- eBook:Security Engineering: A Guide to Building Dependable Distributed Systems, 3rd Edition
- Author:Ross Anderson
- Edition:3 edition
- Data:December 22, 2020
- Pages:1232 pages
- Format:PDF, ePUB
In Security Engineering: A Guide to Building Dependable Distributed Systems, Third Edition Cambridge University professor Ross Anderson updates his classic textbook and teaches readers how to design, implement, and test systems to withstand both error and attack.
This book became a best-seller in 2001 and helped establish the discipline of security engineering. By the second edition in 2008, underground dark markets had let the bad guys specialize and scale up; attacks were increasingly on users rather than on technology. The book repeated its success by showing how security engineers can focus on usability.
Now the third edition brings it up to date for 2020. As people now go online from phones more than laptops, most servers are in the cloud, online advertising drives the Internet and social networks have taken over much human interaction, many patterns of crime and abuse are the same, but the methods have evolved. Ross Anderson explores what security engineering means in 2020, including:
- How the basic elements of cryptography, protocols, and access control translate to the new world of phones, cloud services, social media and the Internet of Things
- Who the attackers are – from nation states and business competitors through criminal gangs to stalkers and playground bullies
- What they do – from phishing and carding through SIM swapping and software exploits to DDoS and fake news
- Security psychology, from privacy through ease-of-use to deception
- The economics of security and dependability – why companies build vulnerable systems and governments look the other way
- How dozens of industries went online – well or badly
Chapter 1. What Is Security Engineering?
Chapter 2. Who Is the Opponent?
Chapter 3. Psychology and Usability
Chapter 4. Protocols
Chapter 5. Cryptography
Chapter 6. Access Control
Chapter 7. Distributed Systems
Chapter 8. Economics
Chapter 9. Multilevel Security
Chapter 10. Boundaries
Chapter 11. Inference Control
Chapter 12. Banking and Bookkeeping
Chapter 13. Locks and Alarms
Chapter 14. Monitoring and Metering
Chapter 15. Nuclear Command and Control
Chapter 16. Security Printing and Seals
Chapter 17. Biometrics
Chapter 18. Tamper Resistance
Chapter 19. Side Channels
Chapter 20. Advanced Cryptographic Engineering
Chapter 21. Network Attack and Defence
Chapter 22. Phones
Chapter 23. Electronic and InformationWarfare
Chapter 24. Copyright and DRM
Chapter 25. New Directions?
Chapter 26. Surveillance or Privacy?
Chapter 27. Secure Systems Development
Chapter 28. Assurance and Sustainability
Chapter 29. Beyond “Computer Says No”