The Comprehensive Guide to Computer Security, Extensively Revised with Newer Technologies, Methods, Ideas, and Examples

 

In this updated guide, University of California at Davis Computer Security Laboratory co-director Matt Bishop offers clear, rigorous, and thorough coverage of modern computer security. Reflecting dramatic growth in the quantity, complexity, and consequences of security incidents, Computer Security, Second Edition, links core principles with technologies, methodologies, and ideas that have emerged since the first edition’s publication.

 

Writing for advanced undergraduates, graduate students, and IT professionals, Bishop covers foundational issues, policies, cryptography, systems design, assurance, and much more. He thoroughly addresses malware, vulnerability analysis, auditing, intrusion detection, and best-practice responses to attacks. In addition to new examples throughout, Bishop presents entirely new chapters on availability policy models and attack analysis.

• Understand computer security goals, problems, and challenges, and the deep links between theory and practice
• Learn how computer scientists seek to prove whether systems are secure
• Define security policies for confidentiality, integrity, availability, and more
• Analyze policies to reflect core questions of trust, and use them to constrain operations and change
• Implement cryptography as one component of a wider computer and network security strategy
• Use system-oriented techniques to establish effective security mechanisms, defining who can act and what they can do
• Set appropriate security goals for a system or product, and ascertain how well it meets them
• Recognize program flaws and malicious logic, and detect attackers seeking to exploit them

This is both a comprehensive text, explaining the most fundamental and pervasive aspects of the field, and a detailed reference. It will help you align security concepts with realistic policies, successfully implement your policies, and thoughtfully manage the trade-offs that inevitably arise.

 

Register your book for convenient access to downloads, updates, and/or corrections as they become available. See inside book for details.

Matt Bishop is a professor in the Department of Computer Science at the University of California at Davis. His main research interest is the analysis of vulnerabilities in computer systems, including modeling them, building tools to detect vulnerabilities, and ameliorating or eliminating them. He works in the areas of network security, including the study of denial of service attacks and defenses, policy modeling, software assurance testing, resilience, and formal modeling of access control. He was co-chair of the Joint Task Force that developed the Cybersecurity Curricula 2017: Curriculum Guidelines for Post-Secondary Degree Programs in Cybersecurity, released in December 2017. He earned his Ph.D. in computer science from Purdue University in 1984.

1. An Overview of Computer Security
2. Access Control Matrix
3. Foundational Results
4. Security Policies
5. Confidentiality Policies
6. Integrity Policies
7: Availability Policies
8. Hybrid Policies
9. Noninterference and Policy Composition
10. Basic Cryptography
11. Cipher Techniques
12. Key Management
13. Authentication
14. Design Principles
15. Representing Identity
16. Access Control Mechanisms
17. Information Flow
18. Confinement Problem
19. Introduction to Assurance
20. Building Systems with Assurance
21. Formal Methods
22. Evaluating Systems
23. Malicious Logic
24. Vulnerability Analysis
25. Auditing
26. Intrusion Detection
27. Attack Analysis
28. Network Security
29. System Security
30. User Security
31. Program Security
32. Security Management
33. Electronic Voting
34. Lattices
35. Entropy and Uncertainty
36. Virtual Machines
37. Symbolic Logic
38. Example Academic Security Policy
Bibliography and Index