating:
Summary: And I thought I was paranoid!
Comment: This book is amazing. 'Cryptography' huh? That just sounds way to complicated for me. This book is brilliantly written and there's a laugh on nearly every page. This is a refreshing academic resource, where the author clearly knows a mammouth amount on the subject, but makes it available for everyone in a language we all understand. It's chock-full of interesting examples and explanations in plain English. Well done Bruce!
Customer Rating:
Summary: Essential Reading for anyone interested in Security
Comment: I first tried reading the Authors other book, Applied Cryptography, but that was way too technical for my needs.
Then along comes this book, at just the right level. I encourage everyone to read this to get a basic appreciation of the issues and underlying principles. The only disappointment was there is very little material on Chip/Smart Cards; this is a fast-evolving area of study, and I hope there is another edition soon with a chapter on this topic.
At the moment, it seems that hardly a day passes without fresh news of some glaring Internet security breach; online banks, of all things, seem to be particularly vulnerable at the moment. All of which will come as no great surprise to network security cum cryptography guru, Bruce Schnier. His latest book, Secrets and Lies, paints a very gloomy overview of the true state of network security. Schnier, founder of Counterpane Internet Security, has some harsh words to say about the state of network security, though, to be fair, his criticisms are directed far and wide; not one scapegoat, (not even Microsoft) is singled out for special attention. Depressingly, the words "fundamentally flawed" crop up time and time again in this absorbing book. Secrets and Lies is a thorough backgrounder in all aspects of network security, an extremely wide remit that stretches from passwords to encryption, passing through authentication and attack trees along the way. The book is divided in to three broad categories, The Landscape, which covers attacks, adversaries and the need for security; Technologies, which discusses cryptography, authentication, network security, secure hardware and security tricks; and concludes with Strategies, which looks at vulnerabilities, risk assessment, security policies and the future of security. Mercifully there's a dim light at the end of this tunnel and Schnier ultimately remains upbeat about maintaining computer security and details a way forward in his conclusion. Although working in a necessarily techie environment, Schnier's book is surprisingly jargon-free and easy to understand, even if you're not au fait with the inner workings of TCP/IP--it's common-sense, practical style makes a potentially dense and arcane subject accessible by just about anybody. It's also bang up to date, which makes for a pleasant change. Secrets and Lies is never less than thought-provoking and should be essential reading for every network administrator in the land. Be afraid, be very afraid! --Roger Gann
|
|
|
- Ask about this education product "Secrets and Lies: Digital Security in a Networked World" in the forum
- Give review on this education product "Secrets and Lies: Digital Security in a Networked World" in the forum
- Search related information in the forum
|
|
|
|
|
| OOEN Referral Program Spotlight |
 | | Border Institute of Technology
Are you ready to launch an exciting new career? Border Institute of Technology (BIT) in El Paso, TX can help. BIT has formed alliances with top technology companies such as Cisco and Microsoft to help you get the cutting-edge technology skills today’s top employers demand. Programs are available in fields like CADD Technology, Network Technology, Microcomputer Applications, Web Design and more. Earn your degree or certificate in as little as 21 months. Financial aid and lifetime job placement services are available. | |  | |
 | | Brookdale Community College
Now you can earn the IT certification you need in as little as 3 to 12 months. Brookdale Community College allows you to earn your certification the way you want, online or on campus. Be confident with a 90% certification success rate and paid-for re-testing. We also offer a satisfaction, money-back guarantee. If you’re serious about earning your IT certification, look no further than Brookdale Community College. | | | |
 | | Center for Digital Imaging Arts at Boston University
The Center for Digital Imaging Arts at Boston University is one of the nation’s leading centers to study digital arts. Students choose the center for its hands on approach, state-of-the-art facilities, and individualized teaching methods. Career-track programs are offered in 3D Animation, Photography, Filmmaking, and Graphics & Web Design. Extensive career services are available as well as financial aid for students who qualify. | | | |
|
What is OOEN Referral Program Spotlight?
OOEN provides comprehensive listing of online courses, degree programs, colleges and universities.
Also OOEN provides links to their information request pages; if you want to find out more about any course,
degree program, college or university, you can just fill out the form linked from OOEN and request information.
It is completely free for anyone to request information, and you can request information from as many colleges
and universities as you'd like. We list featured schools and their brief information
in this "OOEN Referral Program Spotlight" section of OOEN Store for Education,
in case that you are interested in taking a class or two or even pursuing degree program
through these featured schools.
|
|
|
