Computer Security Handbook / Edition 5

Paperback (Print)
Buy New
Buy New from
Used and New from Other Sellers
Used and New from Other Sellers
from $222.72
Usually ships in 1-2 business days
(Save 3%)
Other sellers (Paperback)
  • All (2) from $222.72   
  • New (2) from $222.72   


The classic and authoritative reference in the field of computer security, now completely updated and revised

With the continued presence of large-scale computers; the proliferation of desktop, laptop, and handheld computers; and the vast international networks that interconnect them, the nature and extent of threats to computer security have grown enormously. Now in its fifth edition, Computer Security Handbook continues to provide authoritative guidance to identify and to eliminate these threats where possible, as well as to lessen any losses attributable to them.

With seventy-seven chapters contributed by a panel of renowned industry professionals, the new edition has increased coverage in both breadth and depth of all ten domains of the Common Body of Knowledge defined by the International Information Systems Security Certification Consortium (ISC).

Of the seventy-seven chapters in the fifth edition, twenty-five chapters are completely new, including:

1. Hardware Elements of Security

2. Fundamentals of Cryptography and Steganography

3. Mathematical models of information security

4. Insider threats

5. Social engineering and low-tech attacks

6. Spam, phishing, and Trojans: attacks meant to fool

7. Biometric authentication

8. VPNs and secure remote access

9. Securing Peer2Peer, IM, SMS, and collaboration tools

10. U.S. legal and regulatory security issues, such as GLBA and SOX

Whether you are in charge of many computers or just one important one, there are immediate steps you can take to safeguard your computer system and its contents. Computer Security Handbook, Fifth Edition equips you to protect the information and networks that are vital to your organization.

Read More Show Less

Product Details

  • ISBN-13: 9780471716525
  • Publisher: Wiley
  • Publication date: 2/9/2009
  • Edition description: Older Edition
  • Edition number: 5
  • Pages: 2040
  • Product dimensions: 7.10 (w) x 10.00 (h) x 3.60 (d)

Table of Contents

Part I. Foundations Of Computer Security.

Chapter 1. Brief History and Mission of Information System Security (Seymour Bosworth and Robert V. Jacobson).

Chapter 2. History of Computer Crime (M. E. Kabay).

Chapter 3. Toward a New Framework for Information Security(Donn B. Parker, CISSP).

Chapter 4. Hardware Elements of Security (Sy Bosworth and Stephen Cobb).

Chapter 5. Data Communications and Information Security (Raymond Panko).

Chapter 6. Network Topologies, Protocols, and Design (Gary C. Kessler and N. Todd Pritsky).

Chapter 7. Encryption

(Stephen Cobb and Corinne Lefran├žois).

Chapter 8. Using a Common Language for Computer Security Incident Information (John D. Howard).

Chapter 9. Mathematical Models of Computer Security (Matt Bishop).

Chapter 10. Understanding Studies and Surveys of Computer Crime (M. E. Kabay).

Chapter 11. Fundamentals of Intellectual Property Law (William A. Zucker and Scott J. Nathan).

Part II. Threats And Vulnerabilities.

Chapter 12. The Psychology of Computer Criminals (Q. Campbell and David M. Kennedy).

Chapter 13. The Dangerous Information Technology Insider: Psychological Characteristics and Career Patterns (Jerrold M. Post, M.D.).

Chapter 14. Information Warfare (Seymour Bosworth).

Chapter 15. Penetrating Computer Systems and Networks (Chey Cobb, Stephen Cobb, and M. E. Kabay).

Chapter 16. Malicious Code (Robert Guess and Eric Salveggio).

Chapter 17. Mobile Code (Robert Gezelter).

Chapter 18. Denial-of-Service Attacks (Gary C. Kessler and Diane E. Levine).

Chapter 19. Social Engineering and Low-Tech Attacks (Karthik Raman, Susan Baumes, Kevin Beets and Carl Ness).

Chapter 20. Spam, Phishing, and Trojans: Attacks Meant To Fool (Stephen Cobb).

Chapter 21. Web-Based Vulnerabilities (Anup K. Ghosh, Kurt Baumgarten, Jennifer Hadley, and Steven Lovaas).

Chapter 22. Physical Threats to the Information Infrastructure (Franklin Platt).

Part III. Prevention: Technical Defenses.

Chapter 23. Protecting the Information Infrastructure (Franklin Platt).

Chapter 24. Operating System Security (William Stallings).

Chapter 25. Local Area Networks (Gary C. Kessler and N. Todd Pritsky).

Chapter 26. Gateway Security Devices (David Brussin and Justin Opatrny).

Chapter 27. Intrusion Detection and Intrusion Prevention Devices (Rebecca Gurley Bace).

Chapter 28. Identification and Authentication (Ravi Sandhu, Jennifer Hadley, Steven Lovaas, and Nicholas Takacs).

Chapter 29. Biometric Authentication (David R. Lease, Robert Guess, Steven Lovaas, and Eric Salveggio).

Chapter 30. E-Commerce and Web Server Safeguards (Robert Gezelter).

Chapter 31. Web Monitoring and Content Filtering (Steven Lovaas).

Chapter 32. Virtual Private Networks and Secure Remote Access (Justin Opatrny).

Chapter 33. 802.11 Wireless LAN Security (Gary L. Tagg).

Chapter 34. Securing VOIP (Christopher Dantos and John Mason).

Chapter 35. Securing P2P, IM, SMS, and Collaboration Tools (Carl Ness).

Chapter 36. Securing Stored Data (David J. Johnson, Nicholas Takacs, and Jennifer Hadley).

Chapter 37. PKI and Certificate Authorities (Santosh Chokhani, A. Padgett Peterson, and Steven Lovaas).

Chapter 38. Writing Secure Code (Lester E. Nichols, M. E. Kabay, and Timothy Braithwaite).

Chapter 39. Software Development and Quality Assurance (John Mason, Jennifer Hadley, and Diane E. Levine).

Chapter 40. Managing Software Patches and Vulnerabilities (Peter Mell and Karen Kent).

Chapter 41. Antivirus Technology (Chey Cobb and Allysa Myers).

Chapter 42. Protecting Digital Rights: Technical Approaches (Robert Guess, Jennifer Hadley, Steven Lovaas, and Diane E. Levine).

Part IV. Prevention: Human Factors.

Chapter 43. Ethical Decision Making and High Technology (James Landon Linderman).

Chapter 44. Security Policy Guidelines (M. E. Kabay and Bridgitt Robertson).

Chapter 45. Employment Practices and Policies (M. E. Kabay and Bridgitt Robertson).

Chapter 46. Vulnerability Assessment (Rebecca Gurley Bace).

Chapter 47. Operations Security and Production Controls (M. E. Kabay, Don Holden, and Myles Walsh).

Chapter 48. E-Mail and Internet Use Policies (M. E. Kabay and Nicholas Takacs).

Chapter 49. Implementing a Security Awareness Program (K Rudolph).

Chapter 50. Using Social Psychology to Implement Security Policies (M. E. Kabay, Bridgitt Robertson, Mani Akella, and D. T. Lang).

Chapter 51. Security Standards for Products (Paul Brusil and Noel Zakin).

Part V. Detecting Security Breaches.

Chapter 52. Application Controls (Myles Walsh).

Chapter 53. Monitoring and Control Systems (Caleb S. Coggins and Diane E. Levine).

Chapter 54. Security Audits, Standards and Inspections (Donald Glass, Chris Davis, John Mason, David Gursky, James Thomas, Wendy Carr, and Diane Levine).

Chapter 55. Cyber Investigation (Peter Stephenson).

Part VI. Response & Remediation.

Chapter 56. Computer Security Incident Response Teams (Michael Miora, M. E. Kabay, and Bernie Cowens).

Chapter 57. Data Backups and Archives (M. E. Kabay and Don Holden).

Chapter 58. Business Continuity Planning (Michael Miora).

Chapter 59. Disaster Recovery (Michael Miora).

Chapter 60. Insurance Relief (Robert A. Parisi, Jr., Chaim Haas, and Nancy Callahan).

Chapter 61. Working with Law Enforcement (David A. Land).

Part VII. Management's Role In Security.

Chapter 62. Risk Assessment and Risk Management (Robert V. Jacobson).

Chapter 63. Management Responsibilities and Liabilities(Carl Hallberg, M. E. Kabay, Bridgitt Robertson, and Arthur E. Hutt).

Chapter 64. U.S. Legal and Regulatory Security Issues (Timothy Virtue).

Chapter 65. The Role of the CISO (Karen F. Worstell).

Chapter 66. Developing Security Policies (M. E. Kabay and Sean Kelley).

Chapter 67. Developing Classification Policies for Data (Karthik Raman and Kevin Beets).

Chapter 68. Outsourcing and Security (Kip Boyle, Michael Buglewicz, and Steven Lovaas).

Part VIII. Public Policy And Other Considerations.

Chapter 69. Privacy in Cyberspace: U.S. and European Perspectives (Marc Rotenberg).

Chapter 70. Anonymity and Identity in Cyberspace (M. E. Kabay, Eric Salveggio and Robert Guess).

Chapter 71. Medical Records Protection (Paul J. Brusil).

Chapter 72. Legal and Policy Issues of Censorship and Content Filtering (Lee Tien, Seth Finkelstein, and Steven Lovaas).

Chapter 73. Expert Witnesses and the Daubert Challenge (Chey Cobb).

Chapter 74. Professional Certification and Training in Information Assurance (Christopher Christian, M. E. Kabay, Kevin Henry, and Sondra Schneider).

Chapter 75. Undergraduate and Graduate Education in Information Assurance (Vic Maconachy, Urs E. Gattiker, and John Orlando).

Chapter 76. The Future of Information Assurance (Peter G. Neumann).

Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star


4 Star


3 Star


2 Star


1 Star


Your Rating:

Your Name: Create a Pen Name or

Barnes & Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation


  • - By submitting a review, you grant to Barnes & and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Terms of Use.
  • - Barnes & reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously

    If you find inappropriate content, please report it to Barnes & Noble
    Why is this product inappropriate?
    Comments (optional)