Computer networking and communications Books
Wiley Advanced Content Delivery Streaming and Cloud Services
Book SynopsisWhile other books on the market provide limited coverage of advanced CDNs and streaming technologies, concentrating solely on the fundamentals, this book provides an up-to-date comprehensive coverage of the state-of-the-art advancements in CDNs, with a special focus on Cloud-based CDNs.Table of ContentsPreface xv Acknowledgments xxi Contributors xxiii PART I CDN AND MEDIA STREAMING BASICS 1 1 CLOUD-BASED CONTENT DELIVERY AND STREAMING 3Mukaddim Pathan 1.1 Introduction 3 1.2 CDN Overview 5 1.3 Workings of a CDN 10 1.4 CDN Trends 21 1.5 Research Issues 28 1.6 Conclusion 29 References 29 2 LIVE STREAMING ECOSYSTEMS 33Dom Robinson 2.1 Introduction 33 2.2 Live Streaming Pre-Evolution 34 2.3 Live, Linear, Nonlinear 35 2.4 Media Streaming 37 2.5 Related Network Models 38 2.6 Streaming Protocol Success 43 2.7 Platform Divergence and Codec Convergence 44 2.8 Adaptive Bitrate (ABR) Streaming 45 2.9 Internet Radio and HTTP 48 2.10 Conclusion 48 References 49 3 PRACTICAL SYSTEMS FOR LIVE STREAMING 51Dom Robinson 3.1 Introduction 51 3.2 Common Concepts in Live Streaming 52 3.3 The Practicals 56 3.4 Conclusion 69 References 70 4 EFFICIENCY OF CACHING AND CONTENT DELIVERY IN BROADBAND ACCESS NETWORKS 71Gerhard Haslinger 4.1 Introduction 71 4.2 Options and Properties for Web Caching 73 4.3 Zipf Laws for Requests to Popular Content 75 4.4 Efficiency and Performance Modeling for Caches 76 4.5 Effect of Replacement Strategies on Cache Hit Rates 78 4.6 Replacement Methods Based on Request Statistics 81 4.7 Global CDN and P2P Overlays for Content Delivery 84 4.8 Summary and Conclusion 86 Acknowledgments 87 References 87 5 ANYCAST REQUEST ROUTING FOR CONTENT DELIVERY NETWORKS 91Hussein A. Alzoubi, Michael Rabinovich, Seungjoon Lee, Kobus Van Der Merwe, and Oliver Spatscheck 5.1 Introduction 91 5.2 CDN Request Routing: An Overview 93 5.3 A Practical Load-Aware IP Anycast CDN 96 5.4 Mapping Algorithms 98 5.5 Evaluation 102 5.6 IPv6 Anycast CDNs 107 5.7 Discussion and Open Questions 114 5.8 Conclusion 116 References 116 6 CLOUD-BASED CONTENT DELIVERY TO HOME ECOSYSTEMS 119Tiago Cruz, Paulo Sim̃oes, and Edmundo Monteiro 6.1 Introduction 119 6.2 Bringing Cloud Services to Home: State of the Art 120 6.3 Virtualizing the Access Network Infrastructure 123 6.4 Virtualization for Cloud Service Delivery to Home 130 6.5 Future Trends 137 6.6 Summary and Conclusion 137 Acknowledgments 137 References 138 7 MOBILE VIDEO STREAMING 141Ram Lakshmi Narayanan, Yinghua Ye, Anuj Kaul, and Mili Shah 7.1 Introduction 141 7.2 Mobile Broadband Architecture 142 7.3 Video Streaming Protocols 143 7.4 Video Optimization Services 146 7.5 Operator-Hosted CDN 149 7.6 Cloud-Based Video Streaming 151 7.7 Future Research Directions 154 Acknowledgments 156 References 156 PART II CDN PERFORMANCE MANAGEMENT AND OPTIMIZATION 159 8 CDN ANALYTICS: A PRIMER 161Timothy Siglin 8.1 Introduction 161 8.2 Why Measure? 162 8.3 What do we Measure? 162 8.4 What about Business Intelligence? 169 8.5 Measuring Stateless Delivery 171 8.6 Billing Analytics 173 8.7 CDN Analytics Tools 174 8.8 Recent Trends in CDN Analytics 175 8.9 Conclusion 176 References 176 9 CDN MODELING 179Tolga Bektas and Ozgur Ercetin 9.1 Introduction 179 9.2 Basics on Mathematical Modeling and Optimization 180 9.3 Video-on-Demand Applications 182 9.4 Optimization Problems in Content Delivery and VoD Services 185 9.5 Visionary Thoughts for Practitioners 198 9.6 Future Research Directions 198 9.7 Conclusions 199 Acknowledgments 200 References 200 10 ANALYZING CONTENT DELIVERY NETWORKS 203Benjamin Molina, Jaime Calvo, Carlos E. Palau, and Manuel Esteve 10.1 Introduction 203 10.2 Previous Work 204 10.3 Basic CDN Model 205 10.4 Enhancing the Model 206 10.5 Performance Evaluation 212 10.6 Conclusions 216 References 216 11 MULTISOURCE STREAM AGGREGATION IN THE CLOUD 219Marat Zhanikeev 11.1 Introduction 219 11.2 Terminologies 221 11.3 Background and Related Work 222 11.4 The Substream Method in the Cloud 224 11.5 Stream Aggregation in the Cloud 226 11.6 Models 228 11.7 Analysis 231 11.8 Visionary Thoughts for Practitioners 236 11.9 Future Research Directions 238 11.10 Conclusion 239 References 239 12 BEYOND CDN: CONTENT PROCESSING AT THE EDGE OF THE CLOUD 243Salekul Islam and Jean-Charles Gŕegoire 12.1 Introduction 243 12.2 Existing Content Delivery Platforms 244 12.3 Comparison of Existing Content Delivery Platforms 247 12.4 An Edge Cloud-Based Model 251 12.5 Results and Insights 255 12.6 Future Research Directions 256 12.7 Conclusion 257 References 257 13 DYNAMIC RECONFIGURATION FOR ADAPTIVE STREAMING 259Norihiko Yoshida 13.1 Introduction 259 13.2 Background and Related Work 260 13.3 Dynamic Server Deployment 262 13.4 From Content Delivery to Streaming 263 13.5 Future Research Directions 267 13.6 Conclusion 269 Acknowledgments 269 References 269 14 MINING DISTRIBUTED DATA STREAMS ON CONTENT DELIVERY NETWORKS 273Eugenio Cesario, Carlo Mastroianni, and Domenico Talia 14.1 Introduction 273 14.2 Background and Related Work 275 14.3 A Hybrid Multidomain Architecture 277 14.4 A Prototype for Stream Mining in a CDN 281 14.5 Visionary Thoughts for Practitioners 285 14.6 Future Research Directions 285 14.7 Conclusion 286 References 286 15 CDN CAPACITY PLANNING 289Phil Davies and Mukaddim Pathan 15.1 Introduction 289 15.2 Capacity Planning Process 290 15.3 Undertaking the Capacity Planning Process 295 15.4 CDN Capacity Planning Case Study 300 15.5 Recent Developments and Challenges 302 15.6 Summary and Conclusion 303 References 303 PART III CASE STUDIES AND NEXT GENERATION CDNs 305 16 OVERLAY NETWORKS: AN AKAMAI PERSPECTIVE 307Ramesh K. Sitaraman, Mangesh Kasbekar, Woody Lichtenstein, and Manish Jain 16.1 Introduction 307 16.2 Background 309 16.3 Caching Overlays 314 16.4 Routing Overlays 318 16.5 Security Overlays 323 16.6 Conclusion 325 References 326 17 NEXT-GENERATION CDNs: A CoBlitz PERSPECTIVE 329Vivek S. Pai 17.1 Introduction 329 17.2 Carrier CDNs 331 17.3 Managed CDNs 332 17.4 Federated CDNs 333 17.5 Licensed CDNs 335 17.6 Case Study: CoBlitz 337 17.7 CoBlitz Commercialization 343 17.8 Implications of HTTP Adaptive Streaming 345 17.9 CoBlitz Commercialization Lessons 347 17.10 CDN Industry Directions 348 Acknowledgments 349 References 349 18 CONTENT DELIVERY IN CHINA: A ChinaCache PERSPECTIVE 353Michael Talyansky, Alexei Tumarkin, Hunter Xu, and Ken Zhang 18.1 Introduction 353 18.2 Content-Aware Network Services in China 356 18.3 Directions for Future CDN Research and Trends in China 365 18.4 Conclusion 366 References 366 19 PlatonTV: A SCIENTIFIC HIGH DEFINITION CONTENT DELIVERY PLATFORM 369Mirosław Czyrnek, Jedrzej Jajor, Jerzy Jamrozy, Ewa Kusmierek, Cezary Mazurek, Maciej Stroinski, and Jan Weglarz 19.1 Introduction 369 19.2 Background and Related Work 371 19.3 PlatonTV Architecture 372 19.4 Content Ingest 374 19.5 Content Distribution and Management 376 19.6 Content Delivery 379 19.7 Availability and Reliability 381 19.8 Visionary Thoughts for Practitioners 382 19.9 Future Research Directions 383 19.10 Conclusion 383 Acknowledgments 383 References 384 20 CacheCast: A SINGLE-SOURCE MULTIPLE-DESTINATION CACHING MECHANISM 385Piotr Srebrny, Dag H.L. Sorbo, Thomas Plagemann, Vera Goebel, and Andreas Mauthe 20.1 Introduction 385 20.2 Related Work 387 20.3 CacheCast Overview 388 20.4 Background on Multidestination Traffic 389 20.5 CacheCast Design 391 20.6 CacheCast Efficiency 396 20.7 CacheCast Applications 399 20.8 Visionary Thoughts for Practitioners 407 20.9 Future Research Directions 409 20.10 Conclusion 409 Acknowledgments 410 References 410 21 CONTENT REPLICATION AND DELIVERY IN INFORMATION-CENTRIC NETWORKS 413Vasilis Sourlas, Paris Flegkas, Dimitrios Katsaros, and Leandros Tassiulas 21.1 Introduction 413 21.2 Related Work 414 21.3 Framework for Information Replication in ICN 416 21.4 Performance Evaluation 423 21.5 Future Research Directions 426 21.6 Conclusion 426 Acknowledgments 427 References 427 22 ROBUST CONTENT BROADCASTING IN VEHICULAR NETWORKS 431Giancarlo Fortino, Carlos T. Calafate, Juan C. Cano, and Pietro Manzoni 22.1 Introduction 431 22.2 Vehicular Networks 432 22.3 Forward Error Correction Techniques 433 22.4 A Robust Broadcast-Based Content Delivery System 434 22.5 CDS Simulation in NS-3 436 22.6 Performance Evaluation 437 22.7 Future Research Trends 444 22.8 Summary and Conclusion 446 Acknowledgments 447 References 447 23 ON THE IMPACT OF ONLINE SOCIAL NETWORKS IN CONTENT DELIVERY 449Irene Kilanioti, Chryssis Georgiou, and George Pallis 23.1 Introduction 449 23.2 Online Social Networks Background 450 23.3 Characterization of Social Cascades 453 23.4 Online Social Network Measurements 456 23.5 Systems 458 23.6 Future Research Directions 459 23.7 Conclusion 461 Acknowledgments 461 References 461 Index 465
£86.36
John Wiley & Sons Inc Digital Signal Processing with Kernel Methods
Book SynopsisA realistic and comprehensive review of joint approaches to machine learning and signal processing algorithms, with application to communications, multimedia, and biomedical engineering systems Digital Signal Processing with Kernel Methods reviews the milestones in the mixing of classical digital signal processing models and advanced kernel machines statistical learning tools. It explains the fundamental concepts from both fields of machine learning and signal processing so that readers can quickly get up to speed in order to begin developing the concepts and application software in their own research. Digital Signal Processing with Kernel Methods provides a comprehensive overview of kernel methods in signal processing, without restriction to any application field. It also offers example applications and detailed benchmarking experiments with real and synthetic datasets throughout. Readers can find further worked examples with Matlab source code on a website developed by the authors: hTable of ContentsAbout the Authors xiii Preface xvii Acknowledgements xxi List of Abbreviations xxiii Part I Fundamentals and Basic Elements 1 1 From Signal Processing to Machine Learning 3 1.1 A New Science is Born: Signal Processing 3 1.1.1 Signal Processing Before Being Coined 3 1.1.2 1948: Birth of the Information Age 4 1.1.3 1950s: Audio Engineering Catalyzes Signal Processing 4 1.2 From Analog to Digital Signal Processing 5 1.2.1 1960s: Digital Signal Processing Begins 5 1.2.2 1970s: Digital Signal Processing Becomes Popular 6 1.2.3 1980s: Silicon Meets Digital Signal Processing 6 1.3 Digital Signal Processing Meets Machine Learning 7 1.3.1 1990s: New Application Areas 7 1.3.2 1990s: Neural Networks, Fuzzy Logic, and Genetic Optimization 7 1.4 Recent Machine Learning in Digital Signal Processing 8 1.4.1 Traditional Signal Assumptions Are No Longer Valid 8 1.4.2 Encoding Prior Knowledge 8 1.4.3 Learning and Knowledge from Data 9 1.4.4 From Machine Learning to Digital Signal Processing 9 1.4.5 From Digital Signal Processing to Machine Learning 10 2 Introduction to Digital Signal Processing 13 2.1 Outline of the Signal Processing Field 13 2.1.1 Fundamentals on Signals and Systems 14 2.1.2 Digital Filtering 21 2.1.3 Spectral Analysis 24 2.1.4 Deconvolution 28 2.1.5 Interpolation 30 2.1.6 System Identification 31 2.1.7 Blind Source Separation 36 2.2.3 Sparsity, Compressed Sensing, and Dictionary Learning 44 2.3 Multidimensional Signals and Systems 48 2.3.1 Multidimensional Signals 49 2.3.2 Multidimensional Systems 51 2.4 Spectral Analysis on Manifolds 52 2.4.1 Theoretical Fundamentals 52 2.4.2 Laplacian Matrices 54 2.5 Tutorials and Application Examples 57 2.5.1 Real and Complex Signal Processing and Representations 57 2.5.2 Convolution, Fourier Transform, and Spectrum 63 2.5.3 Continuous-Time Signals and Systems 67 2.5.4 Filtering Cardiac Signals 70 2.5.5 Nonparametric Spectrum Estimation 74 2.5.6 Parametric Spectrum Estimation 77 2.5.7 Source Separation 81 2.5.8 Time–Frequency Representations and Wavelets 84 2.5.9 Examples for Spectral Analysis on Manifolds 87 2.6 Questions and Problems 94 3 Signal Processing Models 97 3.1 Introduction 97 3.2 Vector Spaces, Basis, and Signal Models 98 3.2.1 Basic Operations for Vectors 98 3.2.2 Vector Spaces 100 3.2.3 Hilbert Spaces 101 3.2.4 Signal Models 102 3.2.5 Complex Signal Models 104 3.2.6 Standard Noise Models in Digital Signal Processing 105 3.2.7 The Role of the Cost Function 107 3.2.8 The Role of the Regularizer 109 3.3 Digital Signal Processing Models 111 3.3.1 Sinusoidal Signal Models 112 3.3.2 System Identification Signal Models 113 3.3.3 Sinc Interpolation Models 116 3.3.4 Sparse Deconvolution 120 3.3.5 Array Processing 121 3.4 Tutorials and Application Examples 122 3.4.1 Examples of Noise Models 123 3.4.2 Autoregressive Exogenous System Identification Models 132 3.4.3 Nonlinear System Identification Using Volterra Models 138 3.4.4 Sinusoidal Signal Models 140 3.4.5 Sinc-based Interpolation 144 3.4.6 Sparse Deconvolution 152 3.4.7 Array Processing 157 3.5 Questions and Problems 160 3.A MATLABsimpleInterp Toolbox Structure 161 4 Kernel Functions and Reproducing Kernel Hilbert Spaces 165 4.1 Introduction 165 4.2 Kernel Functions and Mappings 169 4.2.1 Measuring Similarity with Kernels 169 4.2.2 Positive-Definite Kernels 169 4.2.3 Reproducing Kernel in Hilbert Space and Reproducing Property 170 4.2.4 Mercer’s Theorem 173 4.3 Kernel Properties 174 4.3.1 Tikhonov’s Regularization 175 4.3.2 Representer Theorem and Regularization Properties 176 4.3.3 Basic Operations with Kernels 178 4.4 Constructing Kernel Functions 179 4.4.1 Standard Kernels 179 4.4.2 Properties of Kernels 180 4.4.3 Engineering Signal Processing Kernels 181 4.5 Complex Reproducing Kernel in Hilbert Spaces 184 4.6 Support Vector Machine Elements for Regression and Estimation 186 4.6.1 Support Vector Regression Signal Model and Cost Function 186 4.6.2 Minimizing Functional 187 4.7 Tutorials and Application Examples 191 4.7.1 Kernel Calculations and Kernel Matrices 191 4.7.2 Basic Operations with Kernels 194 4.7.3 Constructing Kernels 197 4.7.4 Complex Kernels 199 4.7.5 Application Example for Support Vector Regression Elements 202 4.8 Concluding Remarks 205 4.9 Questions and Problems 205 Part II Function Approximation and Adaptive Filtering 209 5 A Support Vector Machine Signal Estimation Framework 211 5.1 Introduction 211 5.2 A Framework for Support Vector Machine Signal Estimation 213 5.3 Primal Signal Models for Support Vector Machine Signal Processing 216 5.3.1 Nonparametric Spectrum and System Identification 218 5.3.2 Orthogonal Frequency Division Multiplexing Digital Communications 220 5.3.3 Convolutional Signal Models 222 5.3.4 Array Processing 225 5.4 Tutorials and Application Examples 227 5.4.1 Nonparametric Spectral Analysis with Primal Signal Models 227 5.4.2 System Identification with Primal Signal Model ;;-filter 228 5.4.3 Parametric Spectral Density Estimation with Primal Signal Models 230 5.4.4 Temporal Reference Array Processing with Primal Signal Models 231 5.4.5 Sinc Interpolation with Primal Signal Models 233 6 Reproducing Kernel Hilbert Space Models for Signal Processing 241 6.1 Introduction 241 6.2 Reproducing Kernel Hilbert Space Signal Models 242 6.2.1 Kernel Autoregressive Exogenous Identification 244 6.2.2 Kernel Finite Impulse Response and the ;;-Filter 247 6.2.3 Kernel Array Processing with Spatial Reference 248 6.2.4 Kernel Semiparametric Regression 249 6.3 Tutorials and Application Examples 258 6.3.1 Nonlinear System Identification with Support Vector Machine–Autoregressive and Moving Average 258 6.3.2 Nonlinear System Identification with the ;;-filter 260 6.3.3 Electric Network Modeling with Semiparametric Regression 264 6.3.4 Promotional Data 272 6.3.5 Spatial and Temporal Antenna Array Kernel Processing 275 6.4 Questions and Problems 279 7 Dual Signal Models for Signal Processing 281 7.1 Introduction 281 7.2 Dual Signal Model Elements 281 7.3 Dual Signal Model Instantiations 283 7.3.1 Dual Signal Model for Nonuniform Signal Interpolation 283 7.3.2 Dual Signal Model for Sparse Signal Deconvolution 284 7.3.3 Spectrally Adapted Mercer Kernels 285 7.4 Tutorials and Application Examples 289 7.4.1 Nonuniform Interpolation with the Dual Signal Model 290 7.4.2 Sparse Deconvolution with the Dual Signal Model 292 7.4.3 Doppler Ultrasound Processing for Fault Detection 294 7.4.4 Spectrally Adapted Mercer Kernels 296 7.4.5 Interpolation of Heart Rate Variability Signals 304 7.4.6 Denoising in Cardiac Motion-Mode Doppler Ultrasound Images 309?m 7.4.7 Indoor Location from Mobile Devices Measurements 316 7.4.8 Electroanatomical Maps in Cardiac Navigation Systems 322 7.5 Questions and Problems 331 8 Advances in Kernel Regression and Function Approximation 333 8.1 Introduction 333 8.2 Kernel-Based Regression Methods 333 8.2.1 Advances in Support Vector Regression 334 8.2.2 Multi-output Support Vector Regression 338 8.2.3 Kernel Ridge Regression 339 8.2.4 Kernel Signal-To-Noise Regression 341 8.2.5 Semisupervised Support Vector Regression 343 8.2.6 Model Selection in Kernel Regression Methods 345 8.4.1 Comparing Support Vector Regression, Relevance Vector Machines, and Gaussian Process Regression 360 8.4.2 Profile-Dependent Support Vector Regression 362 8.4.3 Multi-output Support Vector Regression 364 8.4.4 Kernel Signal-to-Noise Ratio Regression 366 8.4.5 Semisupervised Support Vector Regression 368 8.4.6 Bayesian Nonparametric Model 369 8.4.7 Gaussian Process Regression 370 8.4.8 Relevance Vector Machines 379 8.5 Concluding Remarks 382 8.6 Questions and Problems 383 9 Adaptive Kernel Learning for Signal Processing 387 9.1 Introduction 387 9.2 Linear Adaptive Filtering 387 9.2.1 Least Mean Squares Algorithm 388 9.2.2 Recursive Least-Squares Algorithm 389 9.3 Kernel Adaptive Filtering 392 9.4 Kernel Least Mean Squares 392 9.4.1 Derivation of Kernel Least Mean Squares 393 9.4.2 Implementation Challenges and Dual Formulation 394 9.5.3 Prediction of the Mackey–Glass Time Series with Kernel Recursive Least Squares 401 9.5.4 Beyond the Stationary Model 402 9.5.5 Example on Nonlinear Channel Identification and Reconvergence 405 9.6 Explicit Recursivity for Adaptive Kernel Models 406 9.6.1 Recursivity in Hilbert Spaces 406 9.6.2 Recursive Filters in Reproducing Kernel Hilbert Spaces 408 9.7 Online Sparsification with Kernels 411 9.7.1 Sparsity by Construction 411 9.7.2 Sparsity by Pruning 413 9.8 Probabilistic Approaches to Kernel Adaptive Filtering 414 9.8.1 Gaussian Processes and Kernel Ridge Regression 415 9.8.2 Online Recursive Solution for Gaussian Processes Regression 416 9.8.3 Kernel Recursive Least Squares Tracker 417 9.8.4 Probabilistic Kernel Least Mean Squares 418 9.9 Further Reading 418 9.9.1 Selection of Kernel Parameters 418 9.9.2 Multi-Kernel Adaptive Filtering 419 9.9.3 Recursive Filtering in Kernel Hilbert Spaces 419 9.10 Tutorials and Application Examples 419 9.10.1 Kernel Adaptive Filtering Toolbox 420 9.10.2 Prediction of a Respiratory Motion Time Series 421 9.10.3 Online Regression on the KIN?h?eK Dataset 423 9.10.4 The Mackey–Glass Time Series 425 9.10.5 Explicit Recursivity on Reproducing Kernel in Hilbert Space and Electroencephalogram Prediction 427 9.10.6 Adaptive Antenna Array Processing 428 9.11 Questions and Problems 430 Part III Classification, Detection, and Feature Extraction 433 10 Support Vector Machine and Kernel Classification Algorithms 435 10.1 Introduction 435 10.2 Support Vector Machine and Kernel Classifiers 435 10.2.1 Support Vector Machines 435 10.2.2 Multiclass and Multilabel Support Vector Machines 441 10.2.3 Least-Squares Support Vector Machine 447 10.2.4 Kernel Fisher’s Discriminant Analysis 448 10.3 Advances in Kernel-Based Classification 452 10.3.1 Large Margin Filtering 452 10.3.2 Semisupervised Learning 454 10.3.3 Multiple Kernel Learning 460 10.3.4 Structured-Output Learning 462 10.3.5 Active Learning 468 10.4 Large-Scale Support Vector Machines 477 10.4.1 Large-Scale Support Vector Machine Implementations 477 10.4.2 Random Fourier Features 478 10.4.3 Parallel Support Vector Machine 480 10.4.4 Outlook 483 10.5 Tutorials and Application Examples 485 10.5.1 Examples of Support Vector Machine Classification 485 10.5.2 Example of Least-Squares Support Vector Machine 492 10.5.3 Kernel-Filtering Support Vector Machine for Brain–Computer Interface Signal Classification 493 10.5.4 Example of Laplacian Support Vector Machine 494 10.5.5 Example of Graph-Based Label Propagation 498 10.5.6 Examples of Multiple Kernel Learning 498 10.6 Concluding Remarks 501 10.7 Questions and Problems 502 11 Clustering and Anomaly Detection with Kernels 503 11.1 Introduction 503 11.2 Kernel Clustering 506 11.2.1 Kernelization of the Metric 506 11.2.2 Clustering in Feature Spaces 508 11.3 Domain Description Via Support Vectors 514 11.3.1 Support Vector Domain Description 514 11.3.2 One-Class Support Vector Machine 515 11.3.3 Relationship Between Support Vector Domain Description and Density Estimation 516 11.3.4 Semisupervised One-Class Classification 517 11.4 Kernel Matched Subspace Detectors 518 11.4.1 Kernel Orthogonal Subspace Projection 518 11.4.2 Kernel Spectral Angle Mapper 520 11.5 Kernel Anomaly Change Detection 522 11.5.1 Linear Anomaly Change Detection Algorithms 522 11.5.2 Kernel Anomaly Change Detection Algorithms 523 11.6 Hypothesis Testing with Kernels 525 11.6.1 Distribution Embeddings 526 11.6.3 Maximum Mean Discrepancy 527 11.6.3 One-Class Support Measure Machine 528 11.7 Tutorials and Application Examples 529 11.7.1 Example on Kernelization of the Metric 529 11.7.2 Example on Kernel k-Means 530 11.7.3 Domain Description Examples 531 11.7.4 Kernel Spectral Angle Mapper and Kernel Orthogonal Subspace Projection Examples 534 11.7.5 Example of Kernel Anomaly Change Detection Algorithms 536 11.7.6 Example on Distribution Embeddings and Maximum Mean Discrepancy 540 11.8 Concluding Remarks 541 11.9 Questions and Problems 542 12 Kernel Feature Extraction in Signal Processing 543 12.1 Introduction 543 12.2 Multivariate Analysis in Reproducing Kernel Hilbert Spaces 545 12.2.1 Problem Statement and Notation 545 12.2.2 Linear Multivariate Analysis 546 12.2.3 Kernel Multivariate Analysis 549 12.2.4 Multivariate Analysis Experiments 551 12.3 Feature Extraction with Kernel Dependence Estimates 555 12.3.1 Feature Extraction Using Hilbert–Schmidt Independence Criterion 556 12.3.2 Blind Source Separation Using Kernels 563 12.4 Extensions for Large-Scale and Semisupervised Problems 570 12.4.2 Efficiency with the Incomplete Cholesky Decomposition 570 12.4.3 Efficiency with Random Fourier Features 570 12.4.3 Sparse Kernel Feature Extraction 571 12.4.4 Semisupervised Kernel Feature Extraction 573 12.5 Domain Adaptation with Kernels 575 12.5.1 Kernel Mean Matching 578 12.5.2 Transfer Component Analysis 579 12.5.3 Kernel Manifold Alignment 581 12.5.4 Relations between Domain Adaptation Methods 585 12.5.5 Experimental Comparison between Domain Adaptation Methods 12.6 Concluding Remarks 587 12.7 Questions and Problems 588 References 589Index 631
£100.76
John Wiley & Sons Inc The Browser Hackers Handbook
Book SynopsisHackers exploit browser vulnerabilities to attack deep within networks The Browser Hacker''s Handbook gives a practical understanding of hacking the everyday web browser and using it as a beachhead to launch further attacks deep into corporate networks. Written by a team of highly experienced computer security experts, the handbook provides hands-on tutorials exploring a range of current attack methods. The web browser has become the most popular and widely used computer program in the world. As the gateway to the Internet, it is part of the storefront to any business that operates online, but it is also one of the most vulnerable entry points of any system. With attacks on the rise, companies are increasingly employing browser-hardening techniques to protect the unique vulnerabilities inherent in all currently used browsers. The Browser Hacker''s Handbook thoroughly covers complex security issues and explores relevant topics such as: BypassTable of ContentsIntroduction xv Chapter 1 Web Browser Security 1 A Principal Principle 2 Exploring the Browser 3 Symbiosis with the Web Application 4 Same Origin Policy 4 HTTP Headers 5 Markup Languages 5 Cascading Style Sheets 6 Scripting 6 Document Object Model 7 Rendering Engines 7 Geolocation 9 Web Storage 9 Cross-origin Resource Sharing 9 Html 5 10 Vulnerabilities 11 Evolutionary Pressures 12 HTTP Headers 13 Reflected XSS Filtering 15 Sandboxing 15 Anti-phishing and Anti-malware 16 Mixed Content 17 Core Security Problems 17 Attack Surface 17 Surrendering Control 20 TCP Protocol Control 20 Encrypted Communication 20 Same Origin Policy 21 Fallacies 21 Browser Hacking Methodology 22 Summary 28 Questions 28 Notes 29 Chapter 2 Initiating Control 31 Understanding Control Initiation 32 Control Initiation Techniques 32 Using Cross-site Scripting Attacks 32 Using Compromised Web Applications 46 Using Advertising Networks 46 Using Social Engineering Attacks 47 Using Man-in-the-Middle Attacks 59 Summary 72 Questions 73 Notes 73 Chapter 3 Retaining Control 77 Understanding Control Retention 78 Exploring Communication Techniques 79 Using XMLHttpRequest Polling 80 Using Cross-origin Resource Sharing 83 Using WebSocket Communication 84 Using Messaging Communication 86 Using DNS Tunnel Communication 89 Exploring Persistence Techniques 96 Using IFrames 96 Using Browser Events 98 Using Pop-Under Windows 101 Using Man-in-the-Browser Attacks 104 Evading Detection 110 Evasion using Encoding 111 Evasion using Obfuscation 116 Summary 125 Questions 126 Notes 127 Chapter 4 Bypassing the Same Origin Policy 129 Understanding the Same Origin Policy 130 Understanding the SOP with the DOM 130 Understanding the SOP with CORS 131 Understanding the SOP with Plugins 132 Understanding the SOP with UI Redressing 133 Understanding the SOP with Browser History 133 Exploring SOP Bypasses 134 Bypassing SOP in Java 134 Bypassing SOP in Adobe Reader 140 Bypassing SOP in Adobe Flash 141 Bypassing SOP in Silverlight 142 Bypassing SOP in Internet Explorer 142 Bypassing SOP in Safari 143 Bypassing SOP in Firefox 144 Bypassing SOP in Opera 145 Bypassing SOP in Cloud Storage 149 Bypassing SOP in CORS 150 Exploiting SOP Bypasses 151 Proxying Requests 151 Exploiting UI Redressing Attacks 153 Exploiting Browser History 170 Summary 178 Questions 179 Notes 179 Chapter 5 Attacking Users 183 Defacing Content 183 Capturing User Input 187 Using Focus Events 188 Using Keyboard Events 190 Using Mouse and Pointer Events 192 Using Form Events 195 Using IFrame Key Logging 196 Social Engineering 197 Using TabNabbing 198 Using the Fullscreen 199 Abusing UI Expectations 204 Using Signed Java Applets 223 Privacy Attacks 228 Non-cookie Session Tracking 230 Bypassing Anonymization 231 Attacking Password Managers 234 Controlling the Webcam and Microphone 236 Summary 242 Questions 243 Notes 243 Chapter 6 Attacking Browsers 247 Fingerprinting Browsers 248 Fingerprinting using HTTP Headers 249 Fingerprinting using DOM Properties 253 Fingerprinting using Software Bugs 258 Fingerprinting using Quirks 259 Bypassing Cookie Protections 260 Understanding the Structure 261 Understanding Attributes 263 Bypassing Path Attribute Restrictions 265 Overflowing the Cookie Jar 268 Using Cookies for Tracking 270 Sidejacking Attacks 271 Bypassing HTTPS 272 Downgrading HTTPS to HTTP 272 Attacking Certificates 276 Attacking the SSL/TLS Layer 277 Abusing Schemes 278 Abusing iOS 279 Abusing the Samsung Galaxy 281 Attacking JavaScript 283 Attacking Encryption in JavaScript 283 JavaScript and Heap Exploitation 286 Getting Shells using Metasploit 293 Getting Started with Metasploit 294 Choosing the Exploit 295 Executing a Single Exploit 296 Using Browser Autopwn 300 Using BeEF with Metasploit 302 Summary 305 Questions 305 Notes 306 Chapter 7 Attacking Extensions 311 Understanding Extension Anatomy 312 How Extensions Differ from Plugins 312 How Extensions Differ from Add-ons 313 Exploring Privileges 313 Understanding Firefox Extensions 314 Understanding Chrome Extensions 321 Discussing Internet Explorer Extensions 330 Fingerprinting Extensions 331 Fingerprinting using HTTP Headers 331 Fingerprinting using the DOM 332 Fingerprinting using the Manifest 335 Attacking Extensions 336 Impersonating Extensions 336 Cross-context Scripting 339 Achieving OS Command Execution 355 Achieving OS Command Injection 359 Summary 364 Questions 365 Notes 365 Chapter 8 Attacking Plugins 371 Understanding Plugin Anatomy 372 How Plugins Differ from Extensions 372 How Plugins Differ from Standard Programs 374 Calling Plugins 374 How Plugins are Blocked 376 Fingerprinting Plugins 377 Detecting Plugins 377 Automatic Plugin Detection 379 Detecting Plugins in BeEF 380 Attacking Plugins 382 Bypassing Click to Play 382 Attacking Java 388 Attacking Flash 400 Attacking ActiveX Controls 403 Attacking PDF Readers 408 Attacking Media Plugins 410 Summary 415 Questions 416 Notes 416 Chapter 9 Attacking Web Applications 421 Sending Cross-origin Requests 422 Enumerating Cross-origin Quirks 422 Preflight Requests 425 Implications 425 Cross-origin Web Application Detection 426 Discovering Intranet Device IP Addresses 426 Enumerating Internal Domain Names 427 Cross-origin Web Application Fingerprinting 429 Requesting Known Resources 430 Cross-origin Authentication Detection 436 Exploiting Cross-site Request Forgery 440 Understanding Cross-site Request Forgery 440 Attacking Password Reset with XSRF 443 Using CSRF Tokens for Protection 444 Cross-origin Resource Detection 445 Cross-origin Web Application Vulnerability Detection 450 SQL Injection Vulnerabilities 450 Detecting Cross-site Scripting Vulnerabilities 465 Proxying through the Browser 469 Browsing through a Browser 472 Burp through a Browser 477 Sqlmap through a Browser 480 Browser through Flash 482 Launching Denial-of-Service Attacks 487 Web Application Pinch Points 487 DDoS Using Multiple Hooked Browsers 489 Launching Web Application Exploits 493 Cross-origin DNS Hijack 493 Cross-origin JBoss JMX Remote Command Execution 495 Cross-origin GlassFish Remote Command Execution 497 Cross-origin m0n0wall Remote Command Execution 501 Cross-origin Embedded Device Command Execution 502 Summary 508 Questions 508 Notes 509 Chapter 10 Attacking Networks 513 Identifying Targets 514 Identifying the Hooked Browser’s Internal IP 514 Identifying the Hooked Browser’s Subnet 520 Ping Sweeping 523 Ping Sweeping using XMLHttpRequest 523 Ping Sweeping using Java 528 Port Scanning 531 Bypassing Port Banning 532 Port Scanning using the IMG Tag 537 Distributed Port Scanning 539 Fingerprinting Non-HTTP Services 542 Attacking Non-HTTP Services 545 NAT Pinning 545 Achieving Inter-protocol Communication 549 Achieving Inter-protocol Exploitation 564 Getting Shells using BeEF Bind 579 The BeEF Bind Shellcode 579 Using BeEF Bind in your Exploits 585 Using BeEF Bind as a Web Shell 596 Summary 599 Questions 600 Notes 601 Chapter 11 Epilogue: Final Thoughts 605 Index 609
£42.75
John Wiley & Sons Inc Whois Running the Internet
Book SynopsisDiscusses the evolution of WHOIS and how policy changes will affect WHOIS' place in IT today and in the futureThis book provides a comprehensive overview of WHOIS. The text begins with an introduction to WHOIS and an in-depth coverage of its forty-year history. Afterwards it examines how to use WHOIS and how WHOIS fits in the overall structure of the Domain Name System (DNS). Other technical topics covered include WHOIS query code and WHOIS server details. The book also discusses current policy developments and implementations, reviews critical policy documents, and explains how they will affect the future of the Internet and WHOIS. Additional resources and content updates will be provided through a supplementary website. Includes an appendix with information on current and authoritative WHOIS services around the world Provides illustrations of actual WHOIS records and screenshots of web-based WHOIS query interfaces with inTable of ContentsIntroduction: What is WHOIS? 1 I.1 Conventions Used in this Text 4 I.2 Flow of this Text 5 I.3 WHOIS from versus WHOIS about 5 I.4 Origin of the Term WHOIS 6 I.5 Why WHOIS Is Important (or Should Be) to Everyone 7 I.6 What Kind of Use and Contact is Permitted for WHOIS 7 I.7 Where is the WHOIS Data? 8 I.8 Identifying Remote Communication Sources 8 I.9 Getting Documentation 11 1 The History of WHOIS 13 1.1 In the Beginning 13 1.2 The Sands of Time 14 1.2.1 Seals 15 1.2.2 From Signal Fires on the Great Wall to Telegraphy 15 1.2.3 The Eye of Horus 17 1.3 1950s: On the Wires and in the Air 18 1.3.1 Sputnik Changes Everything 18 1.3.2 Telegraphs, Radio, Teletype, and Telephones 19 1.3.3 WRU: The First WHOIS 20 1.4 1960s: Sparking the Internet to Life 26 1.4.1 SRI, SAIL, and ITS 26 1.4.2 Doug Engelbart: The Father of Office Automation 27 1.5 1970s: Ok, Now That We Have an Internet, How Do We Keep Track of Everyone? 27 1.5.1 Elizabeth “Jake” Feinler 27 1.5.2 The ARPANET Directory as Proto‐WHOIS 27 1.5.3 The Site Status List 28 1.5.4 Distribution of the HOSTS Table 30 1.5.5 Finger 30 1.5.6 Sockets 31 1.5.7 Into the VOID with NLS IDENTFILE 32 1.5.8 NAME/FINGER RFC 742 (1977) 33 1.5.9 Other Early Models 35 1.6 1980s: WHOIS Gets Its Own RFC 36 1.6.1 The DNS 37 1.6.2 WHOIS Updated for Domains (1985) 38 1.6.3 Oops! The Internet Goes Public 39 1.7 1990s: The Internet as We Know It Emerges 40 1.7.1 Referral WHOIS or RWhois RFC 1714 (1994) 41 1.7.2 WHOIS++ RFCs 1834 and 1835 (1995) 41 1.7.3 ICANN Takes over WHOIS (1998) 42 1.8 2000s: WHOIS Standards 42 1.8.1 ICANN’s Registrar Accreditation Agreement and WHOIS (2001) 43 1.8.2 WHOIS Protocol Specification 2004 RFC 3912 (2004) 43 1.8.3 Creaking of Politics 44 References 45 2 Using WHOIS 47 2.1 Domain WHOIS Data 48 2.1.1 Record Terminology 48 2.2 Domain WHOIS Fields 52 2.2.1 Status 54 2.2.2 Registrar 54 2.2.3 Nameservers 55 2.2.4 Registrant, Administrative, Technical, and Billing 56 2.2.5 Names and Organizations 56 2.2.6 Emails 57 2.2.7 Addresses 58 2.2.8 Phone Numbers 58 2.2.9 Record Dates 59 2.2.10 DNSSEC 59 2.2.11 Other Information 60 2.3 Getting Records about Various Resources 60 2.3.1 Starting at the Top: The Empty Domain 60 2.3.2 Query WHOIS for a TLD as a Domain 61 2.3.3 WHOIS for a Registrar or Registry 62 2.3.4 Nameservers 63 2.3.5 Registrar and Registry 64 2.3.6 Special Cases 65 2.3.7 Dealing with Weird Results 73 2.4 IP WHOIS 74 2.4.1 Five Regional NICs 75 2.4.2 CIDR and ASN 80 2.4.3 IPv4 and IPv6 81 2.5 ccTLDs and IDNs 82 2.5.1 ccTLDs 82 2.5.2 IDNs 84 2.5.3 Language versus Script 85 2.5.4 ASCII 85 2.5.5 Unicode 86 2.5.6 Getting WHOIS Records for IDNs 87 2.6 WHOIS Services 87 2.6.1 Port 43 Command Line or Terminal 88 2.6.2 Clients 89 2.6.3 Representational State Transfer (RESTFul) WHOIS 97 2.6.4 Web‐Based WHOIS 97 2.6.5 Telnet to WHOIS Server 99 2.6.6 More Services, Software, and Packages 100 2.6.7 WHOIS Functions, Switches, and Tricks 102 2.6.8 Obscure, Archaic, and Obsolete WHOIS Services 104 References 105 3 Research and Investigations 107 3.1 Completely Disassembling a WHOIS Record 108 3.1.1 A Normal, Safe Domain: cnn.com 108 3.1.2 Deconstructing the WHOIS for a Spammed Domain 116 3.1.3 Illicit Domain WHOIS 120 3.1.4 Virus Domain WHOIS 121 3.1.5 Tracking Cybersquatters and Serial Trademark Violators 123 3.1.6 Network Security Administrator Issues 124 3.1.7 Protecting Your Domain with Accurate WHOIS 125 3.2 More Tools 126 3.2.1 Ping 126 3.2.2 Traceroute 126 3.2.3 Secondary Sources, Historical Data, and Additional Tools 126 References 129 4 WHOIS in the Domain Name System (DNS) 131 4.1 The Big Mistake 131 4.2 Basics of the DNS 133 4.2.1 TCP/IP, Layers, and Resolvers 133 4.2.2 How a Domain Becomes a Website 134 4.2.3 WHOIS Pervades the DNS 134 4.2.4 ICANN, IANA, Registries, and Registrars 135 4.2.5 .ARPA: Special Architectural TLD 138 4.2.6 Setting the Example with Reserved Domains 139 4.2.7 DNS RFCs 882, 883, 1033, and 1034 140 4.3 DNS RR 141 4.3.1 Berkeley Internet Name Domain 141 4.3.2 Shared WHOIS Project 141 4.3.3 Using the DiG 142 4.3.4 Graphic DNS Software and Websites 145 4.3.5 Finding Hidden Registrars and Tracking Roots 146 4.3.6 Traceroute 150 4.4 Outside the DNS: An Internet without WHOIS 153 4.4.1 The Onion Routing 153 4.4.2 .ONION and Other TLDs 155 Reference 157 5 WHOIS Code 159 5.1 Automating WHOIS with Batching and Scripting 159 5.1.1 DiG Example 159 5.1.2 DOS Batch File Example 160 5.1.3 VBScript Example 160 5.2 WHOIS Client Code 161 5.2.1 What a WHOIS Client Should Do 161 5.2.2 Early Versions 163 5.2.3 C/C++ 164 5.2.4 Perl 168 5.2.5 Java 169 5.2.6 Recursive Python WHOIS by Peter Simmons 169 5.2.7 Lisp WHOIS by Evrim Ulu 169 5.3 Web WHOIS Forms 170 5.3.1 Creating a WHOIS Web Interface with PHP 170 5.4 Parsing WHOIS Records 171 5.4.1 Ruby WHOIS by Simone Carletti 171 5.4.2 Regular Expressions 173 6 WHOIS Servers 175 6.1 Historical Servers 176 6.2 Server Standards and ICANN Requirements 177 6.3 Finding the Right Server 178 6.4 Installing and Configuring WHOIS Servers 180 6.4.1 JWhoisServer by Klaus Zerwes 180 6.4.2 WHOIS Daemon 186 6.5 WHOIS Database 186 7 WHOIS Policy Issues 189 7.1 The WHOIS Policy Debate 189 7.1.1 Basic Policy 191 7.1.2 ICANN Registrar Accreditation Agreement WHOIS Standards 191 7.1.3 Lack of Language Support in WHOIS 193 7.1.4 Abuses 193 7.1.5 Privacy 195 7.1.6 Source of Concerns 197 7.1.7 Creating Balance 197 7.1.8 European Privacy Laws and WHOIS 200 7.1.9 Drawing the Line 201 7.1.10 Uniform Domain‐Name Dispute‐Resolution Policy 203 7.1.11 WHOIS Inaccuracy, Falsification, Obfuscation, and Access Denial 209 7.2 Studies, Reports, and Activities on WHOIS 209 7.2.1 SSAC (2002) 210 7.2.2 Benjamin Edelman Congressional Testimony on WHOIS (2003) 210 7.2.3 US Government Accountability Office Report on Prevalence of False Contact Information in WHOIS (2005) 211 7.2.4 WHOIS Study Hypotheses Group Report to the GNSO Council (2008) 211 7.2.5 National Opinion Research Center at the University of Chicago (2009) 212 7.2.6 WHOIS Policy Review Team Final Report (2012) 212 7.3 WHOIS Enforcement and Nonenforcement at ICANN 213 7.3.1 Tracking ICANN’s Response to WHOIS Inaccuracy 215 7.3.2 ICANN Compliance Designed for Failure 218 7.3.3 ICANN’s Contract with Registrars Not Enforceable on WHOIS Accuracy 219 References 223 8 The Future of WHOIS 225 8.1 New gTLDs 226 8.2 WHOIS‐Based Extensible Internet Registration Data Service (WEIRDS) 227 8.3 Aggregated Registry Data Services (ARDS) 230 8.4 Truly Solving the Problem 231 8.5 Conclusion: The Domain Money Wall—or Why ICANN Will Never Fix WHOIS 232 Appendix A: WHOIS Code 237 Appendix B: WHOIS Servers 293 Index 331
£78.26
John Wiley & Sons Inc Big Data
Book SynopsisLeverage big data to add value to your business Social media analytics, web-tracking, and other technologies help companies acquire and handle massive amounts of data to better understand their customers, products, competition, and markets.Table of ContentsPreface xix Introduction xxi 1 The Big Data Business Opportunity 1 The Business Transformation Imperative 3 Walmart Case Study 3 The Big Data Business Model Maturity Index 5 Business Monitoring 7 Business Insights 7 Business Optimization 9 Data Monetization 10 Business Metamorphosis 12 Big Data Business Model Maturity Observations 16 Summary 18 2 Big Data History Lesson 19 Consumer Package Goods and Retail Industry Pre-1988 19 Lessons Learned and Applicability to Today’s Big Data Movement 23 Summary 24 3 Business Impact of Big Data 25 Big Data Impacts: The Questions Business Users Can Answer 26 Managing Using the Right Metrics 27 Data Monetization Opportunities 30 Digital Media Data Monetization Example 30 Digital Media Data Assets and Understanding Target Users 31 Data Monetization Transformations and Enrichments 32 Summary 34 4 Organizational Impact of Big Data 37 Data Analytics Lifecycle 40 Data Scientist Roles and Responsibilities 42 Discovery 43 Data Preparation 43 Model Planning 44 Model Building 44 Communicate Results 45 Operationalize 46 New Organizational Roles 46 User Experience Team 46 New Senior Management Roles 47 Liberating Organizational Creativity 49 Summary 51 5 Understanding Decision Theory 53 Business Intelligence Challenge 53 The Death of Why 55 Big Data User Interface Ramifications 56 The Human Challenge of Decision Making 58 Traps in Decision Making 58 What Can One Do? 62 Summary 63 6 Creating the Big Data Strategy 65 The Big Data Strategy Document 66 Customer Intimacy Example 67 Turning the Strategy Document into Action 69 Starbucks Big Data Strategy Document Example 70 San Francisco Giants Big Data Strategy Document Example 73 Summary 77 7 Understanding Your Value Creation Process 79 Understanding the Big Data Value Creation Drivers 81 Driver #1: Access to More Detailed Transactional Data 82 Driver #2: Access to Unstructured Data 82 Driver #3: Access to Low-latency (Real-Time) Data 83 Driver #4: Integration of Predictive Analytics 84 Big Data Envisioning Worksheet 85 Big Data Business Drivers: Predictive Maintenance Example 86 Big Data Business Drivers: Customer Satisfaction Example 87 Big Data Business Drivers: Customer Micro-segmentation Example 89 Michael Porter’s Valuation Creation Models 91 Michael Porter’s Five Forces Analysis 91 Michael Porter’s Value Chain Analysis 93 Value Creation Process: Merchandising Example 94 Summary 104 8 Big Data User Experience Ramifications 105 The Unintelligent User Experience 106 Understanding the Key Decisions to Build a Relevant User Experience 107 Using Big Data Analytics to Improve Customer Engagement 108 Uncovering and Leveraging Customer Insights 110 Rewiring Your Customer Lifecycle Management Processes 112 Using Customer Insights to Drive Business Profitability 113 Big Data Can Power a New Customer Experience 116 B2C Example: Powering the Retail Customer Experience 116 B2B Example: Powering Small- and Medium-Sized Merchant Effectiveness 119 Summary 122 9 Identifying Big Data Use Cases 125 The Big Data Envisioning Process 126 Step 1: Research Business Initiatives 127 Step 2: Acquire and Analyze Your Data 129 Step 3: Ideation Workshop: Brainstorm New Ideas 132 Step 4: Ideation Workshop: Prioritize Big Data Use Cases 138 Step 5: Document Next Steps 139 The Prioritization Process 140 The Prioritization Matrix Process 142 Prioritization Matrix Traps 143 Using User Experience Mockups to Fuel the Envisioning Process 145 Summary 149 10 Solution Engineering 151 The Solution Engineering Process 151 Step 1: Understand How the Organization Makes Money 153 Step 2: Identify Your Organization’s Key Business Initiatives 155 Step 3: Brainstorm Big Data Business Impact 156 Step 4: Break Down the Business Initiative into Use Cases 157 Step 5: Prove Out the Use Case 158 Step 6: Design and Implement the Big Data Solution. 159 Solution Engineering Tomorrow’s Business Solutions 161 Customer Behavioral Analytics Example 162 Predictive Maintenance Example 163 Marketing Effectiveness Example 164 Fraud Reduction Example 166 Network Optimization Example 166 Reading an Annual Report 167 Financial Services Firm Example 168 Retail Example 169 Brokerage Firm Example 171 Summary 172 11 Big Data Architectural Ramifications 173 Big Data: Time for a New Data Architecture 173 Introducing Big Data Technologies 175 Apache Hadoop 176 Hadoop MapReduce 177 Apache Hive 178 Apache HBase 178 Pig 178 New Analytic Tools 179 New Analytic Algorithms 180 Bringing Big Data into the Traditional Data Warehouse World 181 Data Enrichment: Think ELT, Not ETL 181 Data Federation: Query is the New ETL 183 Data Modeling: Schema on Read 184 Hadoop: Next Gen Data Staging and Prep Area 185 MPP Architectures: Accelerate Your Data Warehouse 187 In-database Analytics: Bring the Analytics to the Data 188 Cloud Computing: Providing Big Data Computational Power 190 Summary 191 12 Launching Your Big Data Journey 193 Explosive Data Growth Drives Business Opportunities 194 Traditional Technologies and Approaches Are Insufficient 195 The Big Data Business Model Maturity Index 197 Driving Business and IT Stakeholder Collaboration 198 Operationalizing Big Data Insights 199 Big Data Powers the Value Creation Process 200 Summary 202 13 Call to Action 203 Identify Your Organization’s Key Business Initiatives 203 Start with Business and IT Stakeholder Collaboration 204 Formalize Your Envisioning Process 204 Leverage Mockups to Fuel the Creative Process 205 Understand Your Technology and Architectural Options 205 Build off Your Existing Internal Business Processes 206 Uncover New Monetization Opportunities 206 Understand the Organizational Ramifications 207 Index 209
£24.79
John Wiley & Sons Inc Cabling
Book SynopsisDevelop the skills you need to design and build a reliable, cost-effective cabling infrastructure Fully updated for the growing demand of fiber optics for large-scale communications networks and telecommunication standards, this new edition is organized into two parts.Table of ContentsIntroduction xxxiii Part I LAN Networks and Cabling Systems 1 Chapter 1 Introduction to Data Cabling 3 Chapter 2 Cabling Specifications and Standards 57 Chapter 3 Choosing the Correct Cabling 103 Chapter 4 Cable System and Infrastructure Constraints 133 Chapter 5 Cabling System Components 157 Chapter 6 Tools of the Trade 183 Chapter 7 Copper Cable Media 215 Chapter 8 Fiber-Optic Media 255 Chapter 9 Wall Plates 281 Chapter 10 Connectors 299 Chapter 11 Network Equipment 325 Chapter 12 Wireless Networks 343 Chapter 13 Cabling System Design and Installation 367 Chapter 14 Cable Connector Installation 401 Chapter 15 Cable System Testing and Troubleshooting 433 Chapter 16 Creating a Request for Proposal 467 Chapter 17 Cabling @ Work: Experience from the Field 493 Part II Fiber-Optic Cabling and Components 507 Chapter 18 History of Fiber Optics and Broadband Access 509 Chapter 19 Principles of Fiber-Optic Transmission 519 Chapter 20 Basic Principles of Light 539 Chapter 21 Optical Fiber Construction and Theory 555 Chapter 23 Safety 605 Chapter 24 Fiber-Optic Cables 621 Chapter 25 Splicing 653 Chapter 26 Connectors 693 Chapter 27 Fiber-Optic Light Sources and Transmitters 763 Chapter 28 Fiber-Optic Detectors and Receivers 793 Chapter 29 Passive Components and Multiplexers 819 Chapter 30 Passive Optical Networks 849 Chapter 31 Cable Installation and Hardware 869 Chapter 32 Fiber-Optic System Design Considerations 903 Chapter 33 Test Equipment and Link/Cable Testing 941 Chapter 34 Troubleshooting and Restoration 995 Appendices 1037 Appendix A The Bottom Line 1039 Appendix B Cabling Resources 1097 Appendix C Registered Communications Distribution Designer (RCDD) Certification 1103 Appendix D Home Cabling: Wiring Your Home for Now and the Future 1109 Appendix E Overview of IEEE 1394 and USB Networking 1115 Appendix F The Electronics Technicians Association, International (ETA) Certifications 1121 Glossary Index 1241
£74.00
John Wiley & Sons Inc Hacking Point of Sale
Book SynopsisMust-have guide for professionals responsible for securing credit and debit card transactions As recent breaches like Target and Neiman Marcus show, payment card information is involved in more security breaches than any other data type. In too many places, sensitive card data is simply not protected adequately.Table of ContentsIntroduction xxiii Part I Anatomy of Payment Application Vulnerabilities 1 Chapter 1 Processing Payment Transactions 3 Chapter 2 Payment Application Architecture 25 Chapter 3 PCI 55 Part II Attacks on Point of Sale Systems 91 Chapter 4 Turning 40 Digits into Gold 93 Chapter 5 Penetrating Security Free Zones 125 Chapter 6 Breaking into PCI-protected Areas 147 Part III Defense 165 Chapter 7 Cryptography in Payment Applications 167 Chapter 8 Protecting Cardholder Data 195 Chapter 9 Securing Application Code 219 Conclusion 249 Appendix A POS Vulnerability Rank Calculator 251 Appendix B Glossary 257 Index 265
£45.12
John Wiley & Sons Inc Professional Microsoft SQL Server 2014
Book SynopsisFill the gap between planning and doing with SSIS 2014 The 2014 release of Microsoft's SQL Server Integration Services provides enhancements for managing extraction, transformation, and load operations, plus expanded in-memory capabilities, improved disaster recovery, increased scalability, and much more.Trade ReviewThis book is suitable for both developers that are new to SSIS development, and experienced developers looking for a more complete understanding. I highly recommend it. (I Programmer, July 2014)Table of ContentsIntroduction xxvii Chapter 1: Welcome to SQL Server Integration Services 1 SQL Server SSIS Historical Overview 2 What’s New in SSIS 2 Tools of the Trade 3 Import and Export Wizard 3 The SQL Server Data Tools Experience 4 SSIS Architecture 5 Packages 5 Control Flow 5 Data Flow 9 Variables 14 Parameters 14 Error Handling and Logging 14 Editions of SQL Server 14 Summary 15 Chapter 2: The SSIS Tools 17 Import and Export Wizard 17 SQL Server Data Tools 24 The Solution Explorer Window 26 The SSIS Toolbox 27 The Properties Windows 28 The SSIS Package Designer 28 Control Flow 29 Connection Managers 32 Variables 33 Data Flow 34 Parameters 35 Event Handlers 35 Package Explorer 36 Executing a Package 37 Management Studio 37 Summary 37 Chapter 3: SSIS Tasks 39 SSIS Task Objects 40 Using the Task Editor 40 The Task Editor Expressions Tab 41 Looping and Sequence Tasks 41 Script Task (.NET) 41 Analysis Services Tasks 44 Analysis Services Execute DDL Task 44 Analysis Services Processing Task 44 Data Mining Query Task 46 Data Flow Task 47 Data Preparation Tasks 48 Data Profiler 48 File System Task 50 Archiving a File 52 FTP Task 53 Getting a File Using FTP 54 Web Service Task 56 Retrieving Data Using the Web Service Task and XML Source Component 59 XML Task 62 Validating an XML File 64 RDBMS Server Tasks 66 Bulk Insert Task 66 Using the Bulk Insert Task 69 Execute SQL Task 71 Workflow Tasks 82 Execute Package Task 82 Execute Process Task 84 Message Queue Task 86 Send Mail Task 87 WMI Data Reader Task 88 WMI Event Watcher Task 91 Polling a Directory for the Delivery of a File 91 SMO Administration Tasks 92 Transfer Database Task 93 Transfer Error Messages Task 94 Transfer Logins Task 94 Transfer Master Stored Procedures Task 95 Transfer Jobs Task 96 Transfer SQL Server Objects Task 96 Summary 97 Chapter 4: The Data Flow 99 Understanding the Data Flow 99 Data Viewers 100 Sources 101 OLE DB Source 102 Excel Source 104 Flat File Source 105 Raw File Source 110 XML Source 110 ADO.NET Source 111 Destinations 111 Excel Destination 112 Flat File Destination 112 OLE DB Destination 112 Raw File Destination 113 Recordset Destination 114 Data Mining Model Training 114 DataReader Destination 114 Dimension and Partition Processing 114 Common Transformations 115 Synchronous versus Asynchronous Transformations 115 Aggregate 115 Conditional Split 117 Data Conversion 118 Derived Column 119 Lookup 121 Row Count 121 Script Component 122 Slowly Changing Dimension 123 Sort 123 Union All 125 Other Transformations 126 Audit 126 Character Map 128 Copy Column 128 Data Mining Query 129 DQS Cleansing 130 Export Column 130 Fuzzy Lookup 132 Fuzzy Grouping 139 Import Column 143 Merge 145 Merge Join 146 Multicast 146 OLE DB Command 147 Percentage and Row Sampling 148 Pivot Transform 149 Unpivot 152 Term Extraction 154 Term Lookup 158 Data Flow Example 160 Summary 164 Chapter 5: Using Variables, Parameters, and Expressions 165 Dynamic Package Objects 166 Variable Overview 166 Parameter Overview 166 Expression Overview 167 Understanding Data Types 168 SSIS Data Types 168 Date and Time Type Support 170 How Wrong Data Types and Sizes Can Affect Performance 171 Unicode and Non-Unicode Conversion Issues 171 Casting in SSIS Expressions 173 Using Variables and Parameters 174 Defining Variables 174 Defining Parameters 175 Variable and Parameter Data Types 176 Working with Expressions 177 C#-Like? Close, but Not Completely 178 The Expression Builder 179 Syntax Basics 180 Using Expressions in SSIS Packages 194 Summary 204 Chapter 6: Containers 205 Task Host Containers 205 Sequence Containers 206 Groups 207 For Loop Container 207 Foreach Loop Container 210 Foreach File Enumerator Example 211 Foreach ADO Enumerator Example 213 Summary 218 Chapter 7: Joining Data 219 The Lookup Transformation 220 Using the Merge Join Transformation 221 Contrasting SSIS and the Relational Join 222 Lookup Features 224 Building the Basic Package 225 Using a Relational Join in the Source 227 Using the Merge Join Transformation 230 Using the Lookup Transformation 235 Full-Cache Mode 235 No-Cache Mode 239 Partial-Cache Mode 240 Multiple Outputs 243 Expressionable Properties 246 Cascaded Lookup Operations 247 Cache Connection Manager and Cache Transform 249 Summary 252 Chapter 8: Creating an End-to-End Package 253 Basic Transformation Tutorial 253 Creating Connections 254 Creating the Control Flow 257 Creating the Data Flow 257 Completing the Package 259 Saving the Package 260 Executing the Package 260 Typical Mainframe ETL with Data Scrubbing 261 Creating the Data Flow 263 Handling Dirty Data 263 Finalizing 268 Handling More Bad Data 269 Looping and the Dynamic Tasks 271 Looping 271 Making the Package Dynamic 272 Summary 274 Chapter 9: Scripting in SSIS 275 Introducing SSIS Scripting 276 Getting Started in SSIS Scripting 277 Selecting the Scripting Language 277 Using the VSTA Scripting IDE 278 Example: Hello World 279 Adding Code and Classes 281 Using Managed Assemblies 282 Example: Using Custom .NET Assemblies 283 Using the Script Task 286 Configuring the Script Task Editor 287 The Script Task Dts Object 288 Accessing Variables in the Script Task 289 Connecting to Data Sources in a Script Task 293 Raising an Event in a Script Task 303 Writing a Log Entry in a Script Task 309 Using the Script Component 310 Differences from a Script Task 310 Configuring the Script Component Editor 311 Accessing Variables in a Script Component 313 Connecting to Data Sources in a Script Component 314 Raising Events 314 Logging 315 Example: Data Validation 316 Synchronous versus Asynchronous 324 Essential Coding, Debugging, and Troubleshooting Techniques 327 Structured Exception Handling 327 Script Debugging and Troubleshooting 330 Summary 333 Chapter 10: Advanced Data Cleansing in SSIS 335 Advanced Derived Column Use 336 Text Parsing Example 338 Advanced Fuzzy Lookup and Fuzzy Grouping 340 Fuzzy Lookup 340 Fuzzy Grouping 347 DQS Cleansing 350 Data Quality Services 351 DQS Cleansing Transformation 355 Master Data Management 358 Master Data Services 359 Summary 362 Chapter 11: Incremental Loads in SSIS 363 Control Table Pattern 363 Querying the Control Table 364 Querying the Source Table 366 Updating the Control Table 366 SQL Server Change Data Capture 367 Benefits of SQL Server CDC 368 Preparing CDC 369 Capture Instance Tables 371 The CDC API 372 Using the SSIS CDC Tools 374 Summary 379 Chapter 12: Loading a Data Warehouse 381 Data Profiling 383 Initial Execution of the Data Profiling Task 383 Reviewing the Results of the Data Profiling Task 386 Turning Data Profile Results into Actionable ETL Steps 390 Data Extraction and Cleansing 391 Dimension Table Loading 391 Loading a Simple Dimension Table 392 Loading a Complex Dimension Table 397 Considerations and Alternatives to the SCD Transformation 408 Fact Table Loading 409 SSAS Processing 421 Using a Master ETL Package 426 Summary 428 Chapter 13: Using the Relational Engine 429 Data Extraction 430 SELECT * is Bad 430 WHERE is Your Friend 432 Transform during Extract 433 Many ANDs Make Light Work 437 SORT in the Database 437 Modularize 439 SQL Server Does Text Files Too 440 Using Set-Based Logic 444 Data Loading 446 Database Snapshots 446 The MERGE Operator 448 Summary 452 Chapter 14: Accessing Heterogeneous Data 453 Excel and Access 455 64-Bit Support 455 Working with Excel Files 457 Working with Access 462 Importing from Oracle 469 Oracle Client Setup 469 Importing Oracle Data 470 Using XML and Web Services 472 Configuring the Web Service Task 472 Working with XML Data as a Source 483 Flat Files 486 Loading Flat Files 487 Extracting Data from Flat Files 489 ODBC 491 Other Heterogeneous Sources 494 Summary 495 Chapter 15: Reliability and Scalability 497 Restarting Packages 498 Simple Control Flow 499 Containers within Containers and Checkpoints 501 Variations on a Theme 503 Inside the Checkpoint File 505 Package Transactions 507 Single Package, Single Transaction 508 Single Package, Multiple Transactions 509 Two Packages, One Transaction 511 Single Package Using a Native Transaction in SQL Server 512 Error Outputs 513 Scaling Out 516 Architectural Features 516 Scaling Out Memory Pressures 517 Scaling Out by Staging Data 517 Scaling Out with Parallel Loading 522 Summary 528 Chapter 16: Understanding and Tuning the Data Flow Engine 529 The SSIS Engine 530 Understanding the SSIS Data Flow and Control Flow 530 Handling Workflows with the Control Flow 533 Data Processing in the Data Flow 533 Memory Buffer Architecture 534 Types of Transformations 534 Advanced Data Flow Execution Concepts 543 SSIS Data Flow Design and Tuning 549 Data Flow Design Practices 550 Optimizing Package Processing 555 Troubleshooting Data Flow Performance Bottlenecks 558 Pipeline Performance Monitoring 559 Summary 562 Chapter 17: SS IS Software Development Life Cycle 563 Introduction to Software Development Life Cycles 565 SDLCs: A Brief History 566 Types of Software Development Life Cycles 566 Versioning and Source Code Control 567 Subversion (SVN) 568 Team Foundation Server, Team System, and SSIS 573 Summary 590 Chapter 18: Error and Event Handling 591 Using Precedence Constraints 592 Precedence Constraint Basics 592 Advanced Precedence Constraints and Expressions 593 Event Handling 601 Events 602 Using Event Handlers 603 Event Handler Inheritance 611 Breakpoints 612 Error Rows 616 Logging 622 Logging Providers 622 Log Events 623 Catalog Logging 627 Summary 629 Chapter 19: Programming and Extending SSIS 631 The Sample Components 632 Component 1: Source Adapter 632 Component 2: Transform 633 Component 3: Destination Adapter 634 The Pipeline Component Methods 634 Design-Time Functionality 635 Runtime 639 Connection Time 640 Building the Components 642 Preparation 642 Building the Source Component 648 Building the Transformation Component 660 Building the Destination Adapter 671 Using the Components 679 Installing the Components 679 Debugging Components 680 Design Time 680 Building the Complete Package 682 Runtime Debugging 682 Upgrading to SQL Server 2014 687 Summary 687 Chapter 20: Adding a User Interface to Your Component 689 Three Key Steps for Designing the UI: An Overview 690 Building the User Interface 690 Adding the Project 691 Implementing IDtsComponentUI 693 Setting the UITypeName 697 Building the Form 699 Extending the User Interface 704 Runtime Connections 704 Component Properties 707 Handling Errors and Warnings 708 Column Properties 711 Other UI Considerations 712 Summary 712 Chapter 21: External Management and WMI Task Implementation 715 External Management of SSIS with Managed Code 716 Setting Up a Test SSIS Package for Demonstration Purposes 716 The Managed Object Model Code Library 717 Catalog Management 718 Folder Management 719 Environments 720 The DTS Runtime Managed Code Library 722 SSIS Deployment Projects 722 Parameter Objects 723 Server Deployment 725 Executing SSIS Packages Deployed to the SSIS Catalog 726 Environment References 727 Package Operations 728 Application Object Maintenance Operations 729 Package Operations 729 Package Monitoring 732 Project, Folder, and Package Listing 734 A Package Management Example 735 Package Log Providers 745 Specifying Events to Log 747 Programming to Log Providers 748 SQL Server 2014 Operation Logs 749 Package Configurations 751 Creating a Configuration 752 Programming the Configuration Object 753 Configuration Object 754 Windows Management Instrumentation Tasks 755 WMI Reader Task Explained 755 WMI Data Reader Example 756 WMI Event Watcher Task 762 WMI Event Watcher Task Example 763 Summary 766 Chapter 22: Ad ministering SSIS 767 Using the SSIS Catalog 768 Setting the SSIS Catalog Properties 768 SSISDB 771 Deployment Models 772 Project Deployment Model 773 Package Deployment Model 775 Using T-SQL with SSIS 781 Executing Packages 781 Using Parameters 782 Querying Tables for Parameter Values 783 Using Environments 784 Using Data Taps 789 Creating a Central SSIS Server 790 Clustering SSIS 792 Package Configuration 794 Command-Line Utilities 798 DTExec 798 DTExecUI 799 DTUtil 804 Security 806 Securing the SSIS Catalog 806 Legacy Security 809 Scheduling Packages 811 SQL Server Agent 811 Proxy Accounts 813 64-Bit Issues 814 Monitoring Package Executions 815 Built-in Reporting 815 Custom Reporting 819 Performance Counters 819 Summary 820 Appendix A: SS IS Crib Notes 821 When to Use Control Flow Tasks 821 When to Use Data Flow Transforms 822 Common Expressions and Scripts 824 Appendix B: SS IS Internal Views and Stored Procedures 829 Views 829 Stored Procedures 830 Appendix C: Interviewing for an ETL Developer Position 833 Questions 833 Answers 834 Index 839
£35.20
John Wiley & Sons Inc Vehicular Ad Hoc Network Security and Privacy
Book SynopsisThis book provides an overview of vehicular networks, fromtraffic engineering to human factors. The book addresses theunique design requirements for security and privacy preservationfor vehicular communications to increase road safety.Table of ContentsList of Figures xi List of Tables xv Acronyms xvii Preface xix 1 INTRODUCTION 1 1.1 Background 1 1.2 DSRC AND VANET 2 1.2.1 DSRC 2 1.2.2 VANET 3 1.2.3 Characteristics of VANET 6 1.3 Security and Privacy Threats 7 1.4 Security and Privacy Requirements 8 1.5 Challenges and Prospects 9 1.5.1 Conditional Privacy Preservation in VANETs 9 1.5.2 Authentication with Efficient Revocation in VANETs 10 1.6 Standardization and Related Activities 11 1.7 Security Primitives 13 1.8 Outline of the Book 17 References 17 2 GSIS: GROUP SIGNATURE AND ID-BASED SIGNATURE-BASED SECURE AND PRIVACY-PRESERVING PROTOCOL 21 2.1 Introduction 21 2.2 Preliminaries and Background 23 2.2.1 Group Signature 23 2.2.2 Bilinear Pairing and ID-Based Cryptography 23 2.2.3 Threat Model 23 2.2.4 Desired Requirements 24 2.3 Proposed Secure and Privacy-Preserving Protocol 25 2.3.1 Problem Formulation 25 2.3.2 System Setup 27 2.3.3 Security Protocol between OBUs 29 2.3.4 Security Protocol between RSUs and OBUs 38 2.4 Performance Evaluation 41 2.4.1 Impact of Traffic Load 43 2.4.2 Impact of Cryptographic Signature Verification Delay 43 2.4.3 Membership Revocation and Tracing Efficiency 45 2.5 Concluding Remarks 47 References 47 3 ECPP: EFFICIENT CONDITIONAL PRIVACY PRESERVATION PROTOCOL 51 3.1 Introduction 51 3.2 System Model and Problem Formulation 52 3.2.1 System Model 52 3.2.2 Design Objectives 54 3.3 Proposed ECPP Protocol 55 3.3.1 System Initialization 55 3.3.2 OBU Short-Time Anonymous Key Generation 56 3.3.3 OBU Safety Message Sending 62 3.3.4 OBU Fast Tracking Algorithm 63 3.4 Analysis on Conditional Privacy Preservation 64 3.5 Performance Analysis 66 3.5.1 OBU Storage Overhead 66 3.5.2 OBU Computation Overhead on Verification 66 3.5.3 TA Computation Complexity on OBU Tracking 68 3.6 Concluding Remarks 69 References 69 4 PSEUDONYM-CHANGING STRATEGY FOR LOCATION PRIVACY 71 4.1 Introduction 71 4.2 Problem Definition 73 4.2.1 Network Model 73 4.2.2 Threat Model 74 4.2.3 Location Privacy Requirements 75 4.3 Proposed PCS Strategy for Location Privacy 75 4.3.1 KPSD Model for PCS Strategy 75 4.3.2 Anonymity Set Analysis for Achieved Location Privacy 79 4.3.3 Feasibility Analysis of PCS Strategy 85 4.4 Performance Evaluation 86 4.5 Concluding Remarks 89 References 89 5 RSU-AIDED MESSAGE AUTHENTICATION 91 5.1 Introduction 91 5.2 System Model and Preliminaries 93 5.2.1 System Model 93 5.2.2 Assumption 93 5.2.3 Problem Statement 94 5.2.4 Security Objectives 95 5.3 Proposed RSU-Aided Message Authentication Scheme 96 5.3.1 Overview 96 5.3.2 Mutual Authentication and Key Agreement between RSUs and Vehicles 96 5.3.3 Hash Aggregation 98 5.3.4 Verification 99 5.3.5 Privacy Enhancement 100 5.4 Performance Evaluation 101 5.4.1 Message Loss Ratio 102 5.4.2 Message Delay 102 5.4.3 Communication Overhead 104 5.5 Security Analysis 105 5.6 Concluding Remarks 106 References 107 6 TESLA-BASED BROADCAST AUTHENTICATION 109 6.1 Introduction 109 6.2 Timed Efficient and Secure Vehicular Communication Scheme 110 6.2.1 Preliminaries 110 6.2.2 System Formulation 112 6.2.3 Proposed TSVC Scheme 113 6.2.4 Enhanced TSVC with Nonrepudiation 118 6.2.5 Discussion 123 6.3 Security Analysis 129 6.4 Performance Evaluation 129 6.4.1 Impact of Vehicle Moving Speed 131 6.4.2 Impact of Vehicle Density 132 6.5 Concluding Remarks 134 References 134 7 DISTRIBUTED COOPERATIVE MESSAGE AUTHENTICATION 137 7.1 Introduction 137 7.2 Problem Formulation 138 7.2.1 Network Model 138 7.2.2 Security Model 139 7.3 Basic Cooperative Authentication Scheme 140 7.4 Secure Cooperative Authentication Scheme 141 7.4.1 Evidence and Token for Fairness 142 7.4.2 Authentication Proof 145 7.4.3 Flows of Proposed Scheme 146 7.5 Security Analysis 147 7.5.1 Linkability Attack 147 7.5.2 Free-Riding Attack without Authentication Efforts 147 7.5.3 Free-Riding Attack with Fake Authentication Efforts 148 7.6 Performance Evaluation 148 7.6.1 Simulation Settings 148 7.6.2 Simulation Results 149 7.7 Concluding Remarks 150 References 151 8 CONTEXT-AWARE COOPERATIVE AUTHENTICATION 153 8.1 Introduction 153 8.2 Message Trustworthiness in VANETs 156 8.3 System Model and Design Goal 159 8.3.1 Network Model 159 8.3.2 Attack Model 159 8.3.3 Design Goals 160 8.4 Preliminaries 160 8.4.1 Pairing Technique 160 8.4.2 Aggregate Signature and Batch Verification 160 8.5 Proposed AEMAT Scheme 161 8.5.1 System Setup 161 8.5.2 Registration 162 8.5.3 SER Generation and Broadcasting 162 8.5.4 SER Opportunistic Forwarding 162 8.5.5 SER Aggregated Authentication 163 8.5.6 SER Aggregated Trustworthiness 165 8.6 Security Discussion 168 8.6.1 Collusion Attacks 168 8.6.2 Privacy Protection of Witnesses 168 8.7 Performance Evaluation 169 8.7.1 Transmission Cost 169 8.7.2 Computational Cost 169 8.8 Concluding Remarks 170 References 170 9 FAST HANDOVER AUTHENTICATION BASED ON MOBILITY PREDICTION 173 9.1 Introduction 173 9.2 Vehicular Network Architecture 175 9.3 Proposed Fast Handover Authentication Scheme Based on Mobility Prediction 176 9.3.1 Multilayer Perceptron Classifier 176 9.3.2 Proposed Authentication Scheme 178 9.4 Security Analysis 183 9.4.1 Replay Attack 183 9.4.2 Forward Secrecy 183 9.5 Performance Evaluation 184 9.6 Concluding Remarks 185 References 186 Index 187
£97.16
John Wiley & Sons Inc Wireshark for Security Professionals
Book SynopsisMaster Wireshark to solve real-world security problems If you don't already use Wireshark for a wide range of information security tasks, you will after this book. Mature and powerful, Wireshark is commonly used to find root cause of challenging network issues. This book extends that power to information security professionals, complete with a downloadable, virtual lab environment. Wireshark for Security Professionals covers both offensive and defensive concepts that can be applied to essentially any InfoSec role. Whether into network security, malware analysis, intrusion detection, or penetration testing, this book demonstrates Wireshark through relevant and useful examples. Master Wireshark through both lab scenarios and exercises. Early in the book, a virtual lab environment is provided for the purpose of getting hands-on experience with Wireshark. Wireshark is combined with two popular platforms: Kali, the security-focused Linux distribution, aTable of ContentsIntroduction xiii Chapter 1 Introducing Wireshark 1 What Is Wireshark? 2 A Best Time to Use Wireshark? 2 Avoiding Being Overwhelmed 3 The Wireshark User Interface 3 Packet List Pane 5 Packet Details Pane 6 Packet Bytes Pane 8 Filters 9 Capture Filters 9 Display Filters 13 Summary 17 Exercises 18 Chapter 2 Setting Up the Lab 19 Kali Linux 20 Virtualization 22 Basic Terminology and Concepts 23 Benefits of Virtualization 23 Virtual Box 24 Installing VirtualBox 24 Installing the VirtualBox Extension Pack 31 Creating a Kali Linux Virtual Machine 33 Installing Kali Linux 40 The W4SP Lab 46 Requirements 46 A Few Words about Docker 47 What Is GitHub? 48 Creating the Lab User 49 Installing the W4SP Lab on the Kali Virtual Machine 50 Setting Up the W4SP Lab 53 The Lab Network 54 Summary 55 Exercises 56 Chapter 3 The Fundamentals 57 Networking 58 OSI Layers 58 Networking between Virtual Machines 61 Security 63 The Security Triad 63 Intrusion Detection and Prevention Systems 63 False Positives and False Negatives 64 Malware 64 Spoofing and Poisoning 66 Packet and Protocol Analysis 66 A Protocol Analysis Story 67 Ports and Protocols 71 Summary 73 Exercises 74 Chapter 4 Capturing Packets 75 Sniffing 76 Promiscuous Mode 76 Starting the First Capture 78 TShark 82 Dealing with the Network 86 Local Machine 87 Sniffing Localhost 88 Sniffing on Virtual Machine Interfaces 92 Sniffing with Hubs 96 SPAN Ports 98 Network Taps 101 Transparent Linux Bridges 103 Wireless Networks 105 Loading and Saving Capture Files 108 File Formats 108 Ring Buffers and Multiple Files 111 Recent Capture Files 116 Dissectors 118 W4SP Lab: Managing Nonstandard HTTP Traffic 118 Filtering SMB Filenames 120 Packet Colorization 123 Viewing Someone Else’s Captures 126 Summary 127 Exercises 128 Chapter 5 Diagnosing Attacks 129 Attack Type: Man-in-the-Middle 130 Why MitM Attacks Are Effective 130 How MitM Attacks Get Done: ARP 131 W4SP Lab: Performing an ARP MitM Attack 133 W4SP Lab: Performing a DNS MitM Attack 141 How to Prevent MitM Attacks 147 Attack Type: Denial of Service 148 Why DoS Attacks Are Effective 149 How DoS Attacks Get Done 150 How to Prevent DoS Attacks 155 Attack Type: Advanced Persistent Threat 156 Why APT Attacks Are Effective 156 How APT Attacks Get Done 157 Example APT Traffic in Wireshark 157 How to Prevent APT Attacks 161 Summary 162 Exercises 162 Chapter 6 Offensive Wireshark 163 Attack Methodology 163 Reconnaissance Using Wireshark 165 Evading IPS/IDS 168 Session Splicing and Fragmentation 168 Playing to the Host, Not the IDS 169 Covering Tracks and Placing Backdoors 169 Exploitation 170 Setting Up the W4SP Lab with Metasploitable 171 Launching Metasploit Console 171 VSFTP Exploit 172 Debugging with Wireshark 173 Shell in Wireshark 175 TCP Stream Showing a Bind Shell 176 TCP Stream Showing a Reverse Shell 183 Starting ELK 188 Remote Capture over SSH 190 Summary 191 Exercises 192 Chapter 7 Decrypting TLS, Capturing USB, Keyloggers, and Network Graphing 193 Decrypting SSL/TLS 193 Decrypting SSL/TLS Using Private Keys 195 Decrypting SSL/TLS Using Session Keys 199 USB and Wireshark 202 Capturing USB Traffic on Linux 203 Capturing USB Traffic on Windows 206 TShark Keylogger 208 Graphing the Network 212 Lua with Graphviz Library 213 Summary 218 Exercises 219 Chapter 8 Scripting with Lua 221 Why Lua? 222 Scripting Basics 223 Variables 225 Functions and Blocks 226 Loops 228 Conditionals 230 Setup 230 Checking for Lua Support 231 Lua Initialization 232 Windows Setup 233 Linux Setup 233 Tools 234 Hello World with TShark 236 Counting Packets Script 237 ARP Cache Script 241 Creating Dissectors for Wireshark 244 Dissector Types 245 Why a Dissector Is Needed 245 Experiment 253 Extending Wireshark 255 Packet Direction Script 255 Marking Suspicious Script 257 Snooping SMB File Transfers 260 Summary 262 Index 265
£34.00
John Wiley & Sons Inc Introduction to Network Security
Book SynopsisIntroductory textbook in the important area of network security for undergraduate and graduate students Comprehensively covers fundamental concepts with newer topics such as electronic cash, bit-coin, P2P, SHA-3, E-voting, and Zigbee security Fully updated to reflect new developments in network security Introduces a chapter on Cloud security, a very popular and essential topic Uses everyday examples that most computer users experience to illustrate important principles and mechanisms Features a companion website with Powerpoint slides for lectures and solution manuals to selected exercise problems, available at http://www.cs.uml.edu/~wang/NetSec Table of ContentsPreface xv About the Authors xix 1 Network Security Overview 1 1.1 Mission and Definitions 1 1.2 Common Attacks and Defense Mechanisms 3 1.2.1 Eavesdropping 3 1.2.2 Cryptanalysis 4 1.2.3 Password Pilfering 5 1.2.4 Identity Spoofing 13 1.2.5 Buffer-Overflow Exploitations 16 1.2.6 Repudiation 18 1.2.7 Intrusion 19 1.2.8 Traffic Analysis 19 1.2.9 Denial of Service Attacks 20 1.2.10 Malicious Software 22 1.3 Attacker Profiles 25 1.3.1 Hackers 25 1.3.2 Script Kiddies 26 1.3.3 Cyber Spies 26 1.3.4 Vicious Employees 27 1.3.5 Cyber Terrorists 27 1.3.6 Hypothetical Attackers 27 1.4 Basic Security Model 27 1.5 Security Resources 29 1.5.1 CERT 29 1.5.2 SANS Institute 29 1.5.3 Microsoft Security 29 1.5.4 NTBugtraq 29 1.5.5 Common Vulnerabilities and Exposures 30 1.6 Closing Remarks 30 1.7 Exercises 30 1.7.1 Discussions 30 1.7.2 Homework 31 2 Data Encryption Algorithms 45 2.1 Data Encryption Algorithm Design Criteria 45 2.1.1 ASCII Code 46 2.1.2 XOR Encryption 46 2.1.3 Criteria of Data Encryptions 48 2.1.4 Implementation Criteria 50 2.2 Data Encryption Standard 50 2.2.1 Feistel’s Cipher Scheme 50 2.2.2 DES Subkeys 52 2.2.3 DES Substitution Boxes 54 2.2.4 DES Encryption 55 2.2.5 DES Decryption and Correctness Proof 57 2.2.6 DES Security Strength 58 2.3 Multiple DES 59 2.3.1 Triple-DES with Two Keys 59 2.3.2 2DES and 3DES/3 59 2.3.3 Meet-in-the-Middle Attacks on 2DES 60 2.4 Advanced Encryption Standard 61 2.4.1 AES Basic Structures 61 2.4.2 AES S-Boxes 63 2.4.3 AES-128 Round Keys 65 2.4.4 Add Round Keys 66 2.4.5 Substitute-Bytes 67 2.4.6 Shift-Rows 67 2.4.7 Mix-Columns 67 2.4.8 AES-128 Encryption 68 2.4.9 AES-128 Decryption and Correctness Proof 69 2.4.10 Galois Fields 70 2.4.11 Construction of the AES S-Box and Its Inverse 73 2.4.12 AES Security Strength 74 2.5 Standard Block Cipher Modes of Operations 74 2.5.1 Electronic-Codebook Mode 75 2.5.2 Cipher-Block-Chaining Mode 75 2.5.3 Cipher-Feedback Mode 75 2.5.4 Output-Feedback Mode 76 2.5.5 Counter Mode 76 2.6 Offset Codebook Mode of Operations 77 2.6.1 Basic Operations 77 2.6.2 OCB Encryption and Tag Generation 78 2.6.3 OCB Decryption and Tag Verification 79 2.7 Stream Ciphers 80 2.7.1 RC4 Stream Cipher 80 2.7.2 RC4 Security Weaknesses 81 2.8 Key Generations 83 2.8.1 ANSI X9.17 PRNG 83 2.8.2 BBS Pseudorandom Bit Generator 83 2.9 Closing Remarks 84 2.10 Exercises 85 2.10.1 Discussions 85 2.10.2 Homework 85 3 Public-Key Cryptography and Key Management 93 3.1 Concepts of Public-Key Cryptography 93 3.2 Elementary Concepts and Theorems in Number Theory 95 3.2.1 Modular Arithmetic and Congruence Relations 96 3.2.2 Modular Inverse 96 3.2.3 Primitive Roots 98 3.2.4 Fast Modular Exponentiation 98 3.2.5 Finding Large Prime Numbers 100 3.2.6 The Chinese Remainder Theorem 101 3.2.7 Finite Continued Fractions 102 3.3 Diffie-Hellman Key Exchange 103 3.3.1 Key Exchange Protocol 103 3.3.2 Man-in-the-Middle Attacks 104 3.3.3 Elgamal PKC 106 3.4 RSA Cryptosystem 106 3.4.1 RSA Key Pairs, Encryptions, and Decryptions 106 3.4.2 RSA Parameter Attacks 109 3.4.3 RSA Challenge Numbers 112 3.5 Elliptic-Curve Cryptography 113 3.5.1 Commutative Groups on Elliptic Curves 113 3.5.2 Discrete Elliptic Curves 115 3.5.3 ECC Encodings 116 3.5.4 ECC Encryption and Decryption 117 3.5.5 ECC Key Exchange 118 3.5.6 ECC Strength 118 3.6 Key Distributions and Management 118 3.6.1 Master Keys and Session Keys 119 3.6.2 Public-Key Certificates 119 3.6.3 CA Networks 120 3.6.4 Key Rings 121 3.7 Closing Remarks 123 3.8 Exercises 123 3.8.1 Discussions 123 3.8.2 Homework 124 4 Data Authentication 129 4.1 Cryptographic Hash Functions 129 4.1.1 Design Criteria of Cryptographic Hash Functions 130 4.1.2 Quest for Cryptographic Hash Functions 131 4.1.3 Basic Structure of Standard Hash Functions 132 4.1.4 SHA-512 132 4.1.5 WHIRLPOOL 135 4.1.6 SHA-3 Standard 139 4.2 Cryptographic Checksums 143 4.2.1 Exclusive-OR Cryptographic Checksums 143 4.2.2 Design Criteria of MAC Algorithms 144 4.2.3 Data Authentication Algorithm 144 4.3 HMAC 144 4.3.1 Design Criteria of HMAC 144 4.3.2 HMAC Algorithm 145 4.4 Birthday Attacks 145 4.4.1 Complexity of Breaking Strong Collision Resistance 146 4.4.2 Set Intersection Attack 147 4.5 Digital Signature Standard 149 4.5.1 Signing 149 4.5.2 Signature Verifying 150 4.5.3 Correctness Proof of Signature Verification 150 4.5.4 Security Strength of DSS 151 4.6 Dual Signatures and Electronic Transactions 151 4.6.1 Dual Signature Applications 152 4.6.2 Dual Signatures and Electronic Transactions 152 4.7 Blind Signatures and Electronic Cash 153 4.7.1 RSA Blind Signatures 153 4.7.2 Electronic Cash 154 4.7.3 Bitcoin 156 4.8 Closing Remarks 158 4.9 Exercises 158 4.9.1 Discussions 158 4.9.2 Homework 158 5 Network Security Protocols in Practice 165 5.1 Crypto Placements in Networks 165 5.1.1 Crypto Placement at the Application Layer 168 5.1.2 Crypto Placement at the Transport Layer 168 5.1.3 Crypto Placement at the Network Layer 168 5.1.4 Crypto Placement at the Data-Link Layer 169 5.1.5 Implementations of Crypto Algorithms 169 5.2 Public-Key Infrastructure 170 5.2.1 X.509 Public-Key Infrastructure 170 5.2.2 X.509 Certificate Formats 171 5.3 IPsec: A Security Protocol at the Network Layer 173 5.3.1 Security Association 173 5.3.2 Application Modes and Security Associations 174 5.3.3 AH Format 176 5.3.4 ESP Format 178 5.3.5 Secret Key Determination and Distribution 179 5.4 SSL/TLS: Security Protocols at the Transport Layer 183 5.4.1 SSL Handshake Protocol 184 5.4.2 SSL Record Protocol 187 5.5 PGP and S/MIME: Email Security Protocols 188 5.5.1 Basic Email Security Mechanisms 189 5.5.2 PGP 190 5.5.3 S/MIME 191 5.6 Kerberos: An Authentication Protocol 192 5.6.1 Basic Ideas 192 5.6.2 Single-Realm Kerberos 193 5.6.3 Multiple-Realm Kerberos 195 5.7 SSH: Security Protocols for Remote Logins 197 5.8 Electronic Voting Protocols 198 5.8.1 Interactive Proofs 198 5.8.2 Re-encryption Schemes 199 5.8.3 Threshold Cryptography 200 5.8.4 The Helios Voting Protocol 202 5.9 Closing Remarks 204 5.10 Exercises 204 5.10.1 Discussions 204 5.10.2 Homework 204 6 Wireless Network Security 211 6.1 Wireless Communications and 802.11 WLAN Standards 211 6.1.1 WLAN Architecture 212 6.1.2 802.11 Essentials 213 6.1.3 Wireless Security Vulnerabilities 214 6.2 Wired Equivalent Privacy 215 6.2.1 Device Authentication and Access Control 215 6.2.2 Data Integrity Check 215 6.2.3 LLC Frame Encryption 216 6.2.4 Security Flaws of WEP 218 6.3 Wi-Fi Protected Access 221 6.3.1 Device Authentication and Access Controls 221 6.3.2 TKIP Key Generations 222 6.3.3 TKIP Message Integrity Code 224 6.3.4 TKIP Key Mixing 226 6.3.5 WPA Encryption and Decryption 229 6.3.6 WPA Security Strength and Weaknesses 229 6.4 IEEE 802.11i/WPA2 230 6.4.1 Key Generations 231 6.4.2 CCMP Encryptions and MIC 231 6.4.3 802.11i Security Strength and Weaknesses 232 6.5 Bluetooth Security 233 6.5.1 Piconets 233 6.5.2 Secure Pairings 235 6.5.3 SAFER+ Block Ciphers 235 6.5.4 Bluetooth Algorithms E1, E21, and E22 238 6.5.5 Bluetooth Authentication 240 6.5.6 A PIN Cracking Attack 241 6.5.7 Bluetooth Secure Simple Pairing 242 6.6 ZigBee Security 243 6.6.1 Joining a Network 243 6.6.2 Authentication 244 6.6.3 Key Establishment 244 6.6.4 Communication Security 245 6.7 Wireless Mesh Network Security 245 6.7.1 Blackhole Attacks 247 6.7.2 Wormhole Attacks 247 6.7.3 Rushing Attacks 247 6.7.4 Route-Error-Injection Attacks 247 6.8 Closing Remarks 248 6.9 Exercises 248 6.9.1 Discussions 248 6.9.2 Homework 248 7 Cloud Security 253 7.1 The Cloud Service Models 253 7.1.1 The REST Architecture 254 7.1.2 Software-as-a-Service 254 7.1.3 Platform-as-a-Service 254 7.1.4 Infrastructure-as-a-Service 254 7.1.5 Storage-as-a-Service 255 7.2 Cloud Security Models 255 7.2.1 Trusted-Third-Party 255 7.2.2 Honest-but-Curious 255 7.2.3 Semi-Honest-but-Curious 255 7.3 Multiple Tenancy 256 7.3.1 Virtualization 256 7.3.2 Attacks 258 7.4 Access Control 258 7.4.1 Access Control in Trusted Clouds 259 7.4.2 Access Control in Untrusted Clouds 260 7.5 Coping with Untrusted Clouds 263 7.5.1 Proofs of Storage 264 7.5.2 Secure Multiparty Computation 265 7.5.3 Oblivious Random Access Machines 268 7.6 Searchable Encryption 271 7.6.1 Keyword Search 271 7.6.2 Phrase Search 274 7.6.3 Searchable Encryption Attacks 275 7.6.4 Searchable Symmetric Encryptions for the SHBC Clouds 276 7.7 Closing Remarks 280 7.8 Exercises 280 7.8.1 Discussions 280 7.8.2 Homework 280 8 Network Perimeter Security 283 8.1 General Firewall Framework 284 8.2 Packet Filters 285 8.2.1 Stateless Filtering 285 8.2.2 Stateful Filtering 287 8.3 Circuit Gateways 288 8.3.1 Basic Structures 288 8.3.2 SOCKS 290 8.4 Application Gateways 290 8.4.1 Cache Gateways 291 8.4.2 Stateful Packet Inspections 291 8.5 Trusted Systems and Bastion Hosts 291 8.5.1 Trusted Operating Systems 292 8.5.2 Bastion hosts and Gateways 293 8.6 Firewall Configurations 294 8.6.1 Single-Homed Bastion Host System 294 8.6.2 Dual-Homed Bastion Host System 294 8.6.3 Screened Subnets 296 8.6.4 Demilitarized Zones 297 8.6.5 Network Security Topology 297 8.7 Network Address Translations 298 8.7.1 Dynamic NAT 298 8.7.2 Virtual Local Area Networks 298 8.7.3 Small Office and Home Office Firewalls 299 8.8 Setting Up Firewalls 299 8.8.1 Security Policy 300 8.8.2 Building a Linux Stateless Packet Filter 300 8.9 Closing Remarks 301 8.10 Exercises 301 8.10.1 Discussions 301 8.10.2 Homework 302 9 Intrusion Detections 309 9.1 Basic Ideas of Intrusion Detection 309 9.1.1 Basic Methodology 310 9.1.2 Auditing 311 9.1.3 IDS Components 312 9.1.4 IDS Architecture 313 9.1.5 Intrusion Detection Policies 315 9.1.6 Unacceptable Behaviors 316 9.2 Network-Based Detections and Host-Based Detections 316 9.2.1 Network-Based Detections 317 9.2.2 Host-Based Detections 318 9.3 Signature Detections 319 9.3.1 Network Signatures 320 9.3.2 Host-Based Signatures 321 9.3.3 Outsider Behaviors and Insider Misuses 322 9.3.4 Signature Detection Systems 323 9.4 Statistical Analysis 324 9.4.1 Event Counter 324 9.4.2 Event Gauge 324 9.4.3 Event Timer 325 9.4.4 Resource Utilization 325 9.4.5 Statistical Techniques 325 9.5 Behavioral Data Forensics 325 9.5.1 Data Mining Techniques 326 9.5.2 A Behavioral Data Forensic Example 326 9.6 Honeypots 327 9.6.1 Types of Honeypots 327 9.6.2 Honeyd 328 9.6.3 MWCollect Projects 331 9.6.4 Honeynet Projects 331 9.7 Closing Remarks 331 9.8 Exercises 332 9.8.1 Discussions 332 9.8.2 Homework 332 10 The Art of Anti-Malicious Software 337 10.1 Viruses 337 10.1.1 Virus Types 338 10.1.2 Virus Infection Schemes 340 10.1.3 Virus Structures 341 10.1.4 Compressor Viruses 342 10.1.5 Virus Disseminations 343 10.1.6 Win32 Virus Infection Dissection 344 10.1.7 Virus Creation Toolkits 345 10.2 Worms 346 10.2.1 Common Worm Types 346 10.2.2 The Morris Worm 346 10.2.3 The Melissa Worm 347 10.2.4 The Code Red Worm 348 10.2.5 The Conficker Worm 348 10.2.6 Other Worms Targeted at Microsoft Products 349 10.2.7 Email Attachments 350 10.3 Trojans 351 10.3.1 Ransomware 353 10.4 Malware Defense 353 10.4.1 Standard Scanning Methods 354 10.4.2 Anti-Malicious-Software Products 354 10.4.3 Malware Emulator 355 10.5 Hoaxes 356 10.6 Peer-to-Peer Security 357 10.6.1 P2P Security Vulnerabilities 357 10.6.2 P2P Security Measures 359 10.6.3 Instant Messaging 359 10.6.4 Anonymous Networks 359 10.7 Web Security 360 10.7.1 Basic Types of Web Documents 361 10.7.2 Security of Web Documents 362 10.7.3 ActiveX 363 10.7.4 Cookies 364 10.7.5 Spyware 365 10.7.6 AJAX Security 365 10.7.7 Safe Web Surfing 367 10.8 Distributed Denial-of-Service Attacks 367 10.8.1 Master-Slave DDoS Attacks 367 10.8.2 Master-Slave-Reflector DDoS Attacks 367 10.8.3 DDoS Attacks Countermeasures 368 10.9 Closing Remarks 370 10.10 Exercises 370 10.10.1 Discussions 370 10.10.2 Homework 370 Appendix A 7-bit ASCII code 377 Appendix B SHA-512 Constants (in Hexadecimal) 379 Appendix C Data Compression Using ZIP 381 Exercise 382 Appendix D Base64 Encoding 383 Exercise 384 Appendix E Cracking WEP Keys Using WEPCrack 385 E.1 System Setup 385 AP 385 Trim Size: 170mm x 244mm Wang ftoc.tex V1 - 04/21/2015 10:14 P.M. Page xiv xiv Contents User’s Network Card 385 Attacker’s Network Card 386 E.2 Experiment Details 386 Step 1: Initial Setup 386 Step 2: Attacker Setup 387 Step 3: Collecting Weak Initialization Vectors 387 Step 4: Cracking 387 E.3 Sample Code 388 Appendix F Acronyms 393 Further Reading 399 Index 406
£95.00
John Wiley & Sons Inc Phishing Dark Waters
Book SynopsisAn essential anti-phishing desk reference for anyone with an email address Phishing Dark Waters addresses the growing and continuing scourge of phishing emails, and provides actionable defensive techniques and tools to help you steer clear of malicious emails. Phishing is analyzed from the viewpoint of human decision-making and the impact of deliberate influence and manipulation on the recipient. With expert guidance, this book provides insight into the financial, corporate espionage, nation state, and identity theft goals of the attackers, and teaches you how to spot a spoofed e-mail or cloned website. Included are detailed examples of high profile breaches at Target, RSA, Coca Cola, and the AP, as well as an examination of sample scams including the Nigerian 419, financial themes, and post high-profile event attacks. Learn how to protect yourself and your organization using anti-phishing tools, and how to create your own phish to use as part of a security awareness Table of ContentsForeword xxiii Introduction xxvii Chapter 1 An Introduction to the Wild World of Phishing 1 Phishing 101 2 How People Phish 4 Examples 7 High-Profi le Breaches 7 Phish in Their Natural Habitat 10 Phish with Bigger Teeth 22 Spear Phishing 27 Summary 29 Chapter 2 The Psychological Principles of Decision-Making 33 Decision-Making: Small Bits 34 Cognitive Bias 35 Physiological States 37 External Factors 38 The Bottom Line About Decision-Making 39 It Seemed Like a Good Idea at the Time 40 How Phishers Bait the Hook 41 Introducing the Amygdala 44 The Guild of Hijacked Amygdalas 45 Putting a Leash on the Amygdala 48 Wash, Rinse, Repeat 49 Summary 50 Chapter 3 Influence and Manipulation 53 Why the Difference Matters to Us 55 How Do I Tell the Difference? 56 How Will We Build Rapport with Our Targets? 56 How Will Our Targets Feel After They Discover They’ve Been Tested? 56 What Is Our Intent? 57 But the Bad Guys Will Use Manipulation . . . 57 Lies, All Lies 58 P Is for Punishment 59 Principles of Influence 61 Reciprocity 61 Obligation 62 Concession 63 Scarcity 63 Authority 64 Consistency and Commitment 65 Liking 66 Social Proof 67 More Fun with Influence 67 Our Social Nature 67 Physiological Response 68 Psychological Response 69 Things to Know About Manipulation 70 Summary 71 Chapter 4 Lessons in Protection 75 Lesson One: Critical Thinking 76 How Can Attackers Bypass This Method? 77 Lesson Two: Learn to Hover 77 What If I Already Clicked the Link and I Think It’s Dangerous? 80 How Can Attackers Bypass This Method? 81 Lesson Three: URL Deciphering 82 How Can Attackers Bypass This Method? 85 Lesson Four: Analyzing E-mail Headers 85 How Can Attackers Bypass This Method? 90 Lesson Five: Sandboxing 90 How Can Attackers Bypass This Method? 91 The “Wall of Sheep,” or a Net of Bad Ideas 92 Copy and Paste Your Troubles Away 92 Sharing Is Caring 93 My Mobile Is Secure 94 A Good Antivirus Program Will Save You 94 Summary 95 Chapter 5 Plan Your Phishing Trip: Creating the Enterprise Phishing Program 97 The Basic Recipe 99 Why? 99 What’s the Theme? 102 The Big, Fat, Not-So-Legal Section 105 Developing the Program 107 Setting a Baseline 108 Setting the Difficulty Level 109 Writing the Phish 121 Tracking and Statistics 122 Reporting 125 Phish, Educate, Repeat 127 Summary 128 Chapter 6 The Good, the Bad, and the Ugly: Policies and More 131 Oh, the Feels: Emotion and Policies 132 The Definition 132 The Bad 133 Making It “Good” 133 The Boss Is Exempt 133 The Definition 134 The Bad 134 Making It “Good” 134 I’ll Just Patch One of the Holes 135 The Definition 135 The Bad 136 Making It “Good” 136 Phish Just Enough to Hate It 136 The Definition 137 The Bad 137 Making It “Good” 138 If You Spot a Phish, Call This Number 138 The Definition 139 The Bad 139 Making It “Good” 140 The Bad Guys Take Mondays Off 140 The Definition 141 The Bad 141 Making It “Good” 141 If You Can’t See It, You Are Safe 142 The Definition 142 The Bad 143 Making It “Good” 143 The Lesson for Us All 143 Summary 144 Chapter 7 The Professional Phisher’s Tackle Bag 147 Commercial Applications 149 Rapid7 Metasploit Pro 149 ThreatSim 152 PhishMe 158 Wombat PhishGuru 161 PhishLine 165 Open Source Applications 168 SET: Social-Engineer Toolkit 168 Phishing Frenzy 171 Comparison Chart 174 Managed or Not 176 Summary 177 Chapter 8 Phish Like a Boss 179 Phishing the Deep End 180 Understand What You’re Dealing With 180 Set Realistic Goals for Your Organization 182 Plan Your Program 183 Understand the Stats 183 Respond Appropriately 184 Make the Choice: Build Inside or Outside 186 Summary 187 Index 189
£22.94
John Wiley & Sons Inc The Mobile Application Hackers Handbook
Book SynopsisSee your app through a hacker''s eyes to find the real sources of vulnerability The Mobile Application Hacker''s Handbook is a comprehensive guide to securing all mobile applications by approaching the issue from a hacker''s point of view. Heavily practical, this book provides expert guidance toward discovering and exploiting flaws in mobile applications on the iOS, Android, Blackberry, and Windows Phone platforms. You will learn a proven methodology for approaching mobile application assessments, and the techniques used to prevent, disrupt, and remediate the various types of attacks. Coverage includes data storage, cryptography, transport layers, data leakage, injection attacks, runtime manipulation, security controls, and cross-platform apps, with vulnerabilities highlighted and detailed information on the methods hackers use to get around standard security. Mobile applications are widely used in the consumer and enterprise markets to process and/or store sensTrade Review“..there is a shocking lack of published material on the topic of mobile security. The Mobile Application Hacker’s Handbook seeks to change this and be a positive movement to educating others in the topic of mobile security awareness.” (Vigilance-Security Magazine, March 2015)Table of ContentsIntroduction xxxi Chapter 1 Mobile Application (In)security 1 The Evolution of Mobile Applications 2 Mobile Application Security 4 Summary 15 Chapter 2 Analyzing iOS Applications 17 Understanding the Security Model 17 Understanding iOS Applications 22 Jailbreaking Explained 29 Understanding the Data Protection API 43 Understanding the iOS Keychain 46 Understanding Touch ID 51 Reverse Engineering iOS Binaries 53 Summary 67 Chapter 3 Attacking iOS Applications 69 Introduction to Transport Security 69 Identifying Insecure Storage 81 Patching iOS Applications with Hopper 85 Attacking the iOS Runtime 92 Understanding Interprocess Communication 118 Attacking Using Injection 123 Summary 131 Chapter 4 Identifying iOS Implementation Insecurities 133 Disclosing Personally Identifi able Information 133 Identifying Data Leaks 136 Memory Corruption in iOS Applications 142 Summary 146 Chapter 5 Writing Secure iOS Applications 149 Protecting Data in Your Application 149 Avoiding Injection Vulnerabilities 156 Securing Your Application with Binary Protections 158 Summary 170 Chapter 6 Analyzing Android Applications 173 Creating Your First Android Environment 174 Understanding Android Applications 179 Understanding the Security Model 206 Reverse‐Engineering Applications 233 Summary 246 Chapter 7 Attacking Android Applications 247 Exposing Security Model Quirks 248 Attacking Application Components 255 Accessing Storage and Logging 304 Misusing Insecure Communications 312 Exploiting Other Vectors 326 Additional Testing Techniques 341 Summary 351 Chapter 8 Identifying and Exploiting Android Implementation Issues 353 Reviewing Pre‐Installed Applications 353 Exploiting Devices 365 Infiltrating User Data 416 Summary 426 Chapter 9 Writing Secure Android Applications 427 Principle of Least Exposure 427 Essential Security Mechanisms 429 Advanced Security Mechanisms 450 Slowing Down a Reverse Engineer 451 Summary 455 Chapter 10 Analyzing Windows Phone Applications 459 Understanding the Security Model 460 Understanding Windows Phone 8.x Applications 473 Developer Sideloading 483 Building a Test Environment 484 Analyzing Application Binaries 506 Summary 509 Chapter 11 Attacking Windows Phone Applications 511 Analyzing for Data Entry Points 511 Attacking Transport Security 525 Attacking WebBrowser and WebView Controls 534 Identifying Interprocess Communication Vulnerabilities 542 Attacking XML Parsing 560 Attacking Databases 568 Attacking File Handling 573 Patching .NET Assemblies 578 Summary 585 Chapter 12 Identifying Windows Phone Implementation Issues 587 Identifying Insecure Application Settings Storage 588 Identifying Data Leaks 591 Identifying Insecure Data Storage 593 Insecure Random Number Generation 601 Insecure Cryptography and Password Use 605 Identifying Native Code Vulnerabilities 616 Summary 626 Chapter 13 Writing Secure Windows Phone Applications 629 General Security Design Considerations 629 Storing and Encrypting Data Securely 630 Secure Random Number Generation 634 Securing Data in Memory and Wiping Memory 635 Avoiding SQLite Injection 636 Implementing Secure Communications 638 Avoiding Cross‐Site Scripting in WebViews and WebBrowser Components 640 Secure XML Parsing 642 Clearing Web Cache and Web Cookies 642 Avoiding Native Code Bugs 644 Using Exploit Mitigation Features 644 Summary 645 Chapter 14 Analyzing BlackBerry Applications 647 Understanding BlackBerry Legacy 647 Understanding BlackBerry 10 652 Understanding the BlackBerry 10 Security Model 660 BlackBerry 10 Jailbreaking 665 Using Developer Mode 666 The BlackBerry 10 Device Simulator 667 Accessing App Data from a Device 668 Accessing BAR Files 669 Looking at Applications 670 Summary 678 Chapter 15 Attacking BlackBerry Applications 681 Traversing Trust Boundaries 682 Summary 691 Chapter 16 Identifying BlackBerry Application Issues 693 Limiting Excessive Permissions 694 Resolving Data Storage Issues 695 Checking Data Transmission 696 Handling Personally Identifiable Information and Privacy 698 Ensuring Secure Development 700 Summary 704 Chapter 17 Writing Secure BlackBerry Applications 705 Securing BlackBerry OS 7.x and Earlier Legacy Java Applications 706 General Java Secure Development Principals 706 Making Apps Work with the Application Control Policies 706 Memory Cleaning 707 Controlling File Access and Encryption 709 SQLite Database Encryption 710 Persistent Store Access Control and Encryption 711 Securing BlackBerry 10 Native Applications 716 Securing BlackBerry 10 Cascades Applications 723 Securing BlackBerry 10 HTML5 and JavaScript (WebWorks) Applications 724 Securing Android Applications on BlackBerry 10 726 Summary 726 Chapter 18 Cross‐Platform Mobile Applications 729 Introduction to Cross‐Platform Mobile Applications 729 Bridging Native Functionality 731 Exploring PhoneGap and Apache Cordova 736 Summary 741 Index 743
£47.50
John Wiley & Sons Inc Network Attacks and Exploitation
Book SynopsisIncorporate offense and defense for a more effective network security strategy Network Attacks and Exploitation provides a clear, comprehensive roadmap for developing a complete offensive and defensive strategy to engage in or thwart hacking and computer espionage. Written by an expert in both government and corporate vulnerability and security operations, this guide helps you understand the principles of the space and look beyond the individual technologies of the moment to develop durable comprehensive solutions. Numerous real-world examples illustrate the offensive and defensive concepts at work, including Conficker, Stuxnet, the Target compromise, and more. You will find clear guidance toward strategy, tools, and implementation, with practical advice on blocking systematic computer espionage and the theft of information from governments, companies, and individuals. Assaults and manipulation of computer networks are rampant around the world. One of the biggeTable of ContentsIntroduction xvii Chapter 1 Computer Network Exploitation 1 Operations 4 Operational Objectives 5 Strategic Collection 6 Directed Collection 7 Non-Kinetic Computer Network Attack (CNA) 7 Strategic Access 9 Positional Access 9 CNE Revisited 11 A Framework for Computer Network Exploitation 11 First Principles 12 Principles 12 Themes 14 Summary 15 Chapter 2 The Attacker 17 Principle of Humanity 17 Life Cycle of an Operation 18 Stage 1: Targeting 19 Stage 2: Initial Access 22 Stage 3: Persistence 24 Stage 4: Expansion 25 Stage 5: Exfiltration 26 Stage 6: Detection 26 Principle of Access 27 Inbound Access 27 Outbound Access 29 Bidirectional Access 35 No Outside Access 35 Access Summary 36 Principle of Economy 37 Time 37 Targeting Capabilities 37 Exploitation Expertise 38 Networking Expertise 38 Software Development Expertise 39 Operational Expertise 40 Operational Analysis Expertise 40 Technical Resources 41 Economy Summary 41 Attacker Structure 41 Summary 43 Chapter 3 The Defender 45 Principle of Humanity 45 Humanity and Network Layout 46 Humanity and Security Policy 47 Principle of Access 48 The Defensive Life Cycle 49 Principle of Economy 51 The Helpful Defender 53 Summary 54 Chapter 4 Asymmetries 55 False Asymmetries 56 Advantage Attacker 59 Motivation 60 Initiative 61 Focus 62 Effect of Failure 62 Knowledge of Technology 64 Analysis of Opponent 64 Tailored Software 65 Rate of Change 66 Advantage Defender 67 Network Awareness 68 Network Posture 68 Advantage Indeterminate 69 Time 69 Efficiency 70 Summary 71 Chapter 5 Attacker Frictions 73 Mistakes 74 Complexity 74 Flawed Attack Tools 75 Upgrades and Updates 77 Other Attackers 78 The Security Community 80 Bad Luck 81 Summary 81 Chapter 6 Defender Frictions 83 Mistakes 83 Flawed Software 84 Inertia 86 The Security Community 87 Complexity 89 Users 91 Bad Luck 92 Summary 92 Chapter 7 Offensive Strategy 93 Principle 1: Knowledge 95 Measuring Knowledge 96 Principle 2: Awareness 97 Measuring Awareness 98 Principle 3: Innovation 98 Measuring Innovation 99 Defensive Innovation 100 Principle 4: Precaution 101 Measuring Precaution 103 Principle 5: Operational Security 105 Minimizing Exposure 106 Minimizing Recognition 107 Controlling Reaction 108 Measuring Operational Security 109 Principle 6: Program Security 110 Attacker Liabilities 110 Program Security Costs 112 Measuring Program Security 120 Crafting an Offensive Strategy 121 Modular Frameworks 124 A Note on Tactical Decisions 126 Summary 127 Chapter 8 Defensive Strategy 129 Failed Tactics 130 Antivirus and Signature-Based Detection 130 Password Policies 132 User Training 134 Crafting a Defensive Strategy 135 Cloud-Based Security 143 Summary 145 Chapter 9 Offensive Case Studies 147 Stuxnet 148 Access 148 Economy 149 Humanity 149 Knowledge 149 Awareness 149 Precaution 150 Innovation 151 Operational Security 151 Program Security 153 Stuxnet Summary 154 Flame 154 Gauss 157 Dragonfly 159 Red October 160 APT 1 162 Axiom 164 Summary 165 Epilogue 167 Appendix Attack Tools 169 Antivirus Defeats 169 Audio/Webcam Recording 170 Backdoor 170 Bootkit 171 Collection Tools 171 Exploits 171 Fuzzer 172 Hardware-based Trojan 172 Implant 173 Keystroke Logger 173 Network Capture 173 Network Survey 173 Network Tunnel 174 Password Dumpers and Crackers 174 Packer 175 Persistence Mechanism 175 Polymorphic Code Generator 177 Rootkit 178 Screen Scraper 178 System Survey 178 Vulnerability Scanner 178 References 179 Bibliography 189 Index 193
£34.20
John Wiley & Sons Inc Fundamentals of Big Data Network Analysis for
Book SynopsisPresents the methodology of big data analysis using examples from research and industry There are large amounts of data everywhere, and the ability to pick out crucial information is increasingly important. Contrary to popular belief, not all information is useful; big data network analysis assumes that data is not only large, but also meaningful, and this book focuses on the fundamental techniques required to extract essential information from vast datasets. Featuring case studies drawn largely from the iron and steel industries, this book offers practical guidance which will enable readers to easily understand big data network analysis. Particular attention is paid to the methodology of network analysis, offering information on the method of data collection, on research design and analysis, and on the interpretation of results. A variety of programs including UCINET, NetMiner, R, NodeXL, and Gephi for network analysis are covered in detail. Fundamentals of Big Data Network AnalTable of ContentsPreface ix About the Authors xi List of Figures xiii List of Tables xvii 1 Why Big Data? 1 1.1 Big Data 1 1.2 What Creates Big Data? 6 1.3 How Do We Use Big Data? 9 1.4 Essential Issues Related to Big Data 13 References 14 2 Basic Programs for Analyzing Networks 15 2.1 UCINET 15 2.2 NetMiner 20 2.3 R 22 2.4 Gephi 28 2.5 NodeXL 31 References 32 3 Understanding Network Analysis 35 3.1 Defining Social Network Analysis 35 3.2 Basic SNA Concepts 37 3.2.1 Basic Terminology 37 3.2.2 Representation of a Network 38 3.3 Social Network Data 40 3.3.1 One]Mode and Two]Mode Networks 40 3.3.2 Attributes and Weights 42 3.3.3 Network Data Form 42 References 44 4 Research Methods Using SNA 45 4.1 SNA Research Procedures 46 4.2 Identifying the Research Problem and Developing Hypotheses 47 4.2.1 Identifying the Research Problem 47 4.2.2 Developing Hypotheses 47 4.3 Research Design 49 4.3.1 Defining the Network Model 49 4.3.2 Establishing Network Boundaries 51 4.3.3 Measurement Evaluation 52 4.4 Acquisition of Network Data 54 4.4.1 Survey 54 4.4.2 Interview, Observation, and Experiment 55 4.4.3 Existing Data 56 4.5 Data Cleansing 58 4.5.1 Extraction of the Node and Link 59 4.5.2 Merging and Separation of Data 59 4.5.3 Directional Transformation in the Link 61 4.5.4 Transformation of the Weights in Links 64 4.5.5 Transformation of the Two]Mode Network to a One]Mode Network 66 References 69 5 Position and Structure 71 5.1 Position 71 5.1.1 Degree Centrality 72 5.1.2 Closeness Centrality 82 5.1.3 Betweenness Centrality 84 5.1.4 Prestige Centrality 85 5.1.5 Broker 88 5.2 Cohesive Subgroup 91 5.2.1 Component 91 5.2.2 Community 92 5.2.3 Clique 93 5.2.4 k]Core 95 References 96 6 Connectivity and Role 97 6.1 Connection Analysis 98 6.1.1 Connectivity 98 6.1.2 Reciprocity 99 6.1.3 Transitivity 102 6.1.4 Assortativity 104 6.1.5 Network Properties 104 6.2 Role 104 6.2.1 Structural Equivalence 105 6.2.2 Automorphic Equivalence 107 6.2.3 Role Equivalence 109 6.2.4 Regular Equivalence 111 6.2.5 Block Modeling 115 References 117 7 Data Structure in NetMiner 119 7.1 Sample Data 119 7.1.1 01.Org_Net_Tiny1 120 7.1.2 02.Org_Net_Tiny2 120 7.1.3 03.Org_Net_Tiny3 121 7.2 Main Concept 122 7.2.1 Data Structure 122 7.2.2 Creating Data 124 7.2.3 Inserting Data 125 7.2.4 Importing Data 129 7.3 Data Preprocessing 130 7.3.1 Change of Link 130 7.3.2 Extraction and Reordering of the Node and Link 133 7.3.3 Data Merge and Split 136 Reference 140 8 Network Analysis Using NetMiner 141 8.1 Centrality and Cohesive Subgroup 141 8.1.1 Centrality 141 8.1.2 Cohesive Subgroup 147 8.2 Connectivity and Equivalence 153 8.2.1 Connectivity 153 8.2.2 Equivalence 156 8.3 Visualization and Exploratory Analysis 161 8.3.1 Visualization 161 8.3.2 Transformation of the Two]Mode Network to a One]Mode Network 168 Appendix A Visualization 171 A.1 Spring Algorithm 171 A.2 Multidimensional Scaling Algorithm 173 A.3 Cluster Algorithm 173 A.4 Layered Algorithm 174 A.5 Circular Algorithm 174 A.6 Simple Algorithm 175 References 176 Appendix B Case Study: Knowledge Structure of Steel Research 179 Index 193
£48.40
John Wiley & Sons Inc Communicating in Risk Crisis and High Stress
Book SynopsisTable of ContentsA Note from the Series Editor xiii Acknowledgments xv Author Biography xvii 1 The Critical Role of Risk, High Concern, and Crisis Communication 1 1.1 Case Diary: A Collision of Facts and Perceptions 2 1.2 What Will Readers Find in This Book? 3 1.3 Why You Will Use This Book 4 1.4 The Need for This Book – Now 5 1.4.1 New Literature, New Research 5 1.4.2 Changes in the Communications Landscape 6 1.4.3 Changes in Journalism and the Perception of Facts 7 1.4.4 Changes in Laws, Regulations, and Societal Expectations 7 1.4.5 Changes in Concerns about Health, Safety, and the Environment 7 1.4.6 Changes in Levels of Trust 7 1.4.7 Changes in the Global Political Environment 8 1.4.8 The COVID- 19 Pandemic and the Changed Communication Landscape 8 2 Core Concepts 11 2.1 Case Diary: Recognizing Change as a High Concern Issue 11 2.2 Defining the Concept and Term Risk 13 2.3 Defining the Concept and Term Risk Communication 14 2.4 Risk Communication and Its Relationship to Risk Analysis 17 2.5 Defining the Concepts and Terms High Concern and High Concern Communication 19 2.6 Defining the Concept and Term Crisis 22 2.7 Defining the Concept and Term Crisis Communication 24 2.8 Chapter Resources 25 Endnotes 31 3 An Overview of Risk Communication 33 3.1 Case Diary: Complex Issues Destroy Homes 33 3.2 Challenges and Difficulties Faced in Communicating Risk Information 35 3.2.1 Characteristics and Limitations of Scientific and Technical Data about Risks 35 3.2.2 Characteristics and Limitations of Spokespersons in Communicating Information about Risks 35 3.2.2.1 Case Study: “Go Hard, Go Early”: Risk Communication Lessons from New Zealand’s Response to COVID-19 37 3.2.3 Characteristics and Limitations of Risk Management Regulations and Standards 41 3.2.3.1 Debates and Disagreements 41 3.2.3.2 Limited Resources for Risk Assessment and Management 41 3.2.3.3 Underestimating the Difficulty of and Need for Risk Communication 42 3.2.3.4 Lack of Coordination and Collaboration 42 3.2.4 Characteristics and Limitations of Traditional Media Channels in Communicating Information about Risks 42 3.2.5 Characteristics and Limitations of Social Media Channels in Communicating Information about Risks 43 3.2.6 Characteristics and Limitations of People in their Ability to Evaluate and Interpret Risk Information 44 3.3 Changes in How the Brain Processes Information Under Conditions of High Stress 48 3.4 Risk Communication Theory 49 3.4.1 Trust Determination Theory 49 3.4.2 Negative Dominance Theory 50 3.4.3 Mental Noise Theory 50 3.4.4 Risk Perception Theory 50 3.5 Risk Communication Principles and Guidelines 55 3.5.1 Principle 1. Accept and Involve All Interested and Affected Persons as Legitimate Partners 55 3.5.2 Principle 2. Plan Carefully and Evaluate Performance 55 3.5.3 Principle 3. Listen to Your Audience 57 3.5.4 Principle 4. Be Honest, Frank, and Open 57 3.5.5 Principle 5. Coordinate and Collaborate with Other Credible Sources 58 3.5.6 Principle 6. Meet the Needs of Traditional and Social Media 58 3.5.7 Principle 7. Speak Clearly and with Compassion 58 3.6 Key Takeaway Concepts and Conclusions from this Overview Chapter 59 3.7 Chapter Resources 59 Endnotes 66 4 Development of Risk Communication Theory and Practice 69 4.1 Case Diary: Origin Story 69 4.2 Introduction 70 4.2.1 Historical Phase 1: Presenting Risk Numbers 71 4.2.2 Historical Phase 2: Listening and Planning 71 4.2.3 Historical Phase 3: Stakeholder Engagement 72 4.2.4 Covello and Sandman’s Four Stages of Risk Communication 72 4.2.4.1 Stage 1: Ignore the Public 73 4.2.4.2 Stage 2: Explaining Risk Data Better 73 4.2.4.3 Stage 3: Stakeholder Engagement 77 4.2.4.4 Stage 4: Empowerment 78 4.3 Summary 79 4.4 Chapter Resources 79 Endnotes 83 5 Stakeholder Engagement and Empowerment 87 5.1 Case Diary: A Town Hall Public Meeting Goes Very Wrong 87 5.2 Introduction 89 5.3 Levels of Stakeholder Engagement 91 5.3.1 Types of Stakeholder Engagement 93 5.4 Benefits of Stakeholder Engagement 95 5.5 Limitations and Challenges of Stakeholder Engagement 96 5.6 Techniques and Approaches for Effective Stakeholder Engagement 97 5.7 Meetings with Stakeholders 100 5.7.1 Town Hall Meetings 101 5.7.2 Open House Meetings/Information Workshops 102 5.7.3 Tips for Meetings with Stakeholders 102 5.8 Chapter Resources 104 Endnotes 107 6 Communicating in a Crisis 111 6.1 Case Diary: The Challenge of Partnership in a Crisis 112 6.2 The Three Phases of a Crisis 113 6.3 Communication in the Precrisis Preparedness Phase 115 6.3.1 Precrisis Communication Activity: Identifying Potential Crises 117 6.3.2 Case Study: The 2010 BP Deepwater Horizon Oil Spill 118 6.3.3 Precrisis Communication Activity: Identify Goals and Objectives 120 6.3.4 Precrisis Communication Activity: Develop a Crisis Communication Plan 121 6.3.5 Precrisis Communication Activity: Identify, Train, and Test Crisis Communication Spokespersons 124 6.3.6 Precrisis Communication Activity: Engaging Stakeholders 124 6.3.7 Precrisis Communication Activity: Identifying Stakeholders’ Questions and Concerns 126 6.3.8 Drafting Messages for Anticipated Stakeholder Questions and Concerns 126 6.3.9 Precrisis Communication Activity: Conducting Exercises to Test the Crisis Communication Plan 128 6.3.10 Precrisis Communication Activity: Incident Command System (ICS) and the Joint Information Center (JIC) 129 6.4 Communications in the Crisis Response Phase 130 6.4.1 Case Study: Lac-Mégantic Rail Tragedy 134 6.4.2 Disaster and Emergency Warnings 136 6.4.2.1 Designing Effective Warnings 137 6.4.2.2 Steps in the Disaster and Emergency Warning Process 137 6.5 Communicating Effectively about Blame, Accountability, and Responsibility 139 6.6 Communicating an Apology 140 6.6.1 Case Study: Maple Leaf Foods and the Listeria Food Contamination Crisis 141 6.6.2 Case Study: Southwest Airlines Apology 144 6.7 Communications in the Postcrisis Recovery Phase 145 6.7.1 Case Study and Case Diary: New York City’s Communication Trials by Fire, from West Nile to 9/11 146 6.7.2 Case Study: Johnson & Johnson and the Tylenol Tampering Case 147 6.7.3 Case Study: Flint, Michigan and Contaminated Drinking Water 149 6.8 Chapter Resources 151 Endnotes 159 7 Foundational Principles: Perceptions, Biases, and Information Filters 165 7.1 Case Diary: “A” Is for “Apples” 165 7.2 Message Perception and Reception in High Concern Situations 168 7.3 Message Filter Theory: A Set of Principles Drawn from the Behavioral and Neuroscience Literature 169 7.4 Case Study: COVID- 19 and Risk Perception Factors 171 7.4.1 Social Amplification Filters 173 7.4.2 Mental Shortcut Filters 174 7.4.3 Knowledge and Belief Filters 176 7.4.4 Personality Filters 177 7.4.5 Negative Dominance/Loss Aversion Filters 177 7.5 Message Filters and the Brain 179 7.6 Message Filters, Perceptions, and Models of Human Behavior 179 7.7 Message Filters, Perceptions, and Persuasion 180 7.8 Message Filters, Perceptions, and Ethics 181 7.9 Message Filters and the Issue of Acceptable Risk 182 7.9.1 Factors in Determining Acceptable Risk 183 7.9.2 Strategies for Addressing Acceptable Risk 184 7.10 The Message is in the Mind of the Receiver 186 7.11 Chapter Resources 186 Endnotes 192 8 Foundational Principles: Trust, Culture, and Worldviews 197 8.1 Case Diary: A Disease Outbreak in Africa 198 8.2 Trust Determination 200 8.3 Characteristics and Attributes of Trust 201 8.3.1 Trust and First Impressions 203 8.3.2 Loss of Trust 204 8.3.3 Gaining Trust 206 8.3.3.1 Gaining Trust through Stakeholder Engagement 206 8.3.3.2 Gaining Trust through Trust Transference 206 8.3.3.3 Gaining Trust through Actions and Behavior 207 8.4 Case Study: Trust and the Chernobyl Nuclear Power Plant Accident 207 8.5 Case Diary: The Fukushima Japan Nuclear Power Plant Accident 208 8.6 Gaining Trust in High- Stakes Negotiations 210 8.7 Case Diary: Gaining Trust and the SARS Outbreak in Hong Kong 211 8.8 Trust and Culture 212 8.9 Cultural Competency 212 8.9.1 Different Communication Styles 213 8.9.2 Different Attitudes and Approaches toward Conflict 214 8.9.3 Different Nonverbal Communication 214 8.9.4 Different Attitudes and Approaches to Decision Making 214 8.9.5 Different Attitudes and Approaches toward Information Disclosure 215 8.9.6 Different Attitudes and Approaches to Knowing 215 8.9.7 Different Attitudes and Approaches toward Conversation and Discourse 215 8.9.8 Different Attitudes and Approaches toward the Use of Humor 215 8.10 Risk Perceptions, Trust, and Cultural Theory 215 8.11 Risk Perceptions, Trust, and Worldviews 217 8.12 Case Diary: Fame, Family, and Fear in Public Health Communications 218 8.13 Chapter Resources 221 Endnotes 227 9 Best Practices for Message Development in High Concern Situations 231 9.1 Case Diary: Mapping Through a Maze of COVID Confusion 231 9.2 Introduction 232 9.3 Crafting Messages in the Context of Stress and High Concern Decision- Making 233 9.3.1 Trust Determination and Messaging in High-Stress Situations 233 9.3.1.1 The CCO Best Practice 233 9.3.2 Impaired Comprehension and Messaging in High-Stress Situations 234 9.3.3 Negative Dominance and Messaging in High-Stress Situations 234 9.3.4 Emotional Impact and Messaging in High-Stress Situations 235 9.3.4.1 Case Study: Hoarding Toilet Paper at the Outset of the 2020 COVID-19 Pandemic 236 9.4 Message Mapping 238 9.4.1 Benefits of Message Maps 238 9.4.2 Message Maps and the Brain 241 9.4.3 The Development of Message Mapping 243 9.4.4 Case Study: Message Maps and Asbestos 244 9.4.5 Steps in Developing a Message Map 245 9.4.5.1 Step 1: Identify, Profile, and Prioritize Key Stakeholders 245 9.4.5.2 Step 2: Develop Lists of Stakeholder Questions and Concerns 248 9.4.5.3 Case Study: Stakeholder Questions, Terrorism, and Disasters 249 9.4.5.4 Step 3: Develop Key Messages 249 9.4.5.5 Step 4: Develop Supporting Information 252 9.4.5.6 Step 5: Testing the Message Map 253 9.4.5.7 Step 6: Repurpose Maps through Appropriate Information Channels 254 9.5 Summary 254 9.6 Chapter Resources 255 Endnotes 263 Appendices 265 Appendix 9.1 265 Appendix 9.2 267 Appendix 9.3 277 Appendix 9.4 280 10 Communicating Numbers, Statistics, and Technical Information about a Risk or Threat 285 10.1 Case Diary: A Civil Action 285 10.2 Introduction 288 10.3 Case Study: Numbers, Statistics, and COVID-19 289 10.4 Brain Processes That Filter How Technical Information about Risk or Threat Is Received and Understood 292 10.4.1 Risk and Threat Perception Filters 293 10.4.2 Thought Processing Filters 294 10.4.3 Mental Model Filters 294 10.4.4 Emotional Filters 295 10.4.5 Motivational Filters 295 10.5 Challenges in Explaining Technical Information About a Risk or Threat 296 10.6 Framing 297 10.7 Technical Jargon 298 10.8 Information Clarity 299 10.9 Units of Measurement 300 10.10 Case Study: Risk Numbers, Risk Statistics, and the Challenger Accident 303 10.11 Comparisons 304 10.12 Lessons Learned 308 10.13 Chapter Resources 308 Endnotes 315 11 Evaluating Risk, High Concern, and Crisis Communications 321 11.1 Case Diary: Finding the Road to Rio 321 11.1.1 The Mosquito Front 322 11.1.2 The Citizen Front 322 11.1.3 The Olympic Athlete and Visitor Front 323 11.1.4 Communication Strategy: The Citizen Front 323 11.1.5 Communication Strategy: Olympic Athlete and Visitor Front 323 11.2 Introduction 324 11.3 Benefits of Evaluation 326 11.4 Evaluation Practices for Risk, High Concern, and Crisis Communication 327 11.5 Case Studies of Evaluation Comparison to Best Practice: Hurricane Katrina, COVID-19 and Vaccination Hesitancy, and Outbreak of COVID-19 in Wuhan, China 329 11.5.1 Hurricane Katrina 329 11.5.2 COVID-19 and Vaccination Hesitancy 330 11.5.3 Outbreak of COVID-19 in Wuhan, China 330 11.6 Barriers and Challenges to Evaluation 332 11.6.1 Differences in Values 332 11.6.2 Differences in Goals 332 11.6.3 Competition for Resources 332 11.6.4 Ability to Learn from Results 333 11.7 Evaluation Measures 338 11.7.1 Process/Implementation Evaluation Measures 338 11.7.2 Outcome/Impact Evaluation Measures 339 11.7.3 Formative Evaluation Measures 340 11.8 An Integrated Approach to Evaluation 341 11.9 Resource: Case Study of Focus Group Testing of Mosquito-Control Messages, Florida, 2018–2019 342 11.10 Evaluation Tools 347 11.11 Chapter Resources 348 Endnotes 353 12 Communicating with Mainstream News Media 357 12.1 Case Diary: A High Stakes Chess Game with a News Media Outlet 357 12.2 Introduction 359 12.3 Characteristics of the Mainstream News Media 361 12.3.1 Content 361 12.3.2 Clarity 362 12.3.3 Avoiding Prejudice 362 12.3.4 Topicality 362 12.3.5 Diversity 363 12.3.6 Subject Matter Expertise 363 12.3.7 Resources 363 12.3.8 Career Advancement 364 12.3.9 Watchdogs 364 12.3.10 Amplifiers 364 12.3.11 Skepticism 364 12.3.12 Source Dependency 365 12.3.13 Professionalism and Independence 365 12.3.14 Covering Uncertainty 366 12.3.15 Legal Constraints 366 12.3.16 Special Populations 366 12.3.17 Competition 366 12.3.18 Confidentiality and Protection of Sources 367 12.3.19 Deadlines 367 12.3.20 Trust 367 12.3.21 Storytelling 368 12.3.22 Balance and Controversy 368 12.4 Guidelines and Best Practices for Interacting with Mainstream News Media 368 12.5 The Media Interview 370 12.6 Lessons and Trends 375 12.7 Case Diary: A Ten-Round Exercise 377 12.8 Chapter Resources 378 Endnotes 381 13 Social Media and the Changing Landscape for Risk, High Concern, and Crisis Communication 385 13.1 Case Diary: Myth-Busting: Mission Impossible? 385 13.2 Introduction 387 13.3 Benefits of Social Media Outlets for Risk, High Concern, and Crisis Communication 389 13.3.1 Speed 389 13.3.2 Access 390 13.3.3 Reach 390 13.3.4 Amplification 390 13.3.5 Transparency 390 13.3.6 Understanding 390 13.3.7 Changes in Behaviors 391 13.3.8 Relationship Building 391 13.3.9 Timeliness 391 13.3.10 Hyperlocal Specificity 391 13.3.11 Listening and Feedback 392 13.3.12 Taking Advantage of the Benefits of Social Media 392 13.4 Challenges of Social Media for Risk, High Concern, and Crisis Communication 393 13.4.1 Rising Expectations 393 13.4.2 Repostings/Redistribution 393 13.4.3 Permanent Storage 394 13.4.4 Hacking/Security 394 13.4.5 Rise and Fall of Social Media Platforms 394 13.4.6 Resources 394 13.4.7 Privacy and Confidentiality 394 13.4.8 Cognitive Overload 395 13.4.9 Players on the Field 395 13.4.10 Misinformation, Disinformation, and Rumors 395 13.5 Case Study: Social Media and the 2007 and 2011 Shooter Incidents at Virginia Polytechnic Institute and State University (Virginia Tech) 397 13.6 Case Study: Social Media and the 2013 Southern Alberta/Calgary Flood 398 13.7 Best Practices for Using Social Media in Risk, High Concern, and Crisis Situations 400 13.7.1 Create a Social Media Plan 400 13.7.2 Staff Appropriately for Social Media Communication 400 13.7.3 Ensure Continuous Updating 401 13.7.4 Identify Your Partners 401 13.7.5 Assess and Reassess Your Selection of Platforms 401 13.7.6 Create and Maintain as Many Social Media Accounts as You and Your Stakeholders Need 401 13.7.7 Be Prepared for the Special Social Media Requirements and Pressures in a Crisis 401 13.7.8 Provide Guidance for Employees and Engage Them in the Process 402 13.7.9 Don’t Skip Evaluation 403 13.8 Case Diary: Social Media and the Negative Power of“Junk”Information about Risks and Threats 403 13.9 Lessons Learned and Trends 404 13.10 Chapter Resources 404 Endnotes 408 Index 411
£39.85
John Wiley & Sons Inc Group Policy
Book SynopsisGet up to speed on the latest Group Policy tools, features, and best practices Group Policy, Fundamentals, Security, and the Managed Desktop, 3rd Edition helps you streamline Windows and Windows Server management using the latest Group Policy tools and techniques. This updated edition covers Windows 10 and Windows Server vNext, bringing you up to speed on all the newest settings, features, and best practices. Microsoft Group Policy MVP Jeremy Moskowitz teaches you the major categories of Group Policy, essential troubleshooting techniques, and how to manage your Windows desktops. This is your complete guide to the latest Group Policy features and functions for all modern Windows clients and servers, helping you manage more efficiently and effectively. Perform true desktop and server management with the Group Policy Preferences, ADMX files, and additional add-ons Use every feature of the GPMC and become a top-notch administratoTable of ContentsIntroduction xxv Chapter 1 Group Policy Essentials 1 Getting Ready to Use This Book 2 Getting Started with Group Policy 7 Group Policy Entities and Policy Settings 7 Active Directory and Local Group Policy 9 Understanding Local Group Policy 10 Group Policy and Active Directory 13 Linking Group Policy Objects 15 Final Thoughts on Local GPOs 20 An Example of Group Policy Application 21 Examining the Resultant Set of Policy 23 At the Site Level 23 At the Domain Level 24 At the OU Level 24 Bringing It All Together 25 Group Policy, Active Directory, and the GPMC 26 Implementing the GPMC on Your Management Station 27 Creating a One-Stop-Shop MMC 30 Group Policy 101 and Active Directory 32 Active Directory Users and Computers vs. GPMC 32 Adjusting the View within the GPMC 33 The GPMC-centric View 35 Our Own Group Policy Examples 37 More about Linking and the Group Policy Objects Container 38 Applying a Group Policy Object to the Site Level 41 Applying Group Policy Objects to the Domain Level 44 Applying Group Policy Objects to the OU Level 47 Testing Your Delegation of Group Policy Management 52 Understanding Group Policy Object Linking Delegation 54 Granting OU Admins Access to Create New Group Policy Objects 55 Creating and Linking Group Policy Objects at the OU Level 56 Creating a New Group Policy Object Affecting Computers in an OU 59 Moving Computers into the Human Resources Computers OU 61 Verifying Your Cumulative Changes 62 Final Thoughts 64 Chapter 2 Managing Group Policy with the GPMC and via PowerShell 67 Common Procedures with the GPMC and PowerShell 69 Raising or Lowering the Precedence of Multiple Group Policy Objects 75 Understanding GPMC’s Link Warning 76 Stopping Group Policy Objects from Applying 78 Block Inheritance 85 The Enforced Function 87 Security Filtering and Delegation with the GPMC 90 Filtering the Scope of Group Policy Objects with Security 91 User Permissions on Group Policy Objects 102 Granting Group Policy Object Creation Rights in the Domain 104 Special Group Policy Operation Delegations 105 Who Can Create and Use WMI Filters? 107 Performing RSoP Calculations with the GPMC 109 What’s-Going-On Calculations with Group Policy Results 110 What-If Calculations with Group Policy Modeling 116 Searching and Commenting Group Policy Objects and Policy Settings 118 Searching for GPO Characteristics 119 Filtering Inside a GPO for Policy Settings 121 Comments for GPOs and Policy Settings 132 Starter GPOs 137 Creating a Starter GPO 139 Editing a Starter GPO 139 Leveraging a Starter GPO 141 Delegating Control of Starter GPOs 142 Wrapping Up and Sending Starter GPOs 143 Should You Use Microsoft’s Pre-created Starter GPOs? 144 Back Up and Restore for Group Policy 145 Backing Up Group Policy Objects 146 Restoring Group Policy Objects 148 Backing Up and Restoring Starter GPOs 152 Backing Up and Restoring WMI Filters 153 Backing Up and Restoring IPsec Filters 153 Migrating Group Policy Objects between Domains 154 Basic Interdomain Copy and Import 154 Copy and Import with Migration Tables 162 GPMC At-a-Glance Icon View 166 Final Thoughts 167 Chapter 3 Group Policy Processing Behavior Essentials 169 Group Policy Processing Principles 170 Don’t Get Lost 172 Initial Policy Processing 172 Background Refresh Policy Processing 174 Security Background Refresh Processing 187 Special Case: Moving a User or a Computer Object 193 Windows 8, 8.1, and 10 Group Policy: Subtle Differences 194 Policy Application via Remote Access, Slow Links, and after Hibernation 200 When and How Does Windows Check for Slow Links? 200 What Is Processed over a Slow Network Connection? 201 Always Get Group Policy (Even on the Road, through the Internet) 202 Using Group Policy to Affect Group Policy 205 Affecting the User Settings of Group Policy 205 Affecting the Computer Settings of Group Policy 207 The Missing Group Policy Preferences Policy Settings 219 Final Thoughts 221 Chapter 4 Advanced Group Policy Processing 223 Fine-Tuning When and Where Group Policy Applies 223 Using WMI Filters to Filter the Scope of a Group Policy Object (Itself) 224 Using PolicyPak Admin Templates Manager to Filter the Scope of a Group Policy Object’s Contents 230 Group Policy Loopback Processing 231 Reviewing Normal Group Policy Processing 232 Group Policy Loopback—Merge Mode 233 Group Policy Loopback—Replace Mode 233 Loopback without Loopback (Switched Mode with PolicyPak Application Manager and PolicyPak Admin Templates Manager) 239 Group Policy with Cross-Forest Trusts 242 What Happens When Logging onto Different Clients across a Cross-Forest Trust? 243 Disabling Loopback Processing When Using Cross-Forest Trusts 245 Understanding Cross-Forest Trust Permissions 245 Final Thoughts 247 Chapter 5 Group Policy Preferences 249 Powers of the Group Policy Preferences 252 Computer Configuration ➢ Preferences 258 User Configuration ➢ Preferences 269 Group Policy Preferences Concepts 278 Preference vs. Policy 279 The Overlap of Group Policy vs. Group Policy Preferences and Associated Issues 281 The Lines and Circles and the CRUD Action Modes 293 Common Tab 301 Group Policy Preferences Tips, Tricks, and Troubleshooting 313 Quick Copy, Drag and Drop, Cut and Paste, and Sharing of Settings 313 Multiple Preference Items at a Level 315 Temporarily Disabling a Single Preference Item or Extension Root 317 Environment Variables 318 Managing Group Policy Preferences: Hiding Extensions from within the Editor 320 Troubleshooting: Reporting, Logging, and Tracing 321 Giving Group Policy Preferences a “Boost” (Using PolicyPak Preferences Manager and PolicyPak Cloud) 329 Using PolicyPak Preferences Manager to Maintain Group Policy Preferences while Offline 330 Using PolicyPak Preferences Manager to Deliver Group Policy Preferences Using “Not Group Policy” 330 Delivering Group Policy Preferences over the Internet Using PolicyPak Cloud (to Domain-Joined and Non–Domain-Joined Machines) 331 Final Thoughts 332 Chapter 6 Managing Applications and Settings Using Group Policy 335 Understanding Administrative Templates 336 Administrative Templates: Then and Now 336 Policy vs. Preference 337 Exploring ADM vs. ADMX and ADML Files 342 Looking Back at ADM Files 342 Understanding the Updated GPMC’s ADMX and ADML Files 342 Comparing ADM vs. ADMX Files 344 ADMX and ADML Files: What They Do and the Problems They Solve 345 Problem and Solution 1: Tackling SYSVOL Bloat 345 Problem 2: How Do We Deal with Multiple Languages? 346 Problem 3: How Do We Deal with “Write Overlaps”? 347 Problem 4: How Do We Distribute Updated Definitions to All Our Administrators? 349 The Central Store 349 The Windows ADMX/ADML Central Store 351 Creating and Editing GPOs in a Mixed Environment 355 Scenario 1: Start by Creating and Editing a GPO Using the Older GPMC; Edit Using Another Older GPMC Management Station 355 Scenario 2: Start by Creating and Editing a GPO with the Older GPMC; Edit Using the Updated GPMC 356 Scenario 3: Start by Creating and Editing a GPO Using the Updated GPMC; Edit Using Another Updated GPMC Management Station 358 Scenario 4: Start by Creating and Editing a GPO Using an Updated GPMC Management Station; Edit Using an Older GPMC Management Station 358 Using ADM and ADMX Templates from Other Sources 359 Using ADM Templates with the Updated GPMC 359 Using ADMX Templates from Other Sources 361 ADMX Migrator and ADMX Editor Tools 362 ADMX Migrator 363 ADMX Creation and Editor Tools 365 PolicyPak Application Manager 365 PolicyPak Concepts and Installation 367 Top PolicyPak Application Manager Pak Examples 369 Understanding PolicyPak Superpowers and What Happens When Computers Are Off the Network 373 Final Thoughts 376 Chapter 7 Troubleshooting Group Policy 379 Under the Hood of Group Policy 381 Inside Local Group Policy 381 Inside Active Directory Group Policy Objects 383 The Birth, Life, and Death of a GPO 385 How Group Policy Objects Are “Born” 386 How a GPO “Lives” 387 Death of a GPO 415 How Client Systems Get Group Policy Objects 416 The Steps to Group Policy Processing 416 Client-Side Extensions 419 Where Are Administrative Templates Registry Settings Stored? 427 Why Isn’t Group Policy Applying? 429 Reviewing the Basics 429 Advanced Inspection 432 Client-Side Troubleshooting 441 RSoP for Windows Clients 442 Advanced Group Policy Troubleshooting with the Event Viewer Logs 450 Group Policy Processing Performance 462 Final Thoughts 463 Chapter 8 Implementing Security with Group Policy 465 The Two Default Group Policy Objects 466 GPOs Linked at the Domain Level 467 Group Policy Objects Linked to the Domain Controllers OU 471 Oops, the “Default Domain Policy” GPO and/or “Default Domain Controllers Policy” GPO Got Screwed Up! 473 The Strange Life of Password Policy 475 What Happens When You Set Password Settings at an OU Level 475 Fine-Grained Password Policy 477 Inside Basic and Advanced Auditing 482 Basic Auditable Events Using Group Policy 482 Auditing File Access 487 Auditing Group Policy Object Changes 489 Advanced Audit Policy Configuration 491 Restricted Groups 495 Strictly Controlling Active Directory Groups 497 Strictly Applying Group Nesting 499 Which Groups Can Go into Which Other Groups via Restricted Groups? 500 Restrict Software Using AppLocker 500 Inside Software Restriction Policies 501 Software Restriction Policies’ “Philosophies” 502 Software Restriction Policies’ Rules 503 Restricting Software Using AppLocker 510 Controlling User Account Control with Group Policy 531 Just Who Will See the UAC Prompts, Anyway? 534 Understanding the Group Policy Controls for UAC 539 UAC Policy Setting Suggestions 548 Wireless (802.3) and Wired Network (802.11) Policies 551 802.11 Wireless Policy for Windows XP 552 802.11 Wireless Policy and 802.3 Wired Policy for Modern Windows 553 Configuring Windows Firewall with Group Policy 554 Manipulating the Windows Firewall (the Old Way) 557 Windows Firewall with Advanced Security WFAS 558 IPsec (Now in Windows Firewall with Advanced Security) 567 How Windows Firewall Rules Are Ultimately Calculated 572 Final Thoughts 576 Chapter 9 Profiles: Local, Roaming, and Mandatory 579 Setting the Stage for Multiple Clients 579 What Is a User Profile? 583 The NTUSER.DAT File 583 Profile Folders for Type 1 Computers (Windows XP and Windows 2003 Server) 584 Profile Folders for Type 2–5 Computers (Windows Vista and Later) 586 The Default Local User Profile 591 The Default Network User Profile 594 Roaming Profiles 599 Are Roaming Profiles “Evil”? And What Are the Alternatives? 601 Setting Up Roaming Profiles 604 Testing Roaming Profiles 608 Roaming and Nonroaming Folders 610 Managing Roaming Profiles 614 Manipulating Roaming Profiles with Computer Group Policy Settings 617 Manipulating Roaming Profiles with User Group Policy Settings 630 Mandatory Profiles 635 Establishing Mandatory Profiles for Windows XP 636 Establishing Mandatory Profiles for Modern Windows 638 Mandatory Profiles—Finishing Touches 639 Forced Mandatory Profiles (Super-Mandatory) 640 Final Thoughts 642 Chapter 10 The Managed Desktop, Part 1: Redirected Folders, Offline Files, and the Synchronization Manager 643 Redirected Folders 644 Available Folders to Redirect 644 Redirected Documents/My Documents 645 Redirecting the Start Menu and the Desktop 665 Redirecting the Application Data Folder 666 Group Policy Setting for Folder Redirection 667 Troubleshooting Redirected Folders 669 Offline Files and Synchronization 672 Making Offline Files Available 673 Inside Windows 10 File Synchronization 676 Handling Conflicts 684 Client Configuration of Offline Files 686 Using Folder Redirection and Offline Files over Slow Links 694 Synchronizing over Slow Links with Redirected My Documents 695 Synchronizing over Slow Links with Regular Shares 697 Teaching Windows 10 How to React to Slow Links 698 Using Group Policy to Configure Offline Files (User and Computer Node) 702 Troubleshooting Sync Center 710 Turning Off Folder Redirection’s Automatic Offline Caching for Desktops 712 Final Thoughts 720 Chapter 11 The Managed Desktop, Part 2: Software Deployment via Group Policy 723 Group Policy Software Installation (GPSI) Overview 724 The Windows Installer Service 726 Understanding .MSI Packages 726 Utilizing an Existing .MSI Package 727 Assigning and Publishing Applications 732 Assigning Applications 732 Publishing Applications 733 Rules of Deployment 734 Package-Targeting Strategy 734 Advanced Published or Assigned 745 The General Tab 746 The Deployment Tab 746 The Upgrades Tab 750 The Categories Tab 752 The Modifications Tab 752 The Security Tab 754 Default Group Policy Software Installation Properties 755 The General Tab 755 The Advanced Tab 756 The File Extensions Tab 757 The Categories Tab 757 Removing Applications 757 Users Can Manually Change or Remove Applications 758 Automatically Removing Assigned or Published .MSI Applications 758 Forcibly Removing Assigned or Published .MSI Applications 759 Using Group Policy Software Installation over Slow Links 761 MSI, the Windows Installer, and Group Policy 764 Inside the MSIEXEC Tool 764 Patching a Distribution Point 765 Affecting Windows Installer with Group Policy 767 Deploying Office 2010 and Later Using Group Policy (MSI Version) 771 Steps to Office 2013 and 2016 Deployment Using Group Policy 772 Result of Your Office Deployment Using Group Policy 782 Installing Office Using Click-to-Run 783 Getting Office Click-to-Run 784 Installing Office Click-to-Run by Hand 784 Deploying Office Click-to-Run via Group Policy 786 System Center Configuration Manager vs. Group Policy (and Alternatives) 793 Final Thoughts 796 Chapter 12 Finishing Touches with Group Policy: Scripts, Internet Explorer, Hardware Control, Printer Deployment, Local Admin Password Control 797 Scripts: Logon, Logoff, Startup, and Shutdown 798 Non-PowerShell-Based Scripts 798 Deploying PowerShell Scripts to Windows 7 and Later Clients 801 Managing Internet Explorer with Group Policy 802 Managing Internet Explorer with Group Policy Preferences 803 Internet Explorer’s Group Policy Settings 805 Understanding Internet Explorer 11’s Enterprise Mode 806 Managing Internet Explorer 11 Using PolicyPak Application Manager 808 Restricting Access to Hardware via Group Policy 808 Group Policy Preferences Devices Extension 809 Restricting Driver Access with Policy Settings 814 Getting a Handle on Classes and IDs 815 Restricting or Allowing Your Hardware via Group Policy 817 Understanding the Remaining Policy Settings for Hardware Restrictions 819 Assigning Printers via Group Policy 821 Zapping Down Printers to Users and Computers (a Refresher) 821 Implementing Rotating Local Passwords with LAPS 830 What to Install from LAPS 831 Extending the Schema and Setting LAPS Permissions 832 Using a Group Policy Object to Manage LAPS 835 Using LAPS Management’s Tools: Fat Client and PowerShell 836 Final Thoughts for This Chapter and for the Book 838 Appendix A Scripting Group Policy Operations with Windows PowerShell 839 Using PowerShell to Do More with Group Policy 840 Preparing for Your PowerShell Experience 841 Getting Started with PowerShell 842 Documenting Your Group Policy World with PowerShell 846 Setting GPO Permissions 867 Manipulating GPOs with PowerShell 870 Performing a Remote GPupdate (Invoking GPupdate) 880 Replacing Microsoft’s GPMC Scripts with PowerShell Equivalents 881 Final Thoughts 883 Appendix B Group Policy and VDI 885 Why Is VDI Different? 886 Tuning Your Images for VDI 887 Specific Functions to Turn Off for VDI Machines 888 Group Policy Settings to Set and Avoid for Maximum VDI Performance 889 Group Policy Tweaks for Fast VDI Video 891 Tweaking RDP Using Group Policy for VDI 891 Tweaking RemoteFX using Group Policy for VDI 892 Managing and Locking Down Desktop UI Tweaks 893 Final Thoughts for VDI and Group Policy 894 Appendix C Advanced Group Policy Management 897 The Challenge of Group Policy Change Management 898 Architecture and Installation of AGPM 899 AGPM Architecture 899 Installing AGPM 900 What Happens after AGPM Is Installed? 906 GPMC Differences with AGPM Client 906 What’s With All the Access Denied Errors? 908 Does the World Change Right Away? 908 Understanding the AGPM Delegation Model 908 AGPM Delegation Roles 909 AGPM Common Tasks 912 Understanding and Working with AGPM’s Flow 914 Controlling Your Currently Uncontrolled GPOs 915 Creating a GPO and Immediately Controlling It 918 Check Out a GPO 919 Viewing Reports about a Controlled GPO 921 Editing a Checked-Out Offline Copy of a GPO 921 Performing a Check In of a Changed GPO 923 Deploying a GPO into Production 924 Making Additional Changes to a GPO and Labeling a GPO 926 Using History and Differences to Roll Back a GPO 927 Using “Import from Production” to Catch Up a GPO 931 Uncontrolling, Restoring, and Destroying a GPO 932 Searching for GPOs Using the Search Box 934 AGPM Tasks with Multiple Admins 935 E‑mail Preparations and Configurations for AGPM Requests 936 Adding Someone to the AGPM System 939 Requesting the Creation of New Controlled GPO 943 Approving or Rejecting a Pending Request 944 Editing the GPO Offline via Check Out/Check In 946 Requesting Deployment of the GPO 946 Analyzing a GPO (as a Reviewer) 948 Advanced Configuration and Troubleshooting of AGPM 950 Production Delegation 950 Auto-Deleting Old GPO Versions 951 Export and Import of Controlled GPOs between Forests and/or Domains 951 Troubleshooting AGPM Permissions 953 Leveraging AGPM Templates 955 Changing Permissions on GPO Archives 958 Backing Up, Restoring, and Moving the AGPM Server 959 Changing the Port That AGPM Uses 962 Events from AGPM 963 Leveraging the Built-in AGPM ADMX Template 963 Final Thoughts 968 Appendix D Security Compliance Manager 969 SCM: Installation 970 SCM: Getting Around 972 SCM: Usual Use Case 974 Importing Existing GPOs 980 Comparing and Merging Baselines 980 LocalGPO Tool 983 Installing SCM’s LocalGPO Tool 984 Using SCM’s LocalGPO 985 Final Thoughts on LocalGPO and SCM 989 Appendix E Microsoft Intune and PolicyPak Cloud 991 Microsoft Intune 991 Getting Started with Microsoft Intune 992 Using Microsoft Intune 995 Setting Up Microsoft Intune Groups 995 Setting Up Policies Using Microsoft Intune 996 Microsoft Intune and Group Policy Conflicts 997 Final Thoughts on Microsoft Intune 998 PolicyPak Cloud 998 PolicyPak Cloud 101 999 Understanding PolicyPak Cloud Policies 999 Creating and Using PolicyPak Cloud Groups 1001 Joining PolicyPak Cloud 1001 Final Thoughts on PolicyPak Cloud 1003 Final Thoughts on Microsoft Intune and PolicyPak Cloud 1003 Index 1005
£38.00
John Wiley & Sons Inc Security in Fixed and Wireless Networks
Book SynopsisIntroduces aspects on security threats and their countermeasures in both fixed and wireless networks, advising on how countermeasures can provide secure communication infrastructures. Enables the reader to understand the risks of inappropriate network security, what mechanisms and protocols can be deployed to counter these risks, and how these mechanisms and protocols work.Table of ContentsAbout the authors xiii Preface to the second edition xv Preface to the first edition xvii I Foundations of Data Security Technology 1 1 Introduction 3 1.1 Content and Structure of this Book 4 1.2 Threats and Security Goals 6 1.3 Network Security Analysis 9 1.4 Information Security Measures 13 1.5 Important Terms Relating to Communication Security 14 2 Fundamentals of Cryptology 17 2.1 Cryptology, Cryptography and Cryptanalysis 17 2.2 Classification of Cryptographic Algorithms 18 2.3 Cryptanalysis 19 2.4 Estimating the Effort Needed for Cryptographic Analysis 21 2.5 Characteristics and Classification of Encryption Algorithms 23 2.6 Key Management 25 2.7 Summary 27 2.8 Supplemental Reading 28 2.9 Questions 29 3 Symmetric Cryptography 31 3.1 Encryption Modes of Block Ciphers 31 3.2 Data Encryption Standard 37 3.3 Advanced Encryption Standard 43 3.4 RC4 Algorithm 48 3.5 The KASUMI algorithm 51 3.6 Summary 53 3.7 Supplemental Reading 54 3.8 Questions 55 4 Asymmetric Cryptography 57 4.1 Basic Idea of Asymmetric Cryptography 57 4.2 Mathematical Principles 60 4.3 The RSA Algorithm 69 4.4 The Problem of the Discrete Logarithm 71 4.5 The Diffie–Hellman Key Exchange Algorithm 75 4.6 The ElGamal Algorithm 77 4.7 Security of Conventional Asymmetric Cryptographic Schemes 80 4.8 Principles of Cryptography Based on Elliptic Curves 81 4.9 Summary 93 4.10 Supplemental Reading 94 4.11 Questions 95 5 Cryptographic Check Values 97 5.1 Requirements and Classification 97 5.2 Modification Detection Codes 99 5.3 Message Authentication Codes 112 5.4 Message Authentication Codes Based on MDCs 116 5.5 Authenticated Encryption 117 5.6 Summary 121 5.7 Supplemental Reading 122 5.8 Questions 123 6 Random Number Generation 125 6.1 Random Numbers and Pseudo-Random Numbers 125 6.2 Cryptographically Secure Random Numbers 126 6.3 Statistical Tests for Random Numbers 128 6.4 Generation of Random Numbers 129 6.5 Generating Secure Pseudo-Random Numbers 130 6.6 Implementation Security 133 6.7 Summary 134 6.8 Supplemental Reading 135 6.9 Questions 136 7 Cryptographic Protocols 137 7.1 Properties and Notation of Cryptographic Protocols 137 7.2 Data Origin and Entity Authentication 139 7.3 Needham–Schroeder Protocol 143 7.4 Kerberos 147 7.5 International Standard X.509 155 7.6 Security of Negotiated Session Keys 160 7.7 Advanced Password Authentication Methods 161 7.8 Formal Validation of Cryptographic Protocols 166 7.9 Summary 176 7.10 Supplemental Reading 177 7.11 Questions 178 8 Secure Group Communication* 179 8.1 Specific Requirements for Secure Group Communication 179 8.2 Negotiation of Group Keys 181 8.3 Source Authentication 189 8.4 Summary 193 8.5 Supplemental Reading 194 8.6 Questions 194 9 Access Control 197 9.1 Definition of Terms and Concepts 197 9.2 Security Labels 199 9.3 Specification of Access Control Policies 201 9.4 Categories of Access Control Mechanisms 202 9.5 Summary 204 9.6 Supplemental Reading 204 9.7 Questions 205 II Network Security 207 10 Integration of Security Services in Communication Architectures 209 10.1 Motivation 209 10.2 A Pragmatic Model 211 10.3 General Considerations for the Placement of Security Services 213 10.4 Integration in Lower Protocol Layers vs Applications 216 10.5 Integration into End Systems or Intermediate Systems 217 10.6 Summary 219 10.7 Supplemental Reading 219 10.8 Questions 219 11 Link Layer Security Protocols 221 11.1 Virtual Separation of Data Traffic with IEEE 802.1Q 222 11.2 Securing a Local Network Infrastructure Using IEEE 802.1X 224 11.3 Encryption of Data Traffic with IEEE 802.1AE 226 11.4 Point-to-Point Protocol 228 11.5 Point-to-Point Tunneling Protocol 236 11.6 Virtual Private Networks 242 11.7 Summary 243 11.8 Supplemental Reading 245 11.9 Questions 246 12 IPsec Security Architecture 249 12.1 Short Introduction to the Internet Protocol Suite 249 12.2 Overview of the IPsec Architecture 253 12.3 Use of Transport and Tunnel Modes 261 12.4 IPsec Protocol Processing 263 12.5 The ESP Protocol 267 12.6 The AH Protocol 273 12.7 The ISAKMP Protocol 279 12.8 Internet Key Exchange Version 1 286 12.9 Internet Key Exchange Version 2 293 12.10 Other Aspects of IPsec 297 12.11 Summary 299 12.12 Supplemental Reading 300 12.13 Questions 301 13 Transport Layer Security Protocols 303 13.1 Secure Socket Layer 303 13.2 Transport Layer Security 315 13.3 Datagram Transport Layer Security 322 13.4 Secure Shell 323 13.5 Summary 332 13.6 Supplemental Reading 333 13.7 Questions 334 III Secure Wireless and Mobile Communications 335 14 Security Aspects of Mobile Communication 337 14.1 Threats in Mobile Communication Networks 337 14.2 Protecting Location Confidentiality 338 14.3 Summary 343 14.4 Supplemental Reading 343 14.5 Questions 343 15 Security in Wireless Local Area Networks 345 15.1 The IEEE 802.11 Standard for WLANs 345 15.2 Entity Authentication 347 15.3 Wired Equivalent Privacy 353 15.4 Robust Secure Networks 358 15.5 Security in Public WLANs 365 15.6 Summary 367 15.7 Supplemental Reading 368 15.8 Questions 369 16 Security in Mobile Wide-Area Networks 371 16.1 Global System for Mobile Communication 371 16.2 Universal Mobile Telecommunications System 378 16.3 Long-Term Evolution385 16.4 Summary 389 16.5 Supplemental Reading 390 16.6 Questions 391 IV Protecting Communications Infrastructures 393 17 Protecting Communications and Infrastructure in Open Networks 395 17.1 Systematic Threat Analysis 396 17.2 Security of End Systems 399 17.3 Summary 411 17.4 Supplemental Reading 411 17.5 Questions 412 18 Availability of Data Transport 413 18.1 Denial-of-Service Attacks 413 18.2 Distributed Denial-of-Service Attacks 420 18.3 Countermeasures 422 18.4 Summary 433 18.5 Supplemental Reading 434 18.6 Questions 435 19 Routing Security 437 19.1 Cryptographic Protection of BGP 441 19.2 Identification of Routing Anomalies* 450 19.3 Summary 455 19.4 Supplemental Reading 456 19.5 Questions 457 20 Secure Name Resolution 459 20.1 The DNS Operating Principle 459 20.2 Security Objectives and Threats 461 20.3 Secure Use of Traditional DNS 467 20.4 Cryptographic Protection of DNS 469 20.5 Summary 481 20.6 Supplemental Reading 482 20.7 Questions 483 21 Internet Firewalls 485 21.1 Tasks and Basic Principles of Firewalls 485 21.2 Firewall-Relevant Internet Services and Protocols 487 21.3 Terminology and Building Blocks 490 21.4 Firewall Architectures 491 21.5 Packet Filtering 495 21.6 Bastion Hosts and Proxy Servers 500 21.7 Other Aspects of Modern Firewall Systems 502 21.8 Summary 503 21.9 Supplemental Reading 504 21.10 Questions 505 22 Automated Attack Detection and Response 507 22.1 Operating Principle and Objectives of Intrusion Detection Systems 508 22.2 Design and operation of network-based IDSs 512 22.3 Response to Attacks and Automatic prevention 521 22.4 Techniques for Evading NIDSs 524 22.5 Summary 526 22.6 Supplemental Reading 527 22.7 Questions 528 23 Management of Complex Communication Infrastructures* 529 23.1 Automatic Certificate Management 529 23.2 Automatic VPN Configuration 536 23.3 Summary 550 23.4 Supplemental Reading 552 23.5 Questions 554 Bibliography 555 Abbreviations 585 Index 595
£999.99
John Wiley & Sons Inc Security Privacy and Digital Forensics in the
Book SynopsisIn a unique and systematic way, this book discusses the security and privacy aspects of the cloud, and the relevant cloud forensics. Cloud computing is an emerging yet revolutionary technology that has been changing the way people live and work. However, with the continuous growth of cloud computing and related services, security and privacy has become a critical issue. Written by some of the top experts in the field, this book specifically discusses security and privacy of the cloud, as well as the digital forensics of cloud data, applications, and services. The first half of the book enables readers to have a comprehensive understanding and background of cloud security, which will help them through the digital investigation guidance and recommendations found in the second half of the book. Part One ofSecurity, Privacy and Digital Forensics in theCloudcovers cloud infrastructure security; confidentiality of data; access control in cloud IaaS; clouTable of ContentsList of Contributors xv Part I Cloud Security and Privacy 1 1 Introduction to the Cloud and Fundamental Security and Privacy Issues of the Cloud 3Hassan Takabi and Mohammad GhasemiGol 1.1 Introduction 3 1.2 Cloud Computing and Security Issues 4 1.3 Identity Security in the Cloud 9 1.4 Information Security in the Cloud 9 1.5 Cloud Security Standards 16 1.6 Conclusion 20 References 20 2 Cloud Infrastructure Security 23Mohammad GhasemiGol 2.1 Introduction 23 2.2 Infrastructure Security in the Cloud 24 2.3 Infrastructure Security Analysis in Some Clouds 31 2.4 Protecting Cloud Infrastructure 45 2.5 Conclusion 49 References 49 3 Confidentiality of Data in the Cloud: Conflicts Between Security and Cost 51Nathalie Baracaldo and Joseph Glider 3.1 Introduction 51 3.2 Background 51 3.3 Confidentiality: Threats and Adversaries 54 3.4 Achieving Data Confidentiality in Cloud Storage Systems 55 3.5 Reducing Cloud Storage System Costs through Data‐Reduction Techniques 57 3.6 Reconciling Data Reduction and Confidentiality 59 3.7 Trusted Decrypter 62 3.8 Future Directions for Cloud Storage Confidentiality with Low Cost 74 3.9 Conclusions 76 References 77 4 Access Control in Cloud IaaS 81Yun Zhang, Ram Krishnan, Farhan Patwa, and Ravi Sandhu 4.1 Introduction 81 4.2 Background 82 4.3 Access Control in OpenStack Cloud IaaS 83 4.4 Access Control in AWS Cloud IaaS 90 4.5 Access Control in Azure Cloud IaaS 99 4.6 Conclusions 107 References 107 5 Cloud Security and Privacy Management 109Patrick Kamongi 5.1 Introduction and Background 109 5.2 Security and Privacy Analysis 111 5.3 Best Security Practices and Recommendation 117 5.4 Use Case Example: Microsoft Office 365, SaaS Version 118 5.5 Current Trends and Future Direction 125 5.6 Related Works 125 5.7 Conclusion 126 Acknowledgments 126 References 126 6 Hacking and Countermeasures in the Cloud 129Farzaneh Abazari, Hassan Takabi, and Morteza Analoui 6.1 Introduction 129 6.2 Background 130 6.3 Cloud Security Threats 130 6.4 Cloud Security Countermeasures 134 6.5 Hacking the Cloud: Reality Check 136 6.6 Future of Cloud Security 137 6.6.1 Cloud Security for the IoT 138 6.7 Conclusions 139 References 139 7 Risk Management and Disaster Recovery in the Cloud 143Saman Zonouz 7.1 Introduction 143 7.2 Background 143 7.3 Consequence‐ Centric Security Assessment 145 7.4 Future Directions 154 7.5 Conclusions 155 8 Cloud Auditing and Compliance 157Paolina Centonze 8.1 Introduction 157 8.2 Background 157 8.3 Cloud Auditing 162 8.4 Cloud Compliance 170 8.5 Future Research Directions for Cloud Auditing and Compliance 183 8.6 Conclusion 184 References 185 Further Reading 187 9 Security‐as‐a‐Service (SECaaS) in the Cloud 189Saman Taghavi Zargar, Hassan Takabi, and Jay Iyer 9.1 Introduction 189 9.2 Related Work 192 9.3 Security‐ as‐a‐Service Framework 194 9.4 Conclusions 199 References 199 Part II Cloud Forensics 201 10 Cloud Forensics: Model, Challenges, and Approaches 203Lei Chen, Nhien‐An Le‐Khac, Sebastian Schlepphorst, and Lanchuan Xu 10.1 Introduction 203 10.2 Background 204 10.3 Process and Model of Cloud Forensics 207 10.4 Cloud Forensics Methods, Approaches, and Tools 211 10.5 Challenges in Cloud Forensics 213 10.6 Conclusions 214 References 214 11 Cyberterrorism in the Cloud: Through a Glass Darkly 217Barry Cartwright, George R. S. Weir, and Richard Frank 11.1 Introduction 217 11.2 What is Terrorism? 218 11.3 Defining Cyberterrorism 220 11.4 Cyberterrorism vs. Terrorist Use of Cyberspace 221 11.5 Cyberterrorism in the Cloud 222 11.6 The Benefits of the Cloud to Cyberterrorists 225 11.7 Cyberlaw and Cyberterrorism 227 11.8 Conclusion: Through a Glass Darkly 230 References 232 12 Digital Forensic Process and Model in the Cloud 239Nhien‐An Le‐Khac, James Plunkett, M‐Tahar Kechadi, and Lei Chen 12.1 Introduction 239 12.2 Digital Forensics Models 240 12.3 Cloud Forensics Process and Model 243 12.4 Toward a New Cloud Forensics Model 246 12.5 Evaluation and Analysis 251 12.6 Conclusion 253 References 253 13 Data Acquisition in the Cloud 257Nhien‐An Le‐Khac, Michel Mollema, Robert Craig, Steven Ryder, and Lei Chen 13.1 Introduction 257 13.2 Background 258 13.3 Data Center as a Source of Evidence 259 13.4 Cloud Service Providers: Essential Requirements, Governance, and Challenges 260 13.4.1 Business Model 261 13.5 Cloud Storage Forensics 264 13.6 Case Study 1: Finding Data Centers on the Internet in Data‐Dense Environments 265 13.7 Case Study 2: Cloud Forensics for the Amazon Simple Storage Service 274 13.8 Conclusion 281 References 281 14 Digital Evidence Management, Presentation, and Court Preparation in the Cloud: A Forensic Readiness Approach 283Lucia De Marco, Nhien‐An Le‐Khac, and M‐Tahar Kechadi 14.1 Introduction 283 14.2 Cloud Forensics and Challenges 284 14.3 Digital Forensics Readiness 285 14.4 Cloud Forensics Readiness 287 14.5 Forensics Readiness in Evidence Management, Presentation, and Court Preparation 291 14.6 Conclusion 295 References 296 15 Analysis of Cloud Digital Evidence 301Irfan Ahmed and Vassil Roussev 15.1 Introduction 301 15.2 Background 305 15.3 Current Approaches 307 15.4 Proposed Comprehensive Approaches 312 15.5 Discussion 317 15.6 Conclusions 317 References 318 16 Forensics‐as‐a‐Service (FaaS) in the State‐of‐the‐Art Cloud 321Avinash Srinivasan and Frank Ferrese 16.1 Introduction 321 16.2 Background and Motivation 323 16.3 State of the Art in Parallel and Distributed Forensic Analysis 325 16.4 Conclusion and Future Research Direction 334 References 335 Index 339
£84.56
John Wiley & Sons Inc The IEEE Guide to Writing in the Engineering and
Book SynopsisHelps both engineers and students improve their writing skills by learning to analyze target audience, tone, and purpose in order to effectively write technical documents This book introduces students and practicing engineers to all the components of writing in the workplace. It teaches readers how considerations of audience and purpose govern the structure of their documents within particular work settings. The IEEE Guide to Writing in the Engineering and Technical Fields is broken up into two sections: Writing in Engineering Organizations and What Can You Do With Writing? The first section helps readers approach their writing in a logical and persuasive way as well as analyze their purpose for writing. The second section demonstrates how to distinguish rhetorical situations and the generic forms to inform, train, persuade, and collaborate. The emergence of the global workplace has brought with it an increasingly important role for effective technical communication. Engineers more Table of ContentsA Note from the Series Editor, ix About the Authors, xi PART I A TECHNIQUE FOR WRITING LIKE A PROFESSIONAL 1 Introduction, 3 1 The Social Situation of Text 7 The Social Contexts for Technical Writing, 8 Models of the Writing Environment, 9 Transmission Models, 10 Correctness Models, 11 Cognitive/Behavioral Models, 13 Social/Rhetorical Models, 14 This Guide's Approach, 16 The Rhetorical Situation: Purpose, 18 The Rhetorical Situation: Audience, 21 The Rhetorical Situation: Identity, 26 The Rhetorical Situation: Context, 28 The Pragmatic Situation: Community and Genre, 29 2 Making Writing Decisions 33 Introduction, 34 Document Structure and Granularity, 35 Arranging Text at the Macro Level, 37 Sectioning and Heading Sections, 39 Aids for Navigating and Understanding Document Structure, 43 Creating Effects with Lexis and Syntax at the Micro Level, 45 Lexical Technique: Word Choice, Technical Terms, and Hedges and Boosters, 47 Syntactic Technique: Modification, Clausal Arrangement, and Discursive Cueing, 53 Intermediate Structural Units and Argumentative Movement, 68 Paragraph Cohesion and Paragraphs as Structural Units of a Document, 69 Structures Other than Paragraphs, 72 Citations and Other Intertextual Statements, 73 Implications for the Process of Writing, 75 Additional Reading, 77 PART 2 WRITING DOCUMENTS 79 Introduction 81 3 Writing to Know: Informative Documents 85 Introduction, 86 The Purposes of Informative Documents, 86 Occasions for Preparing an Informative Document, 88 Audiences for an Informative Document, 88 Key Communication Strategies When Writing to Know, 90 Understanding What Constitutes Sufficient Evidence to Support a Claim, 90 Structuring Evidence in Your Document, 91 Establishing Expertise, 92 Questions for Analyzing Existing Documents, 93 Some Typical Informative Documents, 93 Reports, 93 Specifications, 104 4 Writing to Enable: Instructions and Guidance 109 Introduction, 110 The Purposes of Enabling Documents, 110 Occasions for Preparing an Enabling Document, 112 Audiences for an Enabling Document, 112 Key Communication Strategies When Writing to Enable, 113 Anticipating a Document's Use Context, 113 Deciding How Much Background Is Warranted, 115 Testing the Document with Users, 116 Questions for Analyzing Existing Documents, 119 Characteristic Enabling Documents, 119 Manuals/Guides and Other Documents That Primarily Contain Instructions/Directions/Procedures, 119 Tutorials/Training Materials, 128 Policies, 130 5 Writing to Convince: Persuasive Documents 133 Introduction, 134 The Purposes of Persuasive Documents, 134 Occasions for Preparing a Persuasive Document, 135 Audiences for the Persuasive Document, 136 Key Communication Strategies When Writing to Convince, 137 Designing Your Argument to Consider the Audience's Preexisting Beliefs, 137 Using the Terms and Values of the Audience to Articulate a Shared Goal, 140 Assuring Outcomes and Benefits without Seeming Unrealistic, 142 Questions for Analyzing Existing Documents, 143 Typical Examples of Persuasive Documents, 145 Proposals, 145 Business Plans, 149 6 Correspondence: Medium of Workplace Collaboration 155 Introduction, 156 The Purposes of Correspondence, 157 Occasions for Preparing Correspondence, 158 Audiences for Correspondence, 158 Key Communication Strategies When Corresponding, 160 Consider Workplace Roles and Official and Unofficial Relationships and Responsibilities, 160 Evaluate Target Size and Frequency of Communication for a Relationship, 162 Pause to Reconsider Composition, Time, and Tone before Sending, 163 Characteristics of Correspondence Documents, 165 Letters, Memoranda, and E-mails, 165 Types of Correspondence, 167 Pre- and Post-meeting Documents: Announcements, Agendas, and Minutes, 170 Social Media, 171 Appendix: IEEE Style for References, 173 Index, 183
£56.66
John Wiley & Sons Inc Multimedia Networks
Book SynopsisThe transportation of multimedia over the network requires timely and errorless transmission much more strictly than other data. This had led to special protocols and to special treatment in multimedia applications (telephony, IP-TV, streaming) to overcome network issues. This book begins with an overview of the vast market combined with the user's expectations. The base mechanisms of the audio/video coding (H.26x etc.) are explained to understand characteristics of the generated network traffic. Further chapters treat common specialized underlying IP network functions which cope with multimedia data in conjunction which special time adaption measures. Based on those standard functions these chapters can treat uniformly SIP, H.248, High-End IP-TV, Webcast, Signage etc. A special section is devoted to home networks which challenge high-end service delivery due to possibly unreliable management. The whole book treats concepts described in accessible IP-based standards and which are impleTable of ContentsPreface xi Acknowledgments xiii About the Authors xv Abbreviations xvii 1 Introduction 1 1.1 Types of Networks 2 1.1.1 Internet 2 1.1.2 Telecommunication Provider Networks 2 1.1.3 Company Networks 3 1.1.4 University Networks 3 1.1.5 Home Networks 3 1.1.6 Overview 4 1.2 Standard Organizations 4 1.3 Market 5 2 Requirements 7 2.1 Telephony 7 2.2 Streaming 10 2.3 IPTV 11 2.4 High-End Videoconferences 12 2.5 Webcast 15 2.6 Requirement Summary 16 3 Audio, Image, Video Coding, and Transmission 19 3.1 Audio 19 3.1.1 Companding 21 3.1.2 Differential Quantization 23 3.1.3 Vocoders 26 3.2 Basics of Video Coding 30 3.2.1 Simple Compression 34 3.2.2 Motion Estimation 35 3.2.3 Statistical Compression 36 3.2.4 Transform Functions 40 3.3 JPEG 43 3.4 MPEG/H.26x Video Compression 45 3.4.1 MPEG Data Streams 47 3.4.2 H.261 49 3.4.3 MPEG-4 52 3.4.4 H.264 52 3.4.5 Scalable Video Codec 58 3.4.6 H.265 59 3.5 Other Video Compression Standards 62 3.6 Three-Dimensional Video 64 3.7 Error Resilience 66 3.8 Transcoder 68 4 Underlying Network Functions 71 4.1 Real-Time Protocol (RTP) 71 4.1.1 Elements of RTP 73 4.1.2 Details of RTP 73 4.1.3 RTP Payload 74 4.1.4 Details of RTCP 79 4.2 Session Description Protocol (SDP) 86 4.2.1 SDP Overview 86 4.2.2 Extending SDP 89 4.2.3 Javascript Session Establishment Protocol (JSEP) 89 4.3 Streaming 90 4.3.1 Real-Time Streaming Protocol (RTSP) 90 4.4 Multicast 96 4.4.1 Multicast Overview 96 4.4.2 Multicast Addressing 97 4.4.3 Types of Multicast 98 4.4.4 Multicast End Delivery 99 4.4.5 Multicast Routing Protocols 102 4.4.6 Protocol Independent Multicast – Sparse Mode 103 4.4.7 Application Layer Multicast 107 4.5 Quality of Service 108 4.5.1 Integrated Services (Intserv) 109 4.5.2 Resource Reservation Protocol (RSVP) 110 4.5.3 Differentiated Services (DiffServ) 111 4.5.4 QoS on the LAN 116 4.5.5 QoS in the Real World 117 4.6 NTP 118 4.7 Caching 120 4.7.1 Caching Elements 120 4.7.2 Web Cache Communications Protocol (WCCP) 122 4.7.3 Content Delivery Networks 122 4.7.4 Use of Cache Servers in Private Networks 123 5 Synchronization and Adaptation 125 5.1 End-to-End Model 125 5.2 Jitter 128 5.3 Packet Loss 129 5.4 Play-Out Time 130 5.4.1 Hypothetical Decoder 131 5.4.2 Multiple Streams 132 5.4.3 Adaptive Play-Out 133 5.5 Congestion Control 133 5.6 Delay 135 5.7 Queuing 138 5.8 Media Player 140 5.9 Storage and Retrieval 141 5.10 Integration Scripting Languages 143 5.11 Optimization 144 6 Session Initiation Protocol 147 6.1 SIP Basics 148 6.1.1 First Steps with SIP 148 6.1.2 SIP Servers 152 6.1.3 More SIP Methods 156 6.2 PSTN Interconnection 158 6.3 Conferencing 161 6.4 Presence 166 6.5 Network Address Translation 169 6.6 APIs and Scripting 172 6.7 Security and Safety 172 6.8 Planning a VoIP Company Telephony System 175 6.8.1 Dial Plan 177 6.8.2 Emergency 178 6.8.3 VoIP Network Planning 179 7 Other Standard VoIP Protocols 183 7.1 H.323 VoIP Family 183 7.1.1 H.225 185 7.1.2 H.245 189 7.1.3 Comparing SIP and H.323 191 7.2 T.120 Data Applications 192 7.3 Gateway Control 194 7.3.1 H.248 195 7.3.2 Signal Control 198 7.4 Mobile VoIP 202 7.4.1 IP Multimedia Subsystem 202 7.4.2 VoLTE 208 7.5 Skype 211 8 WebRTC 213 8.1 WebRTC Transport 215 8.1.1 ICE Revisited 217 8.2 RTP/SDP Adaptations 219 8.3 Interworking 220 9 Streaming and Over-the-Top TV 223 9.1 HTTP Live Streaming – Apple 224 9.2 Smooth Streaming – Microsoft 226 9.3 HTTP Dynamic Streaming – Adobe 227 9.4 Dynamic Adaptive Streaming over HTTP – DASH 229 9.4.1 History of MPEG-DASH 229 9.4.2 Description of MPEG-DASH 229 9.5 DASH and Network Interaction 233 9.5.1 Player Reaction to Network Conditions 234 9.5.2 Fairness, Efficiency, and Stability 234 9.5.3 Bufferbloat 235 9.6 Content Delivery Networks 237 9.6.1 CDN Technology 237 9.6.2 Akamai 240 9.6.3 The Future of CDNs 240 9.7 Providers 242 9.7.1 Amazon Instant Video 242 9.7.2 YouTube 242 9.7.3 Netflix 243 9.7.4 Hulu 243 9.7.5 Common Issues for all Providers 244 10 Home Networks 245 10.1 IETF Home Standards 246 10.1.1 IP Address Assignment 247 10.1.2 Name Resolution 247 10.1.3 Service Discovery – Zeroconf and Others 249 10.1.4 Zeroconf Implementations 251 10.2 UPnP 251 10.2.1 Service Discovery – UPnP 253 10.2.2 AV Architecture and its Elements 254 10.3 DLNA 260 10.4 Residential Gateway 261 10.4.1 IMS Integration 262 10.4.2 Network Separation 262 11 High-End IPTV 265 11.1 Overview of DVB IPTV 266 11.2 Live Media Broadcast 268 11.2.1 Retransmission 268 11.2.2 Channel Switch 271 11.3 Datacast Protocols 274 11.3.1 Flute 274 11.3.2 DVB SD&S Transport Protocol 276 11.3.3 Digital Storage Media – Command and Control 278 11.4 Management Functions 279 11.4.1 Service Discovery and Selection 279 11.4.2 Broadband Content Guide 280 11.4.3 Remote and Firmware Management 280 11.5 Content Download Service 282 11.6 Deployments 283 11.7 Companion Screen Application 285 11.8 Set-Top-Box Functions 288 11.9 Integration into Other Systems 289 11.9.1 IPTV and IMS 289 11.9.2 IPTV and IMS and WebRTC 290 11.9.3 IPTV and Home Network 290 12 Solutions and Summary 291 12.1 Global Webcast 291 12.2 Digital Signage Broadcasting 295 12.3 Call Center 297 12.3.1 Functional Components 297 12.3.2 Technical Components 299 12.4 Videoconference and TelePresence 303 12.4.1 Cisco’s Telepresence 305 12.4.2 Cisco’s Telepresence Transport Specifics 306 12.4.3 Cisco’s Telepresence Network Setup 308 12.5 Summary of Requirements versus Solutions 310 References 313 Index 345
£73.76
John Wiley & Sons Inc Selfhealing Control Technology for Distribution
Book SynopsisSystematically introduces self-healing control theory for distribution networks, rigorously supported by simulations and applications A comprehensive introduction to self-healing control for distribution networks Details the construction of self-healing control systems with simulations and applications Provides key principles for new generation protective relay and network protection Demonstrates how to monitor and manage system performance Highlights practical implementation of self-healing control technologies, backed by rigorous research data and simulationsTable of ContentsForeword ix Preface xi 1 Overview 1 1.1 Proposal of Smart Grid 1 1.2 Development Status of China’s Power Distribution Network Automation 2 1.3 Development of Self‐healing Control Theory 3 2 Architecture of Self‐healing Control System for Distribution Network 7 2.1 Characteristics 7 2.2 Structure of Self‐healing Control System 8 3 Advanced Application Software of Smart Dispatching and Self‐healing Control for Power Distribution Network 11 3.1 Design Principles of Application Software for Smart Dispatching Platform 11 3.2 Overall Structure of Automation System for Power Distribution Network 13 3.2.1 Supporting Platform Layer 13 3.2.1.1 Integration Bus Layer 13 3.2.1.2 Data Bus Layer 15 3.2.1.3 Public Service Layer 15 3.2.2 Application System Layer 16 3.3 Smart Dispatching Platform Functions 16 3.3.1 Supporting Platform 16 3.3.2 Operation Monitoring of Power Distribution Network 17 3.3.3 Information Interaction with Other Systems 19 3.3.4 Advanced Application Software of Self‐healing Control 21 4 A New Generation of Relay Protection for Distribution Networks 27 4.1 Principles and Application of Network Protection for Distribution Networks 27 4.2 Adaptive Protection 28 4.2.1 Development History and Features of Adaptive Protection 29 4.2.2 Realization Mode of Adaptive Protection 31 4.2.2.1 Local Adaptive Protection (Non‐channel Adaptive Protection) 32 4.2.2.2 Area/Wide‐Area Adaptive Protection 34 4.3 Networking Protection for Distribution Network 36 4.3.1 Concept of Networking Protection for Distribution Network 37 4.3.1.1 Networking Protection 37 4.3.1.2 Area/Wide‐Area Adaptive Protection Based on Networking – Networking Protection for Distribution Network 38 4.3.1.3 Distribution Network Automation System – Fundamental Framework of Networking Protection 39 4.3.1.4 Networking: An Effective Method for Realizing Area/Wide‐Area Adaptive Protection for Distribution Networks 42 4.3.2 Realization of Networking Protection for Distribution Network 44 4.3.2.1 System Framework of Networking Protection for Distribution Network 44 4.3.2.2 Dispatching Control Layer of Distribution Network 44 4.3.2.3 Substation Layer 44 4.3.2.4 Networking Bus Protection 46 4.3.2.5 Network Backup Automatic Switching 47 4.3.2.6 Network Adaptive Current Protection 49 5 Distribution Network Communication Technology and Networking 57 5.1 Introduction to Distribution Communications 57 5.2 Backbone Communication Network 59 5.2.1 SDH Technology 59 5.2.2 MSTP Technology 59 5.3 Distribution Communication Technology 60 5.3.1 EPON 60 5.3.1.1 EPON Technology and Characteristics 60 5.3.1.2 EPON Interface 63 5.3.1.3 EPON Transmission System 63 5.3.2 Industrial Ethernet 64 5.3.3 Wireless Communication 65 5.3.4 Power‐Line Carrier 66 5.4 Communication Networking Method of Power Distribution 68 5.4.1 Basic Topology 68 5.4.1.1 Networking Application 70 5.4.2 Industrial Ethernet 72 5.4.3 Wireless Communication 72 5.4.3.1 Short‐Distance Communication 72 5.4.3.2 TD‐LTE 73 5.4.4 Hybrid Networking 74 5.4.4.1 Optical Fiber + Power‐Line Carrier 77 5.4.4.2 Optical Fiber + Wireless 77 5.4.4.3 Power‐Line Carrier + Wireless 77 6 Detection Management System for Distribution Network Devices 81 6.1 Significance of Distribution Equipment Condition‐Based Monitoring and Maintenance 81 6.1.1 Equipment Condition Monitoring Technology 83 6.1.1.1 Common Sensors 83 6.1.1.2 Distribution Transformer Condition Monitoring and Diagnosis Technology 84 6.1.1.3 HV Breaker Condition‐Based Monitor 94 6.1.1.4 Lighting Arrester Condition Monitoring 105 6.1.1.5 Capacitive Equipment Status‐Detection System 119 6.2 Distribution Network Device Monitoring System and Network Monitoring Management System 128 6.2.1 Distribution Network Equipment Supervisory Terminal and Distribution Network System Terminal Layer 129 6.2.2 Condition Monitoring System Relies on Automation System Communication Channel 130 6.2.3 Primary Station for Distribution Equipment Condition‐Based Maintenance and Integration of DMS 131 6.2.4 Geological Information‐Based Distribution Network Condition Monitoring and Maintenance 132 6.2.4.1 Integration Mode 133 6.2.4.2 Information Interaction 134 6.2.5 Distribution Equipment Assessment and Condition Maintenance 135 6.2.5.1 Information Support 136 6.2.5.2 Distribution Device Condition Assessment 138 6.2.5.3 Device Risk Assessment 140 6.2.5.4 Fault Diagnosis 143 6.2.5.5 Condition Improvement and Maintenance 144 7 Implementation of Self‐healing Control Technology 147 7.1 Principle of Implementation of Self‐healing Control 147 7.1.1 Characteristics of Self‐healing Function 147 7.1.2 Basic Principle of Self‐healing Control 147 7.2 Self‐healing Control Method 149 7.2.1 Urban Distribution Network Self‐healing Control Method Based on Quantity of State 149 7.2.2 Self‐healing Control Method for Distribution Network Based on Distributed Power and Micro‐grid 151 7.2.3 Distribution Network Self‐healing Control Based on Coordination Control Model 151 7.3 Implementation of Distribution Network Self‐healing 159 7.3.1 Self‐adaptive Relay Protection Units 160 7.3.2 Relay Protection 161 7.3.2.1 Basic Requirements 161 7.3.2.2 Self‐adaption 161 7.3.3 SCADA/RTU 163 7.3.3.1 History of SCADA 163 7.3.3.2 Development of SCADA 164 7.3.4 Wide‐Area Measuring System and Phasor Measuring Unit 165 7.3.4.1 WAMS System 167 7.3.4.2 PMU/WAMS and SCADA/EMS 167 7.3.4.3 Application of PMU or WAMS 168 7.3.5 Smart Grid and WAMS 169 8 Pilot Project 171 8.1 Simulation Analysis 171 8.1.1 Components 171 8.1.2 Test Items 171 8.1.3 Information Flow of Simulation System 171 8.1.4 Test Results 171 8.1.4.1 System States 171 8.1.4.2 System Management 171 8.1.4.3 Self‐healing Control 171 8.1.4.4 Simulation Analysis 172 8.1.4.5 History Query 172 8.1.5 Simulation Cases 174 8.1.5.1 Simulation Case 1 174 8.1.5.2 Simulation Case 2 174 8.1.5.3 Simulation Case 3 175 8.2 Pilot Application 177 8.2.1 Requirements for Pilot Power Grid 177 8.2.2 Contents of Demonstration Project 178 8.2.3 Distribution Network of Pilot Project 178 9 Development Progress of Smart Grid in the World 189 9.1 Introduction 189 9.2 Current Situation of Chinese Smart Grid: China’s National Strategy 190 9.2.1 Distribution Network Automation 190 9.2.2 Standards Release 190 9.2.3 Research and Demonstration 190 9.3 Current Situation of Foreign Countries’ Smart Grid 193 9.3.1 United States 193 9.3.2 Europe 193 9.3.3 The Americas 194 9.3.4 Multinational Cooperation 194 9.3.5 EPRI USA Smart Grid Demonstration Initiative: 5 Year Update on Multinational Cooperation 195 9.4 Energy Network 196 9.5 Opportunities and Challenges 196 References 199 Postscript 201 Index 203
£106.98
John Wiley & Sons Inc Mastering Microsoft Exchange Server 2016
Book SynopsisA bestselling Exchange Server guide, updated for the 2016 release Mastering Microsoft Exchange Server 2016 is the gold-standard reference for system administrators and first-time users alike.Table of ContentsIntroduction xxvii Part 1 • Exchange Fundamentals 1 Chapter 1 • Putting Exchange Server 2016 in Context 3 Chapter 2 • Introducing the Changes in Exchange Server 2016 25 Chapter 3 • Understanding Availability, Recovery, and Compliance 41 Chapter 4 • Virtualizing Exchange Server 2016 71 Chapter 5 • Introduction to PowerShell and the Exchange Management Shell 91 Chapter 6 • Understanding the Exchange Autodiscover Process 145 Part 2 • Getting Exchange Server Running 169 Chapter 7 • Exchange Server 2016 Quick Start Guide 171 Chapter 8 • Understanding Server Roles and Configurations 195 Chapter 9 • Exchange Server 2016 Requirements 209 Chapter 10 • Installing Exchange Server 2016 227 Chapter 11 • Upgrades and Migrations to Exchange Server 2016 or Office 365 249 Part 3 • Recipient Administration 273 Chapter 12 • Management Permissions and Role-Based Access Control 275 Chapter 13 • Basics of Recipient Management 315 Chapter 14 • Managing Mailboxes and Mailbox Content 331 Chapter 15 • Managing Mail-Enabled Groups, Mail Users, and Mail Contacts 389 Chapter 16 • Managing Resource Mailboxes 413 Chapter 17 • Managing Modern Public Folders 435 Chapter 18 • Managing Archiving and Compliance 463 Part 4 • Server Administration 493 Chapter 19 • Creating and Managing Mailbox Databases 495 Chapter 20 • Creating and Managing Database Availability Groups 519 Chapter 21 • Understanding the Client Access Services 559 Chapter 22 • Managing Connectivity with Transport Services 597 Chapter 23 • Managing Transport, Data Loss Prevention, and Journaling Rules 635 Part 5 • Troubleshooting and Operating 665 Chapter 24 • Troubleshooting Exchange Server 2016 667 Chapter 25 • Backing Up and Restoring Exchange Server 691 Appendix • The Bottom Line 719 Index 753
£38.00
John Wiley & Sons Inc Mastering System Center Configuration Manager
Book SynopsisGet up to date quickly with clear, expert coverage of SCCM 2016 Mastering System Center Configuration Manager provides comprehensive coverage of Microsoft's powerful network software deployment tool, with a practical hands-on approach.Table of ContentsIntroduction xxiii Chapter 1 • Overview of System Center Configuration Manager and Microsoft Intune 1 Chapter 2 • Planning a Configuration Manager Infrastructure 17 Chapter 3 • Migrating to Configuration Manager 63 Chapter 4 • Installation and Site Role Configuration 103 Chapter 5 • Client Installation 185 Chapter 6 • Client Health 229 Chapter 7 • Application Deployment 247 Chapter 8 • Software Updates 319 Chapter 9 • Operating System Deployment 407 Chapter 10 • Inventory and Software Metering 479 Chapter 11 • Asset Intelligence 513 Chapter 12 • Reporting 533 Chapter 13 • Compliance Settings 565 Chapter 14 • Endpoint Protection 633 Chapter 16 • Disaster Recovery 683 Chapter 17 • Troubleshooting 711 Chapter 18 • Enterprise Mobility and Configuration Manager 759 Appendix • The Bottom Line Answers 859 Chapter 2: Planning a Configuration Manager Infrastructure 859 Chapter 3: Migrating to Configuration Manager 860 Chapter 4: Installation and Site Role Configuration 862 Chapter 5: Client Installation 864 Chapter 6: Client Health 865 Chapter 7: Application Deployment 866 Chapter 8: Software Updates 867 Chapter 9: Operating System Deployment 868 Chapter 10: Inventory and Software Metering 869 Chapter 11: Asset Intelligence 870 Chapter 12: Reporting 871 Chapter 13: Compliance Settings 872 Chapter 14: Endpoint Protection 873 Chapter 15: Role-Based Administration 874 Chapter 16: Disaster Recovery 875 Chapter 17: Troubleshooting 876 Chapter 18: Enterprise Mobility and Configuration Manager 877 Index 879
£999.99
John Wiley & Sons Inc Linux Server Security
Book SynopsisLearn how to attack and defend the world's most popular web server platform Linux Server Security: Hack and Defend presents a detailed guide for experienced admins, aspiring hackers and other IT professionals seeking a more advanced understanding of Linux security. Written by a 20-year veteran of Linux server deployment this book provides the insight of experience along with highly practical instruction. The topics range from the theory of past, current, and future attacks, to the mitigation of a variety of online attacks, all the way to empowering you to perform numerous malicious attacks yourself (in the hope that you will learn how to defend against them). By increasing your understanding of a hacker's tools and mindset you''re less likely to be confronted by the all-too-common reality faced by many admins these days: someone else has control of your systems. Master hacking tools and launch sophisticated attacks: perform SQL injections, deploy mTable of ContentsPreface xiii Introduction xv Chapter 1: Invisibility Cloak 1 Background 1 Probing Ports 1 Confusing a Port Scanner 2 Installing knockd 2 Packages 3 Changing Default Settings 3 Altering Filesystem Locations 4 Some Config Options 5 Starting the Service 5 Changing the Default Network Interface 5 Packet Types and Timing 5 Testing Your Install 6 Port Knocking Clients 7 Making Your Server Invisible 7 Testing Your iptables 8 Saving iptables Rules 9 Further Considerations 10 Smartphone Client 10 Troubleshooting 10 Security Considerations 10 Ephemeral Sequences 11 Summary 12 Chapter 2: Digitally Fingerprint Your Files 13 Filesystem Integrity 13 Whole Filesystem 16 Rootkits 17 Confi guration 19 False Positives 21 Well Designed 22 Summary 23 Chapter 3: Twenty-First-Century Netcat 25 History 25 Installation Packages 27 Getting Started 27 Transferring Files 29 Chatting Example 30 Chaining Commands Together 30 Secure Communications 31 Executables 33 Access Control Lists 34 Miscellaneous Options 34 Summary 35 Chapter 4: Denying Service 37 NTP Infrastructure 37 NTP Reflection Attacks 38 Attack Reporting 40 Preventing SNMP Reflection 41 DNS Resolvers 42 Complicity 43 Bringing a Nation to Its Knees 44 Mapping Attacks 45 Summary 46 Chapter 5: Nping 49 Functionality 49 TCP 50 Interpreter 51 UDP 52 ICMP 52 ARP 53 Payload Options 53 Echo Mode 54 Other Nping Options 57 Summary 58 Chapter 6: Logging Reconnoiters 59 ICMP Misconceptions 59 tcpdump 60 Iptables 61 Multipart Rules 64 Log Everything for Forensic Analysis 64 Hardening 65 Summary 67 Chapter 7: Nmap’s Prodigious NSE 69 Basic Port Scanning 69 The Nmap Scripting Engine 71 Timing Templates 73 Categorizing Scripts 74 Contributing Factors 75 Security Holes 75 Authentication Checks 77 Discovery 78 Updating Scripts 79 Script Type 80 Regular Expressions 80 Graphical User Interfaces 81 Zenmap 81 Summary 82 Chapter 8: Malware Detection 85 Getting Started 85 Definition Update Frequency 85 Malware Hash Registry 86 Prevalent Threats 86 LMD Features 86 Monitoring Filesystems 88 Installation 88 Monitoring Modes 90 Configuration 91 Exclusions 91 Running from the CLI 92 Reporting 92 Quarantining and Cleaning 93 Updating LMD 94 Scanning and Stopping Scans 94 Cron Job 96 Reporting Malware 96 Apache Integration 96 Summary 97 Chapter 9: Password Cracking with Hashcat 99 History 99 Understanding Passwords 99 Keyspace 100 Hashes101 Using Hashcat 103 Hashcat Capabilities 103 Installation 103 Hash Identifi cation104 Choosing Attack Mode 106 Downloading a Wordlist 106 Rainbow Tables 107 Running Hashcat 107 oclHashcat 110 Hashcat-Utils 111 Summary 111 Chapter 10: SQL Injection Attacks 113 History 113 Basic SQLi 114 Mitigating SQLi in PHP 115 Exploiting SQL Flaws 117 Launching an Attack 118 Trying SQLi Legally 120 Summary 121 Index 123
£999.99
John Wiley & Sons Inc DNS Security Management
Book SynopsisAn advanced Domain Name System (DNS) security resource that explores the operation of DNS, its vulnerabilities, basic security approaches, and mitigation strategies DNS Security Management offers an overall role-based security approach and discusses the various threats to the Domain Name Systems (DNS).Table of ContentsPreface xiii Acknowledgments xvii 1 INTRODUCTION 1 Why Attack DNS? 1 Network Disruption 2 DNS as a Backdoor 2 DNS Basic Operation 3 Basic DNS Data Sources and Flows 4 DNS Trust Model 5 DNS Administrator Scope 6 Security Context and Overview 7 Cybersecurity Framework Overview 7 Framework Implementation 9 What’s Next 15 2 INTRODUCTION TO THE DOMAIN NAME SYSTEM (DNS) 17 DNS Overview – Domains and Resolution 17 Domain Hierarchy 18 Name Resolution 18 Zones and Domains 23 Dissemination of Zone Information 25 Additional Zones 26 Resolver Configuration 27 Summary 29 3 DNS PROTOCOL AND MESSAGES 31 DNS Message Format 31 Encoding of Domain Names 31 Name Compression 32 Internationalized Domain Names 34 DNS Message Format 35 DNS Update Messages 43 The DNS Resolution Process Revisited 48 DNS Resolution Privacy Extension 55 Summary 56 4 DNS VULNERABILITIES 57 Introduction 57 DNS Data Security 57 DNS Information Trust Model 59 DNS Information Sources 60 DNS Risks 61 DNS Infrastructure Risks and Attacks 62 DNS Service Availability 62 Hardware/OS Attacks 63 DNS Service Denial 63 Pseudorandom Subdomain Attacks 67 Cache Poisoning Style Attacks 67 Authoritative Poisoning 71 Resolver Redirection Attacks 73 Broader Attacks that Leverage DNS 74 Network Reconnaissance 75 DNS Rebinding Attack 77 Reflector Style Attacks 78 Data Exfiltration 79 Advanced Persistent Threats 81 Summary 83 5 DNS TRUST SECTORS 85 Introduction 85 Cybersecurity Framework Items 87 Identify 87 Protect 87 Detect 88 DNS Trust Sectors 88 External DNS Trust Sector 91 Basic Server Configuration 93 DNS Hosting of External Zones 97 External DNS Diversity 97 Extranet DNS Trust Sector 98 Recursive DNS Trust Sector 99 Tiered Caching Servers 100 Basic Server Configuration 101 Internal Authoritative DNS Servers 103 Basic Server Configuration 105 Additional DNS Deployment Variants 108 Internal Delegation DNS Master/Slave Servers 109 Multi-Tiered Authoritative Configurations 109 Hybrid Authoritative/Caching DNS Servers 111 Stealth Slave DNS Servers 111 Internal Root Servers 111 Deploying DNS Servers with Anycast Addresses 113 Other Deployment Considerations 118 High Availability 118 Multiple Vendors 118 Sizing and Scalability 118 Load Balancers 119 Lab Deployment 119 Putting It All Together 119 6 SECURITY FOUNDATION 121 Introduction 121 Hardware/Asset Related Framework Items 122 Identify: Asset Management 122 Identify: Business Environment 123 Identify: Risk Assessment 124 Protect: Access Control 126 Protect: Data Security 127 Protect: Information Protection 129 Protect: Maintenance 130 Detect: Anomalies and Events 131 Detect: Security Continuous Monitoring 131 Respond: Analysis 132 Respond: Mitigation 132 Recover: Recovery Planning 133 Recover: Improvements 133 DNS Server Hardware Controls 134 DNS Server Hardening 134 Additional DNS Server Controls 136 Summary 137 7 SERVICE DENIAL ATTACKS 139 Introduction 139 Denial of Service Attacks 139 Pseudorandom Subdomain Attacks 141 Reflector Style Attacks 143 Detecting Service Denial Attacks 144 Denial of Service Protection 145 DoS/DDoS Mitigation 145 Bogus Queries Mitigation 147 PRSD Attack Mitigation 148 Reflector Mitigation 148 Summary 151 8 CACHE POISONING DEFENSES 153 Introduction 153 Attack Forms 154 Packet Interception or Spoofing 154 ID Guessing or Query Prediction 155 Name Chaining 155 The Kaminsky DNS Vulnerability 156 Cache Poisoning Detection 159 Cache Poisoning Defense Mechanisms 160 UDP Port Randomization 160 Query Name Case Randomization 161 DNS Security Extensions 161 Last Mile Protection 167 9 SECURING AUTHORITATIVE DNS DATA 169 Introduction 169 Attack Forms 170 Resolution Data at Rest 170 Domain Registries 170 DNS Hosting Providers 171 DNS Data in Motion 172 Attack Detection 172 Authoritative Data 172 Domain Registry 173 Domain Hosting 173 Falsified Resolution 173 Defense Mechanisms 174 Defending DNS Data at Rest 174 Defending Resolution Data in Motion with DNSSEC 176 Summary 186 10 ATTACKER EXPLOITATION OF DNS 187 Introduction 187 Network Reconnaissance 187 Data Exfiltration 188 Detecting Nefarious use of DNS 189 Detecting Network Reconnaissance 189 DNS Tunneling Detection 190 Mitigation of Illicit DNS Use 193 Network Reconnaissance Mitigation 193 Mitigation of DNS Tunneling 193 11 MALWARE AND APTS 195 Introduction 195 Malware Proliferation Techniques 196 Phishing 196 Spear Phishing 196 Downloads 196 File Sharing 197 Email Attachments 197 Watering Hole Attack 197 Replication 197 Implantation 197 Malware Examples 198 Malware Use of DNS 198 DNS Fluxing 198 Dynamic Domain Generation 202 Detecting Malware 202 Detecting Malware Using DNS Data 203 Mitigating Malware Using DNS 206 Malware Extrication 206 DNS Firewall 207 Summary 210 12 DNS SECURITY STRATEGY 213 Major DNS Threats and Mitigation Approaches 214 Common Controls 214 Disaster Defense 214 Defenses Against Human Error 220 DNS Role-Specific Defenses 220 Stub Resolvers 220 Forwarder DNS Servers 221 Recursive Servers 221 Authoritative Servers 222 Broader Security Strategy 222 Identify Function 223 Protect Function 224 Detect Function 225 Respond Function 226 Recover Function 227 13 DNS APPLICATIONS TO IMPROVE NETWORK SECURITY 229 Safer Web Browsing 230 DNS-Based Authentication of Named Entities (DANE) 230 Email Security 232 Email and DNS 233 DNS Block Listing 237 Sender Policy Framework (SPF) 238 Domain Keys Identified Mail (DKIM) 242 Domain-Based Message Authentication, Reporting, and Conformance (DMARC) 245 Securing Automated Information Exchanges 246 Dynamic DNS Update Uniqueness Validation 246 Storing Security-Related Information 247 Other Security Oriented DNS Resource Record Types 247 Summary 251 14 DNS SECURITY EVOLUTION 253 Appendix A: Cybersecurity Framework Core DNS Example 257 Appendix B: DNS Resource Record Types 285 Bibliography 291 Index 299
£81.86
John Wiley & Sons Inc Network Forensics
Book SynopsisIntensively hands-on training for real-world network forensics Network Forensics provides a uniquely practical guide for IT and law enforcement professionals seeking a deeper understanding of cybersecurity.Table of ContentsIntroduction xxi 1 Introduction to Network Forensics 1 What Is Forensics? 3 Handling Evidence 4 Cryptographic Hashes 5 Chain of Custody 8 Incident Response 8 The Need for Network Forensic Practitioners 10 Summary 11 References 12 2 Networking Basics 13 Protocols 14 Open Systems Interconnection (OSI) Model 16 TCP/IP Protocol Suite 18 Protocol Data Units 19 Request for Comments 20 Internet Registries 23 Internet Protocol and Addressing 25 Internet Protocol Addresses 28 Internet Control Message Protocol (ICMP) 31 Internet Protocol Version 6 (IPv6) 31 Transmission Control Protocol (TCP) 33 Connection-Oriented Transport 36 User Datagram Protocol (UDP) 38 Connectionless Transport 39 Ports 40 Domain Name System 42 Support Protocols (DHCP) 46 Support Protocols (ARP) 48 Summary 49 References 51 3 Host-Side Artifacts 53 Services 54 Connections 60 Tools 62 netstat 63 nbstat 66 ifconfi g/ipconfi g 68 Sysinternals 69 ntop 73 Task Manager/Resource Monitor 75 ARP 77 /proc Filesystem 78 Summary 79 4 Packet Capture and Analysis 81 Capturing Packets 82 Tcpdump/Tshark 84 Wireshark 89 Taps 91 Port Spanning 93 ARP Spoofi ng 94 Passive Scanning 96 Packet Analysis with Wireshark 98 Packet Decoding 98 Filtering 101 Statistics 102 Following Streams 105 Gathering Files 106 Network Miner 108 Summary 110 5 Attack Types 113 Denial of Service Attacks 114 SYN Floods 115 Malformed Packets 118 UDP Floods 122 Amplifi cation Attacks 124 Distributed Attacks 126 Backscatter 128 Vulnerability Exploits 130 Insider Threats 132 Evasion 134 Application Attacks 136 Summary 140 6 Location Awareness 143 Time Zones 144 Using whois 147 Traceroute 150 Geolocation 153 Location-Based Services 156 WiFi Positioning 157 Summary 158 7 Preparing for Attacks 159 NetFlow 160 Logging 165 Syslog 166 Windows Event Logs 171 Firewall Logs 173 Router and Switch Logs 177 Log Servers and Monitors 178 Antivirus 180 Incident Response Preparation 181 Google Rapid Response 182 Commercial Offerings 182 Security Information and Event Management 183 Summary 185 8 Intrusion Detection Systems 187 Detection Styles 188 Signature-Based 188 Heuristic 189 Host-Based versus Network-Based 190 Snort 191 Suricata and Sagan 201 Bro 203 Tripwire 205 OSSEC 206 Architecture 206 Alerting 207 Summary 208 9 Using Firewall and Application Logs 211 Syslog 212 Centralized Logging 216 Reading Log Messages 220 LogWatch 222 Event Viewer 224 Querying Event Logs 227 Clearing Event Logs 231 Firewall Logs 233 Proxy Logs 236 Web Application Firewall Logs 238 Common Log Format 240 Summary 243 10 Correlating Attacks 245 Time Synchronization 246 Time Zones 246 Network Time Protocol 247 Packet Capture Times 249 Log Aggregation and Management 251 Windows Event Forwarding 251 Syslog 252 Log Management Offerings 254 Timelines 257 Plaso 258 PacketTotal 259 Wireshark 261 Security Information and Event Management 262 Summary 263 11 Network Scanning 265 Port Scanning 266 Operating System Analysis 271 Scripts 273 Banner Grabbing 275 Ping Sweeps 278 Vulnerability Scanning 280 Port Knocking 285 Tunneling 286 Passive Data Gathering 287 Summary 289 12 Final Considerations 291 Encryption 292 Keys 293 Symmetric 294 Asymmetric 295 Hybrid 296 SSL/TLS 297 Cloud Computing 306 Infrastructure as a Service 306 Storage as a Service 309 Software as a Service 310 Other Factors 311 The Onion Router (TOR) 314 Summary 317 Index 319
£45.12
John Wiley & Sons Inc CCNA Security Study Guide
Book SynopsisCisco has announced big changes to its certification program. As of February 24, 2020, all current certifications will be retired, and Cisco will begin offering new certification programs. The good news is if you're working toward any current CCNA certification, keep going. You have until February 24, 2020 to complete your current CCNA. If you already have CCENT/ICND1 certification and would like to earn CCNA, you have until February 23, 2020 to complete your CCNA certification in the current program. Likewise, if you're thinking of completing the current CCENT/ICND1, ICND2, or CCNA Routing and Switching certification, you can still complete them between now and February 23, 2020. Lay the foundation for a successful career in network security CCNA Security Study Guide offers comprehensive review for Exam 210-260. Packed with concise explanations of core security concepts, this book is designed to help you sucTable of ContentsIntroduction xxi Assessment Test xxxi Chapter 1 Understanding Security Fundamentals 1 Goals of Security 2 Confidentiality 2 Integrity 3 Availability 3 Guiding Principles 3 Common Security Terms 6 Risk Management Process 7 Network Topologies 15 CAN 15 WAN 16 Data Center 16 SOHO 17 Virtual 17 Common Network Security Zones 17 DMZ 17 Intranet and Extranet 18 Public and Private 18 VLAN 18 Summary 19 Exam Essentials 19 Review Questions 20 Chapter 2 Understanding Security Threats 25 Common Network Attacks 26 Motivations 26 Classifying Attack Vectors 27 Spoofing 28 Password Attacks 29 Reconnaissance Attacks 30 Buffer Overflow 34 DoS 34 DDoS 36 Man-in-the-Middle Attack 37 ARP Poisoning 37 Social Engineering 38 Phishing/Pharming 38 Prevention 38 Malware 39 Data Loss and Exfiltration 39 Summary 40 Exam Essentials 40 Review Questions 42 Chapter 3 Understanding Cryptography 45 Symmetric and Asymmetric Encryption 46 Ciphers 46 Algorithms 48 Hashing Algorithms 53 MD5 54 SHA-1 54 SHA-2 54 HMAC 55 Digital Signatures 55 Key Exchange 57 Application: SSH 57 Public Key Infrastructure 57 Public and Private Keys 58 Certificates 60 Certificate Authorities 61 PKI Standards 63 PKI Topologies 64 Certificates in the ASA 65 Cryptanalysis 67 Summary 68 Exam Essentials 68 Review Questions 69 Chapter 4 Securing the Routing Process 73 Securing Router Access 74 Configuring SSH Access 74 Configuring Privilege Levels in IOS 76 Configuring IOS Role-Based CLI 77 Implementing Cisco IOS Resilient Configuration 79 Implementing OSPF Routing Update Authentication 80 Implementing OSPF Routing Update Authentication 80 Implementing EIGRP Routing Update Authentication 82 Securing the Control Plane 82 Control Plane Policing 83 Summary 84 Exam Essentials 85 Review Questions 86 Chapter 5 Understanding Layer 2 Attacks 91 Understanding STP Attacks 92 Understanding ARP Attacks 93 Understanding MAC Attacks 95 Understanding CAM Overflows 96 Understanding CDP/LLDP Reconnaissance 97 Understanding VLAN Hopping 98 Switch Spoofing 98 Double Tagging 99 Understanding DHCP Spoofing 99 Summary 101 Exam Essentials 101 Review Questions 102 Chapter 6 Preventing Layer 2 Attacks 107 Configuring DHCP Snooping 108 Configuring Dynamic ARP Inspection 110 Configuring Port Security 112 Configuring STP Security Features 114 BPDU Guard 114 Root Guard 115 Loop Guard 115 Disabling DTP 116 Verifying Mitigations 116 DHCP Snooping 116 DAI 117 Port Security 118 STP Features 118 DTP 120 Summary 120 Exam Essentials 121 Review Questions 122 Chapter 7 VLAN Security 127 Native VLANs 128 Mitigation 128 PVLANs 128 PVLAN Edge 131 PVLAN Proxy Attack 132 ACLs on Switches 133 Port ACLs 133 VLAN ACLs 133 Summary 134 Exam Essentials 134 Review Questions 136 Chapter 8 Securing Management Traffic 141 In-Band and Out-of-Band Management 142 AUX Port 142 VTY Ports 143 HTTPS Connection 144 SNMP 144 Console Port 145 Securing Network Management 146 SSH 146 HTTPS 146 ACLs 146 Banner Messages 147 Securing Access through SNMP v3 149 Securing NTP 150 Using SCP for File Transfer 151 Summary 151 Exam Essentials 152 Review Questions 153 Chapter 9 Understanding 802.1x and AAA 157 802.1x Components 158 RADIUS and TACACS+ Technologies 159 Configuring Administrative Access with TACACS+ 160 Local AAA Authentication and Accounting 160 SSH Using AAA 161 Understanding Authentication and Authorization Using ACS and ISE 161 Understanding the Integration of Active Directory with AAA 162 TACACS+ on IOS 162 Verify Router Connectivity to TACACS+ 164 Summary 164 Exam Essentials 165 Review Questions 166 Chapter 10 Securing a BYOD Initiative 171 The BYOD Architecture Framework 172 Cisco ISE 172 Cisco TrustSec 174 The Function of Mobile Device Management 177 Integration with ISE Authorization Policies 177 Summary 178 Exam Essentials 179 Review Questions 180 Chapter 11 Understanding VPNs 185 Understanding IPsec 186 Security Services 186 Protocols 189 Delivery Modes 192 IPsec with IPV6 194 Understanding Advanced VPN Concepts 195 Hairpinning 195 Split Tunneling 196 Always-on VPN 197 NAT Traversal 198 Summary 199 Exam Essentials 199 Review Questions 200 Chapter 12 Configuring VPNs 203 Configuring Remote Access VPNs 204 Basic Clientless SSL VPN Using ASDM 204 Verify a Clientless Connection 207 Basic AnyConnect SSL VPN Using ASDM 207 Verify an AnyConnect Connection 209 Endpoint Posture Assessment 209 Configuring Site-to-Site VPNs 209 Implement an IPsec Site-to-Site VPN with Preshared Key Authentication 209 Verify an IPsec Site-to-Site VPN 212 Summary 212 Exam Essentials 213 Review Questions 214 Chapter 13 Understanding Firewalls 219 Understanding Firewall Technologies 220 Packet Filtering 220 Proxy Firewalls 220 Application Firewall 221 Personal Firewall 221 Stateful vs. Stateless Firewalls 222 Operations 222 State Table 223 Summary 224 Exam Essentials 224 Review Questions 225 Chapter 14 Configuring NAT and Zone-Based Firewalls 229 Implementing NAT on ASA 9.x 230 Static 231 Dynamic 232 PAT 233 Policy NAT 233 Verifying NAT Operations 235 Configuring Zone-Based Firewalls 236 Class Maps 237 Default Policies 237 Configuring Zone-to-Zone Access 239 Summary 240 Exam Essentials 240 Review Questions 241 Chapter 15 Configuring the Firewall on an ASA 245 Understanding Firewall Services 246 Understanding Modes of Deployment 247 Routed Firewall 247 Transparent Firewall 247 Understanding Methods of Implementing High Availability 247 Active/Standby Failover 248 Active/Active Failover 248 Clustering 249 Understanding Security Contexts 249 Configuring ASA Management Access 250 Initial Configuration 250 Configuring Cisco ASA Interface Security Levels 251 Security Levels 251 Configuring Security Access Policies 253 Interface Access Rules 253 Object Groups 254 Configuring Default Cisco Modular Policy Framework (MPF) 256 Summary 257 Exam Essentials 257 Review Questions 259 Chapter 16 Intrusion Prevention 263 IPS Terminology 264 Threat 264 Risk 264 Vulnerability 265 Exploit 265 Zero-Day Threat 265 Actions 265 Network-Based IPS vs. Host-Based IPS 266 Host-Based IPS 266 Network-Based IPS 266 Promiscuous Mode 266 Detection Methods 267 Evasion Techniques 267 Packet Fragmentation 267 Injection Attacks 270 Alternate String Expressions 271 Introducing Cisco FireSIGHT 271 Capabilities 271 Protections 272 Understanding Modes of Deployment 273 Inline 275 Positioning of the IPS within the Network 275 Outside 275 DMZ 276 Inside 277 Understanding False Positives, False Negatives, True Positives, and True Negatives 277 Summary 278 Exam Essentials 278 Review Questions 280 Chapter 17 Content and Endpoint Security 285 Mitigating Email Threats 286 Spam Filtering 286 Context-Based Filtering 287 Anti-malware Filtering 287 DLP 287 Blacklisting 288 Email Encryption 288 Cisco Email Security Appliance 288 Putting the Pieces Together 290 Mitigating Web-Based Threats 292 Understanding Web Proxies 292 Cisco Web Security Appliance 293 Mitigating Endpoint Threats 294 Cisco Identity Services Engine (ISE) 294 Antivirus/Anti-malware 294 Personal Firewall 294 Hardware/Software Encryption of Local Data 294 HIPS 295 Summary 295 Exam Essentials 295 Review Questions 296 Appendix Answers to Review Questions 301 Chapter 1: Understanding Security Fundamentals 302 Chapter 2: Understanding Security Threats 304 Chapter 3: Understanding Cryptography 305 Chapter 4: Securing the Routing Process 307 Chapter 5: Understanding Layer 2 Attacks 309 Chapter 6: Preventing Layer 2 Attacks 311 Chapter 7: VLAN Security 312 Chapter 8: Securing Management Traffic 314 Chapter 9: Understanding 802.1x and AAA 316 Chapter 10: Securing a BYOD Initiative 317 Chapter 11: Understanding VPNs 319 Chapter 12: Configuring VPNs 321 Chapter 13: Understanding Firewalls 322 Chapter 14: Configuring NAT and Zone-Based Firewalls 324 Chapter 15: Configuring the Firewall on an ASA 325 Chapter 16: Intrusion Prevention 327 Chapter 17: Content and Endpoint Security 328 Index 331
£30.39
John Wiley & Sons Inc Risk Communication
Book SynopsisTHE ESSENTIAL HANDBOOK FOR EFFECTIVELY COMMUNICATING ENVIRONMENTAL, SAFETY, AND HEALTH RISKS, FULLY REVISED AND UPDATED Now in its sixth edition, Risk Communication has proven to be a valuable resource for people who are tasked with the responsibility of understanding how to apply the most current approaches to care, consensus, and crisis communication. The sixth edition updates the text with fresh and illustrative examples, lessons learned, and recent research as well as provides advice and guidelines for communicating risk information in the United States and other countries. The authors help readers understand the basic theories and practices of risk communication and explain how to plan an effective strategy and put it into action. The book also contains information on evaluating risk communication efforts and explores how to communicate risk during and after an emergency. Risk Communication brings together in one resource proven scientiTable of ContentsList of Figures XVII List of Tables XIX Preface XXI About the Authors XXIII 1 INTRODUCTION 1 To Begin 2 The Risk Communication Process 6 Audiences, Situations, and Purposes 8 References 8 PART I UNDERSTANDING RISK COMMUNICATION 2 APPROACHES TO COMMUNICATING RISK 11 Cross-Cutting Risk Communication Approaches 12 Care Communication Approaches 20 Consensus Communication Approach 23 Crisis Communication Approaches 24 Summary 26 References 26 Additional Resources 28 3 LAWS THAT MANDATE RISK COMMUNICATION 29 Comprehensive Environmental Response, Compensation, and Liability Act 30 Emergency Planning and Community Right-to-Know Act 31 Executive Order 12898, Environmental Justice in Minority Populations and Low-Income Populations 34 Executive Order 13045, Reduce Environmental Health and Safety Risks to Children 34 Food and Drug Administration Regulations on Prescription Drug Communication 35 National Environmental Policy Act 35 Natural Resource Damage Assessment 36 Occupational Safety and Health Act 37 Resource Conservation and Recovery Act 39 Risk Management Plan Rule 39 Privacy Rule 39 Other Government Inducements 40 Summary 42 References 42 Additional Resources 43 4 CONSTRAINTS TO EFFECTIVE RISK COMMUNICATION 45 Constraints on the Communicator 45 Constraints from the Audience 55 Constraints for Both Communicator and Audience 63 Summary 65 References 65 Additional Resources 67 5 ETHICAL ISSUES 69 Social Ethics 70 Organizational Ethics 77 Personal Ethics 82 Summary 85 References 85 Additional Resources 86 6 PRINCIPLES OF RISK COMMUNICATION 89 Principles of Process 90 Principles of Presentation 95 Principles for Comparing Risks 100 Summary 104 References 104 Additional Resources 105 PART II PLANNING THE RISK COMMUNICATION EFFORT 7 DETERMINE PURPOSE AND OBJECTIVES 109 Factors That Influence Purpose and Objectives 110 Reference 114 Additional Resources 115 8 ANALYZE YOUR AUDIENCE 117 Begin with Purpose and Objectives 118 Choose a Level of Analysis 119 Determine Key Audience Characteristics 122 Determine How to Find Audience Analysis Information 125 Incorporate Audience Analysis Information into Risk Communication Efforts 129 References 132 Additional Resources 133 9 DEVELOP YOUR MESSAGE 135 Common Pitfalls 136 Information People Want 139 Mental Models 141 Message Mapping and Message Development Templates 144 Health Risk Communication 144 Crisis Communication 147 References 150 Additional Resource 151 10 DETERMINE THE APPROPRIATE METHODS 153 Information Materials 153 Visual Representation of Risk 155 Face-to-Face Communication 156 The News Media 158 Stakeholder Participation 160 Technology-Assisted Communication 162 Social Media 163 Partnerships 164 Additional Resources 166 11 SET A SCHEDULE 167 Legal Requirements 167 Organizational Requirements 168 The Scientific Process 169 Ongoing Activities 169 Audience Needs 170 Reference 172 12 DEVELOP A COMMUNICATION PLAN 173 What to Include in a Communication Plan 174 Developing Risk Communication Strategies 177 References 183 Additional Resources 184 PART III PUTTING RISK COMMUNICATION INTO ACTION 13 INFORMATION MATERIALS 187 Constructing Information Materials 187 Guidelines for Specific Types of Information Materials 195 References 202 Additional Resources 202 14 VISUAL REPRESENTATIONS OF RISKS 203 Design Visuals for Specific Audiences and Uses 205 Match the Visual Portrayal to the Information to Be Conveyed 207 Pretest Graphics with Those Who Will Use Them 209 Using Visuals to Personalize Risk Information 213 Comparing Risks in Visual Formats 213 Static versus Interactive Visuals 216 Depicting Probability and Uncertainty 218 Warning Labels 227 Consider Using Action Levels 230 Ethical Portrayal of Risk Information 232 Using Visual Information in Group Decision Making 235 References 236 Additional Resources 239 15 FACE-TO-FACE COMMUNICATION 241 Constructing Face-to-Face Messages 242 Guidelines for Specific Types of Face-to-Face Communication 247 References 258 Additional Resource 258 16 NEWS MEDIA 259 The Roles of the News Media in Risk Communication 260 Understanding Cultural Differences 263 Guidelines for Interacting with the News Media 266 Getting the Word Out 275 Dealing with Fake News 279 References 281 Additional Resources 283 17 STAKEHOLDER PARTICIPATION 285 Requirements for Stakeholder Participation 286 Guidelines for Specific Types of Stakeholder Participation Activities 290 References 311 Additional Resources 312 18 TECHNOLOGY-ASSISTED COMMUNICATION 315 Choosing Technology-Based Applications 316 Workplace Risk Communication 317 Web-Delivered and Stand-Alone Multimedia Programs 322 Traditional Electronic Forums 327 Interactive Multimedia Programs in Public Places 328 Technology in Care Communication 331 Technology in Consensus Communication 332 Technology in Crisis Communication 336 References 343 Additional Resources 345 19 SOCIAL MEDIA 347 General Principles on Participating in Social Media to Communicate Risk 348 Sharing Content via Social Media 354 Engaging with Stakeholders 355 Monitoring Changes in Perception via Social Media 356 Guidelines for Specific Types of Social Media 358 Evaluating Social Media Effectiveness 362 Dealing with Fake News 364 References 367 Additional Resources 369 20 PARTNERSHIPS 371 Categories of Partnerships 372 General Principles for Working in Partnership 374 Working with Influencers 378 Evaluating and Ending Partnerships 381 References 383 Additional Resources 384 PART IV EVALUATING RISK COMMUNICATION EFFORTS 21 EVALUATION OF RISK COMMUNICATION EFFORTS 387 Why Evaluate Risk Communication Efforts? 387 The Meaning of Success 388 Types of Evaluations 391 Conducting the Evaluation 393 References 397 Additional Resources 398 PART V SPECIAL CASES IN RISK COMMUNICATION 22 EMERGENCY RISK COMMUNICATION 401 Understanding Emergency Risk Communication 402 Planning for the Unexpected 409 Communicating During an Emergency 436 Communicating After an Emergency 448 References 452 Additional Resources 456 23 INTERNATIONAL RISK COMMUNICATION 457 Recognize the Similarities 458 Account for Cultural Differences 459 Look for “Your” Risk in Other Countries 461 Plan for Cross-Country Communication 463 References 466 Additional Resources 468 24 PUBLIC HEALTH CAMPAIGNS 471 Understand Your Goals 472 Use Research to Design Campaigns 473 Use Multiple Methods to Reach People 474 When Things Go Wrong 479 Evaluate Success 481 References 485 Additional Resources 486 RESOURCES 489 General Risk Communication Resources 489 Environmental Risk Communication Resources 491 Safety Risk Communication Resources 491 Health Risk Communication Resources 492 Care Communication Resources 493 Consensus Communication Resources 493 Crisis Communication Resources 494 GLOSSARY 497 INDEX 501
£64.76
John Wiley & Sons Inc Mastering VMware NSX for vSphere
Book SynopsisA clear, comprehensive guide to VMware's latest virtualization solution Mastering VMware NSX for vSphere is the ultimate guide to VMware's network security virtualization platform. Written by a rock star in the VMware community, this book offers invaluable guidance and crucial reference for every facet of NSX, with clear explanations that go far beyond the public documentation. Coverage includes NSX architecture, controllers, and edges; preparation and deployment; logical switches; VLANS and VXLANS; logical routers; virtualization; edge network services; firewall security; and much more to help you take full advantage of the platform's many features. More and more organizations are recognizing both the need for stronger network security and the powerful solution that is NSX; usage has doubled in the past year alone, and that trend is projected to growand these organizations need qualified professionals who know how to work effectively with the NSX platform. This book covers everythiTable of ContentsIntroduction xvii Chapter 1 Abstracting Network and Security 1 Networks: 1990s 1 Colocation 2 Workload-to-Server Ratio 3 Inefficient Resource Allocation 3 The Long Road to Provisioning 3 Data Centers Come of Age 4 Data Center Workloads 4 Workloads Won’t Stay Put 5 VMware 6 Virtualization 6 What is Happening in There? 6 Portability 8 Virtualize Away 8 Extending Virtualization to Storage 9 Virtual Networking and Security 9 NSX to the Rescue 10 The Bottom Line 13 Chapter 2 NSX Architecture and Requirements 15 NSX Network Virtualization 16 Planes of Operation 16 NSX Manager Role and Function 18 ESXi Hosts 19 vCenter Server 20 vSphere Distributed Switch 21 NSX VIBs 23 Competitive Advantage: IOChain 24 IOChain Security Features 24 NSX Controllers 25 NSX Controller Clustering 26 NSX Controller Roles 26 NSX Edge 28 ESG Sizing 30 NSX Role-Based Access Control 30 Overlay and Underlay Networks 32 Replication Modes for Traffic Going to Multiple Destinations 34 The Bottom Line 36 Chapter 3 Preparing NSX 39 NSX Manager Prerequisites 39 Open Ports and Name Resolution 40 Minimum Resource Requirements for NSX Data Center Appliances 40 vSphere HA and DRS 41 IP Addressing and Port Groups 43 Installing the Client Integration Plug-in 44 Installing NSX Manager 44 Associating NSX Manager to vCenter 46 Adding AD/LDAP to NSX 47 Linking Multiple NSX Managers Together (Cross- vCenter NSX) 51 Multi-site Consistency with Universal Components 51 Primary and Secondary NSX Managers 53 Preparing ESXi Clusters for NSX 54 Creating a Universal Transport Zone on the Primary NSX Manager 56 vSphere Distributed Switches Membership 57 Adding Secondary NSX Managers 58 The Bottom Line 59 Chapter 4 Distributed Logical Switch 61 vSphere Standard Switch (vSS) 62 Traffic Shaping 63 Understanding Port Groups 64 NIC Teaming 65 Ensuring Security 66 Virtual Distributed Switch (vDS) 67 Virtual eXtensible LANs (VXLANs) 68 Employing Logical Switches 71 Three Tables That Store VNI Information 73 Collecting VNI Information 74 Centralized MAC Table 75 VTEP Table 76 We Might as Well Talk about ARP Now 79 Filling In the L2 and L3 Headers 79 Switch Security Module 81 Understanding Broadcast, Unknown Unicast, and Multicast 83 Layer 2 Flooding 83 Replication Modes 83 Deploying Logical Switches 84 Creating a Logical Switch 85 The Bottom Line 85 Chapter 5 Marrying VLANs and VXLANs 87 Shotgun Wedding: Layer 2 Bridge 87 Architecture 88 Challenges 89 Deployment 90 Under the Hood 102 Layer 2 VPN 102 NSX Native L2 Bridging 103 Hardware Switches to the Rescue 103 Hardware VTEPs 103 Deployment 104 Under the Hood 104 The Bottom Line 105 Chapter 6 Distributed Logical Router 107 Distributed Logical Router (DLR) 107 Control Plane Smarts 108 Logical Router Control Virtual Machine 108 Understanding DLR Efficiency 111 Another Concept to Consider 115 Let’s Get Smart about Routing 117 OSPF 119 Border Gateway Protocol (BGP) 120 Oh Yeah, Statics Too 123 Deploying Distributed Logical Routers 125 The Bottom Line 134 Chapter 7 NFV: Routing with NSX Edges 137 Network Function Virtualization: NSX Has It Too 137 This is Nice: Edge HA A 138 Adding HA 139 Let’s Do Routing Like We Always Do 140 Deploying the Edge Services Gateway 144 Configuring BGP 151 Configuring OSPF 154 Configuring Static Routes 155 Routing with the DLR and ESG 156 Using CLI Commands 156 Default Behaviors to Be Aware Of 157 Equal Cost Multi-Path Routing157 The Bottom Line 160 Chapter 8 More NVF: NSX Edge Services Gateway 163 ESG Network Placement 163 Network Address Translation 164 Configuring Source NAT 166 Configuring Destination NAT 166 Configuring SNAT on the ESG 167 Configuring DNAT on the ESG 169 ESG Load Balancer 171 Configuring an ESG Load Balancer 173 Layer 2 VPN (If You Must) 178 Secure Sockets Layer Virtual Private Network 179 Split Tunneling 180 Configuring SSL VPN 180 Internet Protocol Security VPN 187 Understanding NAT Traversal 188 Configuring IPsec Site-to-Site VPN with the ESG 188 Round Up of Other Services 190 DHCP Service 191 Configuring the ESG as a DHCP Server 192 DHCP Relay 194 Configuring the DLR for DHCP Relay 196 DNS Relay 198 Configuring DNS Relay on the ESG 199 The Bottom Line 200 Chapter 9 NSX Security, the Money Maker 203 Traditional Router ACL Firewall 203 I Told You about the IOChain 204 Slot 2: Distributed Firewall 206 Under the Hood 207 Adding DFW Rules 210 Segregating Firewall Rules 214 IP Discovery 215 Gratuitous ARP Used in ARP Poisoning Attacks 216 Why is My Traffic Getting Blocked? 218 Great, Now It’s Being Allowed 219 Identity Firewall: Rules Based on Who Logs In 220 Distributing Firewall Rules to Each ESXi Host: What’s Happening? 220 The Bottom Line 222 Chapter 10 Service Composer and Third-Party Appliances 223 Security Groups 224 Dynamic Inclusion 225 Static Inclusion 226 Static Exclusion 226 Defining a Security Group through Static Inclusion 227 Defining a Security Group through Dynamic Inclusion 229 Customizing a Security Group with Static Exclusion 231 Defining a Security Group Using Security Tags 231 Adding to DFW Rules 233 Service Insertion 236 IOChain, the Gift that Keeps on Giving 236 Layer 7 Stuff: Network Introspection 236 Guest Introspection 237 Service Insertion Providers 238 Security Policies 239 Creating Policies 239 Enforcing Policies 243 The Bottom Line 245 Chapter 11 vRealize Automation and REST APIs 247 vRealize Automation Features 247 vRA Editions 249 Integrating vRA and NSX 250 vRealize Automation Endpoints 250 Associating NSX Manager with vRealize Automation 252 Network Profiles 253 vRA External, Routed, and NAT Network Profiles 255 Reservations 258 vRealize Orchestrator Workflows 261 Creating a Blueprint for One Machine261 Adding NSX Workflow to a Blueprint 264 Creating a Request Service in the vRA Catalog 265 Configuring an Entitlement 268 Deploying a Blueprint that Consumes NSX Services 271 REST APIs 273 NSX REST API GET Request 275 NSX REST API POST Request 275 NSX REST API DELETE Request 276 The Bottom Line 277 Appendix The Bottom Line 279 Chapter 1: Abstracting Network and Security 279 Chapter 2: NSX Architecture and Requirements 280 Chapter 3: Preparing NSX 280 Chapter 4: Distributed Logical Switch 281 Chapter 5: Marrying VLANs and VXLANs 283 Chapter 6: Distributed Logical Router 284 Chapter 7: NFV: Routing with NSX Edges 286 Chapter 8: More NVF: NSX Edge Services Gateway 287 Chapter 9: NSX Security, the Money Maker 289 Chapter 10: Service Composer and Third-Party Appliances 290 Chapter 11: vRealize Automation and REST APIs 291 Index 293
£35.62
John Wiley & Sons Inc Windows Server 2019 PowerShell AllinOne For
Book SynopsisTable of ContentsIntroduction 1 About This Book 1 Foolish Assumptions 2 Icons Used in This Book 2 Beyond the Book 3 Where to Go from Here 3 Book 1: Installing and Setting Up Windows Server 2019 5 Chapter 1: An Overview of Windows Server 2019 7 Extra! Extra! Read All About It! Seeing What’s New in Windows Server 2019 8 Deciding Which Windows Server 2019 Edition Is Right for You 12 Essentials 12 Standard 13 Datacenter 13 Walking the Walk: Windows Server 2019 User Experiences 13 Desktop Experience 13 Server Core 14 Nano 15 Seeing What Server Manager Has to Offer 15 Windows Admin Center: Your New Best Friend 17 Chapter 2: Using Boot Diagnostics 21 Accessing Boot Diagnostics 21 From the DVD 22 From the boot menu 24 Using a Special Boot Mode 25 Safe Mode 25 Enable Boot Logging 27 Enable Low-Resolution Video 27 Last Known Good Configuration 27 Directory Services Restore Mode 28 Debugging Mode 28 Disable Automatic Restart on System Failure 29 Disable Driver Signature Enforcement 29 Disable Early Launch Anti-Malware Driver 29 Performing a Memory Test 30 Using the Command Prompt 32 Working with Third-Party Boot Utilities 32 Chapter 3: Performing the Basic Installation 35 Making Sure You Have What It Takes 36 Central processing unit 36 Random access memory 38 Storage 38 Network adapter 39 DVD drive 39 UEFI-based firmware 39 Trusted Platform Module 39 Monitor 39 Keyboard and mouse 40 Performing a Clean Install 40 Upgrading Windows 43 Performing a Network Install with Windows Deployment Services 46 Chapter 4: Performing Initial Configuration Tasks 47 Understanding Default Settings 48 Getting an Overview of the Configuration Process 49 Providing Computer Information 50 Windows Server 2019 with Desktop Experience 50 Windows Server 2019 Core 54 Updating Windows Server 2019 60 Windows Server 2019 with Desktop Experience 60 Windows Server 2019 Core 62 Customizing Windows Server 2019 64 Windows Server 2019 with Desktop Experience 64 Windows Server 2019 Core 67 Configuring Startup Options with BCDEdit 70 Book 2: Configuring Windows Server 2019 73 Chapter 1: Configuring Server Roles and Features 75 Using Server Manager 75 Roles and features 76 Diagnostics 77 Configuration tasks 78 Configure and Manage Storage 79 Understanding Server Roles 80 Active Directory Certificate Services 80 Active Directory Domain Services 81 Active Directory Federation Services 81 Active Directory Lightweight Directory Services 81 Active Directory Rights Management Services 82 Device Health Attestation 82 Dynamic Host Configuration Protocol 82 Domain Name System 83 Fax Server 83 File and Storage Services 84 Host Guardian Service 84 Hyper-V 85 Network Controller 85 Network Policy and Access Services 85 Print and Document Services 86 Remote Access 86 Remote Desktop Services 86 Volume Activation Services 86 Web Services 87 Windows Deployment Services 87 Windows Server Update Services 87 Understanding Server Features 87 .NET 3.5 88 .NET 4.7 88 Background Intelligent Transfer Service 88 BitLocker Drive Encryption 88 BitLocker Network Unlock 89 BranchCache 89 Client for NFS 89 Containers 89 Data Center Bridging 90 Direct Play 90 Enhanced Storage 90 Failover Clustering 90 Group Policy Management 91 Host Guardian Hyper-V Support 91 I/O Quality of Service 91 IIS Hostable Web Core 91 Internet Printing Client 91 IP Address Management Server 92 Internet Storage Name Server Service 92 LPR Port Monitor 92 Management OData IIS Extension 92 Media Foundation 92 Message Queueing 93 Multipath I/O 93 Multipoint Connector 93 Network Load Balancing 93 Network Virtualization 93 Peer Name Resolution Protocol 94 Quality Windows Audio Video Experience 94 RAS Connection Manager Administration Kit 94 Remote Assistance 94 Remote Differential Compression 94 Remote Server Administration Tools 94 RPC over HTTP Proxy 95 Setup and Boot Event Collection 95 Simple TCP/IP Services 95 SMB 1.0/CIFS File Sharing Support 95 SMB Bandwidth Limit 96 SMTP Server 96 Simple Network Management Protocol Service 96 Software Load Balancer 96 Storage Migration Service 97 Storage Migration Service Proxy 97 Storage Replica 97 System Data Archiver 97 System Insights 98 Telnet Client 98 TFTP Client 98 VM Shielding Tools for Fabric Management 98 WebDAV Redirector 98 Windows Biometric Framework 99 Windows Defender Antivirus 99 Windows Identity Foundation 3.5 99 Windows Internal Database 99 Windows PowerShell 99 Windows Process Activation Service 99 Windows Search Service 100 Windows Server Backup 100 Windows Server Migration Tools 100 Windows Standards-Based Storage Management 100 Windows Subsystem for Linux 101 Windows TIFF IFilter 101 WinRM IIS Extension 101 WINS Server 101 Wireless LAN Service 101 WoW64 Support 101 XPS Viewer 102 Chapter 2: Configuring Server Hardware 103 Working with Device Manager 104 Opening Device Manager 104 Configuring how Device Manager displays 104 Viewing devices that are not working properly 106 Understanding resources 107 Viewing hidden devices 108 Scanning for new devices 109 Working with older devices 109 Viewing individual device settings 109 Updating drivers 111 Configuring power management 111 Using the Add Hardware Wizard 112 Performing Hard-Drive-Related Tasks 113 Choosing basic or dynamic disks 114 Using multipath I/O 115 Working with storage area networks 116 Understanding Storage Spaces Direct 117 Working with Storage Replica 123 Using Storage Quality of Service 124 Encrypting with BitLocker 124 Performing Printer-Related Tasks 134 Using the Printer Install Wizard 134 Configuring print options 136 Configuring the Print Server role 137 Connecting to a Printer on a Print Server 140 Performing Other Configuration Tasks 141 Keyboard 141 Mouse 141 Power management 142 Sound 143 Language 143 Fonts 143 Chapter 3: Using the Control Panel 145 Accessing the Control Panel 145 Configuring the Control Panel 146 Understanding Control Panel Items 148 Chapter 4: Working with Workgroups 157 Knowing What a Workgroup Is 158 Knowing If a Workgroup Is Right for You 158 Comparing Centralized and Group Sharing 159 Configuring a Server for a Workgroup 159 Changing the name of your workgroup 160 Adding groups 161 Creating users and adding users to the group 162 Adding shared resources 164 Managing Workgroups 168 The Computer Management console 168 The User Account window 169 PowerShell 170 Examining the Peer Name Resolution Protocol 172 Chapter 5: Promoting Your Server to Domain Controller 173 Understanding Domains 173 What is a domain? 174 Forests and domains and OUs, oh my! 174 Understanding privileged domain groups 175 Examining Flexible Single Master Operation roles on domain controllers 175 Preparing to Create a Domain 177 Functional levels 178 Forest functional level 179 Domain functional level 179 Performing Domain Configuration Prerequisites 179 Checking for unsupported roles and features 180 Installing and configuring Domain Name System 180 Installing and configuring Dynamic Host Configuration Protocol 183 Configuring the Server as a Domain Controller 187 Installing Active Directory Domain Services 188 Configuring Active Directory Domain Services 188 Converting your DNS Zone to an Active Directory Integrated Zone 190 Authorizing your DHCP Server for your Active Directory environment 193 Configuring the user accounts 194 Sharing resources on a domain 196 Joining clients to the domain 197 Wrapping Things Up 202 Chapter 6: Managing DNS and DHCP with IP Address Management 205 Installing IP Address Management 206 Configuring IP Address Management 206 Using IP Address Management 210 Overview 210 Server Inventory 211 IP Address Space 211 Monitor and Manage 213 Event Catalog 215 Access Control 215 Book 3: Administering Windows Server 2019 217 Chapter 1: An Overview of the Tools Menu in Server Manager 219 Accessing the Server Manager Tools Menu 219 Working with Common Administrative Tools 222 Computer Management 222 Defragment and Optimize Drives 222 Disk Cleanup 223 Event Viewer 224 Local Security Policy 224 Registry Editor 226 Services 226 System Configuration 228 Task Scheduler 228 Installing and Using Remote Server Administration Tools 229 Installing Remote Server Administration Tools 229 Using Remote Server Administration Tools 230 Chapter 2: Setting Group Policy 233 Understanding How Group Policy Works 234 Starting the Group Policy Editor 235 Performing Computer Management 236 Modifying computer software settings 238 Modifying computer settings 239 Using Administrative Templates 240 Performing User Configuration 241 Modifying user software settings 241 Modifying a user’s Windows Settings 242 Using user Administrative Templates 244 Viewing Resultant Set of Policy 244 Chapter 3: Configuring the Registry 247 Starting Registry Editor 248 Importing and Exporting Registry Elements 248 Exporting Registry elements 249 Importing Registry elements 249 Finding Registry Elements 250 Understanding Registry Data Types 251 Understanding the Hives 252 HKEY_CLASSES_ROOT 252 HKEY_CURRENT_USER 253 HKEY_LOCAL_MACHINE 254 HKEY_USERS 255 HKEY_CURRENT_CONFIG 256 Loading and Unloading Hives 256 Connecting to Network Registries 258 Setting Registry Security 259 Setting permissions in the Windows Registry 259 Disabling Remote Registry access 259 Securing remote administration 260 Chapter 4: Working with Active Directory 263 Active Directory 101 263 Configuring Objects in Active Directory 264 Using Active Directory Domains and Trusts 264 Using Active Directory Sites and Services 269 Using Active Directory Users and Computers 270 Using Active Directory Administrative Center 274 Chapter 5: Performing Standard Maintenance 277 Activating Windows 277 Through the graphical user interface 278 Through the command line 278 Configuring the User Interface 280 Working with the Folder Options dialog box 280 Setting your Internet Options 282 Focusing on your Personalization settings 284 Reporting problems 286 Setting your Regional and Language Options 286 Working with the Performance Options dialog box 287 Understanding How User Access Control Affects Maintenance Tasks 288 Adding and Removing Standard Applications 289 Measuring Reliability and Performance 290 Performance Monitor 290 Resource Monitor 292 Task Manager 293 Protecting the Data on Your Server 294 System Backup 295 System Restore 297 Performing Disk Management Tasks 298 Managing storage 299 Managing disks 299 Defragmenting drives 300 Automating Diagnostic Tasks with Task Scheduler 301 Discovering task status 301 Using preconfigured tasks 302 Creating your own tasks 304 Working with Remote Desktop 305 Working with Remote Server Administration Tools 306 Figuring out firewall rules 306 Connecting to the server 306 Managing your servers 307 Working with Admin Center 308 Focusing on firewall rules 309 Connecting to a server 309 Using Windows Admin Center to manage your servers 309 Creating a Windows Recovery Drive 311 Chapter 6: Working at the Command Line 313 Opening an Administrative Command Prompt 313 Configuring the Command Line 314 Customizing how you interact with the Command Prompt 314 Changing the font 316 Choosing your window layout 317 Defining text colors 318 Setting Environmental Variables 319 Getting Help at the Command Line 320 Understanding Command Line Symbols 322 Chapter 7: Working with PowerShell 323 Opening an Administrative PowerShell Window 324 Configuring PowerShell 325 Options 325 Font 327 Layout 328 Colors 328 Using a Profile Script 330 Setting Environmental Variables 330 Getting Help in PowerShell 332 Understanding PowerShell Punctuation 334 Book 4: Configuring Networking in Windows Server 2019 337 Chapter 1: Overview of Windows Server 2019 Networking 339 Getting Acquainted with the Network and Sharing Center 340 Using the Network Connections Tools 342 Status 342 Ethernet 343 Dial-up 344 VPN 344 Proxy 344 Configuring TCP/IP 346 Understanding DHCP 349 Defining DNS 350 Creating a DNS zone 352 DNS and Active Directory 353 Making DNS fault tolerant 354 Chapter 2: Performing Basic Network Tasks 355 Viewing Network Properties 355 Connecting to Another Network 357 Connecting to the Internet 358 Setting up a dial-up connection 359 Connecting to a virtual private network 360 Managing Network Connections 361 Understanding the Client for Microsoft Networks feature 362 Configuring the Internet Protocol 362 Installing network features 364 Uninstalling network features 364 Chapter 3: Accomplishing Advanced Network Tasks 367 Working with Remote Desktop Services 367 Installing Remote Desktop Services 368 Configuring user-specific settings 369 Configuring apps 371 Using RD Web Access 372 Configuring and using RDS licensing 374 Working with Network Policy and Access Services 376 Network Policy Server 377 Troubleshooting at the Command Line 381 Chapter 4: Diagnosing and Repairing Network Connection Problems 383 Using Windows Network Diagnostics 384 Repairing Individual Connections 386 Network Troubleshooting at the Command Line 388 Working with Windows Firewall 389 Making Sense of Common Configuration Errors 391 Duplicate IP addresses 391 No gateway address 391 No DNS servers set 392 An application is experiencing network issues 392 Everything should be working, but it’s not 392 Working with Other Troubleshooting Tools 392 Book 5: Managing Security with Windows Server 2019 395 Chapter 1: Understanding Windows Server 2019 Security 397 Understanding Basic Windows Server Security 397 The CIA triad: Confidentiality, integrity, and availability 398 Authentication, authorization, and accounting 399 Access tokens 399 Security descriptors 399 Access control lists 400 Working with Files and Folders 403 Setting file and folder security 403 Creating a Local Security Policy 406 Paying Attention to Windows Security 408 Virus & Threat Protection 408 Firewall & Network Protection 408 App & Browser Control 410 Device Security 411 Chapter 2: Configuring Shared Resources 413 Comparing Share Security with File System Security 413 Shared folder permissions 414 File system security 415 Effective permissions validation 415 Sharing Resources 417 Storage media 417 Printers 418 Other resources 419 Configuring Access with Federated Rights Management 419 Working with Active Directory Federation Services 420 Working with Active Directory Rights Management Services 424 Chapter 3: Configuring Operating System Security 433 Understanding and Using User Account Control 433 Using User Account Control to protect the server 434 Running tasks as administrator 434 Watching out for automatic privilege elevation 435 Overriding User Account Control settings 435 Managing User Passwords 438 Understanding Credential Guard 439 How Credential Guard works 440 Credential Guard Hardware Requirements 440 How to enable Credential Guard 441 Configuring Startup and Recovery Options 444 Chapter 4: Working with the Internet 447 Firewall Basics 447 Getting acquainted with the Windows Defender Firewall profiles 448 Enabling and disabling the Windows Defender Firewall 448 Configuring Windows Defender Firewall with Advanced Security 451 Working with profile settings 452 Working with inbound/outbound rules 454 Understanding IPSec 457 Configuring the IPSec settings 458 Chapter 5: Understanding Digital Certificates 461 Certificates in Windows Server 2019 462 Cryptography 101 462 Certificate-specific concepts 464 Types of Certificates in Active Directory Certificate Services 465 User certificates 465 Computer 466 Chapter 6: Installing and Configuring AD CS 469 Introducing Certificate Authority Architecture 470 Root certificate authorities 470 Issuing certificate authorities 471 Policy certificate authorities 471 Installing a Certificate Authority 471 Creating the CAPolicy.inf file 471 Installing the root certificate authority 473 Installing the issuing certificate authority 477 Enrolling for certificates 478 Setting up web enrollment 481 Installing Online Certificate Status Protocol 482 Configuring Certificate Auto-Enrollment 485 Configuring the template 485 Configuring Group Policy 486 Chapter 7: Securing Your DNS Infrastructure 489 Understanding DNSSEC 489 The basics of DNSSEC 490 Records used for DNSSEC 490 Configuring DNSSEC 491 Understanding DANE 495 The basics of DANE 495 Configuring DANE 496 Book 6: Working with Windows PowerShell 501 Chapter 1: Introducing PowerShell 503 Understanding the Basics of PowerShell 503 Objects 504 Pipeline 504 Providers 505 Variables 506 Sessions 506 Comments 507 Aliases 507 Cmdlets 507 Using PowerShell 509 Writing PowerShell commands and scripts 509 Working with objects 513 Working with the pipeline 514 Working with modules 516 Working with comparison operators 518 Getting information out of PowerShell 519 Scripting logic 521 Other cool tricks 522 Running PowerShell Remotely 527 Invoke-Command 527 New-PSSession 527 Enter-PSSession 527 Getting Help in PowerShell 528 Update-Help 528 Get-Help 529 -Detailed and -Full 529 Identifying Security Issues with PowerShell 530 Execution Policy 530 Code signing 531 Firewall requirements for PowerShell remoting 534 Chapter 2: Understanding the NET Framework 535 Introducing the Various Versions of NET Framework 535 Focusing on New Features in NET 4.7 538 Viewing the Global Assembly Cache 539 Understanding assembly security 540 Identifying the two types of assembly privacy 540 Viewing assembly properties 541 Understanding NET Standard and NET Core 541 .NET Core 542 .NET Standard 542 Tying it all together: NET and PowerShell 542 Chapter 3: Working with Scripts and Cmdlets 543 Introducing Common Scripts and Cmdlets 543 Executing Scripts or Cmdlets 544 Working with COM objects 545 Combining multiple cmdlets 545 Working from Another Location 546 Performing Simple Administrative Tasks with PowerShell Scripts 548 Adding users in Active Directory 548 Creating a CSV file and populating it with data from Active Directory 548 Checking to see if a patch is installed 550 Checking running processes or services 550 Chapter 4: Creating Your Own Scripts and Advanced Functions 551 Creating a PowerShell Script 552 Creating a simple script 552 Running the script 557 Defining a Script Policy 558 Signing a PowerShell Script 559 Creating a PowerShell Advanced Function 559 Playing with parameters 560 Creating the advanced function 561 Using the advanced function 563 Chapter 5: PowerShell Desired State Configuration 567 Getting an Overview of PowerShell Desired State Configuration 567 Configurations 568 Resources 569 Local Configuration Manager 571 Creating a PowerShell Desired State Configuration Script 572 Applying the PowerShell Desired State Configuration Script 573 Compiling into MOF 574 Applying the new configuration 575 Push and Pull: Using PowerShell Desired State Configuration at Scale 575 Push mode 576 Pull mode 577 Book 7: Installing and Administering Hyper-V 579 Chapter 1: What Is Hyper-V? 581 Introduction to Virtualization 581 Type 1 and Type 2 Hypervisors 582 Type 1 hypervisors 583 Type 2 hypervisors 583 Installing and Configuring Hyper-V 583 Installing Hyper-V 584 Configuring Hyper-V 586 Virtual Switch Manager 591 Virtual SAN Manager 591 Chapter 2: Virtual Machines 593 Creating a Virtual Machine 593 Configuring a Virtual Machine 597 Add Hardware 598 Firmware 598 Security 598 Memory 599 Processor 600 SCSI Controller 601 Network Adapter 602 Name 603 Integration Services 603 Checkpoints 603 Smart Paging File Location 603 Automatic Start Action 604 Automatic Stop Action 604 Shielded Virtual Machines 604 Chapter 3: Virtual Networking 605 Identifying the Types of Virtual Switches 606 External 606 Internal 606 Private 606 Creating a Virtual Switch 607 Hyper-V Manager 607 PowerShell 608 Getting into Advanced Hyper-V Networking 610 Virtual local area network tagging 610 Bandwidth management 613 Network interface card teaming 614 Looking at single-root I/O virtualization 619 Chapter 4: Virtual Storage 621 Understanding Virtual Disk Formats 621 Considering Types of Disks 622 Fixed 622 Dynamic 622 Differencing 623 Pass-through 623 Adding Storage to the Host 623 Adding the drives 623 Changing the default save locations of virtual disk files 625 Adding Storage to the Virtual Machine 626 Adding a new virtual drive 626 Expanding a disk drive 629 Adding a pass-through disk 630 Converting a VHD disk file to a VHDX disk file 631 Attaching the converted drive to the virtual machine 632 Chapter 5: High Availability in Hyper-V 635 Hyper-V Replica 635 Setting up Hyper-V Replica on the Hyper-V hosts 636 Setting up replication on the virtual machines 638 Live Migration 640 Setting up live migration 641 Kicking off a live migration 643 Storage Migration 644 Failover Clustering 645 Installing Failover Clustering 645 Configuring Failover Clustering 646 Configuring a witness for your failover cluster 647 Book 8: Installing, Configuring, and Using Containers 649 Chapter 1: Introduction to Containers in Windows Server 2019 651 Understanding Containers 652 Knowing what a container looks like 652 Defining important container terms 653 Seeing how containers run on Windows 653 Considering Use Cases for Containers 654 Developers 654 System administrators 654 Deciding What Type of Containers You Want to Use 655 Windows Server containers 655 Hyper-V containers 655 Managing Containers at Scale 656 Chapter 2: Docker and Docker Hub 657 Introduction to Docker 657 Docker architecture 658 Basic Docker commands 658 Introduction to Docker Hub 659 Finding public images 659 Creating a private repository 662 Using a private repository 664 Chapter 3: Installing Containers on Windows Server 2019 667 Installing Windows Containers 668 Installing Hyper-V Containers 669 Installing Docker 670 Testing Your Container Installation 672 Windows container 672 Hyper-V container 672 Chapter 4: Configuring Docker and Containers on Windows Server 2019 675 Working with Dockerfile 675 Applying Custom Metadata to Containers and Other Objects 678 Creating labels 679 Viewing labels 679 Configuring Containers 680 Starting containers automatically 680 Limiting a container’s resources 681 Configuring the Docker Daemon with daemon.json 682 Chapter 5: Managing Container Images 685 Making Changes to Images and Saving the Changes You Make 685 Pushing Images to Docker Hub 689 Pulling Images from Docker Hub 691 Handling Image Versioning 693 Chapter 6: Container Networking 695 Considering the Different Types of Network Connections 696 Viewing Your Network Adapters and Virtual Switches 697 Configuring a Network Address Translation Network Connection 698 Configuring a Transparent Network Connection 699 Configuring an Overlay Network Connection 700 Configuring an l2bridge Network Connection 701 Configuring an l2tunnel Network Connection 702 Connecting to a Network 703 Chapter 7: Container Storage 705 Getting Acquainted with Container Storage 705 Creating a Volume Inside of a Container 706 Working with Persistent Volumes 709 Looking at volume types 709 Removing volumes 712 Index 713
£23.79
John Wiley & Sons Inc SCADA Security
Book SynopsisExamines the design and use of Intrusion Detection Systems (IDS) to secure Supervisory Control and Data Acquisition (SCADA) systems Cyber-attacks on SCADA systems?the control system architecture that uses computers, networked data communications, and graphical user interfaces for high-level process supervisory management?can lead to costly financial consequences or even result in loss of life. Minimizing potential risks and responding to malicious actions requires innovative approaches for monitoring SCADA systems and protecting them from targeted attacks. SCADA Security: Machine Learning Concepts for Intrusion Detection and Prevention is designed to help security and networking professionals develop and deploy accurate and effective Intrusion Detection Systems (IDS) for SCADA systems that leverage autonomous machine learning. Providing expert insights, practical advice, and up-to-date coverage of developments in SCADA security, this authoritative guide presents Table of ContentsForeword ix Preface xi Acronyms xv 1. Introduction 1 2. Background 15 3. SCADA-Based Security Testbed 25 4. Efficient k-Nearest Neighbour Approach Based on Various-Widths Clustering 63 5. SCADA Data-Driven Anomaly Detection 87 6. A Global Anomaly Threshold to Unsupervised Detection 119 7. Threshold Password-Authenticated Secret Sharing Protocols 151 8. Conclusion 179 References 185 Index 195
£90.86
John Wiley & Sons Inc Critical Infrastructure Protection in Homeland
Book SynopsisCovers critical infrastructure protection, providing a rigorous treatment of risk, resilience, complex adaptive systems, and sector dependence Wide in scope, this classroom-tested book is the only one to emphasize a scientific approach to protecting the key infrastructures components of a nation. It analyzes the complex network of entities that make up a nation''s infrastructure, and identifies vulnerabilities and risks in various sectors by combining network science, complexity theory, risk analysis, and modeling and simulation. This approach reduces the complex problem of protecting water supplies, energy pipelines, telecommunication stations, power grid, and Internet and Web networks to a much simpler problem of protecting a few critical nodes. The new third edition of Critical Infrastructure Protection in Homeland Security: Defending a Networked Nation incorporates a broader selection of ideas and sectors than the previous book. Divided into three secTable of ContentsForeword By Sen. Mark Warner xv Foreword By Prof. Andrew Odlyzko xxi Preface xxxiii How to Use this Book xxxvii About the Companion Website xxxix 1 Origins of Critical Infrastructure Protection 1 1.1 Recognition 3 1.2 Natural Disaster Recovery 4 1.3 Definitional Phase 5 1.4 Public–Private Cooperation 8 1.5 Federalism: Whole of Government 8 1.6 Rise of the Framework 10 1.7 Implementing a Risk Strategy 12 1.7.1 Risk‐Informed Decision‐Making 13 1.7.2 Resilience‐Informed Decision‐Making 14 1.7.3 Prevention or Response? 15 1.8 Analysis 16 1.8.1 The Public–Private Partnership (PPP) Conundrum 17 1.8.2 The Information Sharing Conundrum 17 1.8.3 Climate Change Conundrum 17 1.8.4 The Funding Conundrum 17 1.8.5 Spend 80% on 20% of the Country 18 1.9 Exercises 18 1.10 Discussions 19 References 20 2 Risk Strategies 21 2.1 Expected Utility Theory 23 2.1.1 Threat–Asset Pairs 24 2.2 PRA and Fault Trees 24 2.2.1 An Example: Your Car 26 2.3 MRBA and Resource Allocation 26 2.3.1 Another Example: Redundant Power 27 2.4 Cyber Kill Chains are Fault Trees 28 2.5 PRA in the Supply Chain 29 2.6 Protection Versus Response 30 2.7 Threat is an Output 32 2.8 Bayesian Belief Networks 33 2.8.1 A Bayesian Network for Threat 33 2.8.2 Predictive Analytics 34 2.9 Risk of a Natural Disaster 35 2.9.1 Exceedence 35 2.9.2 EP vs. PML Risk 35 2.10 Earthquakes 36 2.11 Black Swans and Risk 36 2.12 Black Swan Floods 37 2.13 Are Natural Disasters Getting Worse? 38 2.14 Black Swan Al Qaeda Attacks 38 2.15 Black Swan Pandemic 39 2.16 Risk and Resilience 41 2.17 Exercises 42 2.18 Discussions 43 References 43 3 Theories of Catastrophe 44 3.1 Normal Accident Theory (NAT) 45 3.2 Blocks and Springs 46 3.3 Bak’s Punctuated Equilibrium Theory 48 3.4 Tragedy of the Commons (TOC) 51 3.4.1 The State Space Diagram 52 3.5 The US Electric Power Grid 52 3.6 Paradox of Enrichment (POE) 55 3.6.1 The Great Recessions 56 3.6.2 Too Much Money 56 3.7 Competitive Exclusion Principle (CEP) 57 3.7.1 Gause’s Law 58 3.7.2 The Self‐Organizing Internet 58 3.7.3 A Monoculture 59 3.8 Paradox of Redundancy (POR) 59 3.9 Resilience of Complex Infrastructure Systems 60 3.9.1 Expected Utility and Risk 60 3.9.2 Countering SOC 60 3.9.3 The TOC Test 61 3.9.4 POE and Nonlinearity 61 3.9.5 CEP and Loss of Redundancy 61 3.9.6 POR and Percolation 62 3.10 Emergence 62 3.10.1 Opposing Forces in Emergent CIKR 62 3.11 Exercises 63 3.12 Discussions 64 References 64 4 Complex CIKR Systems 66 4.1 CIKR as Networks 69 4.1.1 Emergence 72 4.1.2 Classes of CIKR Networks 74 4.1.3 Self‐Organized Networks 75 4.2 Cascading CIKR Systems 76 4.2.1 The Fundamental Resilience Line 80 4.2.2 Critical Factors and Cascades 81 4.2.3 Targeted Attacks 82 4.3 Network Flow Risk and Resilience 85 4.3.1 Braess’s Paradox 86 4.3.2 Flow Network Resilience 87 4.4 Paradox of Redundancy 88 4.4.1 Link Percolation and Robustness 88 4.4.2 Node Percolation and Robustness 89 4.4.3 Blocking Nodes 89 4.5 Network Risk 91 4.5.1 Crude Oil and Keystone XL 92 4.5.2 MBRA Network Resource Allocation 92 4.6 The Fragility Framework 96 4.6.1 The Hodges Fragility Framework 96 4.6.2 The Hodges Fault Tree 97 4.7 Exercises 98 4.8 Discussions 99 References 100 5 Communications 101 5.1 Early Years 102 5.2 Regulatory Structure 105 5.3 The Architecture of the Communications Sector 106 5.3.1 Physical Infrastructure 107 5.3.2 Wireless Networks 108 5.3.3 Extraterrestrial Communication 108 5.3.4 Land Earth Stations 109 5.3.5 Cellular Networks 110 5.3.6 Generations 110 5.3.7 Wi‐Fi Technology 111 5.4 Risk and Resilience Analysis 111 5.4.1 Importance of Carrier Hotels 113 5.4.2 Network Analysis 114 5.4.3 Flow Analysis 116 5.4.4 Robustness 116 5.4.5 The Submarine Cable Network 117 5.4.6 HPM Attacks 117 5.5 Cellular Network Threats 118 5.5.1 Cyber Threats 119 5.5.2 HPM‐Like Threats 120 5.5.3 Physical Threats 120 5.6 Analysis 120 5.7 Exercises 121 5.8 Discussions 122 References 122 6 Internet 123 6.1 The Internet Monoculture 125 6.1.1 The Original Sin 127 6.1.2 How TCP/IP Works 128 6.1.3 More Original Sin 130 6.2 Analyzing The Autonomous System Network 130 6.2.1 The AS500 Network 130 6.2.2 Countermeasures 132 6.3 The RFC Process 133 6.3.1 Emergence of Email 133 6.3.2 Emergence of TCP/IP 133 6.4 The Internet of Things (IOT) 134 6.4.1 Data Scraping 135 6.4.2 IoT Devices 135 6.4.3 More IoT Exploits 136 6.5 Commercialization 137 6.6 The World Wide Web 137 6.7 Internet Governance 138 6.7.1 IAB and IETF 138 6.7.2 ICANN Wars 140 6.7.3 ISOC 141 6.7.4 W3C 141 6.8 Internationalization 142 6.9 Regulation and Balkanization 142 6.10 Exercises 143 6.11 Discussions 144 7 Cyber Threats 145 7.1 Threat Surface 146 7.1.1 Script Kiddies 148 7.1.2 Black‐Hats 149 7.1.3 Weaponized Exploits 149 7.1.4 Ransomware and the NSA 150 7.2 Basic Vulnerabilities 151 7.2.1 The First Exploit 152 7.2.2 TCP/IP Flaws 153 7.2.3 Open Ports 154 7.2.4 Buffer Overflow Exploits 155 7.2.5 DDoS Attacks 155 7.2.6 Email Exploits 156 7.2.7 Flawed Application and System Software 157 7.2.8 Trojans, Worms, Viruses, and Keyloggers 158 7.2.9 Hacking the DNS 159 7.3 Botnets 159 7.3.1 Hardware Flaws 160 7.4 Cyber Risk Analysis 161 7.5 Cyber Infrastructure Risk 161 7.5.1 Blocking Node Analysis 163 7.5.2 Machine Learning Approach 165 7.5.3 Kill Chain Approach 165 7.6 Analysis 166 7.7 Exercises 166 7.8 Discussions 168 References 168 8 Information Technology (IT) 169 8.1 Principles of IT Security 171 8.2 Enterprise Systems 171 8.2.1 Loss of Service 172 8.2.2 Loss of Data 172 8.2.3 Loss of Security 172 8.3 Cyber Defense 173 8.3.1 Authenticate Users 173 8.3.2 Trusted Path 174 8.3.3 Inside the DMZ 175 8.4 Basics of Encryption 176 8.4.1 DES 177 8.4.2 3DES 177 8.4.3 AES 177 8.5 Asymmetric Encryption 177 8.5.1 Public Key Encryption 179 8.5.2 RSA Illustrated 180 8.5.3 Shor’s Algorithm 180 8.6 PKI 181 8.6.1 Definition of PKI 182 8.6.2 Certificates 182 8.6.3 Blockchain 183 8.6.4 FIDO and WebAuth 184 8.6.5 Mathematics of Passwords 184 8.7 Countermeasures 185 8.8 Exercises 187 8.9 Discussions 188 References 188 9 Hacking Social Networks 189 9.1 Web 2.0 and the Social Network 190 9.2 Social Networks Amplify Memes 193 9.3 Topology Matters 194 9.4 Computational Propaganda 194 9.5 The ECHO Chamber 197 9.6 Big Data Analytics 198 9.6.1 Algorithmic Bias 199 9.6.2 The Depths of Deep Learning 200 9.6.3 Data Brokers 200 9.7 GDPR 201 9.8 Social Network Resilience 202 9.9 The Regulated Web 203 9.9.1 The Century of Regulation 203 9.10 Exercises 204 9.11 Discussions 205 References 206 10 Supervisory Control and Data Acquisition 207 10.1 What is SCADA? 208 10.2 SCADA Versus Enterprise Computing Differences 209 10.3 Common Threats 210 10.4 Who is in Charge? 211 10.5 SCADA Everywhere 212 10.6 SCADA Risk Analysis 213 10.7 NIST‐CSF 216 10.8 SFPUC SCADA Redundancy 216 10.8.1 Redundancy as a Resiliency Mechanism 218 10.8.2 Risk Reduction and Resource Allocation 220 10.9 Industrial Control of Power Plants 221 10.9.1 Maximum PML 221 10.9.2 Recovery 221 10.9.3 Node Resilience 222 10.10 Analysis 225 10.11 Exercises 227 10.12 Discussions 228 11 Water and Water Treatment 229 11.1 From Germs to Terrorists 230 11.1.1 Safe Drinking Water Act 231 11.1.2 The WaterISAC 231 11.2 Foundations: SDWA of 1974 232 11.3 The Bioterrorism Act of 2002 232 11.3.1 Is Water for Drinking? 233 11.3.2 Climate Change and Rot: The New Threats 234 11.4 The Architecture of Water Systems 235 11.4.1 The Law of The River 235 11.5 The Hetch Hetchy Network 235 11.5.1 Bottleneck Analysis 236 11.6 Risk Analysis 238 11.6.1 Multidimensional Analysis 238 11.6.2 Blocking Nodes 239 11.7 Hetch Hetchy Investment Strategies 239 11.7.1 The Rational Actor Attacker 240 11.8 Hetch Hetchy Threat Analysis 242 11.8.1 Chem/Bio Threats 242 11.8.2 Earthquake Threats 244 11.8.3 Allocation to Harden Threat–Asset Pairs 244 11.9 Analysis 245 11.10 Exercises 246 11.11 Discussions 247 References 248 12 Energy 249 12.1 Energy Fundamentals 251 12.2 Regulatory Structure of the Energy Sector 252 12.2.1 Evolution of Energy Regulation 252 12.2.2 Other Regulations 253 12.2.3 The Energy ISAC 254 12.3 Interdependent Coal 254 12.3.1 Interdependency with Transportation 254 12.4 The Rise of Oil and the Automobile 255 12.4.1 Oil 255 12.4.2 Natural Gas 256 12.5 Energy Supply Chains 256 12.5.1 PADDs 257 12.5.2 Refineries 258 12.5.3 Transmission 258 12.5.4 Transport4 259 12.5.5 Storage 259 12.5.6 Natural Gas Supply Chains 259 12.5.7 SCADA 259 12.6 The Critical Gulf of Mexico Cluster 259 12.6.1 Refineries 260 12.6.2 Transmission Pipelines 260 12.6.3 Storage 262 12.7 Threat Analysis of the Gulf of Mexico Supply Chain 265 12.8 Network Analysis of the Gulf of Mexico Supply Chain 266 12.9 The Keystonexl Pipeline Controversy 267 12.10 The Natural Gas Supply Chain 268 12.11 Analysis 270 12.12 Exercises 270 12.13 Discussions 271 References 272 13 Electric Power 273 13.1 The Grid 274 13.2 From Death Rays to Vertical Integration 275 13.2.1 Early Regulation 276 13.2.2 Deregulation and EPACT 1992 278 13.2.3 Energy Sector ISAC 278 13.3 Out of Orders 888 and 889 Comes Chaos 279 13.3.1 Economics Versus Physics 280 13.3.2 Betweenness Increases SOC 281 13.4 The North American Grid 281 13.4.1 ACE and Kirchhoff’s Law 283 13.5 Anatomy of a Blackout 283 13.5.1 What Happened on August 14 285 13.6 Threat Analysis 286 13.6.1 Attack Scenario 1: Disruption of Fuel Supply to Power Plants 286 13.6.2 Attack Scenario 2: Destruction of Major Transformers 287 13.6.3 Attack Scenario 3: Disruption of SCADA Communications 287 13.6.4 Attack Scenario 4: Creation of a Cascading Transmission Failure 287 13.7 Risk Analysis 288 13.8 Analysis of WECC96 288 13.9 Analysis 291 13.10 Exercises 292 13.11 Discussions 294 References 294 14 Healthcare and Public Health 295 14.1 The Sector Plan 296 14.2 Roemer’s Model 297 14.2.1 Components of Roemer’s Model 298 14.3 The Complexity of Public Health 299 14.4 Risk Analysis of HPH Sector 300 14.5 Bioterrorism 300 14.5.1 Classification of Biological Agents 301 14.6 Epidemiology 303 14.6.1 The Kermack–McKendrick Model 303 14.6.2 SARS 304 14.7 Predicting Pandemics 304 14.7.1 The Levy Flight Theory of Pandemics 306 14.8 Bio‐Surveillance 307 14.8.1 HealthMap 307 14.8.2 Big Data 307 14.8.3 GeoSentinel 308 14.9 Network Pandemics 309 14.10 The World Travel Network 310 14.11 Exercises 312 14.12 Discussions 313 References 313 15 Transportation 314 15.1 Transportation Under Transformation 316 15.2 The Road to Prosperity 319 15.2.1 Economic Impact 319 15.2.2 The National Highway System (NHS) 319 15.2.3 The Interstate Highway Network Is Resilient 320 15.2.4 The NHS Is Safer 320 15.3 Rail 320 15.3.1 Birth of Regulation 322 15.3.2 Freight Trains 323 15.3.3 Passenger Rail 324 15.3.4 Commuter Rail Resiliency 324 15.4 Air 325 15.4.1 Resilience of the Hub‐and‐Spoke Network 326 15.4.2 Security of Commercial Air Travel 328 15.4.3 How Safe and Secure Is Flying in the United States? 329 15.5 Airport Games 330 15.5.1 GUARDS 330 15.5.2 Bayesian Belief Networks 331 15.6 Exercises 331 15.7 Discussions 332 References 332 16 Supply Chains 334 16.1 The World Is Flat, But Tilted 335 16.1.1 Supply‐Side Supply 336 16.1.2 The Father of Containerization 337 16.1.3 The Perils of Efficient Supply Chains 337 16.2 The World Trade Web 340 16.2.1 Economic Contagions 342 16.3 Risk Assessment 344 16.3.1 MSRAM 344 16.3.2 PROTECT 345 16.4 Analysis 346 16.5 Exercises 347 16.6 Discussions 347 References 348 17 Banking and Finance 349 17.1 The Financial System 351 17.1.1 Federal Reserve vs. US Treasury 352 17.1.2 Operating the System 353 17.1.3 Balancing the Balance Sheet 353 17.1.4 Paradox of Enrichment 354 17.2 Financial Networks 355 17.2.1 FedWire 355 17.2.2 TARGET 356 17.2.3 SWIFT 356 17.2.4 Credit Card Networks 356 17.2.5 3‐D Secure Payment 357 17.3 Virtual Currency 358 17.3.1 Intermediary PayPal 358 17.3.2 ApplePay 358 17.3.3 Cryptocurrency 359 17.4 Hacking The Financial Network 361 17.5 Hot Money 363 17.5.1 The Dutch Disease 364 17.6 The End of Stimulus? 364 17.7 Fractal Markets 365 17.7.1 Efficient Market Hypothesis (EMH) 366 17.7.2 Fractal Market Hypothesis (FMH) 366 17.7.3 Predicting Collapse 367 17.8 Exercises 369 17.9 Discussions 370 References 370 18 Strategies for a Networked Nation 371 18.1 Whole of Government 372 18.2 Risk and Resilience 373 18.3 Complex and Emergent CIKR 373 18.4 Communications and the Internet 374 18.5 Information Technology (IT) 375 18.6 Surveillance Capitalism 375 18.7 Industrial Control Systems 376 18.8 Energy and Power 376 18.9 Global Pandemics 377 18.10 Transportation and Supply Chains 377 18.11 Banking and Finance 378 18.12 Discussions 378 Appendix A: Math: Probability Primer 379 A.1 A Priori Probability 379 A.2 A Pori Probability 381 A.3 Random Networks 382 A.4 Conditional Probability 383 A.5 Bayesian Networks 384 A.6 Bayesian Reasoning 385 References 387 Further Reading 388 Appendix B: Math: Risk and Resilience 389 B.1 Expected Utility Theory 390 B.1.1 Fault Trees 390 B.1.2 Fault Tree Minimization 391 B.1.3 XOR Fault Tree Allocation Algorithm 392 B.2 Bayesian Estimation 392 B.2.1 Bayesian Networks 392 B.3 Exceedence and PML Risk 394 B.3.1 Modeling EP 394 B.3.2 Estimating EP From Data 395 B.3.3 How to Process Time‐Series Data 396 B.4 Network Risk 397 B.5 Model‐Based Risk Analysis (MBRA) 398 B.5.1 Network Resource Allocation 401 B.5.2 Simulation 402 B.5.3 Cascade Risk 402 B.5.4 Flow Risk 402 References 403 Appendix C: Math: Spectral Radius 404 C.1 Network as Matrix 404 C.2 Matrix Diagonalization 404 C.3 Relationship to Risk and Resilience 406 C.3.1 Equation 1 406 C.3.2 Equation 2 407 Reference 407 Appendix D: Math: Tragedy of the Commons 408 D.1 Lotka–Volterra Model 408 D.2 Hopf–Holling Model 408 Appendix E: Math: The DES and RSA Algorithm 410 E.1 DES Encryption 410 E.2 RSA Encryption 410 Appendix F: Glossary 412 Index 414
£105.26
John Wiley & Sons Inc Network Modeling Simulation and Analysis in
Book SynopsisThe purpose of this book is first to study MATLAB programming concepts, then the basic concepts of modeling and simulation analysis, particularly focus on digital communication simulation. The book will cover the topics practically to describe network routing simulation using MATLAB tool. It will cover the dimensions'' like Wireless network and WSN simulation using MATLAB, then depict the modeling and simulation of vehicles power network in detail along with considering different case studies. Key features of the book include: Discusses different basics and advanced methodology with their fundamental concepts of exploration and exploitation in NETWORK SIMULATION. Elaborates practice questions and simulations in MATLAB Student-friendly and Concise Useful for UG and PG level research scholar Aimed at Practical approach for network simulation with more programs with step by step comments. Based on the Latest technoTable of ContentsList of Figures xi List of Tables xv Foreword xvii Preface xix Acknowledgments xxi Acronyms xxiii 1 Introduction to Modeling, Simulations and Analysis 1 1.1 MATLAB Modeling and Simulation 2 1.2 Computer Networks Performance Modeling and Simulation 4 1.2.1 Computer-Based Models 4 1.2.2 Computer Network Simulation 5 1.3 Discrete-Event Simulation for MATLAB 6 1.3.1 Terminology and Components of Discrete-Event Simulation 7 1.3.2 The Principle of Discrete-Event Simulation 8 1.3.3 ESTA Algorithm 9 1.3.4 ANALYSIS: Determination of Time to Attain Steady State Condition for MATLAB 11 1.4 Simulation Software Selection for MATLAB 11 1.5 Simulation Tools Based on High Performance 12 1.5.1 Network Model 13 1.5.2 Network Simulators 15 1.6 Conclusion 22 References 23 2 Introduction to MATLAB Programming 25 2.1 Introduction 26 2.2 Basic Features 27 2.2.1 Features of MATLAB 27 2.2.2 Uses of MATLAB 27 2.3 Notation, Syntax, and Operations 27 2.3.1 Practical Examples for MATLAB 27 2.3.2 Use of Semicolon (;) in MATLAB 28 2.3.3 Adding Comments 29 2.3.4 Commonly Utilized Operators and Special Characters 29 2.3.5 Unique Variables and Constants 30 2.3.6 Sparing Process 30 2.3.7 MATLAB Decisions 30 2.3.8 MATLAB Loops 31 2.4 Import and Export Operations 32 2.4.1 Import Data in MATLAB 32 2.4.2 Export Data in MATLAB 38 2.5 Elements 40 2.5.1 Commands 40 2.5.2 MATLAB Basics 41 2.5.3 Creating Matrices 42 2.5.4 Framework Operations 42 2.5.5 Using M-Files 44 2.6 Plotting 47 2.6.1 Including Various Types of Graphs 48 2.6.2 Creation of a Multiple Number of Functions in a Similar Graph 49 2.6.3 Creating a Graph According to Various Colors 50 2.7 Uncommon Function 51 2.8 Executable Files Generation 52 2.9 Calling and Accumulating Executable Documents 54 2.10 Calling Objects from External Programs 55 2.11 JAVA Classes 56 2.12 The Guide 56 2.12.1 Open a New User Interface 57 2.12.2 Guide Window Size Setting 58 2.12.3 Design the User Interface 58 2.12.4 Adjust the Components 59 2.12.5 Mark the Push Buttons 60 2.12.6 Menu Items-Rundown Pop-Up 61 2.12.7 Static Test Alteration Procedure in MATLAB 61 2.12.8 Spare the Layout 62 2.12.9 Behavior of the App 63 2.12.10 Produce Data to Plot in MATLAB 63 2.12.11 Pop-Up Menu Characteristics 65 2.12.12 Behavior of Push Button 66 2.13 Effective Programming through MATLAB 67 2.13.1 Condition 68 2.13.2 Practice Programs 68 2.13.3 Specific Functions in MATLAB 69 2.14 Clones Process Using MATLAB 69 2.14.1 GNU Octave 69 2.14.2 Scilab 70 2.14.3 Sage 70 2.15 Parallel MATLAB System 71 2.15.1 Run a Batch Job 71 2.15.2 Run a Batch Parallel Loop 72 2.15.3 Current Folder Browser - Run Script as Batch Job 73 2.16 Conclusion 74 References 75 3 Digital Communication System Simulation Using MATLAB 77 3.1 Introduction to Digital Communication 78 3.1.1 Data Transmission 78 3.1.2 Example 79 3.1.3 The Conversion of Analog and Digital Signals 80 3.1.4 Information, Bandwidth, and Noise 82 3.2 Simulation of Rayleigh Fading Model 83 3.2.1 Rayleigh Fading Basics 83 3.2.2 Rayleigh Fading 84 3.3 BPSK Modulation and Demodulation 86 3.3.1 BPSK Modulation 86 3.3.2 BPSK Demodulation 87 3.4 QPSK Modulation and Demodulation 89 3.4.1 QPSK Transmitter 90 3.4.2 QPSK Receiver 93 3.4.3 Performance Simulation over AWGN 93 3.5 Image Error Rate vs Signal-to-Noise Ratio 94 3.5.1 M-QAM Modulation 94 3.5.2 Baseband Rectangular M-QAM Modulator 95 3.6 Recreation of OFDM Framework 99 3.6.1 Figuring (Es /n0) or (Eb /n0) for OFDM Framework 101 3.6.2 Impact of Cyclic Prefix on Es /n 101 3.6.3 Effect of Unused Subcarriers on Es/N 102 3.6.4 Arrangement of Subcarriers 103 3.6.5 MATLAB Sample Code 103 3.7 Conclusion 108 References 109 4 Statistical Analysis of Network Data Using MATLAB 111 4.1 Introduction to Association Networks 112 4.2 Time Series, Stationary, Time Series Decomposition, De-trending 114 4.2.1 Time Series Analysis 114 4.2.2 Stationarity 115 4.2.3 Time Series Decomposition 117 4.2.4 De-trending 118 4.3 Autocorrelation, Test for Independence, Linear Autoregressive Models 124 4.3.1 Autocorrelation 124 4.3.2 ACF and IACF Parameters 126 4.3.3 Test of Independence 128 4.3.4 Linear Autoregressive Models 135 4.3.5 Linear Prediction and Autoregressive Modeling 137 4.4 Mutual Information and Test for Independence 139 4.4.1 Testing the Significance of the Null Hypothesis I(X; Y) = 0 139 4.4.2 Producing the Mutual Information Distribution from Surrogates 141 4.5 Spurious Cross-Correlation, Vector Autoregressive Models and Dynamic Regression Models 143 4.5.1 Cross Correlation 143 4.5.2 Vector Autoregression (VAR) Models 146 4.5.3 Coupled Dynamical Systems 149 4.6 Conclusion 150 References 150 5 Network Routing Simulation Using MATLAB 155 5.1 Evaluation of Granger Causality Measures on Known Systems 156 5.1.1 A Historical Viewpoint 158 5.1.2 Application to Recreated Information 164 5.1.3 Application to FMRI BOLD Information from a Visuospatial Consideration Undertaking 170 5.2 Demand Modeling and Performance Measurement 173 5.2.1 Objectives 173 5.2.2 Approach to Model Development 174 5.2.3 Development of Models 175 5.2.4 Outline of Findings from Phase Two: Model Validation 176 5.3 Universal Algorithms and Sequential Algorithms 178 5.3.1 Genetic Algorithm for Improvement Utilizing MATLAB 178 5.3.2 Masses Diversity-Measure-Run, Prosperity Scaling 182 5.4 Acoustic-Centric and Radio-Centric Algorithms 190 5.5 AODV Routing Protocol 194 5.5.1 Keeping Up Sequence Numbers 196 5.5.2 Association Breaks 196 5.5.3 Neighborhood Repairs 197 5.5.4 Security Considerations 197 5.6 Conclusion 203 References 204 6 Wireless Network Simulation Using MATLAB 209 6.1 Radio Propagation for Shadowing Methods 210 6.1.1 Radio Propagation Modeling 210 6.1.2 Partition Dependence 210 6.1.3 Small-Scale Blurring 210 6.1.4 Free-Space Propagation 211 6.1.5 Ray Tracing 212 6.1.6 Indoor Propagation 220 6.1.7 Classic Empirical Models 221 6.1.8 COST 231-Hata Model 221 6.1.9 COST 231-Walfish-Ikegami Model 222 6.1.10 Erceg Model 224 6.1.11 Multiple Slope Models 225 6.2 Mobility: Arbitrary Waypoint Demonstrates 234 6.2.1 Random Waypoint Model 234 6.2.2 Regular Problems with Random Waypoint Model 235 6.2.3 Irregular Waypoint on the Border (RWPB) 235 6.2.4 Markovian Waypoint Model 235 6.3 PHY: SNR-Based Bundle Catches, Communication, Dynamic Transmission Rate and Power 235 6.3.1 Mac: Ieee 802.11 236 6.3.2 IEEE 802.11 RTS/CTS Exchange 237 6.4 NET: Ad Hoc Routing 238 6.4.1 Dynamic Destination Sequenced Distance Vector 240 6.4.2 Wireless Routing Protocol 243 6.4.3 Global State Routing 243 6.4.4 Fisheye State Routing 244 6.4.5 Hierarchical State Routing 244 6.4.6 Zone-Based Hierarchical Link State Routing Protocol 245 6.4.7 Clusterhead Gateway Switch Routing Protocol 246 6.4.8 Cluster-Based Routing Protocols 247 6.4.9 Ad Hoc On-Demand Distance Vector Routing 248 6.4.10 Dynamic Source Routing Protocol 249 6.4.11 Temporally Ordered Routing Algorithm 250 6.4.12 Associativity-based Routing 252 6.4.13 Signal Stability Routing 253 6.5 APP: Overlay Routing Protocols 254 6.5.1 System/Application Designs, Optimizations, and Implementations on Overlay Networks 254 6.5.2 Routing Overlays for VoIP 255 6.5.3 Measurement, Modeling, and Improvement of BitTorrent Overlays 256 6.6 Conclusion 259 References 260 7 Mobility Modeling for Vehicular Communication Networks Using MATLAB 267 7.1 Vehicle Network Toolbox 268 7.1.1 Transmit and Receive CAN Messages 268 7.1.2 Examine Received Messages 271 7.1.3 CAN Message Reception Callback Function 272 7.2 Network Management (NM) 274 7.2.1 Plan Your Network Installation 274 7.2.2 Planning Your Network Installation 275 7.2.3 Setting Up a Remote Client Access Configuration 275 7.2.4 Setting Up Local Client Access Configuration 275 7.3 Interaction Layer 277 7.3.1 Directing Protocols in MANET 278 7.3.2 Specially Appointed On-Demand Distance Vector 278 7.3.3 Dynamic Source Routing (DSR) 278 7.3.4 Diagram of Mobility Model 279 7.3.5 Results and Analysis 280 7.3.6 Association Variation Results 282 7.4 Transport Protocols 285 7.4.1 TCP Transport Protocol 285 7.4.2 User Datagram Protocol, or UDP 286 7.4.3 Reliable Data Protocol, or RDP 286 7.4.4 Transmission Control Protocol, or TCP 286 7.5 Conclusion 287 References 288 8 Case Studies and Sample Codes 291 8.1 Case Determination and Structure 292 8.1.1 Exhibiting Analysis 293 8.1.2 Case Example 293 8.1.3 The Best Strategy 293 8.1.4 Impediment of the Technique 293 8.1.5 Sorts of Contextual Investigations 294 8.1.6 Relevant Examinations in Business 294 8.1.7 Summing Up from Logical Investigations 294 8.1.8 History 295 8.1.9 Related Vocations 295 8.2 Case Study 1: Gas Online 296 8.2.1 Load Data into Project 296 8.2.2 Construct Boundary Models 296 8.3 Case Study 2 302 8.3.1 Case 1: Create a Credit Scorecard Dissent 302 8.3.2 Case 2: Binning Information 304 8.4 Case Study 3: Random Waypoint Mobility Model 306 8.5 Case Study 4: Node localization in Wireless Sensor Network 312 8.6 Case Study 5: LEACH Routing Protocol for a WSN 325 8.7 Conclusion 334 References 334
£164.66
John Wiley & Sons Inc Networking Fundamentals
Book SynopsisA clear and concise resource on Windows networking, perfect for IT beginners Did you know that nearly 85% of IT support roles require a good understanding of networking concepts? If you are looking to advance your IT career, you will need a foundational understanding of Windows networking. Network Fundamentals covers everything you need to know about network infrastructures, hardware, protocols, and services. You will learn everything you need to gain the highly in-demand Networking Fundamentals MTA Certification. This entry-level credential could be your first step into a rewarding, stable and lucrative IT career. This new Sybex guide covers the basics of networking starting from the ground level, so no previous IT knowledge is required. Each chapter features approachable discussion of the latest networking technologies and concepts, closing with a quiz so you can test your knowledge before moving to the next section. Even if you are brand new to computers, Network Fundamentals wilTable of ContentsIntroduction xv Lesson 1 Understanding Local Area Networking 1 Examining Local Area Networks, Devices, and Data Transfer 3 Defining the LAN 3 Identifying Types of LANs 20 Getting to Know Perimeter Networks 23 Identifying Network Topologies and Standards 25 Identifying Network Topologies 25 Defining Ethernet Standards 29 Identifying the Differences Between Client/Server and Peer-to-Peer 32 Skill Summary 36 Knowledge Assessment 38 Multiple Choice 38 Fill in the Blank 40 Business Case Scenarios 41 Scenario 1-1: Planning and Documenting a Basic LAN 41 Scenario 1-2: Selecting the Correct Networking Model 41 Scenario 1-3: Selecting Network Adapters for Your LAN Computers 41 Scenario 1-4: Configuring the Correct Subnet Mask 41 Solutions to Business Case Scenarios 42 Lesson 2 Defining Networks with the OSI Model 43 Understanding OSI Basics 45 Defining the OSI Model Layers 46 Defining the Communications Subnetwork 48 Define the Physical Layer 49 Define the Data Link Layer 51 Understanding Layer 2 Switching 52 Understanding Layer 3 Switching 56 Understanding Characteristics of Switches 56 Defining the Upper OSI Layers 58 Defining the Transport Layer 59 Defining the Session Layer 62 Defining the Presentation Layer 63 Defining the Application Layer 64 Reviewing the OSI Layers 65 Defining the TCP/IP Model 67 Skill Summary 68 Knowledge Assessment 69 Multiple Choice 69 Fill in the Blank 71 Business Case Scenarios 71 Scenario 2-1: Installing the Appropriate Switch 71 Scenario 2-2: Defining the IP Address and Ports Used by Destination Servers 72 Scenario 2-3: Ensuring a Newly Created Email Account’s Logon is Encrypted 72 Scenario 2-4: Creating a Permanent ARP Table Entry 72 Lesson 3 Understanding Wired and Wireless Networks 75 Recognizing Wired Networks and Media Types 77 Identifying and Working with Twisted-Pair Cables 77 Identifying and Working with Fiber-Optic Cable 86 Understanding Wireless Networks 89 Identifying Wireless Devices 89 Identifying Wireless Networking Standards 91 Skill Summary 97 Knowledge Assessment 98 Multiple Choice 98 Fill in the Blank 100 Business Case Scenarios 100 Scenario 3-1: Selecting Channels for a WLAN 100 Scenario 3-2: Running Cable Drops Properly 100 Scenario 3-3: Selecting Network Adapters for Your WLAN Computers 101 Scenario 3-4: Securing a WLAN 101 Lesson 4 Understanding Internet Protocol 103 Working with IPV4 105 Categorizing IPv4 Addresses 105 Default Gateways and DNS Servers 114 Defining Advanced IPv4 Concepts 117 Working with IPV6 129 Understanding IPv6 130 Configuring IPv6 133 Skill Summary 140 Knowledge Assessment 142 Multiple Choice 142 Fill in the Blank 144 Business Case Scenarios 145 Scenario 4-1: Defining a Private Class C IP Network 145 Scenario 4-2: Specifying the Correct Device 145 Scenario 4-3: Implementing the Correct Class Network 145 Scenario 4-4: Implementing the Correct Subnet Mask 145 Lesson 5 Implementing TCP/IP in the Command Line 147 Using Basic TCP/IP Commands 149 Working with the Command Prompt Window 149 Using ipconfig and ping 152 Working with Advanced TCP/IP Commands 162 Using netstat and nbtstat 162 Using tracert and pathping 167 Using nslookup 170 Using ftp and telnet 171 Using Windows PowerShell 173 Using net 180 Skill Summary 188 Knowledge Assessment 189 Multiple Choice 189 Fill in the Blank 192 Business Case Scenarios 195 Scenario 5-1: Connecting to an FTP Server 195 Scenario 5-2: Troubleshooting TCP/IP Results 195 Scenario 5-3: Documenting a Basic Wide Area Network 196 Scenario 5-4: Using Advanced Ping 196 Lesson 6 Working with Networking Services 199 Setting Up Common Networking Services 201 Working with the Dynamic Host Configuration Protocol (DHCP) 202 Introducing Remote Administration 208 Enable Remote Desktop 210 Access Remote Desktop 210 Defining More Networking Services 213 Defining RRAS 213 Defining IPsec 217 Defining Name Resolution Techniques 218 Defining DNS 218 Defining WINS 222 Skill Summary 223 Knowledge Assessment 225 Multiple Choice 225 Fill in the Blank 227 Business Case Scenarios 227 Scenario 6-1: Selecting the Appropriate Services 227 Scenario 6-2: Selecting the Appropriate Services 228 Scenario 6-3: Setting Up a DHCP Server 228 Scenario 6-4: Setting Up a New DHCP and Migrating Old Computers 228 Scenario 6-5: Managing Remote Connections 228 Lesson 7 Understanding Wide Area Networks 231 Understanding Routing 233 Identifying Static and Dynamic Routing 233 Understanding Quality of Service (QOS) 237 Defining Common WAN Technologies and Connections 239 Defining Packet Switching 239 Defining T-Carriers 249 Defining Other WAN Technologies and Internet Connectivity 250 Skill Summary 252 Knowledge Assessment 254 Multiple Choice 254 Fill in the Blank 256 Business Case Scenarios 256 Scenario 7-1: Selecting the Appropriate Service and Protocol 256 Scenario 7-2: Selecting the Appropriate WAN Technology 256 Scenario 7-3: Recommending the Right Service 257 Scenario 7-4: Setting Up Routes to Other Networks 257 Lesson 8 Defining Network Infrastructures and Network Security 259 Understanding Networks Outside the LAN 261 Defining the Internet 261 Defining Intranets and Extranets 262 Configuring VPN Connections and Authentication 264 Selecting Types of VPN Protocols 265 Selecting Authentication for VPN Connections 267 Creating a VPN Connection Using the Create a VPN Connection Wizard 268 Creating a VPN Connection Using Windows 10 Settings 270 Using Connection Manager (CM) and the Connection Manager Administration Kit (CMAK) 272 Understanding Security Devices and Zones 273 Defining Firewalls and Other Perimeter Security Devices 273 Redefining the DMZ 277 Putting It All Together 278 Skill Summary 281 Knowledge Assessment 282 Multiple Choice 282 Fill in the Blank 284 Business Case Scenarios 285 Scenario 8-1: Setting Up a DMZ 285 Scenario 8-2: Selecting the Appropriate Solution 285 Scenario 8-3: Setting Up a PPTP Server 285 Scenario 8-4: Creating a WAN with VPN 286 Appendix Answer Key 289 Lesson 1: Understanding Local Area Networking 290 Answers to Knowledge Assessment 290 Answers to Business Case Scenarios 291 Lesson 2: Defining Networks with the OSI Model 292 Answers to Knowledge Assessment 292 Answers to Business Case Scenarios 293 Lesson 3: Understanding Wired and Wireless Networks 293 Answers to Knowledge Assessment 293 Answers to Business Case Scenarios 294 Lesson 4: Understanding Internet Protocol 295 Answers to Knowledge Assessment 295 Answers to Business Case Scenarios 296 Lesson 5: Implementing TCP/IP in the Command Line 297 Answers to Knowledge Assessment 297 Answers to Business Case Scenarios 298 Lesson 6: Working with Networking Services 298 Answers to Knowledge Assessment 298 Answers to Business Case Scenarios 299 Lesson 7: Understanding Wide Area Networks 301 Answers to Knowledge Assessment 301 Answers to Business Case Scenarios 302 Lesson 8: Defining Network Infrastructure and Network Security 302 Answers to Knowledge Assessment 302 Answers to Business Case Scenarios 303 Index 305
£26.34
John Wiley & Sons Inc Understanding Cisco Networking Technologies
Book SynopsisLeading Cisco authority Todd Lammle helps you gain insights into the new core Cisco network technologies Understanding Cisco Networking Technologies is an important resource for those preparing for the new Cisco Certified Network Associate (CCNA) certification exam as well as IT professionals looking to understand Cisco's latest networking products, services, and technologies. Written by bestselling author and internationally recognized Cisco expert Todd Lammle, this in-depth guide provides the fundamental knowledge required to implement and administer a broad range of modern networking and IT infrastructure. Cisco is the worldwide leader in network technologies80% of the routers on the Internet are Cisco. This authoritative book provides you with a solid foundation in Cisco networking, enabling you to apply your technical knowledge to real-world tasks. Clear and accurate chapters cover topics including routers, switches, controllers and other network comTable of ContentsIntroduction xvii Chapter 1 Internetworking 1 Internetworking Basics 2 Internetworking Models 10 The Layered Approach 11 Advantages of Reference Models 12 The OSI Reference Model 12 The Application Layer 14 The Presentation Layer 15 The Session Layer 16 The Transport Layer 16 The Network Layer 21 The Data Link Layer 23 The Physical Layer 26 Summary 29 Chapter 2 Ethernet Networking and Data Encapsulation 31 Ethernet Networks in Review 32 Collision Domain 32 Broadcast Domain 34 CSMA/CD 35 Half- and Full-Duplex Ethernet 36 Ethernet at the Data Link Layer 38 Ethernet at the Physical Layer 45 Ethernet Cabling 48 Straight-Through Cable 49 Crossover Cable 49 Rolled Cable 51 Fiber Optic 53 Data Encapsulation 55 The Cisco Three-Layer Hierarchical Model 59 The Core Layer 60 The Distribution Layer 60 The Access Layer 61 Summary 61 Chapter 3 Introduction to TCP/IP 63 Introducing TCP/IP 64 A Brief History of TCP/IP 64 TCP/IP and the DoD Model 65 The Process/Application Layer Protocols 66 The Host-to-Host or Transport Layer Protocols 76 The Internet Layer Protocols 85 IP Addressing 93 IP Terminology 94 The Hierarchical IP Addressing Scheme 94 Private IP Addresses (RFC 1918) 99 IPv4 Address Types 101 Layer 2 Broadcasts 101 Layer 3 Broadcasts 102 Unicast Address 102 Multicast Address 103 Summary 104 Chapter 4 Easy Subnetting 105 Subnetting Basics 106 How to Create Subnets 107 Subnet Masks 108 Classless Inter-Domain Routing (CIDR) 109 IP Subnet-Zero 111 Subnetting Class C Addresses 112 Subnetting Class B Addresses 123 Summary 131 Chapter 5 Troubleshooting IP Addressing 133 Cisco’s Way of Troubleshooting IP 134 Determining IP Address Problems 137 Summary 141 Chapter 6 Cisco’s Internetworking Operating System (IOS) 143 The IOS User Interface 144 Cisco IOS 144 Connecting to a Cisco IOS Device 145 Bringing Up a Switch 147 Command-Line Interface (CLI) 147 Entering the CLI 148 Overview of Router Modes 148 CLI Prompts 149 Editing and Help Features 151 Administrative Configurations 156 Hostnames 157 Banners 157 Setting Passwords 159 Encrypting Your Passwords 165 Descriptions 166 Router and Switch Interfaces 169 Bringing Up an Interface 172 Viewing, Saving, and Erasing Configurations 177 Deleting the Configuration and Reloading the Device 179 Verifying Your Configuration 179 Summary 192 Chapter 7 Managing a Cisco Internetwork 193 The Internal Components of a Cisco Router and Switch 194 The Router and Switch Boot Sequence 195 Backing Up and Restoring the Cisco Configuration 196 Backing Up the Cisco Configuration 197 Restoring the Cisco Configuration 199 Erasing the Configuration 199 Configuring DHCP 200 DHCP Relay 202 Verifying DHCP on Cisco IOS 202 Using Telnet 203 Telnetting into Multiple Devices Simultaneously 205 Checking Telnet Connections 205 Checking Telnet Users 206 Closing Telnet Sessions 206 Resolving Hostnames 206 Building a Host Table 207 Using DNS to Resolve Names 208 Checking Network Connectivity and Troubleshooting 210 Using the ping Command 210 Using the traceroute Command 211 Debugging 212 Using the show processes Command 215 Summary 215 Chapter 8 Managing Cisco Devices 217 Managing the Configuration Register 218 Understanding the Configuration Register Bits 218 Checking the Current Configuration Register Value 220 Boot System Commands 221 Recovering Passwords 222 Backing Up and Restoring the Cisco IOS 224 Verifying Flash Memory 226 Backing Up the Cisco IOS 227 Restoring or Upgrading the Cisco Router IOS 227 Using the Cisco IOS File System (Cisco IFS) 230 Licensing 235 Right-To-Use Licenses (Evaluation Licenses) 237 Backing Up and Uninstalling the License 240 Summary 241 Chapter 9 IP Routing 243 Routing Basics 245 The IP Routing Process 247 The Cisco Router Internal Process 253 Testing Your IP Routing Understanding 254 Configuring IP Routing 258 Corp Configuration 259 SF Configuration 261 LA Configuration 265 Configuring IP Routing in Our Network 267 Static Routing 268 Default Routing 273 Dynamic Routing 276 Routing Protocol Basics 276 Routing Information Protocol (RIP) 278 Configuring RIP Routing 279 Holding Down RIP Propagations 282 Summary 284 Chapter 10 Wide Area Networks 287 Introduction to Wide Area Networks 288 WAN Topology Options 289 Defining WAN Terms 291 WAN Connection Bandwidth 292 WAN Connection Types 293 WAN Support 294 Cabling the Serial Wide Area Network 297 Serial Transmission 297 Data Terminal Equipment and Data Communication Equipment 298 High-Level Data-Link Control (HDLC) Protocol 299 Point-to-Point Protocol (PPP) 301 Link Control Protocol (LCP) Configuration Options 303 PPP Session Establishment 303 PPP Authentication Methods 304 Configuring PPP on Cisco Routers 304 Configuring PPP Authentication 305 Verifying and Troubleshooting Serial Links 305 Multilink PPP (MLP) 311 PPP Client (PPPoE) 314 Configuring a PPPoE client 315 Summary 316 Glossary 317 Index 365
£30.39
John Wiley & Sons Inc CCNA Certification Study Guide
Book SynopsisCisco expert Todd Lammle prepares you for the NEW Cisco CCNA certification exam! Cisco, the world leader in network technologies, has released the new Cisco Certified Network Associate (CCNA) exam. This consolidated certification exam tests a candidate's ability to implement and administer a wide range of modern IT networking technologies. The CCNA Certification Study Guide: Volume 2 Exam 200-301 covers every exam objective, including network components, IP connectivity and routing, network security, virtual networking, and much more. Clear and accurate chapters provide you with real-world examples, hands-on activities, in-depth explanations, and numerous review questions to ensure that you're fully prepared on exam day. Written by the leading expert on Cisco technologies and certifications, this comprehensive exam guide includes access to the acclaimed Sybex online learning systeman interactive environment featuring practice exams, electronic flashcards,Table of ContentsIntroduction xxv Assessment Test xl Chapter 1 Network Fundamentals 1 Network Components 2 Next-Generation Firewalls and IPS 6 Network Topology Architectures 10 Physical Interfaces and Cables 17 Ethernet Cabling 19 Summary 24 Exam Essentials 24 Review Questions 26 Chapter 2 TCP/IP 29 Introducing TCP/IP 30 TCP/IP and the DoD Model 31 IP Addressing 60 IPv4 Address Types 67 Summary 71 Exam Essentials 71 Review Questions 73 Chapter 3 Easy Subnetting 75 Subnetting Basics 76 Summary 102 Exam Essentials 102 Review Questions 103 Chapter 4 Troubleshooting IP Addressing 105 Cisco’s Way of Troubleshooting IP 106 Summary 114 Exam Essentials 114 Review Questions 115 Chapter 5 IP Routing 117 Routing Basics 119 The IP Routing Process 121 Configuring IP Routing 132 Configuring IP Routing in Our Network 141 Dynamic Routing 150 Routing Information Protocol (RIP) 152 Summary 159 Exam Essentials 159 Review Questions 161 Chapter 6 Open Shortest Path First (OSPF) 163 Open Shortest Path First (OSPF) Basics 164 Configuring OSPF 171 OSPF and Loopback Interfaces 179 Verifying OSPF Configuration 182 Summary 188 Exam Essentials 188 Review Questions 189 Chapter 7 Layer 2 Switching 193 Switching Services 194 Configuring Catalyst Switches 204 Summary 215 Exam Essentials 215 Review Questions 216 Chapter 8 VLANs and Inter-VLAN Routing 219 VLAN Basics 220 Identifying VLANs 224 Routing Between VLANs 229 Configuring VLANs 231 Summary 247 Exam Essentials 247 Review Questions 248 Chapter 9 Enhanced Switched Technologies 251 Spanning Tree Protocol (STP) 252 Types of Spanning-Tree Protocols 259 Modifying and Verifying the Bridge ID 267 Spanning-Tree Failure Consequences 273 PortFast and BPDU Guard 275 EtherChannel 278 Summary 284 Exam Essentials 284 Review Questions 285 Chapter 10 Access Lists 289 Perimeter, Firewall, and Internal Routers 290 Introduction to Access Lists 291 Standard Access Lists 295 Extended Access Lists 303 Monitoring Access Lists 313 Summary 316 Exam Essentials 316 Review Questions 317 Chapter 11 Network Address Translation (NAT) 319 When Do We Use NAT? 320 Types of Network Address Translation 322 NAT Names 322 How NAT Works 323 Testing and Troubleshooting NAT 328 Summary 333 Exam Essentials 333 Review Questions 334 Chapter 12 IP Services 337 Exploring Connected Devices Using CDP and LLDP 338 Network Time Protocol (NTP) 347 SNMP 348 Syslog 352 Secure Shell (SSH) 357 Summary 358 Exam Essentials 358 Review Questions 360 Chapter 13 Security 363 Network Security Threats 365 Three Primary Network Attacks 365 Network Attacks 366 Security Program Elements 374 Layer 2 Security Features 378 Authentication Methods 381 Managing User Accounts 386 Security Password Policy Elements 389 User-Authentication Methods 398 Setting Passwords 400 Summary 407 Exam Essentials 407 Review Questions 408 Chapter 14 First Hop Redundancy Protocol (HSRP) 411 Client Redundancy Issues 412 Introducing First Hop Redundancy Protocol (FHRP) 414 Hot Standby Router Protocol (HSRP) 416 Summary 429 Exam Essentials 429 Review Questions 430 Chapter 15 Virtual Private Networks (VPNs) 433 Virtual Private Networks 434 GRE Tunnels 441 Summary 447 Exam Essentials 447 Review Questions 448 Chapter 16 Quality of Service (QoS) 451 Quality of Service 452 Trust Boundary 454 QoS Mechanisms 455 Summary 461 Exam Essentials 461 Review Questions 462 Chapter 17 Internet Protocol Version 6 (IPv6) 465 Why Do We Need IPv6? 467 The Benefits and Uses of IPv6 467 IPv6 Addressing and Expressions 469 How IPv6 Works in an Internetwork 473 IPv6 Routing Protocols 483 Configuring IPv6 on Our Internetwork 484 Configuring Routing on Our Internetwork 487 Summary 490 Exam Essentials 490 Review Questions 492 Chapter 18 Troubleshooting IP, IPv6, and VLANs 495 Endpoints 496 Servers 497 IP Config 498 Troubleshooting IP Network Connectivity 507 Troubleshooting IPv6 Network Connectivity 522 Troubleshooting VLAN Connectivity 531 Summary 544 Exam Essentials 545 Review Questions 546 Chapter 19 Wireless Technologies 549 Wireless Networks 551 Basic Wireless Devices 553 Wireless Principles 556 Nonoverlapping Wi-Fi channels 565 Radio Frequency (RF) 569 Wireless Security 581 Summary 588 Exam Essentials 588 Review Question 590 Chapter 20 Configuring Wireless Technologies 595 WLAN Deployment Models 596 Setting Up a Wireless LAN Controller (WLC) 602 Joining Access Points (APs) 607 Wireless LAN Controllers (WLC) 610 WLC Port Types 611 WLC Interface Types 614 AP Modes 629 AP and WLC Management Access Connections 633 Summary 655 Exam Essentials 655 Review Questions 657 Chapter 21 Virtualization, Automation, and Programmability 661 Virtual Machine Fundamentals 662 Virtualization Components 665 Virtualization Features 666 Virtualization Types 668 Virtualization Solutions 669 Automation Components 670 Summary 684 Exam Essentials 684 Review Questions 685 Chapter 22 SDN Controllers 689 Traditional Network Monitoring Systems (NMS) 690 Traditional Network Configuration Managers (NCM) 699 Traditional Networking 702 Introduction to SDN 706 Separating the Control Plane 709 Controller-Based Architectures 710 SDN Network Components 712 DNA Center Overview 718 Summary 736 Exam Essentials 737 Review Questions 738 Chapter 23 Configuration Management 743 Team Silos 744 DevOps 748 Infrastructure as Code (IaC) 748 Ansible 750 Ansible Tower/AWX 763 Puppet 764 Chef 772 Summary 781 Exam Essentials 782 Review Questions 783 Appendix Answer to Review Questions 787 Chapter 1: Network Fundamentals 788 Chapter 2: TCP/IP 788 Chapter 3: Easy Subnetting 789 Chapter 4: Troubleshooting IP Addressing 790 Chapter 5: IP Routing 791 Chapter 6: Open Shortest Path First (OSPF) 792 Chapter 7: Layer 2 Switching 792 Chapter 8: VLANs and Inter-VLAN Routing 794 Chapter 9: Enhanced Switched Technologies 795 Chapter 10: Access Lists 796 Chapter 11: Network Address Translation (NAT) 797 Chapter 12: IP Services 797 Chapter 13: Security 798 Chapter 14: First Hop Redundancy Protocol (HSRP) 799 Chapter 15: Virtual Private Networks (VPNs) 800 Chapter 16: Quality of Service (QoS) 801 Chapter 17: Internet Protocol Version 6 (IPv6) 802 Chapter 18: Troubleshooting IP, IPv6, and VLANs 803 Chapter 19: Wireless Technologies 803 Chapter 20: Configuring Wireless Technologies 805 Chapter 21: Virtualization, Automation, and Programmability 806 Chapter 22: SDN Controllers 806 Chapter 23: Configuration Management 808 Index 809
£40.80
John Wiley & Sons Inc Cisco CCNA Certification 2 Volume Set
Book Synopsis
£52.50
John Wiley & Sons Inc Mastering Microsoft Teams
Book SynopsisGet the most out of Microsoft Teams with this comprehensive and insightful resource Mastering Microsoft Teams: Creating a Hub for Successful Teamwork in Office 365shows readers howto communicate intelligently and effectively within Microsoft's powerful Office 365.This book covers all the topics required for a full and comprehensive understanding of collaborating within the Microsoft suite of software, including: Architecture Implementing Teams Teams and Channels Chats, Calls and Meetings Extending Teams with Custom Apps Conferencing Security and Compliance Best Practices for Organizational Success Written for IT administrators, managers, supervisors,and team members who participate or want to participate in a Microsoft Teams environment,Mastering Microsoft Teamsintroduces readers to the architecture and structure of the software before showing, in a straightforward and simpTable of ContentsIntroduction xv Chapter 1 Getting to Know Microsoft Teams 1 Overview of Microsoft Teams 1 Key Benefits of Microsoft Teams 2 Teams for Work 3 Teams for Home 10 Teams for Education 11 Microsoft Teams Collaboration and Acknowledgment 17 Environmental Readiness and User Adoption 18 Teams Adoption 18 Teams Architecture 21 Teams and Microsoft 365 21 The Bottom Line 22 Chapter 2 Teams, Channels, Chats, and Apps 25 Overview of Teams, Channels, Chats, and Apps 25 Teams and Channels 25 Chats 33 Teams Apps 37 Best Practices 40 Team Membership and Roles 41 Creating and Managing Teams 42 Org-wide Teams 43 Team Settings 45 Best Practices 56 Working with Channels 59 Creating Channels 59 Channel Moderation 59 Sending Messages in a Channel 60 Sending Announcements in a Channel 60 Cross-Post a Channel Conversation 63 Best Practices 63 Teams Templates 66 User Presence in Microsoft Teams 70 Status Duration Setting 70 The Bottom Line 72 Chapter 3 Meetings and Conferencing 73 Overview of Meetings and Conferencing 73 Meetings and Conferencing Prerequisites 74 Meetings in Teams 74 Private Meetings vs. Channel Meetings 74 Scheduling a Meeting 78 Joining a Meeting 83 Using Video in Microsoft Teams 87 Recording a Meeting 91 Meeting Notes 93 Meeting Etiquette and Tips 94 Calls in Teams 95 Turn a Chat into a Call 95 Adding Additional People to Call Started from Chat 96 See Your Call History 97 Recommendations and Tips 98 Live Events 98 Event Group Roles 98 Live Event Permissions 100 Scheduling 101 Production 101 Streaming Platform 102 Enterprise Content Delivery Network 103 Attendee Experience 103 Live Event Usage Report 103 Webinars 103 Breakout Rooms 104 Audio Conferencing 105 What Is Audio Conferencing? 105 Conferencing Bridges and Phone Numbers 105 The Bottom Line 105 Chapter 4 Extending Teams with Apps 107 Teams App Platform 107 Core Workloads and Extensible Platform 107 Types of Apps in Microsoft Teams 108 Understanding Apps in Teams 109 Teams App Capabilities 109 Apps Scope 117 Personal Apps 117 Microsoft Apps 117 Third-Party Apps 118 Extending with Custom Apps 121 Teams App Templates 121 Power Platform (Low/No Code) 133 Microsoft Teams App Development Platform 146 The Bottom Line 147 Chapter 5 Administering Teams 149 Teams Administrator Roles 149 Teams Admin Center 150 Teams Menu 150 Teams Policies 154 Update Policies 157 Teams Templates 157 Template Policies 159 Meetings Menu 160 Conference Bridges 161 Meeting Policies 161 Meeting Settings 166 Live Events 168 Messaging Policies Menu 169 Users Menu 171 Guest Access and External Access 171 Teams Settings 172 Teams Apps Menu 176 Manage Apps 176 Permission Policies 177 Setup Policies 180 Customize Store 181 Analytics & Reports Menu 187 The Bottom Line 188 Chapter 6 Security, Compliance, and Governance 191 Security 191 Identity Models and Authentication 191 Multi-Factor Authentication 192 Safe Links 192 Compliance and Governance 195 Information Retention 196 Information Barriers 197 Retention Policies 198 Retention Policies for Microsoft Teams 199 Communication Compliance 200 Communication Compliance in Microsoft Teams 201 Policy-Based Recording for Calls and Meetings 204 Sensitivity Labels 205 Data Loss Prevention 212 Privacy and Microsoft Teams 218 Data Location in Microsoft Teams 218 The Bottom Line 219 Appendix A Accessing Teams 221 Microsoft Teams App 221 Browser Client 221 Desktop Client 225 Mobile Client 230 Appendix B The Bottom Line 235 Chapter 1: Getting to Know Microsoft Teams 235 Chapter 2: Teams, Channels, Chats, and Apps 236 Chapter 3: Meetings and Conferencing 237 Chapter 4: Extending Teams with Apps 239 Chapter 5: Administering Teams 239 Chapter 6: Security, Compliance, and Governance 240 Index 241
£27.99
John Wiley & Sons Inc Game Theory and Machine Learning for Cyber
Book SynopsisGAME THEORY AND MACHINE LEARNING FOR CYBER SECURITY Move beyond the foundations of machine learning and game theory in cyber security to the latest research in this cutting-edge field In Game Theory and Machine Learning for Cyber Security, a team of expert security researchers delivers a collection of central research contributions from both machine learning and game theory applicable to cybersecurity. The distinguished editors have included resources that address open research questions in game theory and machine learning applied to cyber security systems and examine the strengths and limitations of current game theoretic models for cyber security. Readers will explore the vulnerabilities of traditional machine learning algorithms and how they can be mitigated in an adversarial machine learning approach. The book offers a comprehensive suite of solutions to a broad range of technical issues in applying game theory and machine learning to solve cyber security challenges. Beginning with an introduction to foundational concepts in game theory, machine learning, cyber security, and cyber deception, the editors provide readers with resources that discuss the latest in hypergames, behavioral game theory, adversarial machine learning, generative adversarial networks, and multi-agent reinforcement learning. Readers will also enjoy: A thorough introduction to game theory for cyber deception, including scalable algorithms for identifying stealthy attackers in a game theoretic framework, honeypot allocation over attack graphs, and behavioral games for cyber deceptionAn exploration of game theory for cyber security, including actionable game-theoretic adversarial intervention detection against advanced persistent threatsPractical discussions of adversarial machine learning for cyber security, including adversarial machine learning in 5G security and machine learning-driven fault injection in cyber-physical systemsIn-depth examinations of generative models for cyber security Perfect for researchers, students, and experts in the fields of computer science and engineering, Game Theory and Machine Learning for Cyber Security is also an indispensable resource for industry professionals, military personnel, researchers, faculty, and students with an interest in cyber security.Table of ContentsEditor biographies Contributors Foreword Preface Chapter 1: Introduction Christopher D. Kiekintveld, Charles A. Kamhoua, Fei Fang, Quanyan Zhu Part 1: Game Theory for Cyber Deception Chapter 2: Introduction to Game Theory Fei Fang, Shutian Liu, Anjon Basak, Quanyan Zhu, Christopher Kiekintveld, Charles A. Kamhoua Chapter 3: Scalable Algorithms for Identifying Stealthy Attackers in a Game Theoretic Framework Using Deception Anjon Basak, Charles Kamhoua, Sridhar Venkatesan, Marcus Gutierrez, Ahmed H. Anwar, Christopher Kiekintveld Chapter 4: Honeypot Allocation Game over Attack Graphs for Cyber Deception Ahmed H. Anwar, Charles Kamhoua, Nandi Leslie, Christopher Kiekintveld Chapter 5: Evaluating Adaptive Deception Strategies for Cyber Defense with Human Experimentation Palvi Aggarwal, Marcus Gutierrez, Christopher Kiekintveld, Branislav Bosansky, Cleotilde Gonzalez Chapter 6: A Theory of Hypergames on Graphs for Synthesizing Dynamic Cyber Defense with Deception Jie Fu, Abhishek N. Kulkarni Part 2: Game Theory for Cyber Security Chapter 7: Minimax Detection (MAD) for Computer Security: A Dynamic Program Characterization Muhammed O. Sayin, Dinuka Sahabandu, Muhammad Aneeq uz Zaman, Radha Poovendran, Tamer Başar Chapter 8: Sensor Manipulation Games in Cyber Security João P. Hespanha Chapter 9: Adversarial Gaussian Process Regression in Sensor Networks Yi Li, Xenofon Koutsoukos, Yevgeniy Vorobeychik Chapter 10: Moving Target Defense Games for Cyber Security: Theory and Applications Abdelrahman Eldosouky, Shamik Sengupta Chapter 11: Continuous Authentication Security Games Serkan Saritas, Ezzeldin Shereen, Henrik Sandberg, Gyorgy Dan Chapter 12: Cyber Autonomy in Software Security: Techniques and Tactics Tiffany Bao, Yan Shoshitaishvili Part 3: Adversarial Machine Learning for Cyber Security Chapter 13: A Game Theoretic Perspective on Adversarial Machine Learning and Related Cybersecurity Applications Yan Zhou, Murat Kantarcioglu, Bowei Xi Chapter 14: Adversarial Machine Learning in 5G Communications Security Yalin Sagduyu, Tugba Erpek, Yi Shi Chapter 15: Machine Learning in the Hands of a Malicious Adversary: A Near Future If Not Reality Keywhan Chung, Xiao Li, Peicheng Tang, Zeran Zhu, Zbigniew T. Kalbarczyk, Thenkurussi Kesavadas, Ravishankar K. Iyer Chapter 16: Trinity: Trust, Resilience and Interpretability of Machine Learning Models Susmit Jha, Anirban Roy, Brian Jalaian, Gunjan Verma Part 4: Generative Models for Cyber Security Chapter 17: Evading Machine Learning based Network Intrusion Detection Systems with GANs Bolor-Erdene Zolbayar, Ryan Sheatsley, Patrick McDaniel, Mike Weisman Chapter 18: Concealment Charm (ConcealGAN): Automatic Generation of Steganographic Text using Generative Models to Bypass Censorship Nurpeiis Baimukan, Quanyan Zhu Part 5: Reinforcement Learning for Cyber Security Chapter 19: Manipulating Reinforcement Learning: Stealthy Attacks on Cost Signals Yunhan Huang, Quanyan Zhu Chapter 20: Resource-Aware Intrusion Response based on Deep Reinforcement Learning for Software-Defined Internet-of-Battle-Things Seunghyun Yoon, Jin-Hee Cho, Gaurav Dixit, Ing-Ray Chen Part 6: Other Machine Learning approach to Cyber Security Chapter 21: Smart Internet Probing: Scanning Using Adaptive Machine Learning Armin Sarabi, Kun Jin, Mingyan Liu Chapter 22: Semi-automated Parameterization of a Probabilistic Model using Logistic Regression - A Tutorial Stefan Rass, Sandra König, Stefan Schauer Chapter 23: Resilient Distributed Adaptive Cyber-Defense using Blockchain George Cybenko, Roger A. Hallman Chapter 24: Summary and Future Work Quanyan Zhu, Fei Fang
£101.66
John Wiley & Sons Inc Shaping Future 6g Networks
Book SynopsisTable of ContentsEditor Biographies xiii List of Contributors xv Foreword Henning Schulzrinne xix Foreword Peter Stuckmann xxi Foreword Akihiro Nakao xxiii Acronyms xxv 1 Toward 6G – Collecting the Research Visions 1 Emmanuel Bertin, Thomas Magedanz, and Noel Crespi 1.1 Time to Start Shaping 6G 1 1.2 Early Directions for Shaping 6G 2 1.2.1 Future Services 2 1.2.2 Moving from 5G to 6G 2 1.2.3 Renewed Value Chain and Collaborations 3 1.3 Book Outline and Main Topics 4 1.3.1 Use Cases and Requirements for 6G 4 1.3.2 Standardization Processes for 6G 4 1.3.3 Energy Consumption and Social Acceptance 4 1.3.4 New Technologies for Radio Access 5 1.3.5 New Technologies for Network Infrastructure 5 1.3.6 New Perspectives for Network Architectures 6 1.3.7 New Technologies for Network Management and Operation 7 1.3.8 Post-Shannon Perspectives 8 2 6G Drivers for B2B Market: E2E Services and Use Cases 9 Marco Giordani, Michele Polese, Andres Laya, Emmanuel Bertin, and Michele Zorzi 2.1 Introduction 9 2.2 Relevance of the B2B market for 6G 10 2.3 Use Cases for the B2B Market 11 2.3.1 Industry and Manufacturing 11 2.3.2 Teleportation 13 2.3.3 Digital Twin 15 2.3.4 Smart Transportation 15 2.3.5 Public Safety 16 2.3.6 Health and Well-being 17 2.3.7 Smart-X IoT 19 2.3.8 Financial World 20 2.4 Conclusions 22 3 6G: The Path Toward Standardization 23 Guy Redmill and Emmanuel Bertin 3.1 Introduction 23 3.2 Standardization: A Long-Term View 24 3.3 IMTs Have Driven Multiple Approaches to Previous Mobile Generations 25 3.4 Stakeholder Ecosystem Fragmentation and Explosion 26 3.5 Shifting Sands: Will Politics Influence Future Standardization Activities? 28 3.6 Standards, the Supply Chain, and the Emergence of Open Models 30 3.7 New Operating Models 32 3.8 Research – What Is the Industry Saying? 33 3.9 Can We Define and Deliver a New Generation of Standards by 2030? 34 3.10 Conclusion 34 4 Greening 6G: New Horizons 39 Zhisheng Niu, Sheng Zhou, and Noel Crespi 4.1 Introduction 39 4.2 Energy Spreadsheet of 6G Network and Its Energy Model 40 4.2.1 Radio Access Network Energy Consumption Model 40 4.2.2 Edge Computing and Learning: Energy Consumption Models and Their Impacts 41 4.2.2.1 Energy Consumption Models in Edge Computing 41 4.2.2.2 Energy Consumption Models in Edge Learning 41 4.3 Greening 6G Radio Access Networks 42 4.3.1 Energy-Efficient Network Planning 42 4.3.1.1 BS Deployment Densification with Directional Transmissions 42 4.3.1.2 Network with Reconfigurable Intelligent Surfaces (RISs) 43 4.3.2 Energy-Efficient Radio Resource Management 44 4.3.2.1 Model-free 44 4.3.2.2 Less Computation Complexity 44 4.3.3 Energy-Efficient Service Provisioning with NFV and SFC 46 4.3.3.1 VNF Consolidation 47 4.3.3.2 Exploiting Renewable Energy 47 4.4 Greening Artificial Intelligence (AI) in 6G Network 47 4.4.1 Energy-Efficient Edge Training 48 4.4.2 Distributed Edge Co-inference and the Energy Trade-off 49 4.5 Conclusions 50 5 “Your 6G or Your Life”: How Can Another G Be Sustainable? 55 Isabelle Dabadie, Marc Vautier, and Emmanuel Bertin 5.1 Introduction 55 5.2 A World in Crisis 56 5.2.1 Ecological Crisis 56 5.2.2 Energy Crises 57 5.2.3 Technological Innovation and Rebound Effect: A Dead End? 57 5.3 A Dilemma for Service Operators 59 5.3.1 Incentives to Reduce Consumption: Shooting Ourselves in the Foot? 59 5.3.2 Incentives to Reduce Overconsumption: Practical Solutions 60 5.3.3 Opportunities. . . and Risks 61 5.4 A Necessary Paradigm Shift 62 5.4.1 The Status Quo Is Risky, Too 62 5.4.2 Creating Value with 6G in the New Paradigm 63 5.4.3 Empowering Consumers to Achieve the “2T CO2/Year/Person” Objective 64 5.5 Summary and Prospects 64 5.5.1 Two Drivers, Three Levels of Action 64 5.5.2 Which Regulation for Future Use of Technologies? 65 5.5.3 Hopes and Prospects for a Sustainable 6G 65 6 Catching the 6G Wave by Using Metamaterials: A Reconfigurable Intelligent Surface Paradigm 69 Marco Di Renzo and Alexis I. Aravanis 6.1 Smart Radio Environments Empowered by Reconfigurable Intelligent Surfaces 69 6.1.1 Reconfigurable Intelligent Surfaces 70 6.2 Types of RISs, Advantages, and Limitations 72 6.2.1 Advantages and Limitations 74 6.3 Experimental Activities 78 6.3.1 Large Arrays of Inexpensive Antennas 78 6.3.1.1 RFocus 78 6.3.1.2 The ScatterMIMO Prototype 79 6.3.2 Metasurface Approaches 80 6.4 RIS Research Areas and Challenges in the 6G Ecosystem 82 7 Potential of THz Broadband Systems for Joint Communication, Radar, and Sensing Applications in 6G 89 Robert Müller and Markus Landmann 8 Non-Terrestrial Networks in 6G 101 Thomas Heyn, Alexander Hofmann, Sahana Raghunandan, and Leszek Raschkowski 8.1 Introduction 101 8.2 Non-Terrestrial Networks in 5G 101 8.3 Innovations in Telecom Satellites 103 8.4 Extended Non-Terrestrial Networks in 6G 105 8.4.1 Motivation 105 8.4.2 Heterogeneous and Dynamic Networks in 6G 107 8.5 Research Challenges Toward 6G-NTN 107 8.5.1 Heterogeneous Non-Terrestrial 6G Networks 109 8.5.2 Required RAN Architecture in 6G to Support NTN 109 8.5.3 Coexistence and Spectrum Sharing 110 8.5.3.1 Regulatory Aspects 111 8.5.3.2 Techniques for Coexistence 111 8.5.4 Energy-Efficient Waveforms 112 8.5.5 Scalable RF Carrier Bandwidth 113 8.6 Conclusion 114 9 Rethinking the IP Framework 117 David Zhe Luo and Noel Crespi 9.1 Introduction 117 9.2 Emerging Applications and Network Requirements 118 9.3 State of the Art 120 9.4 Next-Generation Internet Protocol Framework: Features and Capabilities 122 9.4.1 High-Precision and Deterministic Services 122 9.4.2 Semantic and Flexible Addressing 124 9.4.3 ManyNets Support 125 9.4.4 Intrinsic Security and Privacy 126 9.4.5 High Throughput 126 9.4.6 User-Defined Network Operations 127 9.5 Flexible Addressing System Example 127 9.6 Conclusion 129 10 Computing in the Network: The Core-Edge Continuum in 6G Network 133 Marie-José Montpetit and Noel Crespi 10.1 Introduction 133 10.2 A Few Stops on the Road to Programmable Networks 134 10.2.1 Active Networks 134 10.2.2 Information-centric Networking 135 10.2.3 Compute-first Networking 135 10.2.4 Software-defined Networking 136 10.3 Beyond Softwarization and Clouderization: The Computerization of Networks 137 10.3.1 A New End-to-End Paradigm 137 10.3.2 Computing in the Network Basic Concepts 138 10.3.3 Related Impacts 140 10.3.3.1 The Need for Resource Discovery 140 10.3.3.2 Power Savings for Eco-conscious Networking 141 10.3.3.3 Transport is Still Needed! 141 10.3.3.4 How About Security? 141 10.4 Computing Everywhere: The Core-Edge Continuum 143 10.4.1 A Common Data Layer 143 10.4.2 The New Programmable Data Plane 145 10.4.3 Novel Architectures Using Computing in the Network 147 10.4.3.1 The Newest and Boldest: Quantum Networking 148 10.4.3.2 Creating the Tactile and the Automated Internet: FlexNGIA 148 10.5 Making it Real: Use Cases 149 10.5.1 Computing in the Data Center 150 10.5.1.1 Data and Flow Aggregation 150 10.5.1.2 Key-value Storage and In-network Caching 151 10.5.1.3 Consensus 151 10.5.2 Next-generation IoT and Intelligence Everywhere 152 10.5.2.1 The Internet of Intelligent Things 152 10.5.2.2 Industrial Automation: From Factories to Farms 153 10.5.3 Computing Support for Networked Multimedia 154 10.5.3.1 Video Analytics 154 10.5.3.2 Extended Reality and Multimedia 154 10.5.4 Melding AI and Computing for Measuring and Managing the Network 155 10.5.4.1 Telemetry 155 10.5.4.2 AI/ML for Network Management 156 10.5.5 Network Coding 157 10.6 Conclusion: 6G, the Network, and Computing 158 11 An Approach to Automated Multi-domain Service Production for Future 6G Networks 167 Mohamed Boucadair, Christian Jacquenet, and Emmanuel Bertin 11.1 Introduction 167 11.1.1 Background 167 11.1.2 The Need for Multi-domain 6G Networks 168 11.1.3 Challenges of Multi-domain Service Production and Operation 169 11.2 Framework and Assumptions 170 11.2.1 Terminology 170 11.2.2 Assumptions 171 11.2.2.1 SDN-enabled Domains 171 11.2.2.2 On-service Orchestrators 172 11.2.2.3 Any Kind of Multi-domain Service, Whatever the Vertical 172 11.2.3 Roles 173 11.2.4 Possible Multi-domain Service Delivery Frameworks 174 11.2.4.1 A Set of Bilateral Agreements 174 11.2.4.2 A Set of Bilateral Agreements by Means of a Marketplace 174 11.2.4.3 A Set of Bilateral Agreements by Means of a Broker 175 11.3 Automating the Delivery of Multi-domain Services 175 11.3.1 General Considerations 175 11.3.2 Discovering Partnering Domains and Communicating with Partnering SDN Controllers 176 11.3.3 Multi-domain Service Subscription Framework 178 11.3.4 Multi-domain Service Delivery Procedure 179 11.4 An Example: Dynamic Enforcement of Differentiated, Multi-domainService Traffic Forwarding Policies by Means of Service Function Chaining 181 11.4.1 SFC Control Plane 181 11.4.2 Consistency of Operation 182 11.4.3 Design Considerations 182 11.5 Research Challenges 183 11.5.1 Security of Operations 184 11.5.2 Consistency of Decisions 184 11.5.3 Consistency of Data 184 11.5.4 Performance and Scalability 185 11.6 Conclusion 185 12 6G Access and Edge Computing – ICDT Deep Convergence 187 Chih-Lin I, Jinri Huang, and Noel Crespi 12.1 Introduction 187 12.2 True ICT Convergence: RAN Evolution to 5G 187 12.2.1 C-RAN: Centralized, Cooperative, Cloud, and Clean 190 12.2.1.1 NGFI: From Backhaul to xHaul 191 12.2.1.2 From Cloud to Fog 194 12.2.2 A Turbocharged Edge: MEC 195 12.2.3 Virtualization and Cloud Computing 197 12.3 Deep ICDT Convergence Toward 6G 198 12.3.1 Open and Smart: Two Major Trends Since 5G 198 12.3.1.1 RAN Intelligence – Enabled with Wireless Big Data 199 12.3.1.2 OpenRAN 202 12.3.1.3 Scope of RAN Intelligence Use Cases 205 12.3.2 An OpenRAN Architecture with Native AI: RAN Intelligent Controller (RIC) 208 12.3.2.1 NRT-RIC Functions 209 12.3.2.2 nRT-RIC Functions 211 12.3.3 Key Challenges and Potential Solutions 212 12.3.3.1 Customized Data Collection and Control 212 12.3.3.2 Radio Resource Management and Air Interface Protocol Processing Decoupling 213 12.3.3.3 Open API for xApp 214 12.4 Ecosystem Progress from 5G to 6G 214 12.4.1 O-RAN Alliance 214 12.4.2 Telecom Infrastructure Project 215 12.4.3 GSMA Open Networking Initiative 216 12.4.4 Open-source Communities 216 12.5 Conclusion 217 13 “One Layer to Rule Them All”: Data Layer-oriented 6G Networks 221 Marius Corici and Thomas Magedanz 13.1 Perspective 221 13.2 Motivation 222 13.3 Requirements 223 13.4 Benefits/Opportunities 225 13.5 Data Layer High-level Functionality 227 13.6 Instead of Conclusions 231 14 Long-term Perspectives: Machine Learning for Future Wireless Networks 235 Sławomir Stańczak, Alexander Keller, Renato L.G. Cavalcante, Nikolaus Binder, and Soma Velayutham 14.1 Introduction 235 14.2 Why Machine Learning in Communication? 236 14.2.1 Machine Learning in a Nutshell 237 14.2.1.1 Kernel-based Learning with Projections 237 14.2.1.2 Deep Learning 238 14.2.1.3 Reinforcement Learning 241 14.2.2 Choosing the Right Tool for the Job 242 14.3 Machine Learning in Future Wireless Networks 243 14.3.1 Robust Traffic Prediction for Energy-saving Optimization 244 14.3.2 Fingerprinting-based Localization 244 14.3.3 Joint Power and Beam Optimization 245 14.3.4 Collaborative Compressive Classification 245 14.3.5 Designing Neural Architectures for Sparse Estimation 247 14.3.6 Online Loss Map Reconstruction 248 14.3.7 Learning Non-Orthogonal Multiple Access and Beamforming 248 14.3.8 Simulating Radiative Transfer 250 14.4 The Soul of 6G will be Machine Learning 251 14.5 Conclusion 252 15 Managing the Unmanageable: How to Control Open and Distributed 6G Networks 255 Imen Grida Ben Yahia, Zwi Altman, Joanna Balcerzak, Yosra Ben Slimen, and Emmanuel Bertin 15.1 Introduction 255 15.2 Managing Open and Distributed Radio Access Networks 256 15.2.1 Radio Access Network 256 15.2.2 Innovation in the Standardization Arena 258 15.2.2.1 RAN 258 15.3 Core Network and End-to- End Network Management 260 15.3.1 Network Architecture and Management 260 15.3.2 Changes in Architecture and Network Management from Standardization Perspective 262 15.3.3 Quality of Service and Experience 263 15.3.4 Standardization Effort in Data Analytics 264 15.4 Trends in Machine Learning Suitable to Network Data and 6G 265 15.4.1 Federated Learning 265 15.4.2 Auto-Labeling Techniques and Network Actuations 266 15.5 Conclusions 268 16 6G and the Post-Shannon Theory 271 Juan A. Cabrera, Holger Boche, Christian Deppe, Rafael F. Schaefer, Christian Scheunert, and Frank H. P. Fitzek 16.1 Introduction 271 16.2 Message Identification for Post-Shannon Communication 273 16.2.1 Explicit Construction of RI Codes 277 16.2.2 Secrecy for Free 279 16.2.3 Message Identification Without Randomness 280 16.3 Resources Considered Useless Become Relevant 281 16.3.1 Common Randomness for Nonsecure Communication 281 16.3.2 Feedback in Identification and the Additivity of Bundled Channels 282 16.4 Physical Layer Service Integration 283 16.4.1 Motivation and Requirements 283 16.4.2 Detectability of Denial-of-Service Attacks 284 16.4.3 Further Limits for Computer-Aided Approaches 288 16.5 Other Implementations of Post-Shannon Communication 288 16.5.1 Post-Shannon in Multi-Code CDMA 288 16.5.2 Waveform Coding in MIMO Systems 289 16.6 Conclusions: A Call to Academia and Standardization Bodies 290 Index 295
£104.36
John Wiley & Sons Inc Wireless Communication Security
Book SynopsisWIRELESS COMMUNICATION SECURITY Presenting the concepts and advances of wireless communication security, this volume, written and edited by a global team of experts, also goes into the practical applications for the engineer, student, and other industry professionals. Covering a broad range of topics in wireless communication security and its solutions, this outstanding new volume is of great interest to engineers, scientists, and students from a variety of backgrounds and interests. Focusing on providing the theory of wireless communication within the framework of its practical applications, the contributors take on a wealth of topics, integrating seemingly diverse areas under one cover. Wireless Communication Security has been divided into five units. The first unit presents the different protocols and standards for developing a real-time wireless communication security. The second unit presents different widely accepted networks, which are the core of wireless communication secuTable of ContentsPreface xiii 1 M2M in 5G Cellular Networks: Challenges, Proposed Solutions, and Future Directions 1 Kiran Ahuja and Indu Bala 1.1 Introduction 2 1.2 Literature Survey 5 1.3 Survey Challenges and Proposed Solutions of M2M 7 1.3.1 PARCH Overload Problem 8 1.3.2 Inefficient Radio Resource Utilization and Allocation 10 1.3.3 M2M Random Access Challenges 12 1.3.4 Clustering Techniques 13 1.3.5 QoS Provisioning for M2M Communications 15 1.3.6 Less Cost and Low Power Device Requirements 16 1.3.7 Security and Privacy 17 1.4 Conclusion 18 References 19 2 MAC Layer Protocol for Wireless Security 23 Sushmita Kumari and Manisha Bharti 2.1 Introduction 23 2.2 MAC Layer 24 2.2.1 Centralized Control 24 2.2.2 Deterministic Access 24 2.2.3 Non-Deterministic Access 24 2.3 Functions of the MAC Layer 25 2.4 MAC Layer Protocol 25 2.4.1 Random Access Protocol 26 2.4.2 Controlled Access Protocols 29 2.4.3 Channelization 31 2.5 MAC Address 31 2.6 Conclusion and Future Scope 33 References 33 3 Enhanced Image Security Through Hybrid Approach: Protect Your Copyright Over Digital Images 35 Shaifali M. Arora and Poonam Kadian 3.1 Introduction 36 3.2 Literature Review 38 3.3 Design Issues 40 3.3.1 Robustness Against Various Attack Conditions 40 3.3.2 Distortion and Visual Quality 41 3.3.3 Working Domain 42 3.3.4 Human Visual System (HVS) 43 3.3.5 The Trade-Off between Robustness and Imperceptibility 43 3.3.6 Computational Cost 43 3.4 A Secure Grayscale Image Watermarking Based on DWT-SVD 43 3.5 Experimental Results 45 3.6 Conclusion 52 References 52 4 Quantum Computing 59 Manisha Bharti and Tanvika Garg 4.1 Introduction 59 4.2 A Brief History of Quantum Computing 60 4.3 Postulate of Quantum Mechanics 61 4.4 Polarization and Entanglement 61 4.5 Applications and Advancements 63 4.5.1 Cryptography, Teleportation and Communication Networks 63 4.5.2 Quantum Computing and Memories 63 4.5.3 Satellite Communication Based on Quantum Computing 64 4.5.4 Machine Learning & Artificial Intelligence 65 4.6 Optical Quantum Computing 65 4.7 Experimental Realisation of Quantum Computer 66 4.7.1 Hetero-Polymers 66 4.7.2 Ion Traps 67 4.7.3 Quantum Electrodynamics Cavity 67 4.7.4 Quantum Dots 67 4.8 Challenges of Quantum Computing 67 4.9 Conclusion and Future Scope 68 References 68 5 Feature Engineering for Flow-Based IDS 69 Rahul B. Adhao and Vinod K. Pachghare 5.1 Introduction 70 5.1.1 Intrusion Detection System 71 5.1.2 IDS Classification 71 5.2 IP Flows 72 5.2.1 The Architecture of Flow-Based IDS 73 5.2.2 Wireless IDS Designed Using Flow-Based Approach 73 5.2.3 Comparison of Flow- and Packet-Based IDS 74 5.3 Feature Engineering 75 5.3.1 Curse of Dimensionality 76 5.3.2 Feature Selection 78 5.3.3 Feature Categorization 78 5.4 Classification of Feature Selection Technique 78 5.4.1 The Wrapper, Filter, and Embedded Feature Selection 78 5.4.2 Correlation, Consistency, and PCA-Based Feature Selection 80 5.4.3 Similarity, Information Theoretical, Sparse Learning, and Statistical-Based Feature Selection 80 5.4.4 Univariate and Multivariate Feature Selection 81 5.5 Tools and Library for Feature Selection 82 5.6 Literature Review on Feature Selection in Flow-Based IDS 82 5.7 Challenges and Future Scope 86 5.8 Conclusions 87 Acknowledgement 87 References 88 6 Environmental Aware Thermal (EAT) Routing Protocol for Wireless Sensor Networks 91 B. Banuselvasaraswathy and Vimalathithan Rathinasabapathy 6.1 Introduction 92 6.1.1 Single Path Routing Protocol 93 6.1.2 Multipath Routing Protocol 94 6.1.3 Environmental Influence on WSN 96 6.2 Motivation Behind the Work 97 6.3 Novelty of This Work 98 6.4 Related Works 99 6.5 Proposed Environmental Aware Thermal (EAT) Routing Protocol 102 6.5.1 Sensor Node Environmental Modeling and Analysis 104 6.5.2 Single Node Environmental Influence Modeling 105 6.5.3 Multiple Node Modeling 106 6.5.4 Sensor Node Surrounding Temperature Field 106 6.5.5 Sensor Node Remaining Energy Calculation 107 6.5.6 Delay Modeling 107 6.6 Simulation Parameters 108 6.7 Results and Discussion 109 6.7.1 Temperature Influence on Network 109 6.7.2 Power Consumption 109 6.7.3 Lifetime Analysis 110 6.7.4 Delay Analysis 111 6.8 Conclusion 112 References 112 7 A Comprehensive Study of Intrusion Detection and Prevention Systems 115 Bhoopesh Singh Bhati, Dikshita, Nitesh Singh Bhati and Garvit Chugh 7.1 Introduction 116 7.1.1 Intrusion and Detection 116 7.1.2 Some Basic Definitions 116 7.1.3 Intrusion Detection and Prevention System 117 7.1.4 Need for IDPS: More Than Ever 118 7.1.5 Introduction to Alarms 118 7.1.6 Components of an IDPS 119 7.2 Configuring IDPS 120 7.2.1 Network Architecture of IDPS 120 7.2.2 A Glance at Common Types 121 7.2.2.1 Network-Based IDS 123 7.2.2.2 Host-Based IDS 124 7.2.3 Intrusion Detection Techniques 125 7.2.3.1 Conventional Techniques 125 7.2.3.2 Machine Learning-Based and Hybrid Techniques 128 7.2.4 Three Considerations 131 7.2.4.1 Location of Sensors 131 7.2.4.2 Security Capabilities 131 7.2.4.3 Management Capabilities 133 7.2.5 Administrators’ Functions 134 7.2.5.1 Deployment 134 7.2.5.2 Testing 134 7.2.5.3 Security Consideration of IDPS 135 7.2.5.4 Regular Backups and Monitoring 135 7.2.6 Types of Events Detected 135 7.2.7 Role of State in Network Security 136 7.3 Literature Review 137 7.4 Conclusion 138 References 139 8 Hardware Devices Integration With IoT 143 Sushant Kumar and Saurabh Mukherjee 8.1 Introduction 143 8.2 Literature Review 144 8.3 Component Description 146 8.3.1 Arduino Board UNO 146 8.3.2 Raspberry Pi 147 8.4 Case Studies 148 8.4.1 Ultrasonic Sensor 148 8.4.2 Temperature and Humidity Sensor 150 8.4.3 Weather Monitoring System Using Raspberry Pi 151 8.5 Drawbacks of Arduino and Raspberry Pi 153 8.6 Challenges in IoT 154 8.6.1 Design Challenges 154 8.6.2 Security Challenges 155 8.6.3 Development Challenges 155 8.7 Conclusion 155 8.8 Annexures 156 References 157 Additional Resources 158 9 Depth Analysis On DoS & DDoS Attacks 159 Gaurav Nayak, Anjana Mishra, Uditman Samal and Brojo Kishore Mishra 9.1 Introduction 160 9.1.1 Objective and Motivation 161 9.1.2 Symptoms and Manifestations 163 9.2 Literature Survey 163 9.3 Timeline of DoS and DDoS Attacks 164 9.4 Evolution of Denial of Service (DoS) & Distributed Denial of Service (DDoS) 165 9.5 DDoS Attacks: A Taxonomic Classification 166 9.5.1 Classification Based on Degree of Automation 166 9.5.2 Classification Based on Exploited Vulnerability 167 9.5.3 Classification Based on Rate Dynamics of Attacks 168 9.5.4 Classification Based on Impact 168 9.6 Transmission Control Protocol 169 9.6.1 TCP Three-Way Handshake 169 9.7 User Datagram Protocol 170 9.7.1 UDP Header 170 9.8 Types of DDoS Attacks 170 9.8.1 TCP SYN Flooding Attack 171 9.8.2 UDP Flooding Attack 172 9.8.3 Smurf Attack 172 9.8.4 Ping of Death Attack 173 9.8.5 HTTP Flooding Attack 174 9.9 Impact of DoS/DDoS on Various Areas 175 9.9.1 DoS/DDoS Attacks on VoIP Networks Using SIP 175 9.9.2 DoS/DDoS Attacks on VANET 175 9.9.3 DoS/DDoS Attacks on Smart Grid System 176 9.9.4 DoS/DDoS Attacks in IoT-Based Devices 176 9.10 Countermeasures to DDoS Attack 177 9.10.1 Prevent Being Agent/Secondary Target 177 9.10.2 Detect and Neutralize Attacker 178 9.10.3 Potential Threats Detection/Prevention 178 9.10.4 DDoS Attacks and How to Avoid Them 178 9.10.5 Deflect Attack 178 9.10.6 Post-Attack Forensics 179 9.11 Conclusion 179 9.12 Future Scope 180 References 180 10 SQL Injection Attack on Database System 183 Mohit Kumar 10.1 Introduction 183 10.1.1 Types of Vulnerabilities 184 10.1.2 Types of SQL Injection Attack 185 10.1.3 Impact of SQL Injection Attack 186 10.2 Objective and Motivation 186 10.3 Process of SQL Injection Attack 188 10.4 Related Work 188 10.5 Literature Review 189 10.6 Implementation of the SQL Injection Attack 192 10.6.1 Access the Database Using the 1=1 SQL Injection Statement 192 10.6.2 Access the Database Using the ““=’’’’ SQL Injection Statement 193 10.6.3 Access and Upgrade the Database by Using Batch SQL Injection Statement 194 10.7 Detection of SQL Injection Attack 196 10.8 Prevention/Mitigation from SQL Injection Attack 196 10.9 Conclusion 197 References 197 11 Machine Learning Techniques for Face Authentication System for Security Purposes 199 Vibhuti Jain, Madhavendra Singh and Jagannath Jayanti 11.1 Introduction 200 11.2 Face Recognition System (FRS) in Security 201 11.3 Theory 202 11.3.1 Neural Networks 202 11.3.2 Convolutional Neural Network (CNN) 204 11.3.3 K-Nearest Neighbors (KNN) 207 11.3.4 Support Vector Machine (SVM) 208 11.3.5 Logistic Regression (LR) 209 11.3.6 Naive Bayes (NB) 210 11.3.7 Decision Tree (DT) 211 11.4 Experimental Methodology 212 11.4.1 Dataset 212 11.4.2 Convolutional Neural Network (CNN) 212 11.4.3 Other Machine Learning Techniques 215 11.5 Results 218 11.6 Conclusion 220 References 220 12 Estimation of Computation Time for Software-Defined Networking-Based Data Traffic Offloading System in Heterogeneous Network 223 Shashila S. Abayagunawardhana, Malka N. Halgamuge and Charitha Subhashi Jayasekara 12.1 Introduction 224 12.1.1 Motivation 225 12.1.2 Objective 228 12.1.3 The Main Contributions of This Chapter 228 12.2 Analysis of SDN-TOS Mechanism 229 12.2.1 Key Components of SDN-TOS 229 12.2.2 LTE/Wi-Fi in a Heterogeneous Network (HetNet) 229 12.2.3 Centralized SDN Controller 229 12.2.4 Key Design Considerations of SDN-TOS 230 12.2.4.1 The System Architecture 230 12.2.4.2 Mininet Wi-Fi Emulated Networks 230 12.2.4.3 Software-Defined Networking Controller 231 12.3 Materials and Methods 232 12.3.1 Estimating Time Consumption for Mininet Wi-Fi Emulator 232 12.3.1.1 Total Time Consumption for Offloading the Data Traffic by Service Provider 233 12.3.1.2 Total Time Consumption of Mininet Wi-Fi Emulator (Time Consumption for Both LTE and Wi-Fi Network) 236 12.3.2 Estimating Time Consumption for SDN Controller 237 12.3.2.1 Total Response Time for Sub-Controller 237 12.3.2.2 Total Response Time for The Total Process of Centralized SDN Controller 238 12.3.3 Estimating Total Time Consumption for SDN-Based Traffic Offloading System (sdn-tos) 239 12.4 Simulation Results 240 12.4.1 Effect of Computational Data Traffic θI on Total Response Time (TA)/Service Provider A and CSP Approach 242 12.4.2 Effect of Computational Data Traffic θI on Total Response Time (TA) for Different Service Providers/Service Provider A and Service Provider B 243 12.5 Discussion 244 12.6 Conclusion 246 References 247 About the Editors 253 Index 255
£153.90
John Wiley & Sons Inc Corporate Cybersecurity
Book SynopsisCORPORATE CYBERSECURITY An insider's guide showing companies how to spot and remedy vulnerabilities in their security programs A bug bounty program is offered by organizations for people to receive recognition and compensation for reporting bugs, especially those pertaining to security exploits and vulnerabilities. Corporate Cybersecurity gives cyber and application security engineers (who may have little or no experience with a bounty program) a hands-on guide for creating or managing an effective bug bounty program. Written by a cyber security expert, the book is filled with the information, guidelines, and tools that engineers can adopt to sharpen their skills and become knowledgeable in researching, configuring, and managing bug bounty programs. This book addresses the technical aspect of tooling and managing a bug bounty program and discusses common issues that engineers may run into on a daily basis. The author includes information on the often-overlTable of ContentsForeword xiii Acknowledgments xv Part 1 Bug Bounty Overview 1 1 The Evolution of Bug Bounty Programs 3 1.1 Making History 3 1.2 Conservative Blockers 4 1.3 Increased Threat Actor Activity 4 1.4 Security Researcher Scams 5 1.5 Applications Are a Small Consideration 5 1.6 Enormous Budgetary Requirements 5 1.7 Other Security Tooling as a Priority 6 1.8 Vulnerability Disclosure Programs vs Bug Bounty Programs 6 1.8.1 Vulnerability Disclosure Programs 6 1.8.2 Bug Bounty Programs 7 1.9 Program Managers 7 1.10 The Law 7 1.11 Redefining Security Research 8 1.12 Taking Action 8 1.12.1 Get to Know Security Researchers 9 1.12.2 Fair and Just Resolution 9 1.12.3 Managing Disclosure 9 1.12.4 Corrections 9 1.12.5 Specific Community Involvement 9 Part 2 Evaluating Programs 11 2 Assessing Current Vulnerability Management Processes 13 2.1 Who Runs a Bug Bounty Program? 13 2.2 Determining Security Posture 13 2.3 Management 14 2.3.1 Software Engineering Teams 14 2.3.2 Security Departments (Security Operations, Fraud Prevention, Governance/Risk/Compliance, Edge Controls, Vulnerability Management, Endpoint Detection, and Response) 14 2.3.3 Infrastructure Teams 14 2.3.4 Legal Department 14 2.3.5 Communications Team 14 2.4 Important Questions 15 2.5 Software Engineering 15 2.5.1 Which Processes Are in Place for Secure Coding? Do the Software Engineers Understand the Importance of Mitigating the Risks Associated with Vulnerable Code? 15 2.5.2 How Effective Are Current Communication Processes? Will Vulnerabilities Be Quickly Resolved If Brought to Their Attention? 15 2.5.3 Is the Breadth of Our Enterprise’s Web and Mobile Applications Immense? Which Processes Are Engineers Using for Development in the Software Development Lifecycle? 16 2.6 Security Departments 16 2.6.1 How Does Security Operations Manage Incidents? Will Employee Assistance Be Provided from the Security Operations Team If a Threat Actor Manages to Exploit an Application Vulnerability? Which Tools Do They Have in Place? 16 2.6.2 What Does the Fraud Prevention Team Do to Prevent Malicious Activities? How Many Occurrences Do They See of Issues such as Account Takeover, and Could They Potentially Create Application Vulnerabilities? 16 2.6.3 Are There Any Compliance Practices in Place and, If So, How Do They Affect the Vulnerability Management Process? What Does the Application Security Team Have to Do to Assist in Enterprise Compliance? 17 2.6.4 What Edge Tooling is in Place to Prevent Attacks? Are Any of the Enterprise Applications at Risk of Being Exploited due to an IoT (Internet of Things) Device? 17 2.6.5 How Often Does Our Vulnerability Management Team Push for Updates? How Does the Vulnerability Management Team Ensure Servers in which Enterprise Applications Reside Are Secure? 17 2.7 Infrastructure Teams 17 2.7.1 What Are Infrastructure Teams Doing to Ensure Best Security Practices Are Enabled? How Long Will It Take the Infrastructure Team to Resolve a Serious Issue When a Server-side Web Application is Exploited, or During a Subdomain Takeover Vulnerability? 17 2.7.2 Is There Effective Communication between Infrastructure, Vulnerability Management, Security Operations, and Endpoint Detection and Response? 18 2.8 Legal Department 18 2.8.1 How Well Refined is the Relationship between the Application Security Team and the Legal Department? 18 2.8.2 What Criteria Are/Will Be Set Out for the Escalation of Issues? 18 2.8.3 Does the Legal Department Understand the Necessity of Bug Bounty Program Management? 18 2.9 Communications Team 18 2.9.1 Has the Communications Team Dealt with Security Researchers Before? is the Importance Understood? 18 2.9.2 Was the Communications Team Informed of Bug Bounty Program Expectations? 19 2.10 Engineers 19 2.11 Program Readiness 19 3 Evaluating Program Operations 21 3.1 One Size Does Not Fit All 21 3.2 Realistic Program Scenarios 21 3.3 Ad Hoc Program 22 3.4 Note 24 3.5 Applied Knowledge 24 3.5.1 Applied Knowledge #1 24 3.5.1.1 Private Programs 25 3.5.2 Applied Knowledge #2 25 3.5.2.1 Public Programs 25 3.5.3 Applied Knowledge #3 26 3.5.3.1 Hybrid Models 26 3.6 Crowdsourced Platforms 27 3.7 Platform Pricing and Services 28 3.8 Managed Services 28 3.9 Opting Out of Managed Services 29 3.10 On-demand Penetration Tests 29 Part 3 Program Setup 31 4 Defining Program Scope and Bounties 33 4.1 What is a Bounty? 33 4.2 Understanding Scope 33 4.3 How to Create Scope 34 4.3.1 Models 34 4.4 Understanding Wildcards 34 4.4.1 Subdomain 35 4.4.2 Domain 35 4.4.3 Specific Domain Path or Specific Subdomain Path 35 4.5 Determining Asset Allocation 36 4.6 Asset Risk 37 4.7 Understanding Out of Scope 37 4.8 Vulnerability Types 38 4.8.1 Denial of Service (DOS) or Distributed Denial of Service (DDoS) Attacks 38 4.8.2 Social Engineering Attacks 38 4.8.3 Brute Force or Rate Limiting 38 4.8.4 Account and Email Enumeration 38 4.8.5 Self-XSS 39 4.8.6 Clickjacking 39 4.8.7 Miscellaneous 39 4.9 When is an Asset Really Out of Scope? 39 4.10 The House Wins – Or Does It? 40 4.11 Fair Judgment on Bounties 42 4.12 Post-mortem 43 4.13 Awareness and Reputational Damage 43 4.14 Putting It All Together 44 4.15 Bug Bounty Payments 44 4.15.1 Determining Payments 45 4.15.2 Bonus Payments 46 4.15.3 Nonmonetary Rewards 46 5 Understanding Safe Harbor and Service Level Agreements 49 5.1 What is “Safe Harbor”? 49 5.1.1 The Reality of Safe Harbor 49 5.1.2 Fear and Reluctance 49 5.1.3 Writing Safe Harbor Agreements 50 5.1.4 Example Safe Harbor Agreement 50 5.2 Retaliation against a Rogue Researcher (Cybercriminal or Threat/Bad Actor) 51 5.3 Service Level Agreements (SLAs) 52 5.3.1 Resolution Times 53 5.3.2 Triage Times 53 6 Program Configuration 55 6.1 Understanding Options 55 6.2 Bugcrowd 55 6.2.1 Creating the Program 55 6.2.2 Program Overview 61 6.2.2.1 The Program Dashboard 61 6.2.2.2 The Crowd Control Navbar 63 Summary 63 Submissions 63 Researchers 64 Rewards 65 Insights Dashboard 65 Reports 66 6.2.3 Advanced Program Configuration and Modification 66 6.2.3.1 Program Brief 66 6.2.3.2 Scope and Rewards 67 6.2.3.3 Integrations 72 6.2.3.4 Announcements 73 6.2.3.5 Manage Team 74 6.2.3.6 Submissions 75 6.2.4 Profile Settings 76 6.2.4.1 The Profile and Account 78 6.2.4.2 Security 78 6.2.4.3 Notification Settings 79 6.2.4.4 API Credentials 80 6.2.5 Enterprise “Profile” Settings 81 6.2.5.1 Management and Configuration 81 6.2.5.2 Organization Details 81 6.2.5.3 Team Members 81 6.2.5.4 Targets 81 6.2.5.5 Authentication 81 6.2.5.6 Domains 82 6.2.5.7 Accounting 83 6.3 HackerOne 84 6.3.1 Program Settings 85 6.3.1.1 General 85 6.3.1.2 Information 86 6.3.1.3 Product Edition 86 6.3.1.4 Authentication 87 6.3.1.5 Verified Domains 88 6.3.1.6 Credential Management 89 6.3.1.7 Group Management 89 6.3.1.8 User Management 90 6.3.1.9 Audit Log 91 6.3.2 Billing 92 6.3.2.1 Overview 92 6.3.2.2 Credit Card 92 6.3.2.3 Prepayment 92 6.3.3 Program 93 6.3.3.1 Policy 93 6.3.3.2 Scope 93 6.3.3.3 Submit Report Form 95 6.3.3.4 Response Targets 96 6.3.3.5 Metrics Display 97 6.3.3.6 Email Notifications 97 6.3.3.7 Inbox Views 98 6.3.3.8 Disclosure 98 6.3.3.9 Custom Fields 98 6.3.3.10 Invitations 99 6.3.3.11 Submission 100 6.3.3.12 Message Hackers 101 6.3.3.13 Email Forwarding 102 6.3.3.14 Embedded Submission Form 102 6.3.3.15 Bounties 103 6.3.3.16 Swag 103 6.3.3.17 Common Responses 104 6.3.3.18 Triggers 106 6.3.3.19 Integrations 107 6.3.3.20 API 107 6.3.3.21 Hackbot 107 6.3.3.22 Export Reports 108 6.3.3.23 Profile Settings 108 6.3.4 Inbox 108 6.3.4.1 Report Details 109 6.3.4.2 Timeline 109 6.4 Summary 110 Part 4 Vulnerability Reports and Disclosure 111 7 Triage and Bug Management 113 7.1 Understanding Triage 113 7.1.1 Validation 113 7.1.2 Lessons Learned 115 7.1.3 Vulnerability Mishaps 115 7.1.4 Managed Services 115 7.1.5 Self-service 116 7.2 Bug Management 116 7.2.1 Vulnerability Priority 116 7.2.2 Vulnerability Examples 117 7.2.2.1 Reflected XSS on a login portal 117 Report and Triage 117 Validation 117 7.2.2.2 Open redirect vulnerability 117 Report and Triage 117 Validation 118 7.2.2.3 Leaked internal Structured Query Language (SQL) server credentials 118 Report and Triage 118 Validation 118 7.3 Answers 118 7.3.1 Vulnerability Rating-test Summary 119 7.3.1.1 Reflected XSS in a login portal 118 7.3.1.2 Open redirect vulnerability 118 7.3.1.3 Leaked internal SQL server credentials 118 7.3.2 Complexity vs Rating 119 7.3.3 Projected Ratings 120 7.3.4 Ticketing and Internal SLA 120 7.3.4.1 Creating Tickets 120 8 Vulnerability Disclosure Information 123 8.1 Understanding Public Disclosure 123 8.1.1 Making the Decision 123 8.1.1.1 Private Programs 123 The Bottom Line 124 8.1.1.2 Public Programs 125 The Bottom Line 126 8.2 CVE Responsibility 126 8.2.1 What are CVEs? 126 8.2.2 Program Manager Responsibilities 126 8.2.3 Hardware CVEs 126 8.2.4 Software and Product CVEs 128 8.2.5 Third-party CVEs 128 8.3 Submission Options 130 8.3.1 In-house Submissions 130 8.3.2 Program Managed Submissions and Hands-off Submissions 130 8.3.2.1 Program Managed Submissions 130 8.3.2.2 Hands-off Submissions 131 Part 5 Internal and External Communication 133 9 Development and Application Security Collaboration 135 9.1 Key Role Differences 135 9.1.1 Application Security Engineer 135 9.1.2 Development 135 9.2 Facing a Ticking Clock 136 9.3 Meaningful Vulnerability Reporting 136 9.4 Communicating Expectations 137 9.5 Pushback, Escalations, and Exceptions 138 9.5.1 Internal steps 138 9.5.2 External steps 139 9.5.2 Escalations 139 9.5.3 Summary 140 9.6 Continuous Accountability 141 9.6.1 Tracking 141 9.6.2 Missed Deadlines 141 10 Hacker and Program Interaction Essentials 143 10.1 Understanding the Hacker 143 10.1.1 Money, Ethics, or Both? 143 10.1.2 Case Study Analysis 145 10.2 Invalidating False Positives 145 10.2.1 Intake Process and Breaking the News 145 10.2.2 Dealing with a Toxic Hacker 147 10.3 Managed Program Considerations 147 10.4 In-house Programs 148 10.5 Blackmail or Possible Threat Actor 151 10.6 Public Threats or Disclosure 151 10.7 Program Warning Messages 153 10.8 Threat Actor or Security Researcher? 153 10.9 Messaging Researchers 155 10.9.1 Security Researcher Interviews 155 10.9.2 Bug Bounty Program Manager Interviews 159 10.10 Summary 164 Part 6 Assessments and Expansions 165 11 Internal Assessments 167 11.1 Introduction to Internal Assessments 167 11.2 Proactive Vs Reactive Testing 167 11.3 Passive Assessments 168 11.3.1 Shodan 168 11.3.1.1 Using Shodan 168 11.3.2 Amass/crt.sh 171 11.3.2.1 Amass 172 11.3.2.2 crt.sh 173 11.4 Active Assessments 173 11.4.1 nmapAutomator.sh 173 11.4.2 Sn1per 175 11.4.3 Owasp Zap 175 11.4.4 Dalfox 177 11.4.5 Dirsearch 179 11.5 Passive/Active Summary 180 11.6 Additional Considerations: Professional Testing and Third-Party Risk 180 12 Expanding Scope 181 12.1 Communicating with the Team 181 12.2 Costs of Expansion 182 12.3 When to Expand Scope 182 12.4 Alternatives to Scope Expansion 183 12.5 Managing Expansion 183 13 Public Release 185 13.1 Understanding the Public Program 185 13.2 The “Right” Time 185 13.3 Recommended Release 186 13.3.1 Requirements 186 13.4 Rolling Backwards 186 13.5 Summary 187 Index 189
£84.56
John Wiley & Sons Inc Cybersecurity in Intelligent Networking Systems
Book SynopsisCYBERSECURITY IN INTELLIGENT NETWORKING SYSTEMS Help protect your network system with this important reference work on cybersecurity Cybersecurity and privacy are critical to modern network systems. As various malicious threats have been launched that target critical online servicessuch as e-commerce, e-health, social networks, and other major cyber applicationsit has become more critical to protect important information from being accessed. Data-driven network intelligence is a crucial development in protecting the security of modern network systems and ensuring information privacy. Cybersecurity in Intelligent Networking Systems provides a background introduction to data-driven cybersecurity, privacy preservation, and adversarial machine learning. It offers a comprehensive introduction to exploring technologies, applications, and issues in data-driven cyber infrastructure. It describes a proposed novel, data-driven network intelligence system that helps provide robust and trustworthy safeguards with edge-enabled cyber infrastructure, edge-enabled artificial intelligence (AI) engines, and threat intelligence. Focusing on encryption-based security protocol, this book also highlights the capability of a network intelligence system in helping target and identify unauthorized access, malicious interactions, and the destruction of critical information and communication technology. Cybersecurity in Intelligent Networking Systems readers will also find: Fundamentals in AI for cybersecurity, including artificial intelligence, machine learning, and security threats Latest technologies in data-driven privacy preservation, including differential privacy, federated learning, and homomorphic encryption Key areas in adversarial machine learning, from both offense and defense perspectives Descriptions of network anomalies and cyber threats Background information on data-driven network intelligence for cybersecurity Robust and secure edge intelligence for network anomaly detection against cyber intrusions Detailed descriptions of the design of privacy-preserving security protocols Cybersecurity in Intelligent Networking Systems is an essential reference for all professional computer engineers and researchers in cybersecurity and artificial intelligence, as well as graduate students in these fields.Table of ContentsContents Preface xiii Acknowledgments xvii Acronyms xix 1 Cybersecurity in the Era of Artificial Intelligence 1 1.1 Artificial Intelligence for Cybersecurity . 2 1.1.1 Artificial Intelligence 2 1.1.2 Machine Learning 4 1.1.3 Data-Driven Workflow for Cybersecurity . 6 1.2 Key Areas and Challenges 7 1.2.1 Anomaly Detection . 8 1.2.2 Trustworthy Artificial Intelligence . 10 1.2.3 Privacy Preservation . 10 1.3 Toolbox to Build Secure and Intelligent Systems . 11 1.3.1 Machine Learning and Deep Learning . 12 1.3.2 Privacy-Preserving Machine Learning . 14 1.3.3 Adversarial Machine Learning . 15 1.4 Data Repositories for Cybersecurity Research . 16 1.4.1 NSL-KDD . 17 1.4.2 UNSW-NB15 . 17 v 1.4.3 EMBER 18 1.5 Summary 18 2 Cyber Threats and Gateway Defense 19 2.1 Cyber Threats . 19 2.1.1 Cyber Intrusions . 20 2.1.2 Distributed Denial of Services Attack . 22 2.1.3 Malware and Shellcode . 23 2.2 Gateway Defense Approaches 23 2.2.1 Network Access Control 24 2.2.2 Anomaly Isolation 24 2.2.3 Collaborative Learning . 24 2.2.4 Secure Local Data Learning 25 2.3 Emerging Data-Driven Methods for Gateway Defense 26 2.3.1 Semi-Supervised Learning for Intrusion Detection 26 2.3.2 Transfer Learning for Intrusion Detection 27 2.3.3 Federated Learning for Privacy Preservation . 28 2.3.4 Reinforcement Learning for Penetration Test 29 2.4 Case Study: Reinforcement Learning for Automated Post-Breach Penetration Test . 30 2.4.1 Literature Review 30 2.4.2 Research Idea 31 2.4.3 Training Agent using Deep Q-Learning 32 2.5 Summary 34 vi 3 Edge Computing and Secure Edge Intelligence 35 3.1 Edge Computing . 35 3.2 Key Advances in Edge Computing . 38 3.2.1 Security 38 3.2.2 Reliability . 41 3.2.3 Survivability . 42 3.3 Secure Edge Intelligence . 43 3.3.1 Background and Motivation 44 3.3.2 Design of Detection Module 45 3.3.3 Challenges against Poisoning Attacks . 48 3.4 Summary 49 4 Edge Intelligence for Intrusion Detection 51 4.1 Edge Cyberinfrastructure . 51 4.2 Edge AI Engine 53 4.2.1 Feature Engineering . 53 4.2.2 Model Learning . 54 4.2.3 Model Update 56 4.2.4 Predictive Analytics . 56 4.3 Threat Intelligence 57 4.4 Preliminary Study . 57 4.4.1 Dataset 57 4.4.2 Environment Setup . 59 4.4.3 Performance Evaluation . 59 vii 4.5 Summary 63 5 Robust Intrusion Detection 65 5.1 Preliminaries 65 5.1.1 Median Absolute Deviation . 65 5.1.2 Mahalanobis Distance 66 5.2 Robust Intrusion Detection . 67 5.2.1 Problem Formulation 67 5.2.2 Step 1: Robust Data Preprocessing 68 5.2.3 Step 2: Bagging for Labeled Anomalies 69 5.2.4 Step 3: One-Class SVM for Unlabeled Samples . 70 5.2.5 Step 4: Final Classifier . 74 5.3 Experiment and Evaluation . 76 5.3.1 Experiment Setup 76 5.3.2 Performance Evaluation . 81 5.4 Summary 92 6 Efficient Preprocessing Scheme for Anomaly Detection 93 6.1 Efficient Anomaly Detection . 93 6.1.1 Related Work . 95 6.1.2 Principal Component Analysis . 97 6.2 Efficient Preprocessing Scheme for Anomaly Detection . 98 6.2.1 Robust Preprocessing Scheme . 99 6.2.2 Real-Time Processing 103 viii 6.2.3 Discussions 103 6.3 Case Study . 104 6.3.1 Description of the Raw Data 105 6.3.2 Experiment 106 6.3.3 Results 108 6.4 Summary 109 7 Privacy Preservation in the Era of Big Data 111 7.1 Privacy Preservation Approaches 111 7.1.1 Anonymization 111 7.1.2 Differential Privacy . 112 7.1.3 Federated Learning . 114 7.1.4 Homomorphic Encryption 116 7.1.5 Secure Multi-Party Computation . 117 7.1.6 Discussions 118 7.2 Privacy-Preserving Anomaly Detection . 120 7.2.1 Literature Review 121 7.2.2 Preliminaries . 123 7.2.3 System Model and Security Model 124 7.3 Objectives and Workflow . 126 7.3.1 Objectives . 126 7.3.2 Workflow . 128 7.4 Predicate Encryption based Anomaly Detection . 129 7.4.1 Procedures 129 ix 7.4.2 Development of Predicate . 131 7.4.3 Deployment of Anomaly Detection 132 7.5 Case Study and Evaluation . 134 7.5.1 Overhead . 134 7.5.2 Detection . 136 7.6 Summary 137 8 Adversarial Examples: Challenges and Solutions 139 8.1 Adversarial Examples . 139 8.1.1 Problem Formulation in Machine Learning 140 8.1.2 Creation of Adversarial Examples . 141 8.1.3 Targeted and Non-Targeted Attacks . 141 8.1.4 Black-Box and White-Box Attacks 142 8.1.5 Defenses against Adversarial Examples 142 8.2 Adversarial Attacks in Security Applications 143 8.2.1 Malware 143 8.2.2 Cyber Intrusions . 143 8.3 Case Study: Improving Adversarial Attacks Against Malware Detectors 144 8.3.1 Background 144 8.3.2 Adversarial Attacks on Malware Detectors 145 8.3.3 MalConv Architecture 147 8.3.4 Research Idea 148 8.4 Case Study: A Metric for Machine Learning Vulnerability to Adversarial Examples . 149 8.4.1 Background 149 8.4.2 Research Idea 150 8.5 Case Study: Protecting Smart Speakers from Adversarial Voice Commands . 153 8.5.1 Background 153 8.5.2 Challenges 154 8.5.3 Directions and Tasks 155 8.6 Summary 157 xi
£92.70
John Wiley & Sons Inc 5g Wireless Network Security and Privacy
Book Synopsis5G WIRELESS NETWORK An expert presentation of 5G security, privacy, and network performance In 5G Wireless Network Security and Privacy, a team of veteran engineers delivers a robust and accessible discussion of 5G security solutions, including physical layer security, authentication, and mobility management. In the book, the authors expertly cover the requirements of 5G wireless network security and privacy, with explorations of existing solutions and vulnerabilities from security architecture and mechanism perspectives. Readers will learn how to enhance the security and network performance of 5G wireless networks in contexts like vehicle-to-vehicle and vehicle-to-infrastructure communications, industrial automation, health services, smart cities, and smart homes. They will develop a comprehensive understanding of 5G wireless network security as they move through the book's 11 insightful chapters, developing in-depth knowledge on the current state of 5G security and coming developmenTable of ContentsAbout the Authors ix Preface xi Acknowledgments xiii Introduction xv 1 Introduction to 5G Wireless Systems 1 1.1 Motivations and Objectives of 5G Wireless Networks 1 1.2 Security Drives and Requirements 2 1.3 5GWireless Network Architecture 4 1.3.1 Overview of the 5G Wireless Network Architecture 4 1.3.2 Comparison Between the Legacy Cellular Network and the 5GWireless Network 5 1.4 Conclusion 6 2 Security from Legacy Wireless Systems to 5G Networks 7 2.1 Network Security for Legacy Systems 7 2.2 Security Attacks and Security Services in 5G Wireless Networks 9 2.2.1 Security Attacks 9 2.2.2 Security Services 11 2.2.2.1 Authentication 12 2.2.2.2 Confidentiality 12 2.2.2.3 Availability 13 2.2.2.4 Integrity 14 2.3 The Evolution of Wireless Security Architectures from 3G to 5G 14 2.3.1 3G Security Architecture 14 2.3.2 4G Security Architecture 15 2.3.3 5GWireless Security Architecture 16 2.3.3.1 Overview of the Proposed 5G Wireless Security Architecture 16 2.3.3.2 Security Domains 17 2.4 Summary 18 3 Security Services and Mechanisms in 5G Wireless Systems 19 3.1 Cryptographic Approaches and Physical Layer Security 19 3.2 Authentication 22 3.3 Availability 27 3.4 Data Confidentiality 29 3.5 Key Management 33 3.6 Privacy 35 3.7 Conclusion 36 4 An Efficient Security Solution Based on Physical Layer Security in 5G Wireless Networks 37 4.1 Enhancing 5G Security Through Artificial Noise and Interference Utilization 37 4.2 A HetNet System Model and Security Analysis 38 4.2.1 System Model and Threat Model 38 4.2.2 Security Analysis 40 4.3 Problem Formulation and Analysis 42 4.3.1 Maximum Secrecy Rate 43 4.3.2 The Proposed Algorithm 43 4.4 Numerical and Simulation Results 46 4.5 Conclusion 49 5 Flexible and Efficient Security Schemes for IoT Applications in 5G Wireless Systems 51 5.1 IoT Application Models and Current Security Challenges 51 5.2 A General System Model for IoT Applications Over 5G 52 5.2.1 System Architecture 52 5.2.2 Trust Models 54 5.2.3 Threat Models and Design Objectives 55 5.3 The 5G Authentication and Secure Data Transmission Scheme 56 5.3.1 Overview of the 5G Authentication and Secure Data Transmission Scheme 56 5.3.2 The Detailed Scheme 57 5.3.2.1 Phase 1 -- System Initialization 57 5.3.2.2 Phase 2 -- Authentication and Initial Session Key Agreement 58 5.3.2.3 Phase 3 -- Data Transmission 58 5.3.2.4 Phase 4 -- Data Receiving 59 5.3.2.5 Phase 5 -- T2 IoT Devices Authentication and Initial Session Key Agreement 59 5.4 Security Analysis 60 5.4.1 Protocol Verification 61 5.4.2 Security Objectives 61 5.4.2.1 Mutual Authentication 61 5.4.2.2 Initial Session Key Agreement 62 5.4.2.3 Data Confidentiality and Integrity 62 5.4.2.4 Contextual Privacy 62 5.4.2.5 Forward Security 62 5.4.2.6 End-to-End Security 63 5.4.2.7 Key Escrow Resilience 63 5.5 Performance Evaluation 63 5.5.1 Security Services 63 5.5.2 Computational Overhead 63 5.5.3 Communication Overhead 66 5.6 Conclusion 67 6 Secure and Efficient Mobility Management in 5G Wireless Networks 71 6.1 Handover Issues and Requirements Over 5G Wireless Networks 71 6.2 A 5G CN Model and HetNet System Model 72 6.3 5G Handover Scenarios and Procedures 75 6.3.1 Handover Scenarios 75 6.3.2 Handover Procedures 76 6.4 A New Authentication Protocol for 5G Networks 79 6.4.1 Assumptions 80 6.4.2 Pre-Authentication 80 6.4.3 Full Authentication 81 6.4.4 Fast Authentication 83 6.4.4.1 Handover Between APs 83 6.4.4.2 Handover Between BSs 84 6.5 Security Analysis of the New 5G Authentication Protocols 84 6.6 Performance Evaluations 85 6.6.1 Communication Overhead 86 6.6.2 Computation Overhead 86 6.7 Conclusion 87 7 Open Issues and Future Research Directions for Security and Privacy in 5G Networks 89 7.1 New Trust Models 89 7.2 New Security Attack Models 90 7.3 Privacy Protection 90 7.4 Unified Security Management 91 References 93 Index 103
£91.80
John Wiley & Sons Inc Cybersecurity and Local Government
Book SynopsisCYBERSECURITY AND LOCAL GOVERNMENT Learn to secure your local government's networks with this one-of-a-kind resource In Cybersecurity and Local Government, a distinguished team of researchers delivers an insightful exploration of cybersecurity at the level of local government. The book makes a compelling argument that every local government official, elected or otherwise, must be reasonably knowledgeable about cybersecurity concepts and provide appropriate support for it within their governments. It also lays out a straightforward roadmap to achieving those objectives, from an overview of cybersecurity definitions to descriptions of the most common security challenges faced by local governments. The accomplished authors specifically address the recent surge in ransomware attacks and how they might affect local governments, along with advice as to how to avoid and respond to these threats. They also discuss the cybersecurity law, cybersecurity policies that local government should adopt, the future of cybersecurity, challenges posed by Internet of Things, and much more. Throughout, the authors provide relevant field examples, case studies of actual local governments, and examples of policies to guide readers in their own application of the concepts discussed within. Cybersecurity and Local Government also offers: A thorough introduction to cybersecurity generally, including definitions of key cybersecurity terms and a high-level overview of the subject for non-technologists. A comprehensive exploration of critical information for local elected and top appointed officials, including the typical frequencies and types of cyberattacks. Practical discussions of the current state of local government cybersecurity, with a review of relevant literature from 2000 to 2021. In-depth examinations of operational cybersecurity policies, procedures and practices, with recommended best practices. Perfect for local elected and top appointed officials and staff as well as local citizens, Cybersecurity and Local Government will also earn a place in the libraries of those studying or working in local government with an interest in cybersecurity.Table of ContentsPreface ix About the Authors xi 1 Why Local Government Cybersecurity? 1 2 What is Cybersecurity? 17 3 Cybersecurity 101 for Local Governments 27 4 What the Literature Says About Local Government Cybersecurity 47 5 Cyberattacks: Targetting Local Government 67 6 Managing Local Government Cybersecurity 85 7 Cybersecurity Policies for Local Government 113 8 People: The Root of The Problem 143 9 The NIST Cybersecurity Framework Demystified 151 10 Cybersecurity Law and Regulation for Local Government 167 11 Important Questions to Ask 187 12 The Future of Local Government Cybersecurity 201 13 Summary and Recommendations 227 Index 235
£81.86
John Wiley & Sons Inc Threat Hunting in the Cloud
Book SynopsisTable of ContentsForeword xxxi Introduction xxxiii Part I Threat Hunting Frameworks 1 Chapter 1 Introduction to Threat Hunting 3 The Rise of Cybercrime 4 What Is Threat Hunting? 6 The Key Cyberthreats and Threat Actors 7 Phishing 7 Ransomware 8 Nation State 10 The Necessity of Threat Hunting 14 Does the Organization’s Size Matter? 17 Threat Modeling 19 Threat-Hunting Maturity Model 23 Organization Maturity and Readiness 23 Level 0: INITIAL 24 Level 1: MINIMAL 25 Level 2: PROCEDURAL 25 Level 3: INNOVATIVE 25 Level 4: LEADING 25 Human Elements of Threat Hunting 26 How Do You Make the Board of Directors Cyber-Smart? 27 Threat-Hunting Team Structure 30 External Model 30 Dedicated Internal Hunting Team Model 30 Combined/Hybrid Team Model 30 Periodic Hunt Teams Model 30 Urgent Need for Human-Led Threat Hunting 31 The Threat Hunter’s Role 31 Summary 33 Chapter 2 Modern Approach to Multi-Cloud Threat Hunting 35 Multi-Cloud Threat Hunting 35 Multi-Tenant Cloud Environment 38 Threat Hunting in Multi-Cloud and Multi-Tenant Environments 39 Building Blocks for the Security Operations Center 41 Scope and Type of SOC 43 Services, Not Just Monitoring 43 SOC Model 43 Define a Process for Identifying and Managing Threats 44 Tools and Technologies to Empower SOC 44 People (Specialized Teams) 45 Cyberthreat Detection, Threat Modeling, and the Need for Proactive Threat Hunting Within SOC 46 Cyberthreat Detection 46 Threat-Hunting Goals and Objectives 49 Threat Modeling and SOC 50 The Need for a Proactive Hunting Team Within SOC 50 Assume Breach and Be Proactive 51 Invest in People 51 Develop an Informed Hypothesis 52 Cyber Resiliency and Organizational Culture 53 Skillsets Required for Threat Hunting 54 Security Analysis 55 Data Analysis 56 Programming Languages 56 Analytical Mindset 56 Soft Skills 56 Outsourcing 56 Threat-Hunting Process and Procedures 57 Metrics for Assessing the Effectiveness of Threat Hunting 58 Foundational Metrics 58 Operational Metrics 59 Threat-Hunting Program Effectiveness 61 Summary 62 Chapter 3 Exploration of MITRE Key Attack Vectors 63 Understanding MITRE ATT&CK 63 What Is MITRE ATT&CK Used For? 64 How Is MITRE ATT&CK Used and Who Uses It? 65 How Is Testing Done According to MITRE? 65 Tactics 67 Techniques 67 Threat Hunting Using Five Common Tactics 69 Privilege Escalation 71 Case Study 72 Credential Access 73 Case Study 74 Lateral Movement 75 Case Study 75 Command and Control 77 Case Study 77 Exfiltration 79 Case Study 79 Other Methodologies and Key Threat-Hunting Tools to Combat Attack Vectors 80 Zero Trust 80 Threat Intelligence and Zero Trust 83 Build Cloud-Based Defense-in-Depth 84 Analysis Tools 86 Microsoft Tools 86 Connect To All Your Data 87 Workbooks 88 Analytics 88 Security Automation and Orchestration 90 Investigation 91 Hunting 92 Community 92 AWS Tools 93 Analyzing Logs Directly 93 SIEMs in the Cloud 94 Summary 95 Resources 96 Part II Hunting in Microsoft Azure 99 Chapter 4 Microsoft Azure Cloud Threat Prevention Framework 101 Introduction to Microsoft Security 102 Understanding the Shared Responsibility Model 102 Microsoft Services for Cloud Security Posture Management and Logging/Monitoring 105 Overview of Azure Security Center and Azure Defender 105 Overview of Microsoft Azure Sentinel 108 Using Microsoft Secure and Protect Features 112 Identity & Access Management 113 Infrastructure & Network 114 Data & Application 115 Customer Access 115 Using Azure Web Application Firewall to Protect a Website Against an “Initial Access” TTP 116 Using Microsoft Defender for Office 365 to Protect Against an “Initial Access” TTP 118 Using Microsoft Defender Endpoint to Protect Against an “Initial Access” TTP 121 Using Azure Conditional Access to Protect Against an “Initial Access” TTP 123 Microsoft Detect Services 127 Detecting “Privilege Escalation” TTPs 128 Using Azure Security Center and Azure Sentinel to Detect Threats Against a “Privilege Escalation” TTP 128 Detecting Credential Access 131 Using Azure Identity Protection to Detect Threats Against a “Credential Access” TTP 132 Steps to Configure and Enable Risk Polices (Sign-in Risk and User Risk) 134 Using Azure Security Center and Azure Sentinel to Detect Threats Against a “Credential Access” TTP 137 Detecting Lateral Movement 139 Using Just-in-Time in ASC to Protect and Detect Threats Against a “Lateral Movement” TTP 139 Using Azure Security Center and Azure Sentinel to Detect Threats Against a “Lateral Movement” TTP 144 Detecting Command and Control 145 Using Azure Security Center and Azure Sentinel to Detect Threats Against a “Command and Control” TTP 146 Detecting Data Exfiltration 147 Using Azure Information Protection to Detect Threats Against a “Data Exfiltration” TTP 148 Discovering Sensitive Content Using AIP 149 Using Azure Security Center and Azure Sentinel to Detect Threats Against a “Data Exfiltration” TTP 153 Detecting Threats and Proactively Hunting with Microsoft 365 Defender 154 Microsoft Investigate, Response, and Recover Features 155 Automating Investigation and Remediation with Microsoft Defender for Endpoint 157 Using Microsoft Threat Expert Support for Remediation and Investigation 159 Targeted Attack Notification 159 Experts on Demand 161 Automating Security Response with MCAS and Microsoft Flow 166 Step 1: Generate Your API Token in Cloud App Security 167 Step 2: Create Your Trigger in Microsoft Flow 167 Step 3: Create the Teams Message Action in Microsoft Flow 168 Step 4: Generate an Email in Microsoft Flow 168 Connecting the Flow in Cloud App Security 169 Performing an Automated Response Using Azure Security Center 170 Using Machine Learning and Artificial Intelligence in Threat Response 172 Overview of Fusion Detections 173 Overview of Azure Machine Learning 174 Summary 182 Chapter 5 Microsoft Cybersecurity Reference Architecture and Capability Map 183 Introduction 183 Microsoft Security Architecture versus the NIST Cybersecurity Framework (CSF) 184 Microsoft Security Architecture 185 The Identify Function 186 The Protect Function 187 The Detect Function 188 The Respond Function 189 The Recover Function 189 Using the Microsoft Reference Architecture 190 Microsoft Threat Intelligence 190 Service Trust Portal 192 Security Development Lifecycle (SDL) 193 Protecting the Hybrid Cloud Infrastructure 194 Azure Marketplace 194 Private Link 195 Azure Arc 196 Azure Lighthouse 197 Azure Firewall 198 Azure Web Application Firewall (WAF) 200 Azure DDOS Protection 200 Azure Key Vault 201 Azure Bastion 202 Azure Site Recovery 204 Azure Security Center (ASC) 205 Microsoft Azure Secure Score 205 Protecting Endpoints and Clients 206 Microsoft Endpoint Manager (MEM) Configuration Manager 207 Microsoft Intune 208 Protecting Identities and Access 209 Azure AD Conditional Access 210 Passwordless for End-to-End Secure Identity 211 Azure Active Directory (aka Azure AD) 211 Azure MFA 211 Azure Active Directory Identity Protection 212 Azure Active Directory Privilege Identity Management (PIM) 213 Microsoft Defender for Identity 214 Azure AD B2B and B2C 215 Azure AD Identity Governance 215 Protecting SaaS Apps 216 Protecting Data and Information 219 Azure Purview 220 Microsoft Information Protection (MIP) 221 Azure Information Protection Unified Labeling Scanner (File Scanner) 222 The Advanced eDiscovery Solution in Microsoft 365 223 Compliance Manager 224 Protecting IoT and Operation Technology 225 Security Concerns with IoT 226 Understanding That IoT Cybersecurity Starts with a Threat Model 227 Microsoft Investment in IoT Technology 229 Azure Sphere 229 Azure Defender 229 Azure Defender for IoT 230 Threat Modeling for the Azure IoT Reference Architecture 230 Azure Defender for IoT Architecture (Agentless Solutions) 233 Azure Defender for IoT Architecture (Agent-based solutions) 234 Understanding the Security Operations Solutions 235 Understanding the People Security Solutions 236 Attack Simulator 237 Insider Risk Management (IRM) 237 Communication Compliance 239 Summary 240 Part III Hunting in AWS 241 Chapter 6 AWS Cloud Threat Prevention Framework 243 Introduction to AWS Well-Architected Framework 244 The Five Pillars of the Well-Architected Framework 245 Operational Excellence 246 Security 246 Reliability 246 Performance Efficiency 246 Cost Optimization 246 The Shared Responsibility Model 246 AWS Services for Monitoring, Logging, and Alerting 248 AWS CloudTrail 249 Amazon CloudWatch Logs 251 Amazon VPC Flow Logs 252 Amazon GuardDuty 253 AWS Security Hub 254 AWS Protect Features 256 How Do You Prevent Initial Access? 256 How Do You Protect APIs from SQL Injection Attacks Using API Gateway and AWS WAF? 256 Prerequisites 257 Create an API 257 Create and Configure an AWS WAF 259 AWS Detection Features 263 How Do You Detect Privilege Escalation? 263 How Do You Detect the Abuse of Valid Account to Obtain High-Level Permissions? 264 Prerequisites 264 Configure GuardDuty to Detect Privilege Escalation 265 Reviewing the Findings 266 How Do You Detect Credential Access? 269 How Do You Detect Unsecured Credentials? 269 Prerequisites 270 Reviewing the Findings 274 How Do You Detect Lateral Movement? 276 How Do You Detect the Use of Stolen Alternate Authentication Material? 277 Prerequisites 277 How Do You Detect Potential Unauthorized Access to Your AWS Resources? 277 Reviewing the Findings 278 How Do You Detect Command and Control? 280 How Do You Detect the Communications to a Command and Control Server Using the Domain Name System (DNS)? 281 Prerequisites 281 How Do You Detect EC2 Instance Communication with a Command and Control (C&C) Server Using DNS 281 Reviewing the Findings 282 How Do You Detect Data Exfiltration? 284 Prerequisites 285 How Do You Detect the Exfiltration Using an Anomalous API Request? 285 Reviewing the Findings 286 How Do You Handle Response and Recover? 289 Foundation of Incident Response 289 How Do You Create an Automated Response? 290 Automating Incident Responses 290 Options for Automating Responses 291 Cost Comparisons in Scanning Methods 293 Event-Driven Responses 294 How Do You Automatically Respond to Unintended Disabling of CloudTrail Logging? 295 Prerequisites 296 Creating a Trail in CloudTrail 296 Creating an SNS Topic to Send Emails 299 Creating Rules in Amazon EventBridge 302 How Do You Orchestrate and Recover? 305 Decision Trees 305 Use Alternative Accounts 305 View or Copy Data 306 Sharing Amazon EBS Snapshots 306 Sharing Amazon CloudWatch Logs 306 Use Immutable Storage 307 Launch Resources Near the Event 307 Isolate Resources 308 Launch Forensic Workstations 309 Instance Types and Locations 309 How Do You Automatically Recover from Unintended Disabling of CloudTrail Logging? 310 Prerequisites 311 Aggregate and View Security Status in AWS Security Hub 311 Reviewing the Findings 312 Create Lambda Function to Orchestrate and Recover 314 How Are Machine Learning and Artificial Intelligence Used? 317 Summary 318 References 319 Chapter 7 AWS Reference Architecture 321 AWS Security Framework Overview 322 The Identify Function Overview 323 The Protect Function Overview 324 The Detect Function Overview 325 The Respond Function Overview 325 The Recover Function Overview 325 AWS Reference Architecture 326 The Identify Function 326 Security Hub 328 AWS Config 329 AWS Organizations 330 AWS Control Tower 331 AWS Trusted Advisor 332 AWS Well-Architected Tool 333 AWS Service Catalog 334 AWS Systems Manager 335 AWS Identity and Access Management (IAM) 337 AWS Single Sign-On (SSO) 338 AWS Shield 340 AWS Web Application Firewall (WAF) 340 AWS Firewall Manager 342 AWS Cloud HSM 343 AWS Secrets Manager 345 AWS Key Management Service (KMS) 345 AWS Certificate Manager 346 AWS IoT Device Defender 347 Amazon Virtual Private Cloud 347 AWS PrivateLink 349 AWS Direct Connect 349 AWS Transit Gateway 350 AWS Resource Access Manager 351 The Detect and Respond Functions 353 GuardDuty 354 Amazon Detective 356 Amazon Macie 357 Amazon Inspector 358 Amazon CloudTrail 359 Amazon CloudWatch 360 Amazon Lambda 361 AWS Step Functions 362 Amazon Route 53 363 AWS Personal Health Dashboard 364 The Recover Functions 365 Amazon Glacier 366 AWS CloudFormation 366 CloudEndure Disaster Recovery 367 AWS OpsWorks 368 Summary 369 Part IV The Future 371 Chapter 8 Threat Hunting in Other Cloud Providers 373 The Google Cloud Platform 374 Google Cloud Platform Security Architecture alignment to NIST 376 The Identify Function 376 The Protect Function 378 The Detect Function 380 The Respond Function 382 The Recover Function 383 The IBM Cloud 385 Oracle Cloud Infrastructure Security 386 Oracle SaaS Cloud Security Threat Intelligence 387 The Alibaba Cloud 388 Summary 389 References 389 Chapter 9 The Future of Threat Hunting 391 Artificial Intelligence and Machine Learning 393 How ML Reduces False Positives 395 How Machine Intelligence Applies to Malware Detection 395 How Machine Intelligence Applies to Risk Scoring in a Network 396 Advances in Quantum Computing 396 Quantum Computing Challenges 398 Preparing for the Quantum Future 399 Advances in IoT and Their Impact 399 Growing IoT Cybersecurity Risks 401 Preparing for IoT Challenges 403 Operational Technology (OT) 405 Importance of OT Security 406 Blockchain 406 The Future of Cybersecurity with Blockchain 407 Threat Hunting as a Service 407 The Evolution of the Threat-Hunting Tool 408 Potential Regulatory Guidance 408 Summary 409 References 409 Part V Appendices 411 Appendix A MITRE ATT&CK Tactics 413 Appendix B Privilege Escalation 415 Appendix C Credential Access 421 Appendix D Lateral Movement 431 Appendix E Command and Control 435 Appendix F Data Exfiltration 443 Appendix G MITRE Cloud Matrix 447 Initial Access 447 Drive-by Compromise 447 Exploiting a Public-Facing Application 450 Phishing 450 Using Trusted Relationships 451 Using Valid Accounts 452 Persistence 452 Manipulating Accounts 452 Creating Accounts 453 Implanting a Container Image 454 Office Application Startup 454 Using Valid Accounts 455 Privilege Escalation 456 Modifying the Domain Policy 456 Using Valid Accounts 457 Defense Evasion 457 Modifying Domain Policy 457 Impairing Defenses 458 Modifying the Cloud Compute Infrastructure 459 Using Unused/Unsupported Cloud Regions 459 Using Alternate Authentication Material 460 Using Valid Accounts 461 Credential Access 461 Using Brute Force Methods 461 Forging Web Credentials 462 Stealing an Application Access Token 462 Stealing Web Session Cookies 463 Using Unsecured Credentials 464 Discovery 464 Manipulating Account Discovery 464 Manipulating Cloud Infrastructure Discovery 465 Using a Cloud Service Dashboard 466 Using Cloud Service Discovery 466 Scanning Network Services 467 Discovering Permission Groups 467 Discovering Software 468 Discovering System Information 468 Discovering System Network Connections 469 Lateral Movement 469 Internal Spear Phishing 469 Using Alternate Authentication Material 470 Collection 471 Collecting Data from a Cloud Storage Object 471 Collecting Data from Information Repositories 471 Collecting Staged Data 472 Collecting Email 473 Data Exfiltration 474 Detecting Exfiltration 474 Impact 475 Defacement 475 Endpoint Denial of Service 475 Resource Hijacking 477 Appendix H Glossary 479 Index 489
£30.39
John Wiley & Sons Inc Cybersecurity and ThirdParty Risk
Book SynopsisTable of ContentsForeword xvi Introduction xviii Section 1 Cybersecurity Third-Party Risk Chapter 1 What is the Risk? 1 The SolarWinds Supply-Chain Attack 4 The VGCA Supply-Chain Attack 6 The Zyxel Backdoor Attack 9 Other Supply-Chain Attacks 10 Problem Scope 12 Compliance Does Not Equal Security 15 Third-Party Breach Examples 17 Third-Party Risk Management 24 Cybersecurity and Third-Party Risk 27 Cybersecurity Third-Party Risk as a Force Multiplier 32 Conclusion 33 Chapter 2 Cybersecurity Basics 35 Cybersecurity Basics for Third-Party Risk 38 Cybersecurity Frameworks 46 Due Care and Due Diligence 53 Cybercrime and Cybersecurity 56 Types of Cyberattacks 59 Analysis of a Breach 63 The Third-Party Breach Timeline: Target 66 Inside Look: Home Depot Breach 68 Conclusion 72 Chapter 3 What the COVID-19 Pandemic Did to Cybersecurity and Third-Party Risk 75 The Pandemic Shutdown 77 Timeline of the Pandemic Impact on Cybersecurity 80 Post-Pandemic Changes and Trends 84 Regulated Industries 98 An Inside Look: P&N Bank 100 SolarWinds Attack Update 102 Conclusion 104 Chapter 4 Third-Party Risk Management 107 Third-Party Risk Management Frameworks 113 ISO 27036:2013+ 114 NIST 800-SP 116 NIST 800-161 Revision 1: Upcoming Revision 125 NISTIR 8272 Impact Analysis Tool for Interdependent Cyber Supply-Chain Risks 125 The Cybersecurity and Third-Party Risk Program Management 127 Kristina Conglomerate (KC) Enterprises 128 KC Enterprises’ Cyber Third-Party Risk Program 131 Inside Look: Marriott 140 Conclusion 141 Chapter 5 Onboarding Due Diligence 143 Intake 145 Data Privacy 146 Cybersecurity 147 Amount of Data 149 Country Risk and Locations 149 Connectivity 150 Data Transfer 150 Data Location 151 Service-Level Agreement or Recovery Time Objective 151 Fourth Parties 152 Software Security 152 KC Enterprises Intake/Inherent Risk Cybersecurity Questionnaire 153 Cybersecurity in Request for Proposals 154 Data Location 155 Development 155 Identity and Access Management 156 Encryption 156 Intrusion Detection/Prevention System 157 Antivirus and Malware 157 Data Segregation 158 Data Loss Prevention 158 Notification 158 Security Audits 159 Cybersecurity Third-Party Intake 160 Data Security Intake Due Diligence 161 Next Steps 167 Ways to Become More Efficient 173 Systems and Organization Controls Reports 174 Chargebacks 177 Go-Live Production Reviews 179 Connectivity Cyber Reviews 179 Inside Look: Ticketmaster and Fourth Parties 182 Conclusion 183 Chapter 6 Ongoing Due Diligence 185 Low-Risk Vendor Ongoing Due Diligence 189 Moderate-Risk Vendor Ongoing Due Diligence 193 High-Risk Vendor Ongoing Due Diligence 196 “Too Big to Care” 197 A Note on Phishing 200 Intake and Ongoing Cybersecurity Personnel 203 Ransomware: A History and Future 203 Asset Management 205 Vulnerability and Patch Management 206 802.1x or Network Access Control (NAC) 206 Inside Look: GE Breach 207 Conclusion 208 Chapter 7 On-site Due Diligence 211 On-site Security Assessment 213 Scheduling Phase 214 Investigation Phase 215 Assessment Phase 217 On-site Questionnaire 221 Reporting Phase 227 Remediation Phase 227 Virtual On-site Assessments 229 On-site Cybersecurity Personnel 231 On-site Due Diligence and the Intake Process 233 Vendors Are Partners 234 Consortiums and Due Diligence 235 Conclusion 237 Chapter 8 Continuous Monitoring 239 What is Continuous Monitoring? 241 Vendor Security-Rating Tools 241 Inside Look: Health Share of Oregon’s Breach 251 Enhanced Continuous Monitoring 252 Software Vulnerabilities/Patching Cadence 253 Fourth-Party Risk 253 Data Location 254 Connectivity Security 254 Production Deployment 255 Continuous Monitoring Cybersecurity Personnel 258 Third-Party Breaches and the Incident Process 258 Third-Party Incident Management 259 Inside Look: Uber’s Delayed Data Breach Reporting 264 Inside Look: Nuance Breach 265 Conclusion 266 Chapter 9 Offboarding 267 Access to Systems, Data, and Facilities 270 Physical Access 274 Return of Equipment 275 Contract Deliverables and Ongoing Security 275 Update the Vendor Profile 276 Log Retention 276 Inside Look: Morgan Stanley Decommissioning Process Misses 277 Inside Look: Data Sanitization 279 Conclusion 283 Section 2 Next Steps Chapter 10 Securing the Cloud 285 Why is the Cloud So Risky? 287 Introduction to NIST Service Models 288 Vendor Cloud Security Reviews 289 The Shared Responsibility Model 290 Inside Look: Cloud Controls Matrix by the Cloud Security Alliance 295 Security Advisor Reports as Patterns 298 Inside Look: The Capital One Breach 312 Conclusion 313 Chapter 11 Cybersecurity and Legal Protections 315 Legal Terms and Protections 317 Cybersecurity Terms and Conditions 321 Offshore Terms and Conditions 324 Hosted/Cloud Terms and Conditions 327 Privacy Terms and Conditions 331 Inside Look: Heritage Valley Health vs. Nuance 334 Conclusion 335 Chapter 12 Software Due Diligence 337 The Secure Software Development Lifecycle 340 Lessons from SolarWinds and Critical Software 342 Inside Look: Juniper 344 On-Premises Software 346 Cloud Software 348 Open Web Application Security Project Explained 350 OWASP Top 10 350 OWASP Web Security Testing Guide 352 Open Source Software 353 Software Composition Analysis 355 Inside Look: Heartbleed 355 Mobile Software 357 Testing Mobile Applications 358 Code Storage 360 Conclusion 362 Chapter 13 Network Due Diligence 365 Third-Party Connections 368 Personnel Physical Security 368 Hardware Security 370 Software Security 371 Out-of-Band Security 372 Cloud Connections 374 Vendor Connectivity Lifecycle Management 375 Zero Trust for Third Parties 379 Internet of Things and Third Parties 385 Trusted Platform Module and Secure Boot 388 Inside Look: The Target Breach (2013) 390 Conclusion 391 Chapter 14 Offshore Third-Party Cybersecurity Risk 393 Onboarding Offshore Vendors 397 Ongoing Due Diligence for Offshore Vendors 399 Physical Security 399 Offboarding Due Diligence for Offshore Vendors 402 Inside Look: A Reminder on Country Risk 404 Country Risk 405 KC’s Country Risk 406 Conclusion 409 Chapter 15 Transform to Predictive 411 The Data 414 Vendor Records 415 Due Diligence Records 416 Contract Language 416 Risk Acceptances 417 Continuous Monitoring 417 Enhanced Continuous Monitoring 417 How Data is Stored 418 Level Set 418 A Mature to Predictive Approach 420 The Predictive Approach at KC Enterprises 420 Use Case #1: Early Intervention 423 Use Case #2: Red Vendors 425 Use Case #3: Reporting 426 Conclusion 427 Chapter 16 Conclusion 429 Advanced Persistent Threats Are the New Danger 431 Cybersecurity Third-Party Risk 435 Index 445
£26.40
