Computer Security Basics

It still surprises me how many of my information technology colleagues still have no clue when it comes to computer security. This particular book is one I'd feel really good about when it comes to a recommendation to get them up to speed on the subject... Computer Security Basics (2nd Edition) by Rick Lehtinen, Deborah Russell, and G. T. Gangemi Sr. Contents: Part 1 - Security for Today: Introduction; Some Security History Part 2 - Computer Security: Computer System Security and Access Controls; Viruses and Other Wildlife; Establishing and Maintaining a Security Policy; Web Attacks and Internet Vulnerabilities Part 3 - Communications Security: Encryption; Communications and Network Security Part 4 - Other Types of Security: Physical Security and Biometrics; Wireless Network Security Part 5 - Appendixes: OSI Model; TEMPEST; The Orange Book, FIPS PUBS, and the Common Criteria Index While not a technical "how to" manual, this book does a great job in dealing with technical issues and concepts. Pretty much all the significant issues surrounding computer and technology security these days is covered in sufficient detail to allow for a functional understanding of the topics. For instance, the chapter on viruses would allow even the most clueless techie to grasp the problems. The authors distinguish between viruses, worms, trojan horses, bombs, and other various nasty surprises. The history is valuable to understand how we got into this condition, and by the end of the chapter you'll know what you need to do to start to combat the problem. From there, you can dive into the more technical details of any one of the areas that pertain to your particular situation. For a subject that could be painfully dry without much effort, Lehtinen et al. do an admirable job in keeping the reader engaged and involved. If you're trying to educate someone who hasn't kept up with the topic of computer security, this would be a very good starting point...

This book is a more introductory, and a more theoretical than something like "Practical UNIX & Internet Security, 2nd Edition" (By Simson Garfinkel & Gene Spafford, published by O'Reilly & Assoc.), but it is still a vital book on the topic.Definitely a must-have for the bookshelf of any Unix or Security administrator, and a good idea for anyone to read if they are working in the IT field.

Looking for that one book that offers basic security principals, maybe things you missed in other books ? This book offers the very BEST in the basics of Security.. Recommended as a starter book for CISSP, CISA, or any Information Security related self study.

There's a rather funny scene in HACKERS in which some nerds are quizzing the mysterious new kid about his "Red Book," "Orange Book," et al. It's supposed to be way over the viewer's head ... but after reading this book, you'll chuckle at the pedestrian writing. O'Reilly explains all. The publisher really ought to retitle this "ADP Security Manager in 21 days." No kidding. This book covers the basic issues, the references, the standards, specifics. It goes deeper, though, to explain WHY, with more than a healthy dose of historical background on the evolution of computer security. Also easily overlooked: a cogent explanation of most computer virus issues. And it's all done in witty, plain language writing that's a breeze to assimilate. For anyone who's preparing to manage a LAN/WAN, or has wondered why "the people upstairs" enforce particular policies, this is THE book to start with, no exception. For armchair 'net enthusiasts, this is still the first, best source for an understanding of online security issues. Seriously: walk into most shops and server rooms, and ask, "Where's your yellow, O'Reilly computer security book?" Chances are, it's nearby, with the spine well broken and worn.