Security Architecture: Design, Deployment and Operations
by Christopher King, Curtis Dalton, Ertem Osmanoglu
Book Summary Information
Author: Christopher King, Curtis Dalton, Ertem OsmanogluEdition: Paperback
Audio: English (Original Language); English (Unknown); English (Published)
Published: 2001-07-30
ISBN: 0072133856
Number of pages: 481
Publisher: Osborne/McGraw-Hill
Book Reviews of Security Architecture: Design, Deployment and Operations
Book Review: Excellent referent for building security infrastructure
Summary: 4 Stars
Boeing Aircraft is currently working on its next big airplane, the Sonic Cruiser. But even before a prototype of the Sonic Cruiser takes to the skies, tens of thousands of hours will have been spent on design, planning, testing, legal, administrative, and other tasks. The product development scenario for information technology and information security is radically different. Corporate networks are being rolled out with planning and design that is not on par with that of our counterparts in the aviation and construction industries. In fact, already complex corporate networks are continuously becoming more byzantine. Take an average MIS department and add up all their hardware vendors, network topologies and protocols, operating systems, software add-ons, and custom-written applications. Now try to securely integrate them. If security was not designed into the original system architecture, how can these security products be expected to work? Despite the fact that companies are spending more and more money on information systems security, the systems are growing more and more complex -- and complex systems are much harder to protect.
Security Architecture: Design, Deployment and Operations, is intended to help readers design and deploy better security technologies. The authors believe that security architecture must be comprehensive, because a network that is 98% secure is actually 100% insecure. This is especially true, given that -- contrary to popular belief -- information security is not a pure science, but a mixture of art and science.
Effective information security must encompass every aspect of the enterprise. Security Architecture shows how to design a secure infrastructure. It addresses all of the major security products and provides details on how to deploy them.
The authors incisively write that it is not enough for security professionals to understand the theory behind information security; unless they are able to insert security controls in the proper places within an application (data flows, storage and processing), the security solution will not be effective. A security product that is implemented incorrectly is like medicine that is taken improperly: great in potential, but futile in reality.
In addition, if the inserted security solution is not managed with the proper processes in place (e.g., change management, separation of duties, notification, and escalation), the level of security provided will degrade with time until the control becomes ineffective.
The book covers all of the fundamentals of information security. Particularly noteworthy is Chapter 3, "Information Classification and Access Control Plan." As companies place more of their corporate data jewels on often-untrusted public networks, the lack of an information classification scheme can have significant negative security consequences. Also, access control is critical in that many organizations -- and even the media -- are busy obsessing about remote hackers from foreign countries and have become oblivious to the real threats to information security: insiders. While it is much more romantic to think about foreigners hacking into your system in the middle of the night, the reality is that most breaches occur via insiders during normal business hours.
The authors of Security Architecture discuss the elements needed to design and deploy effective information security architecture. Critical security products such as PKI, firewalls, VPN, IDS, and others are discussed, but cryptographic accelerators are not mentioned.
This book highlights best practices and security standards and guidelines for effectively securing an enterprise. The book is well organized and easy to read. Many chapters have additional references and URL's for further research.
The inclusion of numerous case studies, combined with the authors' real-world experience, makes Security Architecture a valuable reference. No one would ever want to get on a plane that had not been properly designed and tested. Neither should we want to use networks that have not been adequately designed and tested from a security standpoint. Security Architecture is intended to make sure that doesn't happen.
Summary of Security Architecture: Design, Deployment and Operations
New from the official RSA Press, this expert resource explains how to design and deploy security successfully across your enterprise--and keep unauthorized users out of your network. You'll get full coverage of VPNs and intrusion detection systems, plus real-world case studies.General Books
- Arts & Photography
- Biographies & Memoirs
- Business & Investing
- Children's Books
- Comics & Graphic Novels
- Computers & Internet
- Cooking, Food & Wine
- Engineering
- Entertainment
- Gay & Lesbian
- Health, Mind & Body
- History
- Home & Garden
- Horror
- Law
- Literature & Fiction
- Medicine
- Mystery & Thrillers
- Nonfiction
- Outdoors & Nature
- Parenting & Families
- Professional & Technical
- Reference
- Religion & Spirituality
- Romance
- Science
- Science Fiction & Fantasy
- Sports
- Teens
- Travel
Inside Network Perimeter Security: The Definitive Guide to Firewalls, VPNs, Routers, and Intrusion Detection Systemsby Stephen Northcutt, Karen Frederick, Scott Winters, Lenny Zeltser, Ronald W. Ritchey
Sams; Published: 2002-06-28; Paperback; Book
Best price: $14.97
Price in other shops:
Software Security: Building Security Inby Gary McGraw
Addison-Wesley Professional; Published: 2006-02-02; Paperback; Book
Best price: $29.69
Price in other shops:
The Whuffie Factor: Using the Power of Social Networks to Build Your Businessby Tara Hunt
Crown Business; Published: 2009-04-21; Hardcover; Book
Best price: $15.29
Price in other shops:
The Tao of Network Security Monitoring: Beyond Intrusion Detectionby Richard Bejtlich
Addison-Wesley Professional; Published: 2004-07-22; Paperback; Book
Best price: $38.97
Price in other shops:
I Love My Life: A Mom's Guide to Working from Homeby Kristie Tamsevicius
Wyatt-MacKenzie Publishing; Published: 2003-03-01; Paperback; Book
Best price: $5.84
Price in other shops:
File System Forensic Analysisby Brian Carrier
Addison-Wesley Professional; Published: 2005-03-27; Paperback; Book
Best price: $33.95
Price in other shops:
Hack Attacks Encyclopedia: A Complete History of Hacks, Cracks, Phreaks, and Spies over Timeby John Chirillo
John Wiley & Sons; Published: 2001-08-22; Paperback; Book
Best price: $17.99
Price in other shops:
Hacking Linux Exposed, Second Editionby Brian Hatch, James Lee
McGraw-Hill Osborne Media; Published: 2002-12-04; Paperback; Book
Best price: $9.11
Price in other shops:
Managing Online Forums: Everything You Need to Know to Create and Run Successful Community Discussion Boardsby Patrick O'Keefe
AMACOM; Published: 2008-04-10; Paperback; Book
Best price: $5.25
Price in other shops:
Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses (2nd Edition)by Edward Skoudis, Tom Liston
Prentice Hall; Published: 2006-01-02; Paperback; Book
Best price: $33.95
Price in other shops:
An Introduction To Enterprise Architecture: Second Editionby Scott Bernard
AuthorHouse; Published: 2005-09-06; Paperback; Book
Best price: $17.48
Price in other shops:
Microsoft Access 2007Microsoft Software; Microsoft; Release date: 2007-01-30; Windows Vista; Software
Best price: $165.99
Price in other shops:
Geographic Information Systems and Scienceby Paul A. Longley, Michael F. Goodchild, David J. Maguire, David W. Rhind
Wiley; Published: 2005-03-22; Paperback; Book
Best price: $50.15
Getting to Know ArcGIS Desktop: The Basics of ArcView, ArcEditor, and ArcInfo Updated for ArcGIS 9 (Getting to Know series)by Tim Ormsby, Eileen Napoleon, Robert Burke
Esri Press; Published: 2004-06-01; Paperback; Book
Best price: $41.64
Price in other shops:
The Microsoft SQL Server 2000 Performance Optimization and Tuning Handbookby Ken England Microsoft Certified Systems Engineer and a Microsoft Certified Trainer
Digital Press; Published: 2001-03-27; Paperback; Book
Best price: $29.99
Price in other shops:
Information Security Architecture: An Integrated Approach to Security in the Organization, Second Editionby Jan Killmeyer
Auerbach Publications; Published: 2006-01-13; Hardcover; Book
Best price: $67.15
Price in other shops:
Professional SQL Server 2000 Programming (Programmer to Programmer)by Robert Vieira
Wrox; Published: 2000-11-15; Paperback; Book
Best price: $4.25
Price in other shops:
Enterprise Security Architecture: A Business-Driven Approachby John Sherwood, Andrew Clark, David Lynas
cmp; Published: 2005-11-12; Hardcover; Book
Best price: $52.26
Price in other shops:
Database Systems: A Practical Approach to Design, Implementation and Management (4th Edition)by Thomas M. Connolly, Carolyn E. Begg
Addison Wesley; Published: 2004-05-27; Paperback; Book
Best price: $27.98
Price in other shops:
Modern Database Management (9th Edition)by Jeffrey A. Hoffer, Mary Prescott, Heikki Topi
Prentice Hall; Published: 2008-02-29; Hardcover; Book
Best price: $115.00
Price in other shops: