Print Book $44.95
Safari Books Online
Print Book £31.95
Looking to Reprint this content?
By Simson Garfinkel
With
Gene Spafford
November 2001
Pages: 786
ISBN 10: 0-596-00045-6 |
ISBN 13: 9780596000455
(Average of 3 Customer Reviews)
This much expanded new edition explores web security risks and how to minimize them. Aimed at web users, administrators, and content providers, Web Security, Privacy & Commerce covers cryptography, SSL, the Public Key Infrastructure, digital signatures, digital certificates, privacy threats (cookies, log files, web logs, web bugs), hostile mobile code, and web publishing (intellectual property, P3P, digital payments, client-side digital signatures, code signing, PICS).
Full Description
- Web technology--The technological underpinnings of the modern Internet and the cryptographic foundations of e-commerce are discussed, along with SSL (the Secure Sockets Layer), the significance of the PKI (Public Key Infrastructure), and digital identification, including passwords, digital signatures, and biometrics.
- Web privacy and security for users--Learn the real risks to user privacy, including cookies, log files, identity theft, spam, web logs, and web bugs, and the most common risk, users' own willingness to provide e-commerce sites with personal information. Hostile mobile code in plug-ins, ActiveX controls, Java applets, and JavaScript, Flash, and Shockwave programs are also covered.
- Web server security--Administrators and service providers discover how to secure their systems and web services. Topics include CGI, PHP, SSL certificates, law enforcement issues, and more.
- Web content security--Zero in on web publishing issues for content providers, including intellectual property, copyright and trademark issues, P3P and privacy policies, digital payments, client-side digital signatures, code signing, pornography filtering and PICS, and other controls on web content.
Register your book | Submit Errata
Browse within this book
Cover | Table of Contents | Index | Sample Chapter | Colophon
Book details
Second Edition: November 2001
ISBN: 0-596-00045-6
Pages: 786
Average Customer Reviews: (Based on 3 Reviews)
Featured customer reviews
Web Security, Privacy & Commerce, 2nd Edition Review, June 11 2003
Simson,
You have no idea who I am, but let's say that I'm a computer security
practitioner who has over 20 years in this business of protecting
customer's data, which I call computer security. I'm writing to
compliment you on your book noted in the title of this email. It is a
masterful work that has helped me considerably in understanding the
web environment moreso than ever before. I have recommended it to
many of my associates and friends who are in this business.
Thanks also to Mr. Gene Spafford for his notable contribution.
Speaking for those of us who are trying to help our clientele
understand not only the Web with regard to security practices and
principles, but also to those who do not understand how PKI helps move
this along: thank you!
You both have collaborated to produce a work that is considerably
greater than the 1st Edition. My compliments to others, especially
Ms. Deborah Russell. For what it's worth, I have little time to
understand many of the details that my customers ask of me. It is
through these books that I learn and understand more of the
underpinnings of solutions. Fortunately, developing solutions along
the lines you suggest really works. We are not yet 'there' but when we
are, I will be happy to confirm that your recommendations applied.
If you would be so kind, please pass along my thanks to both Gene
Spafford and Deborah Russell, I would appreciate it (not having their
email address).
Web Security, Privacy & Commerce, 2nd Edition Review, May 03 2002
This is an excellent reference book. It covers security & privacy at several levels 1)The Administrative Level 2) The User Level 3) The Technological Level.
The definitions are very easy to understand. Concise examples are provided. All the major aspects security & privacy are covered including an Appendix with a large ammount of reference material.
Web Security, Privacy & Commerce, 2nd Edition Review, February 02 2002
Good security source. Real "hands on the job" experience. I would have taken the "Web" out of the title, it goes beyond Web security.
Media reviews
"This well organized and clearly written book is an essential resource for those concerned with security and privacy issues."
--William Sees, Managing Information, Oct 2002
"Book of the month. This well organized and clearly written book is an essential resource for those concerned with security and privacy issues."
--William Sees, Managing Information, October 2002
"Before you read anything else about Internet security, read this book. Anyone considering use of the Web for commercial purposes, no matter how large or small, should study it. Highly Recommended."
--Major Keary, PC Update, July 2002
"a fascinating read..."
--Martha Retallick, The Journal of the Tucson Computer Society, June 2002
"Well researched and expertly written...Analysts involved with web security are well-advised to add this book to their library."
--Patrick Mueller Information Security, March 2002
"The update to 'Web Security, Privacy & Commerce' is indeed warranted and welcomed...Simson Garfinkel and Gene Spafford are veterans in the computer security world. Garfinkel is the author of several highly acclaimed books, and Spafford is a professor of computer science at Purdue University. Their succinct writing style allows them to cover a huge amount of information in a little over 700 pages. The fact that 'Web Security, Privacy & Commerce, 2nd Edition' is nearly twice the size of the first edition is indicative of the fact that security has changed radically since 1997. Whether you run a web site or are concerned about security for your PC at home, 'Web Security, Privacy & Commerce' is a must read."
--Ben Rothke, UnixReview.com, March 2002
"A good reference book to have."
--Industrial Networking & Open Control, Feb 2002
"...a good introduction to almost every aspect of security and privacy on the Web, and is written in the typical condensed O'Reilly style that packs tons of information into every page...Five stars out of Five."
--Mitch Tulloch, Swynk.com, Jan 16, 2002
"A needed update to a reliable classic by well respected security experts...if you're needing to learn more about this subject I can't think of another book I would recommend before it. I've been motivated enough to write a review on it, and for most of us that's probably a ringing endorsement by itself! 10 out of 10."
--Rich Wellner, slashdot.org, Dec 20. 2001
Reviews for the first edition:
"Web Security...is an oasis in a sea of Internet security misinformation. Practical, evenhanded, comprehensive and platform-neutral, this new book is the best source for Web security wisdom....[It's] the best single-volume guide to the dangers of life on the Web and the technologies and strategies that can help users and publishers enjoy the benefits and advantages of the Web."
--ENT, October 1997
"Garfinkel and Spafford deal head on with key elements of Internet and enterprise security. Web Security and Commerce addresses modern security technologies and applications in a comprehensive fashion, and is an important work in the explosive, fast-moving, and highly visible security field."
--Eric Greenberg, Group Security Product Manager, Netscape Communications Corporation
"This is a truly useful book which can help people avoid a lot of the risks in Webware. It is intelligently written, timely, informative, accurate, comprehensive, understandable, and a great pleasure to read. It is the Web-ster's definitive guide to security."
--Peter G. Neumann, moderator of ACM "RISKS" Forum and author of Computer-Related Risks
"This book is packed with useful information and solid advice for Web users, Webmasters, and developers. Garfinkel and Spafford skip the usual marketing hype and tell us how and why Web security works--or breaks down--in the real world."
--Dr. Edward Felten, head of Princeton University's Secure Internet Programming Group and author of Java Security.
"This book is for Web users and Webmasters who want or need to know about how and why Web security works - or doesn't. The authors cut through the hype and tell you how to minimize the risks of using the Web, with an informative and comprehensive discussion of browser vulnerabilities, issues with Java, Javascript, ActiveX, and plug-ins, cryptography, digital certificates, Web server security, legal issues and more."
--Geoff Choo, Director Solutions WEBzine, http://space.tin.it/internet/gchoo/html/books_web.html
"If you have a business, and you want to learn how to protect the security of your Web site, or if you're a Web surfer and want to know more about privacy on the Web, a new book, Web Security & Commerce by Simson Garfinkel with Gene Spafford, is the best I've seen."
--Michael Ketcher, Bull & Bear Financial Report, March 1998
"Garfinkel and Spafford provide a thorough, engrossing, and disconcerting overview of all the relevant security issues...an excellent book all around--generous with technical detail and practical examples, yet accessible and fascinating to read. It's recommended for anyone who's interested in the subject."
--John Frazer Dobson, Computer Shopper June 1998
"If you're looking for practical and real-world information on Web Security, then this book covers a lot."
--Bob Swart, Developer Magazine, Oct 2000
