Computer networking and communications Books

Book SynopsisAs network science and technology continues to gain popularity, it becomes imperative to develop procedures to examine emergent network domains, as well as classical networks, to help ensure their overall optimization. Advanced Methods for Complex Network Analysis features the latest research on the algorithms and analysis measures being employed in the field of network science.

Read more less

Book SynopsisThe Secret Service, FBI, NSA, CERT (Computer Emergency Response Team) and George Washington University have all identified “Insider Threats” as one of the most significant challenges facing IT, security, law enforcement, and intelligence professionals today. This book will teach IT professional and law enforcement officials about the dangers posed by insiders to their IT infrastructure and how to mitigate these risks by designing and implementing secure IT systems as well as security and human resource policies. The book will begin by identifying the types of insiders who are most likely to pose a threat. Next, the reader will learn about the variety of tools and attacks used by insiders to commit their crimes including: encryption, steganography, and social engineering. The book will then specifically address the dangers faced by corporations and government agencies. Finally, the reader will learn how to design effective security systems to prevent insider attacks and how to investigate insider security breeches that do occur. Throughout the book, the authors will use their backgrounds in the CIA to analyze several, high-profile cases involving insider threats.Table of ContentsPart I – Insider Threat Basics 1. What Is There To Worry About? (40 pages) 2. Behind the Crime (60 pages) Part II – Government 3. State and Local Government (40 pages) 4. Federal Government (40 pages) Part III - Corporations 5. Commercial (40 pages) 6. Banking and Finance Sector (40 pages) 7. Government Contractors (20 pages) Part IV –Analysis 8. Profile (30 pages) 9. Response (20 pages) 10. Survivability and Prevention (40 pages)

Read more less

Book SynopsisDiscrete Structures introduces readers to the mathematical structures and methods that form the foundation of computer science and features multiple techniques that readers will turn to regularly throughout their careers in computer and information sciences.Over the course of five modules, students learn specific skills including binary and modular arithmetic, set notation, methods of counting, evaluating sums, and solving recurrences. They study the basics of probability, proof by induction, growth of functions, and analysis techniques. The book also discusses general problem-solving techniques that are widely applicable to real problems. Each module includes motivation applications, technique, theory, and further opportunities for application.Informed by extensive experience teaching in computer science programs, Discrete Structures has been developed specifically for first-year students in those programs. The material is also suitable for courses in computer engineering, as well as those for students who are transferring from other disciplines and just beginning their computer science or engineering education.

Read more less

Book SynopsisLearn how to hack systems like black hat hackers and secure them like security expertsKey Features Understand how computer systems work and their vulnerabilities Exploit weaknesses and hack into machines to test their security Learn how to secure systems from hackers Book DescriptionThis book starts with the basics of ethical hacking, how to practice hacking safely and legally, and how to install and interact with Kali Linux and the Linux terminal. You will explore network hacking, where you will see how to test the security of wired and wireless networks. You’ll also learn how to crack the password for any Wi-Fi network (whether it uses WEP, WPA, or WPA2) and spy on the connected devices.Moving on, you will discover how to gain access to remote computer systems using client-side and server-side attacks. You will also get the hang of post-exploitation techniques, including remotely controlling and interacting with the systems that you compromised. Towards the end of the book, you will be able to pick up web application hacking techniques. You'll see how to discover, exploit, and prevent a number of website vulnerabilities, such as XSS and SQL injections.The attacks covered are practical techniques that work against real systems and are purely for educational purposes. At the end of each section, you will learn how to detect, prevent, and secure systems from these attacks.What you will learn Understand ethical hacking and the different fields and types of hackers Set up a penetration testing lab to practice safe and legal hacking Explore Linux basics, commands, and how to interact with the terminal Access password-protected networks and spy on connected clients Use server and client-side attacks to hack and control remote computers Control a hacked system remotely and use it to hack other systems Discover, exploit, and prevent a number of web application vulnerabilities such as XSS and SQL injections Who this book is forLearning Ethical Hacking from Scratch is for anyone interested in learning how to hack and test the security of systems like professional hackers and security experts.Table of ContentsTable of Contents Introduction Setting up The Lab Linux Basics Network Penetration Testing Network Penetration Testing - Pre Connection Attacks Network Penetration Testing - Gaining Access (WEP/WPA/WPA2 Cracking) Post Connection Attacks Man-in-the-middle Attacks Network Penetration Testing - Detection & Security Gaining Access to Computer Devices Scanning vulnerabilities using Tools Client Side Attacks Client Side Attacks - Social Engineering Attack and Detect Trojans with BeEF Attacks Outside The Local Network Post Exploitation Website Penetration Testing Website Pentesting - Information Gathering File Upload, Code Execution & File Inclusion Vulns SQL Injection Vulnerabilities Cross Site Scripting Vulnerabilities Website Pentesting - Discovering Vulnerabilities Automatically Using OWASP ZAP

Read more less

Book SynopsisUse OpenSSL to add security features to your application, including cryptographically strong symmetric and asymmetric encryption, digital signatures, SSL/TLS connectivity, and PKI handlingKey Features Secure your applications against common network security threats using OpenSSL Get to grips with the latest version of OpenSSL, its new features, and advantages Learn about PKI, cryptography, certificate authorities, and more using real-world examples Book DescriptionSecurity and networking are essential features of software today. The modern internet is full of worms, Trojan horses, men-in-the-middle, and other threats. This is why maintaining security is more important than ever.OpenSSL is one of the most widely used and essential open source projects on the internet for this purpose. If you are a software developer, system administrator, network security engineer, or DevOps specialist, you've probably stumbled upon this toolset in the past – but how do you make the most out of it? With the help of this book, you will learn the most important features of OpenSSL, and gain insight into its full potential.This book contains step-by-step explanations of essential cryptography and network security concepts, as well as practical examples illustrating the usage of those concepts. You'll start by learning the basics, such as how to perform symmetric encryption and calculate message digests. Next, you will discover more about cryptography: MAC and HMAC, public and private keys, and digital signatures. As you progress, you will explore best practices for using X.509 certificates, public key infrastructure, and TLS connections.By the end of this book, you'll be able to use the most popular features of OpenSSL, allowing you to implement cryptography and TLS in your applications and network infrastructure.What you will learn Understand how to use symmetric cryptography Get to grips with message digests, MAC, and HMAC Discover asymmetric cryptography and digital signatures Focus on how to apply and use X.509 certificates Dive into TLS and its proper usage Manage advanced and special usages of TLS Find out how to run a mini certificate authority for your organization Who this book is forThis book is for software developers, system administrators, DevOps specialists, network security engineers, and analysts, or anyone who wants to keep their applications and infrastructure secure. Software developers will learn how to use the OpenSSL library to empower their software with cryptography and TLS. DevOps professionals and sysadmins will learn how to work with cryptographic keys and certificates on the command line, and how to set up a mini-CA for their organization. A basic understanding of security and networking is required.Table of ContentsTable of Contents OpenSSL and Other SSL/TLS Libraries Symmetric Encryption and Decryption Message Digests MAC and HMAC Derivation of an Encryption Key from a Password Asymmetric Encryption and Decryption Digital Signatures and Their Verification X.509 Certificates and PKI Establishing TLS Connections and Sending Data over Them Using X.509 Certificates in TLS Special Usages of TLS Running a Mini-CA

Read more less

Book SynopsisBecome an expert at managing enterprise identity infrastructure with Active Directory Domain Services 2022.Purchase of the print or Kindle book includes a free eBook in the PDF format.Key Features Design and update your identity infrastructure by utilizing the latest Active Directory features and core capabilities Overcome migration challenges as you update to Active Directory Domain Services 2022 Establish a strong identity foundation in the cloud by consolidating secure access Book DescriptionMastering Active Directory, Third Edition is a comprehensive guide for Information Technology professionals looking to improve their knowledge about MS Windows Active Directory Domain Service. The book will help you to use identity elements effectively and manage your organization's infrastructure in a secure and efficient way. This third edition has been fully updated to reflect the importance of cloud-based strong authentication and other tactics to protect identity infrastructure from emerging security threats. Mastering Active Directory, Third Edition provides extensive coverage of AD Domain Services and helps you explore their capabilities as you update to Windows Server 2022. This book will also teach you how to extend on-premises identity presence to cloud via Azure AD hybrid setup. By the end of this Microsoft Active Directory book, you'll feel confident in your ability to design, plan, deploy, protect, and troubleshoot your enterprise identity infrastructure.What you will learn Install, protect, and manage Active Directory Domain Services (Windows Server 2022) Design your hybrid identity by evaluating business and technology requirements Automate administrative tasks in Active Directory using Windows PowerShell 7.x Protect sensitive data in a hybrid environment using Azure Information Protection Learn about Flexible Single Master Operation (FSMO) roles and their placement Manage directory objects effectively using administrative tools and PowerShell Centrally maintain the state of user and computer configuration by using Group Policies Harden your Active Directory using security best practices Who this book is forIf you are an Active Directory administrator, system administrator, or IT professional who has basic knowledge of Active Directory and is looking to become an expert in this topic, this book is for you.You need to have some experience of working with Active Directory to make the most of this book.Table of ContentsTable of Contents Active Directory Fundamentals Active Directory Domain Services 2022 Designing an Active Directory Infrastructure Active Directory Domain Name System Placing Operations Master Roles Migrating to Active Directory 2022 Managing Active Directory Objects Managing Users, Groups, and Devices Designing the OU Structure Managing Group Policies Active Directory Services - Part 1 Active Directory Services - Part 2 Active Directory Certificate Services Active Directory Federation Services Active Directory Rights Management Services Active Directory Security Best Practices Advanced AD Management with PowerShell Hybrid Identity Active Directory Audit and Monitoring Bonus Chapter: Active Directory Troubleshooting Bonus Chapter: Appendix A, References

Read more less

Book SynopsisBecome a master Solutions Architect with this comprehensive guide, featuring cloud design patterns and real-world solutions for building scalable, secure, and highly available systems Purchase of the print or Kindle book includes a free eBook in PDF format. Key Features Gain expertise in automating, networking, migrating, and adopting cloud technologies using AWS Use streaming analytics, big data, AI/ML, IoT, quantum computing, and blockchain to transform your business Upskill yourself as an AWS solutions architect and explore details of the new AWS certification Book DescriptionAre you excited to harness the power of AWS and unlock endless possibilities for your business? Look no further than the second edition of AWS for Solutions Architects! Packed with all-new content, this book is a must-have guide for anyone looking to build scalable cloud solutions and drive digital transformation using AWS. This updated edition offers in-depth guidance for building cloud solutions using AWS. It provides detailed information on AWS well-architected design pillars and cloud-native design patterns. You'll learn about networking in AWS, big data and streaming data processing, CloudOps, and emerging technologies such as machine learning, IoT, and blockchain. Additionally, the book includes new sections on storage in AWS, containers with ECS and EKS, and data lake patterns, providing you with valuable insights into designing industry-standard AWS architectures that meet your organization's technological and business requirements. Whether you're an experienced solutions architect or just getting started with AWS, this book has everything you need to confidently build cloud-native workloads and enterprise solutions.What you will learn Optimize your Cloud Workload using the AWS Well-Architected Framework Learn methods to migrate your workload using the AWS Cloud Adoption Framework Apply cloud automation at various layers of application workload to increase efficiency Build a landing zone in AWS and hybrid cloud setups with deep networking techniques Select reference architectures for business scenarios, like data lakes, containers, and serverless apps Apply emerging technologies in your architecture, including AI/ML, IoT and blockchain Who this book is forThis book is for application and enterprise architects, developers, and operations engineers who want to become well versed with AWS architectural patterns, best practices, and advanced techniques to build scalable, secure, highly available, highly tolerant, and cost-effective solutions in the cloud. Existing AWS users are bound to learn the most, but it will also help those curious about how leveraging AWS can benefit their organization. Prior knowledge of any computing language is not needed, and there’s little to no code. Prior experience in software architecture design will prove helpful.Table of ContentsTable of Contents Understanding AWS Cloud Principles and Key Characteristics Understanding AWS Well Architected Framework and Getting Certified Leveraging the Cloud for Digital Transformation Networking in AWS Storage in AWS – Choosing the Right Tool for the Job Harnessing the Power of Cloud Computing Selecting the Right Database Service Best Practices for Application Security, Identity, and Compliance Driving Efficiency with CloudOps Big Data and Streaming Data Processing in AWS Data Warehouses, Data Queries, and Visualization in AWS Machine Learning, IoT, and Blockchain in AWS Containers in AWS Microservice Architectures in AWS Data Lake Patterns – Integrating Your Data across the Enterprise Hands-On Guide to Build Apps in AWS

Read more less

Book SynopsisUsing Android as a reference, this book teaches the development of mobile apps designed to be responsive, trustworthy and robust, and optimized for maintainability. As the share of mission-critical mobile apps continues to increase in the ever-expanding mobile app ecosystem, it has become imperative that processes and procedures to assure their reliance are developed and included in the software life cycle at opportune times. Memory, CPU, battery life and screen size limitations of smartphones coupled with volatility associated with mobile environments underlines that the quality assurance strategies that proved to be successful for desktop applications may no longer be effective in mobile apps. To that effect, this book lays a foundation upon which quality assurance processes and procedures for mobile apps could be devised. This foundation is composed of analytical models, experimental test-beds and software solutions. Analytical models proposed in the literature to predict software quality are studied and adapted for mobile apps. The efficacy of these analytical models in prejudging the operations of mobile apps under design and development is evaluated. A comprehensive test suite is presented that empirically assesses a mobile app’s compliance to its quality expectations. Test procedures to measure quality attributes such as maintainability, usability, performance, scalability, reliability, availability and security, are detailed. Utilization of test tools provided in Android Studio as well as third-party vendors in constructing the corresponding test-beds is highlighted. An in-depth exploration of utilities, services and frameworks available on Android is conducted, and the results of their parametrization observed through experimentation to construct quality assurance solutions are presented. Experimental development of some example mobile apps is conducted to gauge adoption of process models and determine favorable opportunities for integrating the quality assurance processes and procedures in the mobile app life cycle. The role of automation in testing, integration, deployment and configuration management is demonstrated to offset cost overheads of integrating quality assurance process in the life cycle of mobile apps. Table of ContentsAbbreviations and Acronyms List of Figures List of Tables Listing 1 Software Life Cycle 1.1 Process Models 1.2 Functional Specifications 1.2.1 User Stories 1.2.2 UML Use Case Diagrams 1.2.3 Software Requirements Specifications 1.3 Non-Functional Requirements 1.4 Test Driven Development 1.4.1 Acceptance Tests 1.4.2 Unit Tests 1.5 Continuous Integration and Delivery 1.5.1 Software Configuration Management 1.5.2 Continuous Integration and Delivery Summary EXERCISES REFERENCES 2 Development Fundamentals 2.1 Graphical User Interface 2.1.1 GUI Objects and Layouts 2.1.2 Event Handling 2.1.3 Redirection 2.2 Data Storage 2.2.1 Key-value Pairs 2.2.2 Files 2.2.3 Database Systems 2.2.4 Personal Data Storage 2.3 Data Connectivity 2.3.1 Web Access 2.3.2 Short Message Service 2.4 Concurrency 2.4.1 Threads and Asynchronous Tasks 2.4.2 Processes 2.5 Location and Sensor APIs Summary EXERCISES REFERENCES 3 Software Quality Assessment 3.1 Functional Requirements Testing 3.1.1 Equivalence Class Partitioning 3.1.2 Boundary Value Analysis 3.1.3 Domain Test Design 3.2 Maintainability 3.2.1 Sub-Characteristics 3.2.2 Maintainability Measures 3.3 Usability and Accessibility 3.3.1 Models 3.3.2 Evaluation 3.4 Performance Testing 3.4.1 Latency Measurement 3.4.2 GUI Performance 3.4.3 Memory Usage 3.4.4 Network Usage 3.4.5 Battery Usage 3.5 Scalability Testing 3.5.1 Scalability Models 3.5.2 Load Test Design 3.6 Reliability Testing 3.6.1 Growth Models 3.6.2 Fault Injection 3.6.3 Operational Profile 3.6.4 Reliability Test Design 3.7 Availability 3.7.1 Availability Models 3.7.2 Stress Testing 3.8 Safety 3.8.1 FMEA 3.8.2 FTA 3.9 Security 3.9.1 Vulnerabilities and Threat Analysis 3.9.2 Security Testing 3.10 Static Code Analysis Summary EXERCISES REFERENCES 151 4 Maintainability and Multi-Platform Development 4.1 Software Patterns 4.1.1 Programming Paradigms 4.1.2 Design Patterns 4.1.3 Architecture Patterns 4.2 Design Description 4.2.1 Structural 4.2.2 Behavioral 4.3 Multi-Platform Development 4.3.1 Native Development 4.3.2 Hybrid 4.3.3 Cross-Platform Development Summary EXERCISES REFERENCES 5 User Interaction Optimization 5.1 Multimodality 5.1.1 Touch Gestures 5.1.2 Motion Gestures 5.1.3 Verbal Gestures 5.1.4 Visual Gestures 5.1.5 Accessibility Frameworks 5.2 Navigation Controls 5.3 Dashboards 5.4 Custom GUI 5.5 Animated GUI Summary EXERCISES REFERENCES 6 Performance Acceleration 6.1 Data Compression 6.1.1 Lossless Compression 6.1.2 Lossy Compression 6.2 Data I/O Optimization 6.2.1 File System I/O 6.2.2 Network I/O 6.3 Rendering Pipelines 6.3.1 Animation Rendering 6.3.2 Video Rendering 6.3.3 Augmented Reality 6.3.4 Hardware Acceleration 6.4 Parallel Programming 6.4.1 Thread Priority 6.4.2 Data Parallel Computation Summary EXERCISES REFERENCES 7 Scalability Provisioning 7.1 Scalable Media Transport 7.2 Scalable Local Storage 7.2.1 Data Models 7.2.2 Data Structures and Query Plan 7.2.3 Location Queries 7.3 Scalable Design Patterns 7.3.1 Data Cache 7.3.2 Event Notifications 7.3.3 Task Scheduling 7.4 GUI Scalability Summary EXERCISES REFERENCES 8 Reliability Assurance 8.1 Thread Safe Patterns 8.1.1 Serializing GUI Updates 8.1.2 Serializing Shared Memory Access 8.1.3 Thread Synchronization 8.2 Memory Leaks 8.3 Reliable Persistent Storage 8.3.1 Isolation and Consistency 8.3.2 Atomicity and Durability 8.3.3 Sharded Persistent Storage 8.4 Data Validation 8.4.1 Input Validation 8.4.2 Integrity Constraints 8.5 Stateful Data Transport Summary EXERCISES REFERENCES 9 Availability and Fault-Tolerance 9.1 Availability Primitives 9.1.1 Design Diversity 9.1.2 Broadcast Primitives 9.2 Critical Communication Availability 9.2.1 Network Fault Tolerance 9.2.2 Design Diverse Emergency Communication Architecture 9.3 Sensor Fusion and Redundancy 9.4 Data Availability 9.4.1 Data Synchronization 9.4.2 Data Sharing 9.5 Battery Power Saving Summary EXERCISES REFERENCES 10 Security and Trust 10.1 Cryptographic Primitives 10.1.1 Symmetric Cryptography 10.1.2 Asymmetric Cryptography 10.1.3 Message Digest 10.1.4 Message Authentication Codes 10.1.5 Digital Signatures 10.2 Secure Web Access 10.2.1 User Authentication 10.2.2 Authentication Delegation and Single Sign On 10.2.3 Access and Authorization Delegation 10.2.4 Peer-Authentication and Confidentiality 10.3 Secure Network Access 10.3.1 Transport Layer Security 10.3.2 Layer 3 Security 10.3.3 Layer 2 Security 10.4 Secure System Access 10.4.1 Mobile Application Authenticity 10.4.2 Securing Inter-Application Communication 10.4.3 Permissions and Access Control Summary EXERCISES REFERENCES Appendix A Appendix B B.1 Compile and Deploy a Servlet B.2 Compile and Deploy a Web Socket Hub B.3 Configure Tomcat to Enable SSL B.4 Install and Configure Jenkins B.5 Install Metrics Reloaded Index

Read more less

Book SynopsisThis book constitutes the proceedings of the 21st International Conference on Verification, Model Checking, and Abstract Interpretation, VMCAI 2020. The 21 papers presented in this volume were carefully reviewed from 44 submissions. VMCAI provides a forum for researchers from the communities of verification, model checking, and abstract Interpretation, facilitating interaction, cross-fertilization, and advancement of hybrid methods that combine these and related areas. Table of ContentsWitnessing Secure Compilation.- BackFlow: Backward Context-sensitive Flow Reconstruction of Taint Analysis Results.- Fixing Code That Explodes Under Symbolic Evaluation.- The Correctness of a Code Generator for a Functional Language.- Leveraging Compiler Intermediate Representation for Multi- and Cross-Language Verification.- Putting the Squeeze on Array Programs: Loop Verification via Inductive Rank Reduction.- A Systematic Approach to Abstract Interpretation of Program Transformations.- Sharing ghost variables in a collection of abstract domains.- Harnessing Static Analysis to Help Learn Pseudo-Inverses of String Manipulating Procedures for Automatic Test Generation.- Synthesizing Environment Invariants for Modular Hardware Verification.- Systematic Classi cation of Attackers via Bounded Model Checking.- Cheap CTL Compassion in NuSMV.- A Cooperative Parallelization Approach for Property-Directed k-Induction.- Generalized Property-Directed Reachability for Hybrid Systems.- Language Inclusion for Finite Prime Event Structures.- Promptness and Bounded Fairness in Concurrent and Parameterized Systems.- Solving LIA* Using Approximations.- Formalizing and checking Multilevel Consistency.- Practical Abstractions for Automated Veri cation of Shared-Memory Concurrency.- How to Win First-Order Safety Games.- Improving Parity Game Solvers with Justifications.

Read more less