Overview
- Appropriate for undergraduate and graduate students of computer science and also for self-study by IT professionals
- The authors' supporting software environment is freely downloadable, and most chapters end with exercises
- The authors have successfully taught IT security to students and professionals using the content of this book and the laboratory setting it describes
- Includes supplementary material: sn.pub/extras
Access this book
Tax calculation will be finalised at checkout
Other ways to access
Table of contents (8 chapters)
Keywords
About this book
This book explores fundamental principles for securing IT systems and illustrates them with hands-on experiments that may be carried out by the reader using accompanying software. The experiments highlight key information security problems that arise in modern operating systems, networks, and web applications. The authors explain how to identify and exploit such problems and they show different countermeasures and their implementation. The reader thus gains a detailed understanding of how vulnerabilities arise and practical experience tackling them.
After presenting the basics of security principles, virtual environments, and network services, the authors explain the core security principles of authentication and access control, logging and log analysis, web application security, certificates and public-key cryptography, and risk management. The book concludes with appendices on the design of related courses, report templates, and the basics of Linux as needed for the assignments.
The authors have successfully taught IT security to students and professionals using the content of this book and the laboratory setting it describes. The book can be used in undergraduate or graduate laboratory courses, complementing more theoretically oriented courses, and it can also be used for self-study by IT professionals who want hands-on experience in applied information security. The authors' supporting software is freely available online and the text is supported throughout with exercises.
Reviews
"This book is a good way for newcomers to the security field, or those who want an overview of a goodly sampling of security issues, to start understanding both the issues and possible defenses. It is very much a workbook, with numerous in-line problems to work on and a nice set of questions and exercises for each chapter; answers appear in an appendix. Many of the exercises involve using specific software to look at events as they occur. ... It is very readable and well organized, and the questions and exercises are generally very good. It is an excellent introduction to the subject and would make a good upper-level undergraduate text. It would also be quite useful as a self-study text for someone new to the field." (Jeffrey Putnam, ACM Computing Reviews, August 2012)
"My students and I are big fans of this book. I have been using it regularly, since its publication, in the course "Network Security" that I teach in the Master of Science Program "Engineering and Computer Science" at the University of Verona, Italy. The course is structured in a number of theory lectures, covering the main aspects of network security, accompanied by a lab in which I have adopted [this] book. [It] delivers successfully and elegantly what it promises: it complements in an interesting and unique way the theory lectures. It allows students to carry out exercises and experiments on the topics that have been discussed in the lectures and, thanks to the accompanying software, they can choose to do this in the university lab or at home (or both). The assignment project proposed at the end of the book challenges the students in a very proficient way and, indeed, the ratings of the course by students have risen considerably since I adopted the book." (Luca Viganò, Università di Verona, Italy)
"[F]or those looking for an intense but brief and concentrated introduction to some of the fundamentals of information security, to supplement other more comprehensivereferences, [this] is an excellent book." (Ben Rothke)
Authors and Affiliations
About the authors
Bibliographic Information
Book Title: Applied Information Security
Book Subtitle: A Hands-on Approach
Authors: David Basin, Patrick Schaller, Michael Schläpfer
DOI: https://doi.org/10.1007/978-3-642-24474-2
Publisher: Springer Berlin, Heidelberg
eBook Packages: Computer Science, Computer Science (R0)
Copyright Information: Springer-Verlag Berlin Heidelberg 2011
Hardcover ISBN: 978-3-642-24473-5Published: 28 October 2011
Softcover ISBN: 978-3-642-43632-1Published: 29 November 2013
eBook ISBN: 978-3-642-24474-2Published: 27 October 2011
Edition Number: 1
Number of Pages: XIV, 202
Topics: Systems and Data Security, Data Structures and Information Theory, Management of Computing and Information Systems, Innovation/Technology Management, IT in Business