Book description
The Comprehensive Guide to Computer Security, Extensively Revised with Newer Technologies, Methods, Ideas, and Examples
In this updated guide, University of California at Davis Computer Security Laboratory co-director Matt Bishop offers clear, rigorous, and thorough coverage of modern computer security. Reflecting dramatic growth in the quantity, complexity, and consequences of security incidents, Computer Security, Second Edition, links core principles with technologies, methodologies, and ideas that have emerged since the first edition’s publication.
Writing for advanced undergraduates, graduate students, and IT professionals, Bishop covers foundational issues, policies, cryptography, systems design, assurance, and much more. He thoroughly addresses malware, vulnerability analysis, auditing, intrusion detection, and best-practice responses to attacks. In addition to new examples throughout, Bishop presents entirely new chapters on availability policy models and attack analysis.
- Understand computer security goals, problems, and challenges, and the deep links between theory and practice
- Learn how computer scientists seek to prove whether systems are secure
- Define security policies for confidentiality, integrity, availability, and more
- Analyze policies to reflect core questions of trust, and use them to constrain operations and change
- Implement cryptography as one component of a wider computer and network security strategy
- Use system-oriented techniques to establish effective security mechanisms, defining who can act and what they can do
- Set appropriate security goals for a system or product, and ascertain how well it meets them
- Recognize program flaws and malicious logic, and detect attackers seeking to exploit them
This is both a comprehensive text, explaining the most fundamental and pervasive aspects of the field, and a detailed reference. It will help you align security concepts with realistic policies, successfully implement your policies, and thoughtfully manage the trade-offs that inevitably arise.
Register your book for convenient access to downloads, updates, and/or corrections as they become available. See inside book for details.
Table of contents
- Cover Page
- About This E-Book
- Title Page
- Copyright Page
- Dedication Page
- Contents
- Preface
- Acknowledgments
- About the Author
- Part I: Introduction
- Part II: Foundations
- Part III: Policy
- Part IV: Implementation I: Cryptography
- Part V: Implementation II: Systems
-
Part VI: Assurance
- Chapter 19 Introduction to Assurance
- Chapter 20 Building Systems with Assurance
- Chapter 21 Formal Methods
-
Chapter 22 Evaluating Systems
- 22.1 Goals of Formal Evaluation
- 22.2 TCSEC: 1983–1999
- 22.3 International Efforts and the ITSEC: 1991–2001
- 22.4 Commercial International Security Requirements: 1991
- 22.5 Other Commercial Efforts: Early 1990s
- 22.6 The Federal Criteria: 1992
- 22.7 FIPS 140: 1994–Present
- 22.8 The Common Criteria: 1998–Present
- 22.9 SSE-CMM: 1997–Present
- 22.10 Summary
- 22.11 Research Issues
- 22.12 Further Reading
- 22.13 Exercises
- Part VII: Special Topics
- Part VIII: Practicum
- Part IX: Appendices
- References
- Index
- Credits
- Code Snippets
Product information
- Title: Computer Security Art and Science, 2nd Edition
- Author(s):
- Release date: November 2018
- Publisher(s): Addison-Wesley Professional
- ISBN: 9780134097145
You might also like
book
Computer Security: Art and Science
"This is an excellent text that should be read by every computer security professional and student." …
book
Security in Computing, 6th Edition
The New State of the Art in Information Security: From Cloud to Crypto, AI-Driven Security to …
book
Computer and Information Security Handbook, 3rd Edition
Computer and Information Security Handbook, Third Edition, provides the most current and complete reference on computer …
book
Computer Networks, Fifth Edition
Computer Networks, 5/e is appropriate for Computer Networking or Introduction to Networking courses at both the …