Computer Security Handbook - 4th Edition.pdf - Computers Security - lightlady1

COMPUTER SECURITY

HANDBOOK

Fourth Edition

Edited by

SEYMOUR BOSWORTH

M.E. KABAY

JOHN WILEY & SONS, INC.

This book is printed on acid-free paper.

Published simultaneously in Canada.

No part of this publication may be reproduced, stored in a

retrieval system or transmitted in any form or by any means,

electronic, mechanical, photocopying, recording, scanning

or otherwise, except as permitted under Sections 107 or 108

of the 1976 United States Copyright Act, without either the

prior written permission of the Publisher, or authorization

through payment of the appropriate per-copy fee to the

MA 01923, (978) 750-8400, fax (978) 750-4744. Requests

to the Publisher for permission should be addressed to

the Permissions Department, John Wiley & Sons, Inc.,

605 Third Avenue, New York, NY 10158-0012, (212) 850-6011,

fax (212) 850-6008, E-Mail: PERMREQ @ WILEY.COM.

This publication is designed to provide accurate and

authoritative information in regard to the subject matter

covered. It is sold with the understanding that the

publisher is not engaged in rendering legal, accounting,

or other professional services. If legal advice or other

expert assistance is required, the services of a competent

professional person should be sought.

ISBN 0-471-41258-9

Printed in the United States of America.

1098765432 1

PREFACE

Computers are an integral part of our economic, social, professional, governmental,

and military infrastructures. They have become necessities in virtually every area of

modern life, but their vulnerability is of increasing concern. Computer-based systems

are constantly under threats of inadvertent error and acts of nature, as well as those

attributable to unethical, immoral, and criminal activities. It is the purpose of this Com-

puter Security Handbook to provide guidance in eliminating these threats where pos-

sible, and if not, then to lessen any losses attributable to them.

This Handbook will be most valuable to those directly responsible for computer,

network, or information security, as well as those who must design, install, and main-

tain secure systems. It will be equally important to those managers whose operating

functions can be affected by breaches in security, and to those executives who are

responsible for protecting the assets that have been entrusted to them.

With the advent of desktop, laptop, and handheld computers, and with the vast inter-

national networks that interconnect them, the nature and extent of threats to computer

security have grown almost beyond measure. In order to encompass this unprecedented

expansion, the Computer Security Handbook has grown apace.

When the first edition of the Handbook was published, its entire focus was on main-

frame computers, the only type then in widespread use. The second edition recognized

the advent of small computers, while the third edition placed increased emphasis on

PCs and networks.

Now, this fourth edition of the Computer Security Handbook, gives almost equal

attention to mainframes and microcomputers. With 54 chapters alone requiring over

1,100 pages, the related tutorials and appendixes have been installed on the Internet at

www.wiley.com/go/securityhandbook. This electronic supplement has made possible

the manageable size and weight of the present hard-copy book, while presenting a

greater wealth of material than ever before. The Internet presence has the added advan-

tages of providing hyperlinks to other relevant sites and of making updates feasible.

Edition

Date

Chapters

Text

Pages of

Total

Internet

Pages

Appendices

Pages

Supplement

First

1973

162

165

—

Second 1988

298

391

—

Third

1995

571

365

984

—

Fourth

2002

1184

On Internet

1224

www.wiley.com/go/

securityhandbook

vi PREFACE

The Internet has been invaluable in another way. Each of the 54 chapters has made

at least seven retransmissions via e-mail among authors, editors, and the publisher.

Earlier editions had all of this done by courier or overnight delivery, with attendant

delays and significant costs. Not only are PCs and the Internet a major subject of this

volume, but they have also been the instruments without which it might never have

come into being.

In speaking of the earlier editions, I would like to give grateful recognition to

Arthur Hutt and Douglas Hoyt, my previous co-editors. Although both Art and Doug

are deceased, their commitment and their competence remain as constant reminders

to strive for excellence. Mich Kabay, my new co-editor continues in their tradition. I

would not have wanted to undertake this project without him.

Thanks are also due to our colleagues at John Wiley and Sons. Sheck Cho as Exec-

utive Editor, Tim Burgard as Associate Editor, Louise Jacobs as Associate Managing

Editor, and Debra Manette and John Curley as copyeditors all have performed their

duties in exemplary manner.

Finally, although the authors and editors of this Handbook have attempted to cover

the essential elements of computer security, the disaster of September 11, 2001, demon-

strates that new threats may come from unexpected directions. The primary emphasis

of the Computer Security Handbook has always been on prevention, but should this fail,

the fundamental practices described here will help to mitigate the consequences.

S EYMOUR B OSWORTH

Senior Editor

February 2002

A Note from the Co-Editor

I am immeasurably grateful to Sy Bosworth for his leadership in this project. Although

we have never met each other in the physical world, I feel that we have become good

friends through our constant communication through cyberspace.

Our authors deserve enormous credit for the professional way in which they

responded to our requests, outlines, suggestions, corrections, and nagging. I want to

express my personal gratitude and appreciation for their courteous, collaborative, and

responsive interactions with us.

Finally, as always, I want to thank my beloved wife, Deborah Black, light of my life,

for her support and understanding over the many months during which this project

has taken away from our time together.

M.E. K ABAY

Co-Editor

February 2002

Computer Security Handbook - 4th Edition.pdf

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: