Details
Discovering Cybersecurity
A Technical Introduction for the Absolute Beginner|
56,99 € |
|
| Verlag: | Apress |
| Format: | |
| Veröffentl.: | 08.12.2023 |
| ISBN/EAN: | 9781484295601 |
| Sprache: | englisch |
Dieses eBook enthält ein Wasserzeichen.
Beschreibungen
The contemporary IT landscape is littered with various technologies that vendors claim will “solve” an organization’s cybersecurity challenges. These technologies are powerful and, in the right context, can be very effective. But misunderstood and misused, they either do not provide effective protection or do not protect the right things. This results in unnecessary expenditures, false beliefs of security, and interference with an organization’s mission.<p>This book introduces major technologies that are employed in today’s cybersecurity landscape and the fundamental principles and philosophies behind them. By grasping these core concepts, professionals in every organization are better equipped to know what kind of technology they need, ask the right questions of vendors, and better interface with their CISO and security organization. The book is largely directed at beginners, including non-technical professionals such as policy makers, compliance teams, and business executives.</p>
<p><b>What You Will Learn</b></p>
<p></p><ul><li>Authentication technologies, including secure password storage and how hackers “crack” password lists</li><li>Access control technology, such as BLP, BIBA, and more recent models such as RBAC and ABAC</li><li>Core cryptography technology, including AES encryption and public key signatures</li><li>Classical host security technologies that protect against malware (viruses, trojans, ransomware)</li><li>Classical network security technologies, such as border security (gateways, firewalls, proxies), network IDS and IPS, and modern deception systems</li><li>Web security technologies, including cookies, state, and session defenses, and threats that try to subvert them</li><li>Email and social media security threats such as spam, phishing, social media, and other email threats</li></ul><p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p><b>Who This Book Is For</b></p><div>Professionals with no technicaltraining in engineering, computers, or other technology; those who want to know things at a technical level but have no previous background; professionals with a background in policy, compliance, and management; technical professionals without a background in computer security who seek an introduction to security topics; those with a security background who are not familiar with this breadth of technology.<br></div>
<p><b>What You Will Learn</b></p>
<p></p><ul><li>Authentication technologies, including secure password storage and how hackers “crack” password lists</li><li>Access control technology, such as BLP, BIBA, and more recent models such as RBAC and ABAC</li><li>Core cryptography technology, including AES encryption and public key signatures</li><li>Classical host security technologies that protect against malware (viruses, trojans, ransomware)</li><li>Classical network security technologies, such as border security (gateways, firewalls, proxies), network IDS and IPS, and modern deception systems</li><li>Web security technologies, including cookies, state, and session defenses, and threats that try to subvert them</li><li>Email and social media security threats such as spam, phishing, social media, and other email threats</li></ul><p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p></p>
<p><b>Who This Book Is For</b></p><div>Professionals with no technicaltraining in engineering, computers, or other technology; those who want to know things at a technical level but have no previous background; professionals with a background in policy, compliance, and management; technical professionals without a background in computer security who seek an introduction to security topics; those with a security background who are not familiar with this breadth of technology.<br></div>
Chapter 1: The Psychology of Cybersecurity.- Chapter 2: Authentication Technology.- Chapter 3: Authorization Technology.- Chapter 4: Cryptography Foundations.- Chapter 5: Core Cryptography Technology.- Chapter 6: Cryptographic Systems Technology.- Chapter 7: Host Security Technology.- Chapter 8: Classical Network Security Technology.- Chapter 9: World Wide Web Security.- Chapter 10: Overlay Security: Email and Social Media.- Appendix A: Binary and Hexadecimal Numbers.- Appendix B: Computers, Data, and Programs.- Appendix C: Computer Communications and Networking.<p></p>
<b>Seth James Nielson, PhD</b> is the founder and chief scientist of Crimson Vista, a cybersecurity engineering company. He advises clients from startups to Fortune 50 companies on security matters. Dr. Nielson also teaches cybersecurity courses at the University of Texas at Austin. He has authored or co-authored papers on topics such as IoT security, hacking portable chemical manufacturing systems, and methods for teaching computer security to students. Dr. Nielson also co-authored the Apress book, <i>Practical Cryptography in Python</i>.
The contemporary IT landscape is littered with various technologies that vendors claim will “solve” an organization’s cybersecurity challenges. These technologies are powerful and, in the right context, can be very effective. But misunderstood and misused, they either do not provide effective protection or do not protect the right things. This results in unnecessary expenditures, false beliefs of security, and interference with an organization’s mission.<p>This book introduces major technologies that are employed in today’s cybersecurity landscape and the fundamental principles and philosophies behind them. By grasping these core concepts, professionals in every organization are better equipped to know what kind of technology they need, ask the right questions of vendors, and better interface with their CISO and security organization. The book is largely directed at beginners, including non-technical professionals such as policy makers, compliance teams, and business executives.</p><p>What You Will Learn</p><p></p><ul><li>Authentication technologies, including secure password storage and how hackers “crack” password lists</li><li>Access control technology, such as BLP, BIBA, and more recent models such as RBAC and ABAC</li><li>Core cryptography technology, including AES encryption and public key signatures</li><li>Classical host security technologies that protect against malware (viruses, trojans, ransomware)</li><li>Classical network security technologies, such as border security (gateways, firewalls, proxies), network IDS and IPS, and modern deception systems</li><li>Web security technologies, including cookies, state, and session defenses, and threats that try to subvert them</li><li>Email and social media security threats such as spam, phishing, social media, and other email threats</li></ul>
Helps you cut through the marketing from cybersecurity vendors to know what your organization really needs Covers the capabilities and limitations that a cybersecurity tech gives to your security team Shows you the technologies that hackers use to get into your organization so you can better mitigate risk
Diese Produkte könnten Sie auch interessieren:
