Securing Systems: Applied Security Architecture and Threat Models
Autor Brook S. E. Schoenfielden Limba Engleză Hardback – 20 mai 2015
Internet attack on computer systems is pervasive. It can take from less than a minute to as much as eight hours for an unprotected machine connected to the Internet to be completely compromised. It is the information security architect s job to prevent attacks by securing computer systems. This book describes both the process and the practice of assessing a computer system s existing information security posture. Detailing the time-tested practices of experienced security architects, it explains how to deliver the right security at the right time in the implementation lifecycle.
Securing Systems: Applied Security Architecture and Threat Models covers all types of systems, from the simplest applications to complex, enterprise-grade, hybrid cloud architectures. It describes the many factors and prerequisite information that can influence an assessment. The book covers the following key aspects of security analysis:
- When should the security architect begin the analysis?
- At what points can a security architect add the most value?
- What are the activities the architect must execute?
- How are these activities delivered?
- What is the set of knowledge domains applied to the analysis?
- What are the outputs?
- What are the tips and tricks that make security architecture risk assessment easier?
To help you build skill in assessing architectures for security, the book presents six sample assessments. Each assessment examines a different type of system architecture and introduces at least one new pattern for security analysis. The goal is that after you ve seen a sufficient diversity of architectures, you ll be able to understand varied architectures and can better see the attack surfaces and prescribe security solutions."
| Toate formatele și edițiile | Preț | Express |
|---|---|---|
| Paperback (1) | 291.46 lei 6-8 săpt. | |
| CRC Press – 30 iun 2021 | 291.46 lei 6-8 săpt. | |
| Hardback (1) | 739.39 lei 6-8 săpt. | |
| CRC Press – 20 mai 2015 | 739.39 lei 6-8 săpt. |
Preț: 739.39 lei
Preț vechi: 1070.31 lei
-31% Nou
141.51€ • 149.29$ • 117.93£
Carte tipărită la comandă
Livrare economică 02-16 ianuarie 25
Specificații
ISBN-10: 1482233975
Pagini: 440
Ilustrații: 50 black & white illustrations, 11 black & white tables
Dimensiuni: 178 x 254 x 30 mm
Greutate: 1.36 kg
Ediția:1
Editura: CRC Press
Colecția CRC Press
Locul publicării:Boca Raton, United States
V-ar putea interesa
-
-20%Preț: 191.72 lei239.65 lei -
Security Technology Convergence InsightsRay Bernard-20%Preț: 439.78 lei549.73 lei -
On the Foundations of ComputingGiuseppe Primiero-22%Preț: 335.48 lei431.27 lei -
Algorithms Are Not EnoughHerbert L. Roitblat-20%Preț: 216.06 lei270.07 lei -
Big Data, Surveillance and Crisis ManagementKees Boersma-17%Preț: 270.92 lei326.49 lei -
Blockchain Chicken FarmXiaowei WangPreț: 81.39 lei -
Possible Minds: Twenty-Five Ways of Looking at AIJohn Brockman-34%Preț: 74.79 lei113.68 lei -
Algorithms Illuminated (Part 2)Tim Roughgarden-20%Preț: 89.18 lei111.47 lei -
Database SystemsRamez Elmasri-20%Preț: 466.42 lei583.02 lei -
Secrets of a Cyber Security ArchitectBrook S. E. Schoenfield-31%Preț: 335.88 lei487.33 lei -
tmux 2Brian P. Hogan-20%Preț: 93.09 lei116.36 lei -
The Revolutionary PhenotypeJean-François GariépyPreț: 113.42 lei -
AdventureJamie LendinoPreț: 117.94 lei -
-38%Preț: 818.02 lei1309.33 lei -
10 Short Lessons in Artificial Intelligence and RoboticsPeter J. Bentley-20%Preț: 79.21 lei99.02 lei -
Preț: 426.21 lei -
Handbook of Mobile Data PrivacyAris Gkoulalas-Divanis-20%Preț: 792.31 lei990.39 lei -
-20%Preț: 315.44 lei394.31 lei -
-20%Preț: 172.36 lei215.45 lei -
-20%Preț: 569.00 lei711.24 lei -
-20%Preț: 311.33 lei389.15 lei
Public țintă
Professional Practice & DevelopmentCuprins
Notă biografică
Recenzii
— Jack Jones, Originator of The Open Group Standard, Factor Analysis for Information Risk (FAIR)
"Five stars for Brook Schoenfield who has created a one-stop resource for both the security strategist/technologist and the executive suite, sounding the ‘proactive’ klaxon. The reader is given substantive exemplars on the practicality of architecting security solutions into the mix from the get-go, and obviating the tendency to ‘bolt on’ security at a later date. Securing Systems should be on every CSO’s and CISO’s desk, and referenced often as teams are built and security solutions architected."
— Christopher Burgess, CEO, Prevendra Inc, Author of Secrets Stolen, Fortunes Lost and Protecting Intellectual Property
"Brook Schoenfield’s approach to securing systems addresses the entire enterprise, not only its digital systems, as well as the processes and people who will interact, design, and build the systems. This book fills a significant gap in the literature and is appropriate for use as a resource for both aspiring and seasoned security architects alike."
— Dr. James F. Ransome, CISSP, CISM, Senior Director of Product Security at Intel Security Group and Co-Author of Core Software Security
"It is not good enough just to build something and try and secure it, it must be architected from the bottom up with security in it, by professionally trained and skilled security architects, checked and validated by regular assessments for weakness, and through a learning system that learns from today to inform tomorrow. We must succeed."
— John N. Stewart, SVP & Chief Security Officer, Cisco Security and Trust Organization and Winner of the CSO 40 Silver Award for the 2014 Chief Security Officer of the Year
"This book describes well why some companies are successful and some are not in the area of software security. Brook writes this book out of his own experiences from many years in the trade. I doubt that you can find many who have more years of great achievements in his field. By reading this book, you will get a fast track to build competence in a very advanced area. The possibilities to take the wrong route are much wider than you can imagine. Please do like me— read it and think how I can improve my daily business from what I have learned."
— Per-Olof Persson, Head of Software Security, Sony Mobile
Descriere
Internet attack on computer systems is pervasive. It can take from less than a minute to as much as eight hours for an unprotected machine connected to the Internet to be completely compromised. It is the information security architect s job to prevent attacks by securing computer systems. This book describes both the process and the practice of assessing a computer system s existing information security posture. Detailing the time-tested practices of experienced security architects, it explains how to deliver the right security at the right time in the implementation lifecycle.
Securing Systems: Applied Security Architecture and Threat Models covers all types of systems, from the simplest applications to complex, enterprise-grade, hybrid cloud architectures. It describes the many factors and prerequisite information that can influence an assessment. The book covers the following key aspects of security analysis:
- When should the security architect begin the analysis?
- At what points can a security architect add the most value?
- What are the activities the architect must execute?
- How are these activities delivered?
- What is the set of knowledge domains applied to the analysis?
- What are the outputs?
- What are the tips and tricks that make security architecture risk assessment easier?
To help you build skill in assessing architectures for security, the book presents six sample assessments. Each assessment examines a different type of system architecture and introduces at least one new pattern for security analysis. The goal is that after you ve seen a sufficient diversity of architectures, you ll be able to understand varied architectures and can better see the attack surfaces and prescribe security solutions."