The myths of security : what the computer security industry doesn't want you to know

The myths of security what the computer security industry doesn't want you to know

If you think computer security has improved in recent years, The Myths of Security will shake you out of your complacency. Longtime security professional John Viega, formerly Chief Security Architect at McAfee, reports on the sorry state of the industry, and offers concrete suggestions for professio...

Descripción completa

Detalles Bibliográficos
Autor principal: Viega, John (-)
Formato: Libro electrónico
Idioma:Inglés
Publicado: Beijing ; Cambridge : O'Reilly [2009]
Edición:First edition
Materias:
Computer networks > Security measures.
Computer security.
Ver en Biblioteca Universitat Ramon Llull:https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009627412606719
Tabla de Contenidos:
  • Contents; Foreword; Preface; Why Myths of Security?; Acknowledgments; How to Contact Us; Safari® Books Online; The Security Industry Is Broken; Security: Nobody Cares!; It's Easier to Get "0wned" Than You Think; It's Good to Be Bad; Test of a Good Security Product: Would I Use It?; Why Microsoft's Free AV Won't Matter; Google Is Evil; Why Most AV Doesn't Work (Well); Why AV Is Often Slow; Four Minutes to Infection?; Personal Firewall Problems; Call It "Antivirus"; Why Most People Shouldn't Run Intrusion Prevention Systems; Problems with Host Intrusion Prevention; Plenty of Phish in the Sea
  • The Cult of SchneierHelping Others Stay Safe on the Internet; Snake Oil: Legitimate Vendors Sell It, Too; Living in Fear?; Is Apple Really More Secure?; OK, Your Mobile Phone Is Insecure; Should You Care?; Do AV Vendors Write Their Own Viruses?; One Simple Fix for the AV Industry; Open Source Security: A Red Herring; Why SiteAdvisor Was Such a Good Idea; Is There Anything We Can Do About Identity Theft?; Virtualization: Host Security's Silver Bullet?; When Will We Get Rid of All the Security Vulnerabilities?; Application Security on a Budget; "Responsible Disclosure" Isn't Responsible
  • Are Man-in-the-Middle Attacks a Myth?An Attack on PKI; HTTPS Sucks; Let's Kill It!; CrAP-TCHA and the Usability/Security Tradeoff; No Death for the Password; Spam Is Dead; Improving Authentication; Cloud Insecurity?; What AV Companies Should Be Doing (AV 2.0); VPNs Usually Decrease Security; Usability and Security; Privacy; Anonymity; Improving Patch Management; An Open Security Industry; Academics; Locksmithing; Critical Infrastructure; Epilogue; Index

Ejemplares similares