The Practice of Network Security: Deployment Strategies for Production Environme

Allan Liska

  • 出版商: Prentice Hall
  • 出版日期: 2003-01-05
  • 定價: $1,750
  • 售價: 6.0$1,050
  • 語言: 英文
  • 頁數: 416
  • 裝訂: Paperback
  • ISBN: 0130462233
  • ISBN-13: 9780130462237
  • 相關分類: 資訊安全
  • 立即出貨(限量) (庫存=1)

買這商品的人也買了...

相關主題

商品描述

Appropriate for all courses in network or information security.

This book teaches students how to secure any network, large or small. More than other books, it reflects the realities network administrators actually face on the front lines, where they are constantly under attack, and don't always get the support they need from their organizations. Former UUNet network architect Allan Liska addresses every facet of network security, including defining security models, access control, Web/DNS/email security, remote access and VPNs, wireless LAN/WAN security, day-to-day monitoring and logging, attack response, and more. He systematically identifies today's most widespread security mistakes and vulnerabilities, offering realistic and up-to-date solutions. He then integrates these techniques in an end-to-end case study, showing how to redesign an insecure enterprise network for maximum security, one step at a time.

Table of Contents

1. Defining the Scope.
2. Security Mode.
3. Understanding Types of Attacks.
4. Routing.
5. Switching.
6. Authentication, Authorization, and Accounting.
7. Remote Access and VPNs.
8. Wireless Wide Area Networks.
9. Wireless Local Area Networks.
10. Firewalls and Intrusion Detection Systems.
11. The DMZ.
12. Server Security.
13. DNS Security.
14. Workstation Security.
15. Managing Network Security.
16. Monitoring.
17. Logging.
18. Responding to an Attack.

商品描述(中文翻譯)

適用於所有網路或資訊安全課程。本書教導學生如何保護任何大小的網路。相較於其他書籍,本書反映了網路管理員在前線所面臨的現實情況,他們經常受到攻擊,並且不總是得到組織的支持。前UUNet網路架構師Allan Liska涵蓋了網路安全的各個方面,包括定義安全模型、存取控制、Web/DNS/email安全、遠端存取和VPN、無線區域網路/廣域網路安全、日常監控和記錄、攻擊應對等。他系統地辨識出當今最普遍的安全錯誤和弱點,提供實際且最新的解決方案。然後,他將這些技術整合到一個端對端的案例研究中,展示如何逐步重新設計一個不安全的企業網路,以達到最大的安全性。

目錄:
1. 定義範圍。
2. 安全模式。
3. 了解攻擊類型。
4. 路由。
5. 切換。
6. 認證、授權和記帳。
7. 遠端存取和VPN。
8. 無線廣域網路。
9. 無線區域網路。
10. 防火牆和入侵檢測系統。
11. DMZ。
12. 伺服器安全。
13. DNS安全。
14. 工作站安全。
15. 管理網路安全。
16. 監控。
17. 記錄。
18. 應對攻擊。