商品簡介
The 227 chapters contained in this handbook address a broad range of issues pertinent to information security and organizational management of information security. The volume opens with treatment of security management concepts and principles; change control management; data classification; risk management; policies, standards, procedures, and guideline; security awareness training; security management planning; and Internet and computer ethics. It then discusses access control in sections covering access control techniques, access control administration, identification and authentication techniques, access control methodologies and implementation, methods of attack, and monitoring and penetration testing. Cryptographic concepts, methodologies, and practices are examined alongside the related topics of private key algorithms, public key infrastructure, and system architectures for cryptographic functions. Physical (environmental) security is addressed, as is computer and network security architecture and design and planning for business continuity and disaster recovery. A large number of chapters variously address relevant topics concerned with telecommunications security, application security, or operation security. The final section discusses law, regulatory compliance, and investigations. Distributed in the US by Taylor & Francis. Annotation c2007 Book News, Inc., Portland, OR (booknews.com)
