Incident Response: A Strategic Guide to Handling System and Network Security Breaches
|
| |
ISBN |
1578702569 |
|
Release Date |
15 January 2002 |
|
Category |
Computer Security |
|
Tags |
incident,
incident response,
security,
strategic,
"network security",
response,
"incident response",
strategic planning,
incident handling,
1578702569,
information security,
network,
|
|
This book @Amazon |
View |
|
Description
|
Incident Response fills a need that's existed in the security book market for some time. The authors--a pair of accomplished incident response experts, not merely researchers--have converted to book form their accumulated wisdom on the question of how to respond to an attack on computer systems. Their expertise is only partly technical; much of what Eugene Schultz and Russell Shumway have written has to do with legal questions and policy decisions. It's a reasonable balance, considering that the state of the art in network intrusion (and defense against it) changes frequently and security administrators are better armed with concepts and strategies than with "click this, type that" instructions. The explicit technical material that does appear here is nicely balanced between Windows and Unix systems, and clearly explains networking details of interest to security people and their managers. The explanation of how a spanning port can make a switch work like a hub for purposes of packet monitoring--nearly entirely prose--is one example of high-quality technical coverage that will remain valuable as operating systems and other network details change over time. Unlike many books about computers, this one deserves to be read cover to cover. The authors have points to make, and they generally build on their earlier thoughts as they go. Some material in these pages seems somewhat obvious--the advice to dress nicely for a media interview, for example--but it all fits with the authors' goal of showing their readers how to react (in all respects) to security problems when they happen. Read this, be prepared for trouble, and know how to educate others about incident response. --David Wall Topics covered: How an organization should react--organizationally, technically, legally, and in terms of public relations--to incidents of unauthorized access (originating both internally and externally) to its computer systems. |
Other books on Computer Security
Applied Security Visualization
Ethical Hacking
Intrusion Detection Systems (Advances in Information Security)
VizSEC 2007: Proceedings of the Workshop on Visualization for Computer Security (Mathematics and Visualization)
Crimeware: Understanding New Attacks and Defenses (Symantec Press)
Insider Attack and Cyber Security: Beyond the Hacker (Advances in Information Security)
Computer Security, Privacy and Politics: Current Issues, Challenges and Solutions
Secure Computer and Network Systems: Modeling, Analysis and Design
No Tech Hacking: A Guide to Social Engineering, Dumpster Diving, and Shoulder Surfing
Netcat Power Tools
Secrets Stolen, Fortunes Lost: Preventing Intellectual Property Theft and Economic Espionage in the 21st Century
Hacking: The Art of Exploitation, 2nd Edition
Smart Cards, Tokens, Security and Applications
Digital Privacy: Theory, Technologies, and Practices
Gray Hat Hacking, Second Edition
|
|
