A Practical Guide to Security Engineering and Information Assurance

A Practical Guide to Security Engineering and Information Assurance, 9780849311635 (0849311632), Auerbach Publications, 2001

A Practical Guide to Security Engineering and Information Assurance provides insight into the broader realm of information assurance (IA). It explains real-world strategies applicable to all systems, from small systems supporting a home-based business to those of a multinational corporation, government agency, or critical infrastructure system. The author provides step-by-step, in-depth processes for defining information security and assurance goals, performing vulnerability and threat analysis, implementing and verifying the effectiveness of threat control measures, and conducting accident and incident investigations. The guide provides a complete methodology for information integrity and security throughout the life of a system.

This book is a comprehensive yet practical guide to security engineering and
the broader realm of information assurance (IA). This book fills an important
gap in the professional literature.

The relationship between security engineering and IA and why both are
needed is explained. Innovative long-term vendor, technology, and applicationindependent
strategies demonstrate how to protect critical systems and data
from accidental and intentional action and inaction that could lead to a system
failure/compromise. These real-world strategies are applicable to all systems,
from small systems supporting a home-based business to those of a multinational
corporation, government agency, or critical infrastructure system. Stepby-
step, in-depth solutions take one from defining information security/IA goals
through performing vulnerability/threat analyses, implementing and verifying
the effectiveness of threat control measures, to conducting accident/incident
investigations, whether internal, independent, regulatory, or forensic. A review
of historical approaches to information security/IA puts the discussion in context
for today’s challenges. Extensive glossaries of information security/IA terms
and 80 techniques are an added bonus.

This book is written for engineers, scientists, managers, regulators, academics,
and policy-makers responsible for information security/IA. Those who
have to comply with Presidential Decision Directive (PDD-63), which requires
all government agencies to implement an IA program and certify missioncritical
systems by May 2003, will find this book especially useful.

Comments

Amazing Books

Starting an Online Business All-in-One For Dummies (For Dummies (Business & Personal Finance))

For Dummies, 2017

Start a successful online business—and be your own boss!

Being an online entrepreneur means more than just building a website—and this book breaks down everything you need to know to be successful. Inside, you'll get plain-English explanations and easy-to-follow instruction on online business basics, legal...

PC Magazine January 2006

PC Magazine, 2006

Articles in January 2006 issue of PC Magazine

    * US High Court Refuses to Review RIM Patent Ruling
      by Reuters  
    * DTV Alliance Takes Mobile TV To The Masses
      by Bary Alyssa Johnson
    * Government...

Microsoft Project 2013 Step by Step

Microsoft Press, 2013

Experience learning made easy - and quickly teach yourself how to manage the complete project life cycle with Project 2013. With Step by Step, you set the pace - building and practicing the skills you need, just when you need them!

Work with Project 2013 on your PC or touch-enabled device

Build...

A UML Pattern Language (Macmillan Technology Series)

Sams Publishing, 2000

This book is about how to model software systems and how to use those models. It is rooted in that emerging intellectual "ecosystem" comprising the various networks (the Internet, intranets, extranets, and so on), distributed objects, piecemeal development based on short development cycles, and something called...

Software Paradigms

John Wiley & Sons, 2005

Programming is about the creation of software to solve problems. Problems come in
many forms: simple to complex, small to large, I/O-intensive to compute-intensive.
Over the past four decades, we’ve tried to solve a lot of different types of problems
with software. At some, we have been exceptionally successful and the...

Encyclopedia of the Persian Gulf War

ABC Clio, 1995

Because the 1991 War for Kuwait (erroneously dubbed the Gulf War) ended too quickly, it will probably never receive the scholarly attention that other conflicts garner. The politics of the Gulf is too complex, perhaps even too foreign, for most observers, and the reasons for our intervention too pragmatic to deserve the kind of attention that...