Assessing and Managing Security Risk in IT Systems: A Structured Methodology
Autor John McCumberen Limba Engleză Hardback – 12 aug 2004
Part I delivers an overview of information systems security, providing historical perspectives and explaining how to determine the value of information. This section offers the basic underpinnings of information security and concludes with an overview of the risk management process.
Part II describes the McCumber Cube, providing the original paper from 1991 and detailing ways to accurately map information flow in computer and telecom systems. It also explains how to apply the methodology to individual system components and subsystems.
Part III serves as a resource for analysts and security practitioners who want access to more detailed information on technical vulnerabilities and risk assessment analytics. McCumber details how information extracted from this resource can be applied to his assessment processes.
Preț: 400.97 lei
Preț vechi: 578.19 lei
-31% Nou
Puncte Express: 601
Preț estimativ în valută:
76.74€ • 79.71$ • 63.74£
76.74€ • 79.71$ • 63.74£
Carte tipărită la comandă
Livrare economică 03-17 februarie 25
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9780849322327
ISBN-10: 0849322324
Pagini: 288
Ilustrații: 35 b/w images and 16 tables
Dimensiuni: 156 x 234 x 21 mm
Greutate: 0.69 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
ISBN-10: 0849322324
Pagini: 288
Ilustrații: 35 b/w images and 16 tables
Dimensiuni: 156 x 234 x 21 mm
Greutate: 0.69 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
Public țintă
Academic, Professional, and Professional Practice & DevelopmentCuprins
SECURITY CONCEPTS. Using models. Defining information security. Information as an asset. Understanding threat and its relation to vulnerabilities. Assessing risk variables: The risk assessment process. THE MCCUMBER CUBE METHODOLOGY. The McCumber Cube. Determining information states and mapping information flow. Decomposing the cube for security enforcement. Information state analysis for components and subsystems. Managing the security life cycle. Safeguard analysis. Practical applications of McCumber Cube Analysis. APPENDICES.
Descriere
This book begins with an overview of information systems security, offering the basic underpinnings of information security and concluding with an analysis of risk management. Part II describes the McCumber Cube, providing the original paper from 1991 and detailing ways to accurately map information flow in computer and telecom systems. It also explains how to apply the methodology to individual system components and subsystems. Part III serves as a resource for analysts and security practitioners who want access to more detailed information on technical vulnerabilities and risk assessment analytics. McCumber details how information extracted from this resource can be applied to his assessment processes.