Information Security Management Handbook, Volume 3 | Harold F. Tipton,

Book

Information Security Management Handbook, Volume 3

ABSTRACT

Every year, in response to new technologies and new laws in different countries and regions, there are changes to the fundamental knowledge, skills, techniques, and tools required by all IT security professionals. In step with the lightning-quick, increasingly fast pace of change in the technology field, the Information Security Management Handbook

TABLE OF CONTENTS

part |2 pages

DOMAIN 1: ACCESS CONTROL

chapter 1|16 pages

Expanding PKI-Based Access Control Capabilities with Attribute Certificates

chapter 2|14 pages

Five Components to Identity Management Systems

chapter 3|8 pages

Security Weaknesses of System and Application Interfaces Used to Process Sensitive Information

part |2 pages

DOMAIN 2: TELECOMMUNICATIONS AND NETWORKS SECURITY

chapter 4|14 pages

Mobile Data Security

chapter 5|16 pages

Enhanced Security rough Open Standards: A Path to a Stronger Global Digital Ecosystem

chapter 6|4 pages

Web Application Firewalls

chapter 7|10 pages

Botnets

part |2 pages

DOMAIN 3: INFORMATION SECURITY AND RISK MANAGEMENT

chapter 8|22 pages

Collaborating Information Security and Privacy to Create Effective Awareness and Training

chapter 9|16 pages

Security Information and Event Management (SIEM) Technology

chapter 10|10 pages

e Insider reat: A View from the Outside

chapter 11|8 pages

Pod Slurping

chapter 12|4 pages

The USB (Universal Security Burden) Nightmare: Pod Slurping and Other High Storage Capacity Portable Device Vulnerabilities

chapter 13|14 pages

Diary of a Security Assessment: “Put at in Your Pipe and Smoke It!”

chapter 14|24 pages

NERC Compliance: A Compliance Review

part |2 pages

DOMAIN 4: APPLICATION SECURITY

chapter 15|10 pages

Mashup Security

chapter 16|8 pages

Format String Vulnerabilities

chapter 17|8 pages

Fast Scanning Worms

part |2 pages

DOMAIN 5: CRYPTOGRAPHY

chapter 18|10 pages

Message Digests

chapter 19|10 pages

Quantum Computing: e Rise of the Machine

part |2 pages

DOMAIN 6: SECURITY ARCHITECTURE AND DESIGN

chapter 20|42 pages

Information Flow and Covert Channels

chapter 21|20 pages

Securing Data at Rest: From Smart Phones to Tapes Defining Data at Rest

part |2 pages

DOMAIN 7: OPERATIONS SECURITY

chapter 22|8 pages

Validating Tape Backups

part |2 pages

DOMAIN 8: BUSINESS CONTINUITY PLANNING AND DISASTER RECOVERY PLANNING

chapter 23|10 pages

Determining Business Unit Priorities in Business Continuity Management

chapter 24|12 pages

Continuity Program Testing, Maintenance, Training, and Awareness

part |2 pages

DOMAIN 9: LEGAL, REGULATIONS, COMPLIANCE, AND INVESTIGATION

chapter 25|10 pages

Bluesnarfing

chapter 26|18 pages

Virtualization and Digital Investigations

part |2 pages

DOMAIN 10: PHYSICAL SECURITY

chapter 27|10 pages

Halon Fire Suppression Systems

chapter 28|16 pages

Crime Prevention through Environmental Design ............................ MOLLIE E. KREHNKE

chapter 29|8 pages

Data Center Site Selection and Facility Design Considerations