Authors: David S. Wall.
Paperback, 288 pages
Publisher: Polity
Publication Date: 2007-09-21
Edition: 1

Reviews :

    How has the internet transformed criminal behaviour? What is different about cybercrime compared with traditional criminal activity? What new criminal opportunities have arisen? What impact might cybercrime have on public security?

In this exciting new text, David Wall carefully examines these and other important issues. He discusses what is known about cybercrime, disentangling the rhetoric of risk assessment from its reality.

Looking at the full range of cybercrime, he shows how the increase in personal computing power available within a globalized communications network has affected the nature of and response to criminal activities. Drawing on empirical research findings and multidisciplinary sources he goes on to argue that we are beginning to experience a new generation of automated cybercrimes, which are almost completely mediated by networked technologies that are themselves converging.

We have now entered the world of low impact, multiple victim crimes in which bank robbers, for example, no longer have to meticulously plan the theft of millions of dollars. New technological capabilities at their disposal now mean that one person can effectively commit millions of robberies of one dollar each. Against this background, David Wall scrutinizes the regulatory challenges that cybercrime poses for the criminal (and civil) justice processes, at both the national and the international levels.

This book offers the most comprehensive, and intellectually robust, account of cybercrime currently available. It is suitable for use on courses across the social sciences, and in computer science, and will appeal to advanced undergraduate and graduate students....

Authors: Keith Brown.
Paperback, 408 pages
Publisher: Addison-Wesley Professional
Publication Date: 2004-10-07
Edition: 1

Reviews :

    Making applications secure has been one of the biggest priorities of Microsoftdevelopers. However, very few books have been written for developers; mostsecurity books are aimed at administrators. Surprisingly enough given this focuson security there is not yet a leading book on .NET security. Keith Brown isone of the most respected names in the field, and has written the first book toexplain how to make Windows Server 2003 applications secure using .NET.Furthermore, it is written in the format which has proven so successful forScott Meyers and others: it is made up of 75 brief items which build on theprevious ones, giving developers of all levels a complete, deep understanding ofwhat tools are available, and how to use them to create secure applications forWindows....

Authors: Denise Helfrich. Lou Ronnau. Jason Frazier. Paul Forbes.
Paperback, 244 pages
Publisher: Cisco Press
Publication Date: 2006-12-18
Edition: 1

Reviews :

   

Cisco Network Admission Control

Volume I: NAC Framework Architecture and Design

 

A guide to endpoint compliance enforcement

 

Today, a variety of security challenges affect all businesses regardless of size and location. Companies face ongoing challenges with the fight against malware such as worms, viruses, and spyware. Today’s mobile workforce attach numerous devices to the corporate network that are harder to control from a security policy perspective. These host devices are often lacking antivirus updates and operating system patches, thus exposing the entire network to infection. As a result, worms and viruses continue to disrupt business, causing downtime and continual patching. Noncompliant servers and desktops are far too common and are difficult to detect and contain. Locating and isolating infected computers is time consuming and resource intensive.

 

Network Admission Control (NAC) uses the network infrastructure to enforce security policy compliance on all devices seeking to access network computing resources, thereby limiting damage from emerging security threats. NAC allows network access only to compliant and trusted endpoint devices (PCs, servers, and PDAs, for example) and can restrict the access of and even remediate noncompliant devices.

 

Cisco Network Admission Control, Volume I, describes the NAC architecture and provides an in-depth technical description for each of the solution components. This book also provides design guidelines for enforcing network admission policies and describes how to handle NAC agentless hosts. As a technical primer, this book introduces you to the NAC Framework solution components and addresses the architecture behind NAC and the protocols that it follows so you can gain a complete understanding of its operation. Sample worksheets help you gather and organize requirements for designing a NAC solution.

 

Denise Helfrich is a technical program sales engineer that develops and supports global online labs for the World Wide Sales Force Development at Cisco®.

 

Lou Ronnau, CCIE® No. 1536, is a technical leader in the Applied Intelligence group of the Customer Assurance Security Practice at Cisco.

 

Jason Frazier is a technical leader in the Technology Systems Engineering group for Cisco.

 

Paul Forbes is a technical marketing engineer in the Office of the CTO, within the Security Technology Group at Cisco. 

 

• Understand how the various NAC components work together to defend your network
• Learn how NAC operates and identifies the types of information the NAC solution uses to make its admission decisions
• Examine how Cisco Trust Agent and NAC-enabled applications interoperate
• Evaluate the process by which a policy server determines and enforces a policy
• Understand how NAC works when implemented using NAC-L2-802.1X, NAC-L3-IP, and NAC-L2-IP
• Prepare, plan, design, implement, operate, and optimize a network admission control solution

  

This security book is part of the Cisco Press® Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks.

 

Category: Cisco Press–Security

Covers: Network Admission Control

 

1587052415120506

 

...

Authors: Gordon V Cormack.
Paperback, 136 pages
Publisher: Now Publishers Inc
Publication Date: 2008-06-23


Reviews :

    Email Spam Filtering: A Systematic Review surveys current and proposed spam filtering techniques with particular emphasis on how well they work. The primary focus is on spam filtering in email, while similarities and differences with spam filtering in other communication and storage media - such as instant messaging and the Web - are addressed peripherally. Email Spam Filtering: A Systematic Review examines the definition of spam, the user's information requirements and the role of the spam filter as one component of a large and complex information universe. Well known methods are detailed sufficiently to make the exposition self-contained; however, the focus is on considerations unique to spam. Comparisons, wherever possible, use common evaluation measures and control for differences in experimental setup. Such comparisons are not easy, as benchmarks, measures and methods for evaluating spam filters are still evolving. The author surveys these efforts, their results and their limitations. In spite of recent advances in evaluation methodology, many uncertainties (including widely held but unsubstantiated beliefs) remain as to the effectiveness of spam filtering techniques and as to the validity of spam filter evaluation methods. Email Spam Filtering: A Systematic Review outlines several uncertainties and proposes experimental methods to address them. Email Spam Filtering: A Systematic Review is a highly recommended read for anyone conducting research in the area or charged with controlling spam in a corporate environment....

Authors: Chad Sullivan. Jamey Heary. Alok Agrawal. Jerry Lin.
Paperback, 576 pages
Publisher: Cisco Press
Publication Date: 2007-08-16
Edition: 1

Reviews :

   

Cisco NAC Appliance

Enforcing Host Security with Clean Access

 

Authenticate, inspect, remediate, and authorize end-point devices using Cisco NAC Appliance

 

Jamey Heary, CCIE® No. 7680

Contributing authors: Jerry Lin, CCIE No. 6469,

Chad Sullivan, CCIE No. 6493, and Alok Agrawal

 

With today's security challenges and threats growing more sophisticated, perimeter defense alone is no longer sufficient. Few organizations are closed entities with well-defined security perimeters, which has led to the creation of perimeterless networks with ubiquitous access. Organizations need to have internal security systems that are more comprehensive, pervasive, and tightly integrated than in the past.

 

Cisco® Network Admission Control (NAC) Appliance, formerly known as Cisco Clean Access, provides a powerful host security policy inspection, enforcement, and remediation solution that is designed to meet these new challenges. Cisco NAC Appliance allows you to enforce host security policies on all hosts (managed and unmanaged) as they enter the interior of the network, regardless of their access method, ownership, device type, application set, or operating system. Cisco NAC Appliance provides proactive protection at the network entry point.

 

Cisco NAC Appliance provides you with all the information needed to understand, design, configure, deploy, and troubleshoot the Cisco NAC Appliance solution. You will learn about all aspects of the NAC Appliance solution including configuration and best practices for design, implementation, troubleshooting, and creating a host security policy.

 

Jamey Heary, CCIE® No. 7680, is a security consulting systems engineer at Cisco, where he works with its largest customers in the northwest United States. Jamey joined Cisco in 2000 and currently leads its Western Security Asset team and is a field advisor for its U.S. Security Virtual team. His areas of expertise include network and host security design and implementation, security regulatory compliance, and routing and switching. His other certifications include CISSP, CCSP®, and Microsoft MCSE. He is also a Certified HIPAA Security Professional. He has been working in the IT field for 13 years and in IT security for 9 years.

 

• Understand why network attacks and intellectual property losses can originate from internal network hosts
• Examine different NAC Appliance design options
• Build host security policies and assign the appropriate network access privileges for various user roles
• Streamline the enforcement of existing security policies with the concrete measures NAC Appliance can provide
• Set up and configure the NAC Appliance solution
• Learn best practices for the deployment of NAC Appliance
• Monitor, maintain, and troubleshoot the Cisco NAC Appliance solution

 

This security book is part of the Cisco Press® Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks.

 

Category: Cisco Press–Security

Covers: End-Point Security

 

...

Authors: Linda Volonino. Stephen R. Robinson.
Paperback, 256 pages
Publisher: Prentice Hall
Publication Date: 2003-09-12
Edition: United States Ed

Reviews :

   

This book provides professionals with the necessary managerial, technical, and legal background to support investment decisions in security technology. It discusses security from the perspective of hackers (i.e., technology issues and defenses) and lawyers (i.e., legal issues and defenses). This cross-disciplinary book is designed to help users quickly become current on what has become a fundamental business issue. This book covers the entire range of best security practices—obtaining senior management commitment, defining information security goals and policies, transforming those goals into a strategy for monitoring intrusions and compliance, and understanding legal implications. Topics also include computer crime, electronic evidence, cyber terrorism, and computer forensics. For professionals in information systems, financial accounting, human resources, health care, legal policy, and law. Because neither technical nor legal expertise is necessary to understand the concepts and issues presented, this book can be required reading for everyone as part of an enterprise-wide computer security awareness program.

...

Authors: Steve Steinke; Editors of Network Magazine; Editors of Network Magazine. Steve Steinke. Editors of Network Magazine.
Paperback, 658 pages
Publisher: CMP Books
Publication Date: 2003-01
Edition: 5

Reviews :

    Network Tutorial delivers insight and understanding about network technology to managers and executives trying to get up to speed or stay current with the complex challenges of designing, constructing, maintaining, upgrading, and managing the netwo

Network Tutorial explores protocols, hardware and software components, and the unique jargon of networking without assuming you have an extensive understanding of network internals....

Authors: Chris Hurley. Russ Rogers. Frank Thornton. Daniel Connelly. Brian Baker.
Paperback, 504 pages
Publisher: Syngress
Publication Date: 2006-10-31
Edition: 1

Reviews :

    WarDriving and Wireless Penetration Testing brings together the premiere wireless penetration testers to outline how successful penetration testing of wireless networks is accomplished, as well as how to defend against these attacks. As wireless networking continues to spread in corporate and government use, security experts need to become familiar with the methodologies, tools, and tactics used by both penetration testers and attackers to compromise wireless networks and what they can do to both accomplish their jobs as penetration testers and how to protect networks from sophisticated attackers. WarDriving and Wireless Penetration Testing brings together the premiere wireless penetration testers to outline how successful penetration testing of wireless networks is accomplished, as well as how to defend against these attacks....

Authors: Jazib Frahim. Omar Santos. David White.
Paperback, 624 pages
Publisher: Cisco Press
Publication Date: 2006-12-01
Edition: 1

Reviews :

   

Cisco Network Admission Control

Volume II: NAC Framework Deployment and Troubleshooting

 

The self-defending network in action

 

Jazib Frahim, CCIE® No. 5459

Omar Santos

David White, Jr., CCIE No. 12,021

 

When most information security professionals think about threats to their networks, they think about the threat of attackers from the outside. However, in recent years the number of computer security incidents occurring from trusted users within a company has equaled those occurring from external threats. The difference is, external threats are fairly well understood and almost all companies utilize tools and technology to protect against those threats. In contrast, the threats from internal trusted employees or partners are often overlooked and much more difficult to protect against.

 

Network Admission Control (NAC) is designed to prohibit or restrict access to the secured internal network from devices with a diminished security posture until they are patched or updated to meet the minimum corporate security requirements. A fundamental component of the Cisco® Self-Defending Network Initiative, NAC enables you to enforce host patch policies and to regulate network access permissions for noncompliant, vulnerable systems.

 

Cisco Network Admission Control, Volume II, helps you understand how to deploy the NAC Framework solution and ultimately build a self-defending network. The book focuses on the key components that make up the NAC Framework, showing how you can successfully deploy and troubleshoot each component and the overall solution. Emphasis is placed on real-world deployment scenarios, and the book walks you step by step through individual component configurations. Along the way, the authors call out best practices and tell you which mistakes to avoid. Component-level and solution-level troubleshooting techniques are also presented. Three full-deployment scenarios walk you through application of NAC in a small business, medium-sized organization, and large enterprise.

 

“To successfully deploy and troubleshoot the Cisco NAC solution requires thoughtful builds and design of NAC in branch, campus, and enterprise topologies. It requires a practical and methodical view towards building layered security and management with troubleshooting, auditing, and monitoring capabilities.”

—Jayshree V. Ullal, Senior Vice President, Datacenter, Switching and Security Technology Group, Cisco Systems®

 

Jazib Frahim, CCIE® No. 5459, is a senior network security engineer in the Worldwide Security Services Practice of the Cisco Advanced Services for Network Security team. He is responsible for guiding customers in the design and implementation of their networks with a focus on network security.

 

Omar Santos is a senior network security engineer in the Worldwide Security Services Practice of the Cisco Advanced Services for Network Security team. He has more than 12 years of experience in secure data communications.

 

David White, Jr., CCIE No. 12,021, has more than 10 years of networking experience with a focus on network security. He is currently an escalation engineer in the Cisco TAC, where he has been for more than six years.

 

• Effectively deploy the Cisco Trust Agent
• Configure Layer 2 IP and Layer 2 802.1x NAC on network access devices
• Examine packet flow in a Cisco IOS NAD when NAC is enabled, and configure Layer 3 NAC on the NAD
• Monitor remote access VPN tunnels
• Configure and troubleshoot NAC on the Cisco ASA and PIX security appliances
• Install and configure Cisco Secure Access Control Server (ACS) for NAC
• Install the Cisco Security Agent Manage-ment Center and create agent kits
• Add antivirus policy servers to ACS for external antivirus posture validation
• Understand and apply audit servers to your NAC solution
• Use remediation servers to automatically patch end hosts to bring them in compliance with your network policies
• Monitor the NAC solution using the Cisco Security Monitoring, Analysis, and Response System (MARS)

 

This security book is part of the Cisco Press® Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks.

 

Category: Cisco Press—Security

Covers: Network Admission Control

 

$60.00 USA / $75.00 CAN

 

...

Authors: Sean Convery.
Hardcover, 792 pages
Publisher: Cisco Press
Publication Date: 2004-04-29
Edition: 2nd

Reviews :

   

Expert guidance on designing secure networks

• Understand security best practices and how to take advantage of the networking gear you already have
• Review designs for campus, edge, and teleworker networks of varying sizes
• Learn design considerations for device hardening, Layer 2 and Layer 3 security issues, denial of service, IPsec VPNs, and network identity
• Understand security design considerations for common applications such as DNS, mail, and web
• Identify the key security roles and placement issues for network security elements such as firewalls, intrusion detection systems, VPN gateways, content filtering, as well as for traditional network infrastructure devices such as routers and switches
• Learn 10 critical steps to designing a security system for your network
• Examine secure network management designs that allow your management communications to be secure while still maintaining maximum utility
• Try your hand at security design with three included case studies
• Benefit from the experience of the principal architect of the original Cisco Systems SAFE Security Blueprint

Written by the principal architect of the original Cisco Systems SAFE Security Blueprint, Network Security Architectures is your comprehensive how-to guide to designing and implementing a secure network. Whether your background is security or networking, you can use this book to learn how to bridge the gap between a highly available, efficient network and one that strives to maximize security. The included secure network design techniques focus on making network and security technologies work together as a unified system rather than as isolated systems deployed in an ad-hoc way.

Beginning where other security books leave off, Network Security Architectures shows you how the various technologies that make up a security system can be used together to improve your network's security. The technologies and best practices you'll find within are not restricted to a single vendor but broadly apply to virtually any network system. This book discusses the whys and hows of security, from threats and counter measures to how to set up your security policy to mesh with your network architecture. After learning detailed security best practices covering everything from Layer 2 security to e-commerce design, you'll see how to apply the best practices to your network and learn to design your own security system to incorporate the requirements of your security policy. You'll review detailed designs that deal with today's threats through applying defense-in-depth techniques and work through case studies to find out how to modify the designs to address the unique considerations found in your network.

Whether you are a network or security engineer, Network Security Architectures will become your primary reference for designing and building a secure network.

This book is part of the Networking Technology Series from Cisco Press, which offers networking professionals valuable information for constructing efficient networks, understanding new technologies, and building successful careers.

...

    Network security is finally getting the attention it's long deserved, with organizations devoting time and money to the problem and more than a few independent consultants peddling their services in the area. Network security, though, is hard to do right, largely because it's not concerned with making the network do something (like connect the head office to the factory), but with making it not do something (allow access to an ill-defined community of malefactors). Network Security Architectures explains the generally accepted design practices that make networks as resistant as possible to damage and invasion.

Relatively little of this book is concerned with software configuration details, and it's generally not a paean to Cisco Systems products. Rather, this is a design guide, advising that it's usually best to put the proxy server inside the firewall and often a good idea to put IP phones on a private (RFC 1918) address range. Sean Convery--he wrote one of Cisco's standard security white papers--diligently explains why his advice is as it is, and how anticipated evolutions in technology might change design decisions. He makes clear that network security is an evolving discipline, but in this book documents the state of the art very well. Read this, then keep up with the latest on the Web sites, and you'll be in great shape to keep your networks safe. --David Wall

Topics covered: How to design data networks (including those that carry voice over IP) to be as inherently secure as possible. Threat assessment, device hardening, safe routing, VPNs, and the specific risks and requirements of applications (such as email) are covered. Detailed designs appear for common situations, such as securing telecommuter connections and tightening security on a corporate campus....