Security
How well does your enterprise stand up against today's sophisticated security threats? With this book, security experts from Cisco Systems demonstrate how you can detect damaging security incidents on your global network -first by discovering which assets you need to monitor closely, then by helping you develop targeted strategies and pragmatic techniques to identify security incidents.
Security Monitoring offers six steps to improve network monitoring, based on the authors' years of experience conducting incident response to keep Cisco's global network secure. These steps will guide you through the following:
Develop Policies: define the rules, regulations, and criteria against which to monitor
Know Your Network: build knowledge of your infrastructure with network telemetry
Select Your Targets: define the subset of infrastructure where you'll focus monitoring
Choose Event Sources: identify the event types needed to discover policy violations
Feed and Tune: collect data and generate alerts, tuning systems using context
Maintain Dependable Event Sources: prevent critical gaps in your event collection and monitoring
To help you understand this framework, Security Monitoring illustrates its recommendations using a fictional mobile telephony provider. Each chapter's approach and techniques are overlaid against this fictional example with diagrams and detailed examples. These recommendations will help you select and deploy the best techniques for monitoring your own en Read more...
This book sorts through the overwhelming mass of open source security tools, chooses a few of the best, and shows network and system administrators how to use them to solve common security problem. Open Source Security Tools is a practicum. It tells readers what they need to do to secure their networks, introduces best-in-class tools, and shows readers how to use them. For each security task described, Howlett reviews the best open source tools, shows readers how to use them, and takes them through a sample implementation and case studies. At the end of each chapter, Howlett will offer pointers to other good open source tools that are worth investigating. The companion CD includes fully dowloadable versions of the tools, so readers can work along with the text. Newcomers to security will leave with enough knowledge and experience to deploy solutions and further their IT careers. Readers will learn to: * Secure their perimeter with open source scanners like Nessus.* Receive early warning about attempted breakins from IDS systems like Snort.* Install a firewall to keep hackers at bay (Turtle).* Use encyrption to secure email and other sensitive data (PGP)* If the worst happens, run forensics tools to investigate a breakin after the fact, like Autopsy or SleuthKit.This book is part of the Bruce Perens Open Source Series. Read more...
Book Description
The most up-to-date information on the next generation of SSH and how to incorporate into your organization's security environment.
Product Description
New security risks, continuously evolving regulation and increasing security standards have created new and growing needs for secure internal information transfers, which SSH provides. This book addresses these new trends in depth, offering the most up-to-date information on the integration of SSH into a security environment. It covers the newest features and applications of SSH-2 (which received Proposed Standard status from the IETF in 2006). SSH2 is more secure than previous versions and has many expanded uses on a wider variety of computing platforms. Another particular note driving new SSH2 adoption are the requirements of recent legislation (PCI/HIPAA/SOX/FISMA). SSH 2 has become an even more valuable tool, as it provides communications security compliance with the latest standards.
This book offers the most up-to-date information on SSH2 in a practical, hands-on, tutorial-style reference that goes well beyond UNIX implementation. It concentrates on the latest version of SSH 2 with all new information and is accompanied by companion Website that contains useful scripts and utilities, providing administrators with the newest ways to incorporate this most useful utility into their network tool box.
* Discover why SSH2 offers more robust security than SSH1 and how to incorporate it into your net Read more...
Book Description
The user's guide to best practices in improving and enhancing security in a SAP landscape.
Product Description
Throughout the world, high-profile large organizations (aerospace and defense, automotive, banking, chemicals, financial service providers, healthcare, high tech, insurance, oil and gas, pharmaceuticals, retail, telecommunications, and utilities) and governments are using SAP software to process their most mission-critical, highly sensitive data. With more than 100,000 installations, SAP is the world's largest enterprise software company and the world's third largest independent software supplier overall.
Despite this widespread use, there have been very few books written on SAP implementation and security, despite a great deal of interest. (There are 220,000 members in an on-line SAP 'community' seeking information, ideas and tools on the IT Toolbox Website alone.) Managing SAP user authentication and authorizations is becoming more complex than ever, as there are more and more SAP products involved that have very different access issues. It's a complex area that requires focused expertise.
This book is designed for these network and systems administrator who deal with the complexity of having to make judgmental decisions regarding enormously complicated and technical data in the SAP landscape, as well as pay attention to new compliance rules and security regulations.
Most SAP users experience significant challenges when trying to man Read more...
The protection of critical information and systems is a major component of today's electronic business community. This valuable reference presents the primary hardware-based computer security approaches in an easy-to-read toolbox format. The techniques discussed show readers how to perform their own evaluation of new and emerging security technologies. It is an invaluable source for computer engineers, computer security specialists, electrical engineers, software engineers, IT professionals, and advanced undergraduate and graduate students in computer engineering and computer science. Read more...
Product Description
CompTIA Security+ Deluxe Study Guide gives you complete coverage of the Security+ exam objectives with clear and concise information on crucial security topics. Learn from practical examples and insights drawn from real-world experience and review your newly acquired knowledge with cutting-edge exam preparation software, including a test engine and electronic flashcards. Find authoritative coverage of key topics like general security concepts, communication security, infrastructure security, the basics of cryptography and operational and organizational security. The Deluxe edition contains a bonus exam, special Security Administrators’ Troubleshooting Guide appendix, and 100 pages of additional hands-on exercises.
From the Back Cover
Deluxe Edition of our top-selling CompTIA Security+ Study Guide
Prepare for CompTIA's new Security+ exam (SY0-201) with this Deluxe Edition of Sybex's popular CompTIA Security+ Study Guide. In addition to comprehensive coverage of exam essentials, the Deluxe Edition includes over one hundred additional pages of hands-on exercises, four practice exams, a list of useful acronyms any security professional should be familiar with, and a valuable Security Administrator's Troubleshooting Guide. Start your Security+ preparation today with:
*
Full coverage of all exam objectives in a systematic approach, so you can be confident you're getting the instruction you need for the exam
*
More than on Read more...
Product Description
The SSCP Study Guide and DVD Training System is a one-of-a-kind integration of text, DVD-quality instructor led training, and Web-based exam simulation and remediation. This system gives you 100% coverage of the official International Information Systems Security Certification Consortium, Inc. (ISC)2 SSCP security domains plus test preparation software for the edge you need to pass the exam on your first try.
About the Author
Jeffrey Posluns (SSCP, CISSP, CISA, CCNP, CCDA, GSEC) is the Founder of SecuritySage, a leading-edge information security and privacy consulting firm. Jeffrey oversees and directs the professional services teams, product reviews, and innovative product development. Jeffrey has over 11 years experience specializing in security methodologies, audits and controls. He has extensive expertise in the analysis of hacker tools and techniques, intrusion detection, security policies, forensics and incident response. Jeffrey is an industry-recognized leader known for his ability to identify trends, resolve issues, and provide the highest quality of customer service, educational seminars and thought-provoking presentations. Prior to SecuritySage, Jeffrey founded and co-founded several e-commerce and security initiatives, where he served as President and/or Chief Technology Officer. His responsibilities included such areas as the strategy and implementation of corporate initiatives, project management, professional and managed services, as wel Read more...
Contemporary societies have increasing dependence on computers and computer networks, and the increasing popularity of mobile computing, have given rise to numerous computer security problems. Yet despite a high proliferation of expert remedies, a viable and comprehensive solution to these security issues remains elusive, and society continues to suffer at the hands of cyber criminals, vandals and hackers.
This authoritative Guide to Computer Network Security explores computer network infrastructures and protocol design security flaws, and discusses current security solutions and best practices in both fixed and mobile computer networks. The book broadly surveys thought-provoking security issues, discussing and raising questions about the impact of new technologies and protocols (with particular emphasis on the rapid growth and skyrocketing interests and use in mobile technologies). It further explores the security threats and vulnerabilities in the current network infrastructure and protocols, and outlines current security efforts. The text assumes a modest familiarity with basic computer programming and networking.
Features:
• Covers the very core of network security, and includes chapters about the very latest in ‘handling disasters’ and ‘security in mobile network systems’
• Presents an in-depth discussion of standardization, again informing the reader on current trends on the topic
• Raises awareness of the security problems in cyberspace, and more particu Read more...
Written by networking veteran with 20 years of experience, Network Warrior provides a thorough and practical introduction to the entire network infrastructure, from cabling to the routers. What you need to learn to pass a Cisco certification exam such as CCNA and what you need to know to survive in the real world are two very different things. The strategies that this book offers weren 't on the exam, but they 're exactly what you need to do your job well. Network Warrior takes you step by step through the world of hubs, switches, firewalls, and more, including ways to troubleshoot a congested network, and when to upgrade and why. Along the way, you 'll gain an historical perspective of various networking features, such as the way Ethernet evolved. Based on the author 's own experience as well as those he worked for and with, Network Warrior is a Cisco-centric book, focused primarily on the TCP/IP protocol and Ethernet networks -- the realm that Cisco Systems now dominates. The book covers: The type of networks now in use, from LANs, WANs and MANs to CANs The OSI Model and the layers involved in sending data Hubs, repeaters, switches, and trunks in practice Auto negotiation and why it 's a common problem in network slowdowns Route maps, routing protocols, and switching algorithms in Cisco routers The resilient Ethernet -- how to make things truly redundant Cisco 6500 multi-layer switches and the Catalyst 3750 switch Telecom nomenclature -- why it 's different from the data wo Read more...
Product Description
Developed for IT professionals, this text details the strategies, tactics, and methods for designing, configuring, and maintaining Cisco Secure networks. It includes discussions on topics ranging from secure VPNs and intranets, to protected LANs and WANs. It also covers the full range of Cisco Secure hardware and software solutions, including PIX Firewall, Intrusion Detection System, Access Client/Server (ACS) software, and Authentication Agent.
Read more...
How well does your enterprise stand up against today's sophisticated security threats? With this book, security experts from Cisco Systems demonstrate how you can detect damaging security incidents on your global network -first by discovering which assets you need to monitor closely, then by helping you develop targeted strategies and pragmatic techniques to identify security incidents.
Security Monitoring offers six steps to improve network monitoring, based on the authors' years of experience conducting incident response to keep Cisco's global network secure. These steps will guide you through the following:
Develop Policies: define the rules, regulations, and criteria against which to monitor
Know Your Network: build knowledge of your infrastructure with network telemetry
Select Your Targets: define the subset of infrastructure where you'll focus monitoring
Choose Event Sources: identify the event types needed to discover policy violations
Feed and Tune: collect data and generate alerts, tuning systems using context
Maintain Dependable Event Sources: prevent critical gaps in your event collection and monitoring
To help you understand this framework, Security Monitoring illustrates its recommendations using a fictional mobile telephony provider. Each chapter's approach and techniques are overlaid against this fictional example with diagrams and detailed examples. These recommendations will help you select and deploy the best techniques for monitoring your own en Read more...
This book sorts through the overwhelming mass of open source security tools, chooses a few of the best, and shows network and system administrators how to use them to solve common security problem. Open Source Security Tools is a practicum. It tells readers what they need to do to secure their networks, introduces best-in-class tools, and shows readers how to use them. For each security task described, Howlett reviews the best open source tools, shows readers how to use them, and takes them through a sample implementation and case studies. At the end of each chapter, Howlett will offer pointers to other good open source tools that are worth investigating. The companion CD includes fully dowloadable versions of the tools, so readers can work along with the text. Newcomers to security will leave with enough knowledge and experience to deploy solutions and further their IT careers. Readers will learn to: * Secure their perimeter with open source scanners like Nessus.* Receive early warning about attempted breakins from IDS systems like Snort.* Install a firewall to keep hackers at bay (Turtle).* Use encyrption to secure email and other sensitive data (PGP)* If the worst happens, run forensics tools to investigate a breakin after the fact, like Autopsy or SleuthKit.This book is part of the Bruce Perens Open Source Series. Read more...
Book Description
The most up-to-date information on the next generation of SSH and how to incorporate into your organization's security environment.
Product Description
New security risks, continuously evolving regulation and increasing security standards have created new and growing needs for secure internal information transfers, which SSH provides. This book addresses these new trends in depth, offering the most up-to-date information on the integration of SSH into a security environment. It covers the newest features and applications of SSH-2 (which received Proposed Standard status from the IETF in 2006). SSH2 is more secure than previous versions and has many expanded uses on a wider variety of computing platforms. Another particular note driving new SSH2 adoption are the requirements of recent legislation (PCI/HIPAA/SOX/FISMA). SSH 2 has become an even more valuable tool, as it provides communications security compliance with the latest standards.
This book offers the most up-to-date information on SSH2 in a practical, hands-on, tutorial-style reference that goes well beyond UNIX implementation. It concentrates on the latest version of SSH 2 with all new information and is accompanied by companion Website that contains useful scripts and utilities, providing administrators with the newest ways to incorporate this most useful utility into their network tool box.
* Discover why SSH2 offers more robust security than SSH1 and how to incorporate it into your net Read more...
Book Description
The user's guide to best practices in improving and enhancing security in a SAP landscape.
Product Description
Throughout the world, high-profile large organizations (aerospace and defense, automotive, banking, chemicals, financial service providers, healthcare, high tech, insurance, oil and gas, pharmaceuticals, retail, telecommunications, and utilities) and governments are using SAP software to process their most mission-critical, highly sensitive data. With more than 100,000 installations, SAP is the world's largest enterprise software company and the world's third largest independent software supplier overall.
Despite this widespread use, there have been very few books written on SAP implementation and security, despite a great deal of interest. (There are 220,000 members in an on-line SAP 'community' seeking information, ideas and tools on the IT Toolbox Website alone.) Managing SAP user authentication and authorizations is becoming more complex than ever, as there are more and more SAP products involved that have very different access issues. It's a complex area that requires focused expertise.
This book is designed for these network and systems administrator who deal with the complexity of having to make judgmental decisions regarding enormously complicated and technical data in the SAP landscape, as well as pay attention to new compliance rules and security regulations.
Most SAP users experience significant challenges when trying to man Read more...
The protection of critical information and systems is a major component of today's electronic business community. This valuable reference presents the primary hardware-based computer security approaches in an easy-to-read toolbox format. The techniques discussed show readers how to perform their own evaluation of new and emerging security technologies. It is an invaluable source for computer engineers, computer security specialists, electrical engineers, software engineers, IT professionals, and advanced undergraduate and graduate students in computer engineering and computer science. Read more... 
Yusuf Bhaiji “Network Security Technologies and Solutions”
Cisco Press | 2008-03-30 | ISBN: 1587052466 | 840 pages | PDF | 13,1 Mb
A comprehensive, all-in-one reference for Cisco network security
Yusuf Bhaiji, CCIE No. 9305
Network Security Technologies and Solutions is…

Mitnick, Kevin y Simón, William, “El Arte de la Intrusion”
Editorial RA-MA Editorial | ISBN: 9789701512609 | Primera Edición Abril 2007 | PDF | 371 pages | spanish | 2 MB
| “ | “Entra en el mundo hostil de los delitos informáticos desde la… |

Alan Dennis “.NET Multithreading”
Manning Publications | 2003-01-01 | ISBN: 1930110545 | 360 pages | PDF | 5,1 MB
With an understanding of the .NET framework, stable and robust multithreaded applications can be developed with minimal effort. Covering the topics…

Peter Bernus, Kai Mertins, Günter Schmidt “Handbook on Architectures of Information Systems”
Springer | 2005-09-01 | ISBN: 3540254722 | 896 pages | PDF | 13,3 MB
This volume offers a comprehensive overview of architectures, languages, methods, and techniques for analysing,…

Lech J. Janczewski, Andrew M. Colarik “Cyber Warfare and Cyber Terrorism”
IGI Global (2007-07-26) | ISBN 1591409918 | 532 Pages | PDF | 4.6 Mb
Enormous efficiencies have been gained over the past twenty-five years as a result of the introduction of…

Adam Shostack, Andrew Stewart “The New School of Information Security”
Addison-Wesley Professional | 2008-04-05 | ISBN: 0321502787 | 288 pages | CHM | 1 Mb
Why is information security so dysfunctional? Are you wasting the money you spend on security?…

Luis Camarinha-Matos, Hamideh Afsarmanesh “Collaborative Networks:Reference Modeling”
Springer | 2008-05-30 | ISBN: 0387794255 | 336 pages | PDF | 15,8 MB
Collaborative Networks: Reference Modeling works to establish a theoretical foundation for Collaborative Networks. Particular emphasis is put on modeling…

Jan H.P. Eloff, Les Labuschagne, Rossouw von Solms, Gurpreet Dhillon
“Advances in Information Security Management and Small Systems Security (IFIP International Federation for Information Processing)”
Publisher: Springer | Number Of Pages: 232 | 2001-09-15 | ISBN: 0792375068 | PDF | 2…

Martijn Dashorst, Eelco Hillenius “Wicket in Action”
Manning Publications | 2005-09-01 | ISBN: 1932394982 | 400 pages | PDF | 3,2 MB
There are dozens of Java frameworks out there, but most of them require you to learn special coding…