Computer security Books

Book Synopsis

Read more less

a huge range and FREE tracked UK delivery on ALL orders.

Read more less

Book SynopsisMark Merkow, CISSP, CISM, CSSLP, is a technical director for a Fortune 100 financial services firm, where he works on implementing and operating a software security practice for the enterprise. He has more than 35 years of IT experience, including 20 years in IT security. Mark has worked in a variety of roles, including applications development, systems analysis and design, security engineering, and security management. Mark holds a master's degree in decision and info systems from Arizona State University (ASU), a master's of education in Distance Learning from ASU, and a bachelor's degree in Computer Info Systems from ASU. Jim Breithaupt is a data integrity manager for a major bank, where he manages risk for a large data mart. He has more than 30 years of data processing experience and has co-authored several other books on information systems and information security, along with Mark Merkow.Table of ContentsPreface Chapter 1: Why Study Information Security? Introduction The Growing Importance of IT Security and New Career Opportunities An Increase in Demand by Government and Private Industry Becoming an Information Security Specialist Schools Are Responding to Demands The Importance of a Multidisciplinary Approach Contextualizing Information Security Information Security Careers Meet the Needs of Business Summary Chapter 2: Information Security Principles of Success Introduction Principle 1: There Is No Such Thing As Absolute Security Principle 2: The Three Security Goals Are Confidentiality, Integrity, and Availability Integrity Models Availability Models Principle 3: Defense in Depth as Strategy Principle 4: When Left on Their Own, People Tend to Make the Worst Security Decisions Principle 5: Computer Security Depends on Two Types of Requirements: Functional and Assurance Principle 6: Security Through Obscurity Is Not an Answer Principle 7: Security = Risk Management Principle 8: The Three Types of Security Controls Are Preventative, Detective, and Responsive Principle 9: Complexity Is the Enemy of Security Principle 10: Fear, Uncertainty, and Doubt Do Not Work in Selling Security Principle 11: People, Process, and Technology Are All Needed to Adequately Secure a System or Facility Principle 12: Open Disclosure of Vulnerabilities Is Good for Security! Summary Chapter 3: Certification Programs and the Common Body of Knowledge Introduction Certification and Information Security International Information Systems Security Certifications Consortium (ISC)2 The Information Security Common Body of Knowledge Information Security Governance and Risk Management Security Architecture and Design Business Continuity and Disaster Recovery Planning Legal Regulations, Investigations, and Compliance Physical (Environmental) Security Operations Security Access Control Cryptography Telecommunications and Network Security Software Development Security Other Certificate Programs in the IT Security Industry Certified Information Systems Auditor Certified Information Security Manager Certified in Risk and Information Systems Control Global Information Assurance Certifications (ISC)2 Specialization Certificates CCFP: Certified Cyber Forensics Professional HCISPP: HealthCare Information Security and Privacy Practitioner Vendor-Specific and Other Certification Programs Summary Chapter 4: Governance and Risk Management Introduction Security Policies Set the Stage for Success Understanding the Four Types of Policies Programme-Level Policies Programme-Framework Policies Issue-Specific Policies System-Specific Policies Developing and Managing Security Policies Security Objectives Operational Security Policy Implementation Providing Policy Support Documents Regulations Standards and Baselines Guidelines Procedures Suggested Standards Taxonomy Asset and Data Classification Separation of Duties Employment Hiring Practices Risk Analysis and Management Education, Training, and Awareness Who Is Responsible for Security? Summary Chapter 5: Security Architecture and Design Introduction Defining the Trusted Computing Base Rings of Trust Protection Mechanisms in a TCB System Security Assurance Concepts Goals of Security Testing Formal Security Testing Models The Trusted Computer Security Evaluation Criteria Division D: Minimal Protection Division C: Discretionary Protection Division B: Mandatory Protection Division A: Verified Protection The Trusted Network Interpretation of the TCSEC The Information Technology Security Evaluation Criteria Comparing ITSEC to TCSEC ITSEC Assurance Classes The Canadian Trusted Computer Product Evaluation Criteria The Federal Criteria for Information Technology Security The Common Criteria Protection Profile Organization Security Functional Requirements Evaluation Assurance Levels The Common Evaluation Methodology Confidentiality and Integrity Models Bell-LaPadula Model Biba Integrity Model Advanced Models Summary Chapter 6: Business Continuity Planning and Disaster Recovery Planning Introduction Overview of the Business Continuity Plan and Disaster Recovery Plan Why the BCP Is So Important Types of Disruptive Events Defining the Scope of the BCP Creating the Business Impact Analysis Disaster Recovery Planning Identifying Recovery Strategies Understanding Shared-Site Agreements Using Alternate Sites Making Additional Arrangements Testing the DRP Summary Chapter 7: Law, Investigations, and Ethics Introduction Types of Computer Crime How Cybercriminals Commit Crimes The Computer and the Law Legislative Branch of the Legal System Administrative Branch of the Legal System Judicial Branch of the Legal System Intellectual Property Law Patent Law Trademarks Trade Secrets Privacy and the Law International Privacy Issues Privacy Laws in the United States Computer Forensics The Information Security Professional’s Code of Ethics Other Ethics Standards Computer Ethics Institute Internet Activities Board: Ethics and the Internet Code of Fair Information Practices Summary Chapter 8: Physical Security Control Introduction Understanding the Physical Security Domain Physical Security Threats Providing Physical Security Summary Chapter 9: Operations Security Introduction Operations Security Principles Operations Security Process Controls Operations Security Controls in Action Software Support Configuration and Change Management Backups Media Controls Documentation Maintenance Interdependencies Summary Chapter 10: Access Control Systems and Methodology Introduction Terms and Concepts Identification Authentication Least Privilege (Need to Know) Information Owner Discretionary Access Control Access Control Lists Mandatory Access Control Role-Based Access Control Principles of Authentication The Problems with Passwords Multifactor Authentication Biometrics Single Sign-On Kerberos Federated Identities Remote User Access and Authentication Remote Access Dial-In User Service Virtual Private Networks Summary Chapter 11: Cryptography Introduction Applying Cryptography to Information Systems Basic Terms and Concepts Strength of Cryptosystems Cryptosystems Answer the Needs of Today’s E-Commerce The Role of Keys in Cryptosystems Putting the Pieces to Work Digesting Data Digital Certificates Examining Digital Cryptography Hashing Functions Block Ciphers Implementations of PPK Cryptography Summary Chapter 12: Telecommunications, Network, and Internet Security Introduction An Overview of Network and Telecommunications Security Network Security in Context The Open Systems Interconnection Reference Model The Protocol Stack The OSI Reference Model and TCP/IP The OSI Model and Security Data Network Types Local Area Networks Wide Area Networks Internet Intranet Extranet Protecting TCP/IP Networks Basic Security Infrastructures Routers Firewalls Intrusion Detection Systems Intrusion Prevention Systems Virtual Private Networks IPSec Encapsulating Security Protocol Security Association Internet Security Association and Key Management Protocol Security Policies IPSec Key Management Applied VPNs Cloud Computing Summary Chapter 13: Software Development Security Introduction The Practice of Software Engineering Software Development Life Cycles Don’t Bolt Security On–Build It In Catch Problems Sooner Rather Than Later Requirements Gathering and Analysis Systems Design and Detailed Design Design Reviews Development (Coding) Phase Testing Deployment Security Training Measuring the Secure Development Program Open Software Assurance Maturity Model (OpenSAMM) Building Security in Maturity Model (BSIMM) Summary Chapter 14: Securing the Future Introduction Operation Eligible Receiver Carders, Account Takeover, and Identity Theft Some Definitions ZeuS Banking Trojan Phishing and Spear Phishing Other Trends in Internet (In)Security The Year (Decade?) of the Breach The Rosy Future for InfoSec Specialists Summary Appendix A: Common Body of Knowledge Access Control Telecommunications and Network Security Information Security Governance and Risk Management Software Development Security Cryptography Security Architecture and Design Operations Security Business Continuity and Disaster Recovery Planning Legal Regulations, Investigations, and Compliance Physical (Environmental) Security Appendix B: Security Policy and Standards Taxonomy Appendix C: Sample Policies Sample Computer Acceptable Use Policy 1.0.0 Acceptable Use Policy Sample Email Use Policy 1.0.0 Email Use Policy Sample Password Policy 1.0.0 Password Policy Sample Wireless (WiFi) Use Policy 1.0.0 Wireless Communication Policy Appendix D: HIPAA Security Rule Standards HIPAA Security Standards Administrative Procedures Physical Safeguards Technical Security Services Technical Security Mechanisms 9780789753250 TOC 5/7/2014

Read more less

Book SynopsisBioterrorism in Medical and Healthcare Administration provides an efficient method to identify, manage, and control transformations in the provision of health services during elevated levels of bioterrorist threat - offering step-by-step procedures and templates to prepare and implement a coordinated response to high-alert situations. This reference proposes an efficient method to identify, manage, and control transformations in the provision of health services during elevated levels of bioterrorist threat - offering step-by-step procedures and templates to prepare and implement a coordinated response to high-alert situations.Table of ContentsPART I: HOW TO DEVELOP OR ADAPT EMERGENCY PLANS FOR BIOTERRORIST THREATS. Strategy and Bioterrorism. Strategic Intervention: Tactical Analysis and Countervailing Tactics for Bioterrorism and Its Consequences. Bioterrorism's Threat and Planned Response: Strategic Analysis and Design. Counteracting a Bioterrorist Strategy: Overcoming the Inevitable Obstacles to Change. A Coordinated Response to Bioterrorism: In-House Training and Planning for Staff, Professionals, and Managers. PART II: SEMI-FICTIONAL CASE STUDIES. A Hypothetical Bioterrorist Attack. A Hospital Plans for Bioterrorism. A State Deals with Terrorism. An International Organization, WABO, Deals with Bioterrorism. A Country Deals with Bioterrorism. An International Organization of States Deals with Bioterrorism. Conclusion. Appendix: Solutions to the Analysis of the Cases. Index.

Read more less

Book SynopsisSocial media applications can be weaponized with very little skill. Social media warfare has become a burden that nation states, government agencies, and corporations need to face. To address the social media warfare threat in a reasonable manner that reduces uncertainty requires dedication and attention over a very long-term. To stay secure, they need to develop the capability to defend against social media warfare attacks. Addressing unconventional warfare strategies and tactics takes time and experience, plus planning and dedication. This book will help managers develop a sound understanding of how social media warfare can impact their nation or their organization.Table of ContentsA Framework to Analyze Emerging Social Media Warfare Strategies. Civilian Government Use of Social Media to Attack, Defend, or Control. Military Applications of Social Media Warfare. Corporate Efforts to Deploy or Respond to Social Media Warfare Strategies. Special Interest Groups use of Social Media Warfare. Social Media Warfare in the Political Electoral Process. Social Media Warfare for Support of Social Causes. The Mercenaries and Activists of Social Media Warfare. Social Media as a Weapon to Recruit and Inspire Violent Extremists. Social Media Warfare for Celebrity and People of Notoriety. Child Victims in Social Media Warfare. Adult Victims in Social Media Warfare. Law Enforcement Response to Social Media Warfare. Educational Institutions Response to Social Media Warfare. Monitoring Social Media Warfare Threats.

Read more less

Book SynopsisThe book takes readers though a series of security and risk discussions based on real-life experiences. While the experience story may not be technical, it will relate specifically to a value or skill critical to being a successful CISO. The core content is organized into ten major chapters, each relating to a Rule of Information Security developed through a career of real life experiences. The elements are selected to accelerate the development of CISO skills critical to success. Each segments clearly calls out lessons learned and skills to be developed. The last segment of the book addresses presenting security to senior execs and board members, and provides sample content and materials.Trade ReviewAs a CISO, I approached Gene's book with caution. Put two such people in a room and ask them a question, and an argument will inevitably ensue - even if they agree. Therefore, and as you might expect, I found some of Gene's conclusions to differ from mine. But what really stood out to me is how, even as I was having these arguments play out inside my head, I seemed to also be adopting an almost imperceptible yet constant nod. I could not help but enjoy reading his thoughtful analysis of every information security topic that he chooses to tackle, and his ability to tie everything together in an easy-to-understand, clear and logical fashion is highly appreciated and sorely needed in the industry.Then, as I continued my journey through Gene's carefully laid-out thoughts and explanations, personal experiences, war stories, and insightful advice, it became apparent that this is far more than merely an instructional book into the many aspects of managing information security. Indeed, for anyone who is interested in advancing their career in the field, this book offers countless tools that can be followed to success, in every area. Just the chapter "NEVER trust and ALWAYS verify" is itself worth the price of admission.Consume it slowly, and give it the attention it deserves, and Gene's book will repay you for it in spades. You may not follow his exact path, but whatever path you take, his guidance will certainly help you forward.-- Barak Engel, CISO and author of Why CISOs Fail: The Missing Link in Security Management--and How to Fix ItTable of ContentsList of FiguresList of TablesPrologueForewordAcknowledgmentsAuthorSection I INTRODUCTION AND HISTORY1 Introduction: The Journey2 Learning from History?3 My First CISO Lesson: The SquirrelSection II THE RULES AND INDUSTRY DISCUSSION4 A Weak Foundation Amplifies Risk5 If a Bad Guy Tricks You into Running His Code on Your Computer, It’s Not Your Computer Anymore6 There’s Always a Bad Guy Out There Who’s Smarter, More Knowledgeable, or Better-Equipped Than You7 Know the Enemy, Think Like the Enemy8 Know the Business, Not Just the Technology9 Technology Is Only One-Third of Any Solution10 Every Organization Must Assume Some Risk11 When Preparation Meets Opportunity, Excellence Happens12 There Are Only Two Kinds of Organizations: Those That Know They’ve Been Compromised and Those That Don’t Know Yet13 In Information Security, Just Like in Life, Evolution Is Always Preferable to Extinction14 A Security Culture Is In Place When Talk Is Replaced with Action15 NEVER Trust and ALWAYS VerifySection III SUMMARY16 My Best Advice for New CISOsAppendix A: The Written Information Security PlanAppendix B: Talking to the BoardAppendix C: Establishing an Incident Response ProgramAppendix D: Sample High-Level Risk Assessment Methodology

Read more less

Book SynopsisIn today's interactive network environment, where various types of organizations are eager to monitor and track Internet use, anonymity is one of the most powerful resources available to counterbalance the threat of unknown spectators and to ensure Internet privacy.Addressing the demand for authoritative information on anonymous Internet usage, Anonymous Communication Networks: Protecting Privacy on the Web examines anonymous communication networks as a solution to Internet privacy concerns. It explains how anonymous communication networks make it possible for participants to communicate with each other without revealing their identities.The book explores various anonymous communication networks as possible solutions to Internet privacy concernsmaking it ideal for network researchers and anyone interested in protecting their privacy or the privacy of their users. Identifying specific scenarios where it is best to be anonymous, it details the two mainTable of ContentsAnonymity in Network Communication. Mix Networks. Application of Mix Network to E-Voting: A Case Study. Onion Routing. Optimisation and Practical Application of Onion Routing. Practical Systems to Achieve Anonymity: How to Use Them.

Read more less

Book SynopsisIf you're an information security professional today, you are being forced to address growing cyber security threats and ever-evolving compliance requirements, while dealing with stagnant and decreasing budgets. The Frugal CISO: Using Innovation and Smart Approaches to Maximize Your Security Posture describes techniques you can immediately put to use to run an effective and efficient information-security management program in today's cost-cutting environment.The book outlines a strategy for managing the information security function in a manner that optimizes cost efficiency and results. This strategy is designed to work across a wide variety of business sectors and economic conditions and focuses on producing long-term results through investment in people and technology.The text illustrates real-world perspectives that reflect the day-to-day issues that you face in running an enterprise's security operations. Focused on managing information sTable of ContentsNew Normal. Information Security Maturity Life Cycle. Reducing Complexity. Frugal Hiring. Frugal Team Management. Managing External Parties Effectively. Security Awareness: Fluff or Strategic Investment? Information Security Policies and Procedures. Is This Necessary? Understand the Budgeting Cycle. Using the Goldilocks Principle. The Hybrid (Frugal) CISO. Frugality as a Continuing Strategy for Information Security Management.

Read more less

Book SynopsisThis volume assembles hundreds of cases and studies to provide the most accurate and comprehensive picture of the status of pornography in the criminal justice system. Presenting high-level research in an accessible and organized manner, it explores a range of topics, including investigating and prosecuting a case, arguments favoring and opposing decriminalization of pornography, and relationships between pornography, mental disorders, and crime. It also examines criminal justice responses and international laws, policies, attitudes, and definitions of pornography in comparison to those of the United States.Trade Review"… an exceptionally comprehensive survey of many different dimensions of pornography. … the author identifies various court rulings, case outcomes, and such matters as police investigations, federal and state punishments, criminal justice personnel as perpetrators, and evidentiary standards on the topic. Altogether, this book provides a starting point for more in-depth exploration of various aspects of pornography. References are quite extensive and useful. Summing Up: Highly recommended. Upper-division undergraduates and above."—D. O. Friedrichs, University of ScrantonTable of ContentsPhilosophical and Jurisprudential Underpinnings. Pornography in the U. S. Criminal Justice System. Obscenity. Pornography Production and the U. S. Criminal Justice System. Children, Pornography, and the Law. Pornography and Viewers’ Crime. Relationship Between Pornography and Trafficking. Commonalities and Comorbidities Within Child Pornography. Prosecution. Illegal Pornography, Cyberspace, and Technology. The Pornography Business and Crime. Family Law and Pornography. Public Pornography. Unintended Pornography. Bestiality. Simulations. Fantasies and Free Speech. Punishments for Pornography. Crooked Members of the Criminal Justice System. Evidence. Pornography Addiction, Retribution, and Rehabilitation. International and Comparative. The Future. Index.

Read more less

HealthCare Information Security and Privacy Practitioners (HCISPPSM) are the frontline defense for protecting patient information. These are the practitioners whose foundational knowledge and experience unite healthcare information security and privacy best practices and techniques under one credential to protect organizations and sensitive patient data against emerging threats and breaches.The Official (ISC)2® Guide to the HCISPPSM CBK® is a comprehensive resource that provides an in-depth look at the six domains of the HCISPP Common Body of Knowledge (CBK). This guide covers the diversity of the healthcare industry, the types of technologies and information flows that require various levels of protection, and the exchange of healthcare information within the industry, including relevant regulatory, compliance, and legal requirements.Numerous illustrated examples and tables are included that illustrate key concepts, frameworks, and real-life scenarios. Endorsed by the (ISC)² and compiled and reviewed by HCISPPs and (ISC)² members, this book brings together a global and thorough perspective on healthcare information security and privacy. Utilize this book as your fundamental study tool in preparation for the HCISPP certification exam.

Read more less

Book SynopsisIf you're a Basis administrator looking to keep your SAP system under lock and key, this is the book for you. Discover information on security-relevant issues, from identity and access management to network and backend security. Then get the technical know-how to identify vulnerabilities and defend your system from internal and external threats. Secure your SAP system from the ground up. Highlights include: Password security, CommonCryptoLib, Single sign-on (SSO), Authorizations, Transport security, Audit logging, Patching, Client locking, RFC security, Operating system and database security. With this book, you will be able to: Configure application, network, and infrastructure security. Set up identity and access management: roles, authorizations, SSO. Prepare for audits and learn to maintain your security setup long-term.Table of Contents Preface Target Audience System Administration: A Vast Field of Options What Is Basis? Structure of This Book Introduction Potential Threats The Onion Concept Risk and True Cost of Security The Administrator's Role in Security Summary Configuring Profiles and Parameters Understanding System Parameters System Profiles Profile and Parameter Structure Static and Dynamic Parameters Viewing and Setting Parameters Key Security-Related Parameters Controlling Access to Change Parameters Summary Restricting Transactional Access Clients Who Should Be Able to Lock and Unlock Transactions? Which Transactions to Lock Locking Transactions Viewing Locked Transactions Summary Securing Clients Client Settings Client Logon Locking Summary Securing the Kernel Understanding the Kernel Common Cryptographic Library Kernel Update Summary Managing Users What Is a User ID in SAP? Different User Types The User Buffer Creating and Maintaining a User Copy a User Change Documents for Users Mass User Changes with Transaction SU10 User Naming Convention Security Policies Maintain User Groups Central User Administration User Lock Status User Classification User-Related Tables Securing Default Accounts User Access Reviews Inactive Users Password and Logon Security Segregation of Duties Summary Configuring Authorizations Authorization Fundamentals SAP Role Design Concepts The Profile Generator Assign and Remove Roles Lock and Unlock Transactions Transaction SUIM: User Information System Role Transport Common Standard Profiles Types of Transactions Table Authorizations Printer Authorizations Other Important Authorization Objects Transaction SACF: Switchable Authorizations Customizing Entries in Tables PRGN_CUST and SSM_CUST Mass Maintenance of Values within Roles Upgrading to a New Release ABAP Debugger Authorization Redesign and Cleanup Introduction to SAP GRC Access Control Summary Authentication What Is Single Sign-On? Single Sign-On Technologies SAP GUI Single Sign-On Setup SAML Summary Patching Patching Concepts: SAP’s Approach to Patching Application of Security SAP Notes Implications of Upgrades and Support Packages Evaluating Security with SAP Solution Manager Summary Securing Transports Transport System Concepts Transport Authorizations Operating System–Level Considerations Landscape Considerations Summary Auditing and Logging External Audits Internal Audits Auditing Tools Summary Securing Network Communications Choosing a Network Security Strategy Securing Using Access Controls Securing the Transport Layer Connecting to the Internet and Other Networks Summary Configuring Encryption Introduction to Cryptography Enabling SSL/TLS The Internet Connection Manager SAP Web Dispatcher Summary Database Security Platform-Independent Database Considerations Securing the Database Connection Logging and Encrypting Your Database Summary Infrastructure Security Business Secure Cell Concept Secure Landscape Policy Operating System Considerations Monitoring Virtualization Security Considerations Network Security Considerations Physical Security Summary The Authors Index

Read more less

Book SynopsisMost organizations have been caught off-guard with the proliferation of smart devices. The IT organization was comfortable supporting the Blackberry due to its ease of implementation and maintenance. But the use of Android and iOS smart devices have created a maintenance nightmare not only for the IT organization but for the IT auditors as well. This book will serve as a guide to IT and Audit professionals on how to manage, secure and audit smart device. It provides guidance on the handling of corporate devices and the Bring Your Own Devices (BYOD) smart devices.Table of ContentsPart I: Benefits and Risks of Smart Devices, 1. Definition of a Smart Device, 2. Ownership of Devices, 3. Data Types, 4. Uses and Benefits of Smart Devices, 5. The Risks Associated with the Use of Smart Devices, Part II: Security of Smart Devices, 6. Hardware Features, 7. Operating System Security, 8. Securing Smart Devices, Part III: Managing Smart Devices, 9. Smart Devices Use Policy, 10. Security Policy, 11. Mobile Device Management, 12. Registering Smart Devices, 13. Provisional Email, Calendar and Contact, 14. Application Development and Deployment, 15. Connecting to Corporate Network, Part IV: Compliance, Reporting and Monitoring, 16. Compliance, Part V: Reporting, Monitoring and Auditing, 17. Reporting, Monitoring and Auditing, 18. Sample Audit Plan, Part VI: Samples, Sample I. Smart Device Use and Security Policy, Sample II. Smart Device Use Policy Form, Sample III. Minimum Smart Device Configuration Security Standard

Read more less

Book SynopsisThe threat against the homeland continues and the private investigator plays a critical part in this effort. This includes in providing criminal, civil and background investigation, protective service, security consulting and electronic sweeps. The text will provide an overview of the role of private investigation in protection of the homeland and show how such skill can be utilized by business and government in this effort.Table of ContentsAcknowledgements and DedicationAbout the AuthorChapter One: Historical Overview of Private InvestigationChapter Two: Private Investigation Licensing RequirementChapter Three: Private Investigation and Legal IssuesChapter Four: Establishing a Professional Private Investigative BusinessChapter Five: Conducting Investigations Related to Homeland Security Chapter Six: Other Private Investigation Services Related to Homeland SecurityChapter Seven: Private Investigative Agency Security Services Chapter Eight: The Future of Private Investigation and Homeland SecurityAppendix I: State Licensing for Private InvestigatorsAppendix II: Professional International and National Private Investigative and Intelligence Organizations and PublicationsAppendix III: Professional Private Investigation CertificationsAppendix IV: Private Investigative Agency Contract Security Force ChecklistAppendix V: Pennsylvania Private Detective ActAppendix VI: Pennsylvania Lethal Weapons Training ActAppendix VII: Virginia Private Investigator Training Course OutlineAppendix VIII: New York Security Guard TrainingIndex

Read more less

Book SynopsisPoC or GTFO, Volume 2 follows in the tradition of Phrack and Uninformed by publishing on the subjects of offensive security research, reverse engineering, and file format internals. Until the release of Volume 1, the journal had only been available online or printed and distributed for free at hacker conferences worldwide. This volume is a much-anticipated follow-up complete with issues 9-16 of the beloved hacker zine. Consistent with the journal's quirky, Hacker-biblical style, this book comes with all the trimmings: a leatherette cover, ribbon bookmark, bible paper, and gilt-edged pages.

Read more less

Book Synopsis"Stealing the Network: How to Own the Box is a unique book in the fiction department. It combines stories that are fictional, with technology that is real. While none of the stories have happened, there is no reason why they could not. You could argue it provides a road map for criminal hackers, but I say it does something else: it provides a glimpse into the creative minds of some of today’s best hackers, and even the best hackers will tell you that the game is a mental one." – from the Foreword to the first Stealing the Network book, How to Own the Box, Jeff Moss, Founder & Director, Black Hat, Inc. and Founder of DEFCON For the very first time the complete Stealing the Network epic is available in an enormous, over 1000 page volume complete with the final chapter of the saga and a DVD filled with behind the scenes video footage! These groundbreaking books created a fictional world of hacker superheroes and villains based on real world technology, tools, and tactics. It is almost as if the authors peered into the future as many of the techniques and scenarios in these books have come to pass. This book contains all of the material from each of the four books in the Stealing the Network series. All of the stories and tech from: How to Own the Box How to Own a Continent How to Own an Identity How to Own a Shadow Plus: Finally - find out how the story ends! The final chapter is here! A DVD full of behind the scenes stories and insider info about the making of these cult classics!Trade Review"Stealing the Network: How to Own the Box is a unique book in the fiction department. It combines stories that are fictional with technology that is real." --Jeff Moss, Founder and CEO of Black HatTable of ContentsStealing the Network: How to Own the Box (Annotated); Stealing the Network: How to Own a Continent (Annotated); Stealing the Network: How to Own an Identity (Annotated); Stealing the Network: How to Own a Shadow (Annotated); Stealing the Network: The Final Chapter

Read more less