Information Warfare and Security
Dorothy E. Denning
- 出版商: Addison Wesley
- 出版日期: 1998-12-20
- 售價: $686
- 語言: 英文
- 頁數: 544
- 裝訂: Paperback
- ISBN: 0201433036
- ISBN-13: 9780201433036
-
相關分類:
資訊安全
已絕版
買這商品的人也買了...
-
Visual C++ 6 教學手冊 (Beginning Visual C++ 6)$580$458 -
計算機組織與設計--軟硬體界面第二版 (Computer Organization & Design, 2/e)$680$537 -
$399Real World Linux Security: Intrusion Prevention, Detection and Recovery -
$199Information Warfare: How to Survive Cyber Attacks -
C++ Primer, 3/e 中文版$980$774 -
$700Incident Response: A Strategic Guide to Handling System and Network Security Bre -
C++ 物件導向程式設計入門與應用$520$406 -
Thinking in Java 中文版 (Thinking in Java, 2/e)$920$727 -
Linux Kernel Programming, 3/e$1,120$1,098 -
$1,520Linux System Security, 2/e -
Visual C#.NET 程式設計經典$650$553 -
C++ Builder 6 完全攻略$690$587 -
鳥哥的 Linux 私房菜-伺服器架設篇$750$675 -
鳥哥的 Linux 私房菜─基礎學習篇增訂版$560$504 -
$1,068Fundamentals of Database Systems, 4/e (IE) -
人月神話:軟體專案管理之道 (20 週年紀念版)(The Mythical Man-Month: Essays on Software Engineering, Anniversary Edition, 2/e)$480$379 -
JSP 動態網頁新技術, 2/e$490$382 -
$999Physically Based Rendering: From Theory to Implementation (Hardcover) -
$1,176Computer Organization and Design: The Hardware/Software Interface, 3/e(IE) (美國版ISBN:1558606041) -
C++ 物件導向程式設計進階與應用$580$452 -
企業級 Linux 系統管理寶典$750$638 -
計算機組織與設計 (Computer Organization and Design: The Hardware/Software Interface, 3/e)$680$646 -
ASP.NET 2.0 深度剖析範例集$650$507 -
Ajax 技術手冊 (Foundations of Ajax)$450$356 -
Photoshop CS3 for Forensics Professionals: A Complete Digital Imaging Course for Investigators (Paperback)$2,210$2,100
相關主題
商品描述
Description
This book provides a comprehensive and detailed look at information warfare: computer crime, cybercrime, and information terrorism. It describes attacks on information systems through theft, deception, or sabotage, and demonstrates the countermeasures being mounted to defeat these threats. Focusing on the criminals and information terrorists whose depredations include information-based threats to nations, corporations, and individuals, Denning places cybercrime within a broader context, integrating the various kinds of information crime, and the countermeasures against it, into a methodology-based framework.
Among the topics included are government use of information warfare for law enforcement investigations and for military and intelligence operations; also, the conflicts arising in the areas of free speech and encryption. The author discusses offensive information warfare, including acquisition of information, deceptive exploitation of information, and denial of access to information; and also addresses defensive information warfare, specifically, information security principles and practices. The book features coverage that is both broad and deep, illustrating cyberspace threats with real-world examples. 
Table Of Contents
I. INTRODUCTION.
1. Gulf War—Infowar.
2. A Theory of Information Warfare.
3. Playgrounds to Battlegrounds.
The Gulf War.
Information Warfare.
Information Warfare.
From Chicks to Chips.
2. A Theory of Information Warfare.
Information Resources.
Players.
Offensive Information Warfare.
Defensive Information Warfare.
The Value of Resources.
Players.
The Offense.
The Defense.
A Dual Role.
The Defense.
A Dual Role.
Offensive Information Warfare.
Increased Availability to Offensive Player.
Decreased Availability to Defensive Player.
Decreased Integrity.
Other Classification Schemes.
Decreased Availability to Defensive Player.
Decreased Integrity.
Other Classification Schemes.
Defensive Information Warfare.
Types of Defense.
Information Security and Information Assurance.
The CIA Model and Authorization.
Information Security and Information Assurance.
The CIA Model and Authorization.
3. Playgrounds to Battlegrounds.
Play.
Crime.
Individual Rights.
National Security.
Motivation.
Culture.
More than Child's Play.
Culture.
More than Child's Play.
Crime.
Intellectual Property Crimes.
Fraud.
Computer Fraud and Abuse.
Fighting Crime.
Fraud.
Computer Fraud and Abuse.
Fighting Crime.
Individual Rights.
National Security.
Foreign Intelligence.
War and Military Conflict.
Terrorism.
Netwars.
Protecting National Infrastructures.
War and Military Conflict.
Terrorism.
Netwars.
Protecting National Infrastructures.
II. OFFENSIVE INFORMATION WARFARE.
4. Open Sources.
5. Psyops and Perception Management.
6. Inside the Fence.
7. Seizing the Signals.
8. Computer Break-Ins and Hacking.
9. Masquerade.
10. Cyberplagues.
Open Source and Competitive Intelligence.
Privacy.
Piracy.
Dark Sides.
Privacy.
Snooping on People Through Open Sources.
Web Browsing.
Privacy Regulations.
Web Browsing.
Privacy Regulations.
Piracy.
Copyright Infringement.
Trademark Infringement.
Trademark Infringement.
Dark Sides.
5. Psyops and Perception Management.
Lies and Distortions.
Denouncement.
Harassment.
Advertising.
Spam Wars.
Censorship.
Distortion.
Fabrication.
Hoaxes.
Social Engineering.
Fabrication.
Hoaxes.
Social Engineering.
Denouncement.
Conspiracy Theories.
Defamation.
Defamation.
Harassment.
Advertising.
Scams.
Spam Wars.
Censorship.
United States Restrictions.
6. Inside the Fence.
Traitors and Moles.
Business Relationships.
Visits and Requests.
Fraud and Embezzlement.
Inside Sabotage.
Penetrating the Perimeter.
State and Military Espionage.
Economic Espionage.
Corporate Espionage.
Privacy Compromises.
Economic Espionage.
Corporate Espionage.
Privacy Compromises.
Business Relationships.
Visits and Requests.
Fraud and Embezzlement.
Bogus Transactions.
Data Diddling.
Data Diddling.
Inside Sabotage.
Physical Attacks.
Software Attacks.
Software Attacks.
Penetrating the Perimeter.
Physical Break-ins and Burglaries.
Search and Seizure.
Dumpster Diving.
Bombs.
Search and Seizure.
Dumpster Diving.
Bombs.
7. Seizing the Signals.
Eavesdropping on Conversations.
Traffic Analysis.
Telecommunications Fraud.
Computer Network Monitoring.
Environment Surveillance.
Sabotage.
Cellular Intercepts.
Pager Intercepts.
Law Enforcement Wiretaps.
Foreign Intelligence Intercepts.
Deciphering the Messages.
Pager Intercepts.
Law Enforcement Wiretaps.
Foreign Intelligence Intercepts.
Deciphering the Messages.
Traffic Analysis.
Pen Registers and Trap and Trace.
Location Tracking.
Location Tracking.
Telecommunications Fraud.
Blue Boxes.
PBX and Related Fraud.
Voice Mail Fraud.
Calling Card Fraud.
Cloned Phones and Cellular Fraud.
PBX and Related Fraud.
Voice Mail Fraud.
Calling Card Fraud.
Cloned Phones and Cellular Fraud.
Computer Network Monitoring.
Packet Sniffers.
Keystroke Monitoring.
Keystroke Monitoring.
Environment Surveillance.
Cameras and Video.
Satellites and Imagery.
Van Eck Receptors.
Miscellaneous Sensors.
Shoulder Surfing.
Privacy and Accountability.
Satellites and Imagery.
Van Eck Receptors.
Miscellaneous Sensors.
Shoulder Surfing.
Privacy and Accountability.
Sabotage.
Tampering with Phone Service.
Jamming.
Radio Frequency Weapons.
Physical Attacks.
Jamming.
Radio Frequency Weapons.
Physical Attacks.
8. Computer Break-Ins and Hacking.
Accounts.
Tools and Techniques.
Information Theft.
Tampering.
Takedown.
Extent.
Getting Access.
Tools and Techniques.
A Demonstration.
Network Scanners.
Packet Sniffers.
Password Crackers.
Buffer Overows and Other Exploits.
Social Engineering.
Covering up Tracks.
Network Scanners.
Packet Sniffers.
Password Crackers.
Buffer Overows and Other Exploits.
Social Engineering.
Covering up Tracks.
Information Theft.
Gathering Trophies.
More than Trophies.
More than Trophies.
Tampering.
Web Hacks.
Domain Name Service Hacks.
Domain Name Service Hacks.
Takedown.
Remote Shutdown.
Extent.
9. Masquerade.
Identity Theft.
Forged Documents and Messages.
Trojan Horses.
Undercover Operations and Stings.
Forged Documents and Messages.
E-Mail Forgeries.
Forgeries in Spam.
E-Mail Floods.
IP Spoofing.
Counterfeiting.
Forgeries in Spam.
E-Mail Floods.
IP Spoofing.
Counterfeiting.
Trojan Horses.
Software Trojans.
Riding the Web.
E-Mail Relays.
Chipping.
Riding the Web.
E-Mail Relays.
Chipping.
Undercover Operations and Stings.
10. Cyberplagues.
Viruses.
Worms.
Program Viruses.
Boot Viruses.
Macro Viruses.
Concealment Techniques.
Who Writes Viruses.
Prevalence.
Virus Hoaxes.
Boot Viruses.
Macro Viruses.
Concealment Techniques.
Who Writes Viruses.
Prevalence.
Virus Hoaxes.
Worms.
III. DEFENSIVE INFORMATION WARFARE.
11. Secret Codes and Hideaways.
12. How to Tell a Fake.
13. Monitors and Gatekeepers.
14. In a Risky World.
15. Defending the Nation.
Bibliography of Books.
Endnotes.
Index. 0201433036T04062001
Locks and Keys.
Cryptography.
Steganography.
Anonymity.
Sanitization.
Trash Disposal.
Shielding.
Cryptography.
Digital Ciphers.
Code Breaking.
Generation and Distribution of Keys.
Public-Key Distribution and Diffie-Hellman.
Public-Key Cryptography and RSA.
Key Storage and Recovery.
Applications of Encryption.
The Limits of Encryption.
Code Breaking.
Generation and Distribution of Keys.
Public-Key Distribution and Diffie-Hellman.
Public-Key Cryptography and RSA.
Key Storage and Recovery.
Applications of Encryption.
The Limits of Encryption.
Steganography.
Anonymity.
Sanitization.
Trash Disposal.
Shielding.
12. How to Tell a Fake.
Biometrics.
Passwords and Other Secrets.
Integrity Checksums.
Digital Signatures.
Public-Key Management and Certificates.
Watermarks.
Call Back and Call Home.
Location-based Authentication.
Badges and Cards.
Passwords and Other Secrets.
Integrity Checksums.
Digital Signatures.
Public-Key Management and Certificates.
Watermarks.
Call Back and Call Home.
Location-based Authentication.
Badges and Cards.
13. Monitors and Gatekeepers.
Access Controls.
Filters.
Intrusion and Misuse Detection.
Authorization Policies.
Access Control Monitors.
Limitations.
Access Control Monitors.
Limitations.
Filters.
Firewalls.
Junk E-Mail Filters.
Web Filters.
Junk E-Mail Filters.
Web Filters.
Intrusion and Misuse Detection.
Workplace Monitoring.
Automated Detection.
Computer Intrusion and Misuse Detection.
Analogy with the Human Immune System.
Detecting and Eradicating Viruses and Malicious Mobile Code.
Automated Detection.
Computer Intrusion and Misuse Detection.
Analogy with the Human Immune System.
Detecting and Eradicating Viruses and Malicious Mobile Code.
14. In a Risky World.
Vulnerability Monitoring.
Building It Secure.
Security Awareness and Training.
Avoiding Single Points of Failure.
Risk Management.
Incident Handling.
Obstacles.
Finding Computer and Network Security Flaws.
Monitoring Security Publications.
Monitoring Security Publications.
Building It Secure.
The Orange Book.
The ITSEC and Common Criteria.
Evaluation.
Commercial Criteria.
ICSA Certification.
Accreditation.
The Capability Maturity Model.
The ITSEC and Common Criteria.
Evaluation.
Commercial Criteria.
ICSA Certification.
Accreditation.
The Capability Maturity Model.
Security Awareness and Training.
Avoiding Single Points of Failure.
Backups.
Risk Management.
Risk Assessment and Asset Valuation.
Insurance.
Benchmarking.
Due Care and Liability.
Insurance.
Benchmarking.
Due Care and Liability.
Incident Handling.
Investigation and Assessment.
Containment and Recovery.
Improving Security.
Notification.
In-Kind Response.
Legal and Civil Remedies.
Economic and Military Response.
Emergency Preparedness.
Containment and Recovery.
Improving Security.
Notification.
In-Kind Response.
Legal and Civil Remedies.
Economic and Military Response.
Emergency Preparedness.
Obstacles.
15. Defending the Nation.
Generally Accepted System Security Principles.
Protecting Critical Infrastructures.
Encryption Policy.
Protecting Critical Infrastructures.
President's Commission on Critical Infrastructure Protection.
Presidential Decision Directive.
Presidential Decision Directive.
Encryption Policy.
Code Making.
Code Breaking.
International Policies.
U.S. Policy.
Legal Challenges.
Legislation.
Encryption Policy in Perspective.
Code Breaking.
International Policies.
U.S. Policy.
Legal Challenges.
Legislation.
Encryption Policy in Perspective.
Bibliography of Books.
Endnotes.
Index. 0201433036T04062001
