Designing Secure Systems
Autor Michael Meloneen Limba Engleză Paperback – 4 oct 2024
Designing Secure Systems takes a theory-based approach to concepts underlying all forms of systems – from padlocks, to phishing, to enterprise software architecture. We discuss how weakness in one part of a system creates vulnerability in another, all the while applying standards and frameworks used in the cybersecurity world. Our goal: to analyze the security of the entire system – including people, processes, and technology – using a single model.
We begin by describing the core concepts of access, authorization, authentication, and exploitation. We then break authorization down into five interrelated components and describe how these aspects apply to physical, human process, and cybersecurity. Lastly, we discuss how to operate a secure system based on the NIST Cybersecurity Framework (CSF) concepts of "identify, protect, detect, respond, and recover."
Other topics covered in this book include the NIST National Vulnerability Database (NVD), MITRE Common Vulnerability Scoring System (CVSS), Microsoft’s Security Development Lifecycle (SDL), and the MITRE ATT&CK Framework.
Toate formatele și edițiile | Preț | Express |
---|---|---|
Paperback (1) | 258.62 lei 43-57 zile | |
CRC Press – 4 oct 2024 | 258.62 lei 43-57 zile | |
Hardback (1) | 523.07 lei 43-57 zile | |
CRC Press – 28 sep 2021 | 523.07 lei 43-57 zile |
Preț: 258.62 lei
Preț vechi: 373.15 lei
-31% Nou
Puncte Express: 388
Preț estimativ în valută:
49.49€ • 51.41$ • 41.11£
49.49€ • 51.41$ • 41.11£
Carte tipărită la comandă
Livrare economică 03-17 februarie 25
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9780367700027
ISBN-10: 0367700026
Pagini: 220
Ilustrații: 20
Dimensiuni: 156 x 234 mm
Greutate: 0.41 kg
Ediția:1
Editura: CRC Press
Colecția CRC Press
Locul publicării:Boca Raton, United States
ISBN-10: 0367700026
Pagini: 220
Ilustrații: 20
Dimensiuni: 156 x 234 mm
Greutate: 0.41 kg
Ediția:1
Editura: CRC Press
Colecția CRC Press
Locul publicării:Boca Raton, United States
Public țintă
Academic, Professional, Professional Practice & Development, and Undergraduate AdvancedCuprins
1. Introduction
Secure System Concepts
2. Access
3. Authorization
4. Authentication
5. Weakness, Vulnerability, and Exploitation
6. Impact
Designing and Operating a Secure System
7. Identify
8. Protect
9. Detect
10. Respond
11. Recover
12. Closing
13. Acknowledgements
Secure System Concepts
2. Access
3. Authorization
4. Authentication
5. Weakness, Vulnerability, and Exploitation
6. Impact
Designing and Operating a Secure System
7. Identify
8. Protect
9. Detect
10. Respond
11. Recover
12. Closing
13. Acknowledgements
Notă biografică
Michael Melone has 20 years of information security experience overall, including 16 years in technology and 8 years as an incident responder. He currently works as a principal program manager for the Defender ATP product group gathering feedback and assisting Microsoft’s largest and most influential customers throughout their onboarding process. He was previously one of the initial members of DART, Microsoft’s customer-facing targeted attack incident response team. During his tenure he designed the process used by consultants to recover customer networks from targeted attacks and led the development of IRDB, the proprietary threat hunting platform designed to surface attackers hidden within networks.He holds a masters degree in IT management specializing in information assurance and security from Capella University, and is actively pursuing his executive MBA from University of South Florida. He also holds a number of information security and other technology credentials including CISSP since 2007.In 2017 Michael self-published his first short book on authorization theory called Think Like a Hacker. This new book is the result of applying its concepts at customers and identifying a single unified approach based on its core algorithm.
Descriere
Designing Secure Systems takes a theory-based approach to concepts underlying all forms of systems, from padlocks to phishing to enterprise software architecture.