Goodrich, Michael T. - Introduction To Computer Security

Price & Availability

Usually ships in 2 - 5 business days
Click for details

WEBSITE PRICE:

$129.99


EmailEmail a friend


All prices are in New Zealand Dollars and include GST.

 

Items featured on this website may not be available in our stores. Contact your nearest store for instore price and availability - prices in stores may vary from those on this website.

Introduction To Computer Security  

 

By: Goodrich, Michael T. (Author), Tamassia, Roberto (Author).  Pearson Education (US). Published: 28/10/2010. Audience Guide: Tertiary Education (US: College).
Mixed media product. Sourced from NZ.

 

Full item details here.

 

Item Details

ISBN10/13: 0321512944/9780321512949
TITLE: Introduction to Computer Security
CONTRIBUTORS: Goodrich, Michael T. (Author),  Tamassia, Roberto (Author)
EDITION: United States ed
IMPRINT: Addison-Wesley Educational Publishers Inc
PUBLISHER: Pearson Education (US)
FORMAT: Mixed media product
PUBLICATION DATE: 28/10/2010
SUBJECT: Computers/InternetComunications & Networks
DIMENSIONS (Width x Height): 203mm x 254mm
PAGES: 800
AUDIENCE GUIDE: Tertiary Education (US: College)
CONTENTS:

1 Introduction 1 1.1 Confidentiality, Integrity, and Availability ... 2 1.1.1 Confidentiality ... 3 1.1.2 Integrity ... 5 1.1.3 Availability ... 7 1.2 Assurance, Authenticity, and Anonymity ... 8 1.2.1 Assurance ... 8 1.2.2 Authenticity ... 11 1.2.3 Anonymity ... 12 1.3 Threats and Attacks ... 13 1.4 Access Control Models ... 14 1.4.1 Access Control Matrices ... 15 1.4.2 Access Control Lists ... 16 1.4.3 Capabilities ... 17 1.4.4 Role-Based Access Control ... 18 1.5 Cryptographic Concepts ... 19 1.5.1 Encryption ... 19 1.5.2 Digital Signatures ... 21 1.5.3 Cryptographic Hash Functions ... 21 1.5.4 Digital Certificates ... 22 1.6 Implementation and Usability Issues ... 23 1.6.1 The Importance of Efficiency ... 24 1.6.2 Passwords ... 25 1.6.3 Social Engineering ... 26 1.7 Exercises ... 28 2 Physical Security 33 2.1 Introduction ... 33 2.2 Locks ... 33 2.2.1 Types of Locks ... 34 2.2.2 Master and Control Keys ... 37 2.2.3 Bypassing Locks ... 38 2.2.4 Safes ... 40 2.2.5 Side Channel Attacks ... 41 2.2.6 Combinatorics and Locks ... 42 2.3 Intrusion Detection ... 44 2.3.1 Video Monitoring ... 44 2.3.2 Human Factors ... 45 2.4 Physical Attacks Against Computers ... 46 2.4.1 Live CDs ... 46 2.4.2 Computer Forensics ... 46 2.5 Eavesdropping ... 48 2.5.1 Wiretapping ... 48 2.5.2 Radio Frequency Emissions ... 49 2.5.3 Optical Emissions ... 50 2.5.4 Acoustic Emissions ... 50 2.5.5 Hardware Keyloggers ... 51 2.6 Electronic Authentication ... 52 2.6.1 Barcodes ... 52 2.6.2 Magnetic Stripe Cards ... 52 2.6.3 Smart Cards ... 54 2.6.4 RFIDs ... 58 2.6.5 Biometrics ... 61 2.7 Automated Teller Machines ... 64 2.8 Voting Machines ... 66 2.9 Conclusion ... 67 2.10 Exercises ... 68 3 Operating Systems Security 73 3.1 Introduction ... 75 3.2 Processes ... 75 3.2.1 Boot Sequence ... 75 3.2.2 Users and the Process Tree ... 77 3.2.3 Daemons and Services ... 78 3.2.4 Address Space ... 79 3.2.5 Compiling and Linking ... 80 3.2.6 Virtual Memory ... 81 3.2.7 Inter-Process Communication ... 82 3.2.8 Monitoring, Management, and Logging ... 83 3.3 Access Control ... 85 3.3.1 Passwords ... 86 3.3.2 Process Identification ... 86 3.3.3 File Organization ... 86 3.3.4 Basic Unix Permissions ... 88 3.3.5 Advanced File Permissions ... 91 3.3.6 Linux Permissions ... 92 3.3.7 Windows Permissions ... 92 3.3.8 Working with Files ... 92 3.4 Program Security ... 93 3.4.1 Arithmetic Overflow ... 93 3.4.2 Stack-Based Buffer Overflow ... 94 3.4.3 Heap-Based Buffer Overflow Attacks ... 101 3.4.4 Format String Attacks ... 103 3.4.5 Race Conditions ... 105 3.5 Virtualization ... 105 3.6 Exercises ... 106 3.7 Notes and References ... 110 4 Malware 111 4.1 Insider Attacks ... 112 4.1.1 Backdoors ... 112 4.1.2 Logic Bombs ... 114 4.1.3 Trojan Horses ... 116 4.1.4 Defense Against Insider Attacks ... 117 4.2 Computer Viruses ... 118 4.2.1 Phases of Execution for Computer Viruses ... 119 4.2.2 Types of Viruses ... 119 4.3 Attacks and Counter-Attacks ... 123 4.3.1 Encrypted Viruses ... 124 4.3.2 Polymorphic Viruses ... 125 4.3.3 Detecting Zero-Day Attacks ... 126 4.3.4 The Impossibility of Detecting All Computer Viruses . 127 4.4 Privacy-Invasive Software ... 130 4.4.1 Adware ... 131 4.4.2 Spyware ... 131 4.4.3 Countermeasures ... 135 4.5 Exercises ... 136 5 Network Security 139 5.1 The Internet Protocol Suite ... 140 5.1.1 Internet Topology ... 140 5.1.2 Internet Protocol Layers ... 141 5.1.3 IP ... 142 5.1.4 TCP/IP ... 142 5.1.5 DNS ... 143 5.2 Attacks and Countermeasures ... 143 5.2.1 IP Sniffing and Spoofing ... 143 5.2.2 TCP Session Stealing ... 143 5.2.3 Denial-of-Service Attacks ... 143 5.2.4 DNS Attacks ... 143 5.2.5 Intruders and Firewalls ... 143 5.3 Secure Communication ... 143 5.4 Exercises ... 144 6 Web Browser Security 145 6.1 The World Wide Web ... 147 6.1.1 The TCP Handshake ... 147 6.1.2 HTTP Requests ... 148 6.1.3 HTTPS ... 150 6.1.4 Certificates ... 152 6.2 Attacks on Clients ... 155 6.2.1 Introduction/Key Concepts ... 155 6.2.2 Javascript ... 156 6.2.3 Sessions ... 158 6.2.4 Cross-Site Scripting (XSS) ... 163 6.2.5 Other XSS Attacks ... 170 6.2.6 Cross-Site Request Forgery (CSRF) ... 170 6.2.7 Click-jacking ... 172 6.2.8 Phishing ... 173 6.2.9 The Sandbox and Security Tradeoffs ... 174 6.2.10 Application Vulnerabilities in Browsers ... 175 6.2.11 Media Content and Flash ... 175 6.2.12 Java Applets and ActiveX ... 176 6.3 Attacks on Servers ... 177 6.3.1 Introduction/Key Concepts ... 177 6.3.2 SQL Injection ... 180 6.3.3 File Inclusion and Code Execution Vulnerabilities ... 184 6.3.4 Application Vulnerabilities in Web Servers ... 186 6.3.5 Web Server Privileges ... 186 6.4 Human Factors and Privacy on the Web ... 187 6.4.1 Third-Party and Tracking Cookies ... 187 6.4.2 Protecting Privacy ... 188 6.5 Prevention ... 188 6.5.1 Developers ... 188 6.5.2 Users ... 189 6.5.3 Administrators ... 190 6.6 Exercises ... 192 7 Cryptography 195 7.1 Symmetric Cryptography ... 196 7.2 Public Key Cryptography ... 196 7.3 Cryptographic Hash Functions ... 196 7.4 Digital Signatures ... 196 7.5 Data Security ... 196 7.6 Communications Security ... 196 8 Security Models 197 8.1 Models and Policies ... 198 8.2 Role-Based Access Control ... 198 8.3 Delegation ... 198 8.4 Trust Management and Negotiation ... 198 8.5 Data Security ... 198 8.6 Economic Issues ... 198 9 Security Practice 199 9.1 Security Standards and Evaluation ... 200 9.2 System Administration ... 200 9.3 Vulnerability Assessment ... 200 9.4 Forensic Analysis ... 200 9.5 Misuse of Cryptography ... 200 10 Applications Security 201 10.1 Databases ... 202 10.2 Email ... 202 10.3 Digital Cash ... 202 10.4 Voting Systems ... 202 10.5 Online Shopping and Banking ... 202 10.6 Digital Rights Management Systems ... 202

 

NEED HELP? Click here to go to our help section.
 

Featured Product

Anxiety

Anxiety

LADYHAWKE . NZ$29.95.

 

Here

Here

Sharpe, Edward & The Magnetic Zeroes. NZ$26.95.

 

Spirit In the Room (Deluxe Edition)

Spirit In the Room (Deluxe Edition)

Jones, Tom. NZ$29.95.

 

ALMIGHTY JOHNSONS, THE - SERIES 2

ALMIGHTY JOHNSONS, THE - SERIES 2

ALMIGHTY JOHNSONS, THE & 7 others.. NZ$39.95.