Information Security Management Handbook / Edition 6

Information Security Management Handbook / Edition 6

4.5 2
by Harold F. Tipton, Micki Krause
     
 

View All Available Formats & Editions

ISBN-10: 0849374952

ISBN-13: 9780849374951

Pub. Date: 12/18/2006

Publisher: Taylor & Francis

Considered the gold-standard reference on information security, the Information Security Management Handbook provides an authoritative compilation of the fundamental knowledge, skills, techniques, and tools required of today's IT security professional. Now in its sixth edition, this 3200 page, 4 volume stand-alone reference is organized under the CISSP

Overview

Considered the gold-standard reference on information security, the Information Security Management Handbook provides an authoritative compilation of the fundamental knowledge, skills, techniques, and tools required of today's IT security professional. Now in its sixth edition, this 3200 page, 4 volume stand-alone reference is organized under the CISSP Common Body of Knowledge domains and has been updated yearly. Each annual update, the latest is Volume 6, reflects the changes to the CBK in response to new laws and evolving technology.

Product Details

ISBN-13:
9780849374951
Publisher:
Taylor & Francis
Publication date:
12/18/2006
Series:
(ISC)2 Press
Edition description:
REV
Pages:
3280
Product dimensions:
7.30(w) x 10.10(h) x 2.70(d)

Table of Contents

Introductionxiii
Domain 1Access Control Systems and Methodology1
Section 1.1Access Control Techniques
Chapter 1Biometrics: What Is New?5
Section 1.2Access Control Administration
Chapter 2Privacy in the Healthcare Industry15
Section 1.3Methods of Attack
Chapter 3A New Breed of Hacker Tools and Defenses31
Chapter 4Social Engineering: The Forgotten Risk51
Domain 2Telecommunications and Network Security65
Section 2.1Communications and Network Security
Chapter 5Security and Network Technologies69
Chapter 6Wired and Wireless Physical Layer Security Issues97
Chapter 7Network Router Security109
Section 2.2Internet, Intranet, and Extranet Security
Chapter 8Wireless Internet Security125
Chapter 9VPN Deployment and Evaluation Strategy149
Chapter 10How to Perform a Security Review of a Checkpoint Firewall177
Chapter 11Comparing Firewall Technologies201
Chapter 12The (In)Security of Virtual Private Networks215
Chapter 13E-Mail Security239
Chapter 14Cookies and Web Bugs: What Are They and How Do They Work Together?259
Chapter 15Leveraging Virtual Private Networks273
Chapter 16Wireless LAN Security291
Domain 3Security Management Practices299
Section 3.1Security Awareness and Training
Chapter 17Maintaining Management's Commitment303
Chapter 18Making Security Awareness Happen317
Chapter 19Making Security Awareness Happen: Appendices337
Section 3.2Policies, Standards, Procedures, and Guidelines
Chapter 20Policy Development353
Section 3.3Risk Management
Chapter 21A Matter of Trust385
Chapter 22Risk Management and Analysis407
Chapter 23New Trends in Information Risk Management419
Chapter 24Information Security in the Enterprise431
Chapter 25Managing Enterprise Security Information451
Section 3.4Change Control Management
Chapter 26Configuration Management: Charting the Course for the Organization479
Domain 4Applications and Systems Development Security505
Section 4.1Application Issues
Chapter 27Web Application Security509
Chapter 28The Perfect Security: A New World Order525
Chapter 29Security for XML and Other Metadata Languages539
Chapter 30XML and Information Security551
Section 4.2Databases and Data Warehousing
Chapter 31Digital Signatures in Relational Database Applications563
Chapter 32Security and Privacy for Data Warehouses: Opportunity or Threat577
Domain 5Cryptography603
Section 5.1Private Key Algorithms
Chapter 33A Look at the Advanced Encryption Standard (AES)607
Section 5.2Public Key Infrastructure (PKI)
Chapter 34Preserving Public Key Hierarchy619
Domain 6Security Architecture and Models629
Section 6.1Principles of Computer and Network Organizations, Architectures, and Designs
Chapter 35Reflections on Database Integrity633
Domain 7Operations Security645
Section 7.1Intrusion Detection
Chapter 36Intelligent Intrusion Analysis: How Thinking Machines Can Recognize Computer Intrusions649
Section 7.2Auditing
Chapter 37Auditing the Electronic Commerce Environment671
Domain 8Business Continuity Planning and Disaster Recovery Planning697
Section 8.1Business Continuity Planning
Chapter 38Reengineering the Business Continuity Planning Process701
Section 8.2Disaster Recovery Planning
Chapter 39Business Resumption Planning and Disaster Recovery: A Case History719
Domain 9Law, Investigations, and Ethics735
Section 9.1Investigation
Chapter 40What Happened?739
Section 9.2Information Law
Chapter 41Internet Gripe Sites: Bally v. Faber745
Chapter 42State Control of Unsolicited E-Mail: State of Washington v. Heckel751
Domain 10Physical Security757
Section 10.1Threats and Facility Requirements
Chapter 43Physical Security: A Foundation for Information Security761
Chapter 44Physical Security: Controlled Access and Layered Defense775
Index793

Customer Reviews

Average Review:

Write a Review

and post it to your social network

     

Most Helpful Customer Reviews

See all customer reviews >

Information Security Management Handbook 0 out of 5 based on 0 ratings. 0 reviews.