Endpoint Security

Mark Kadrich

  • 出版商: Addison Wesley
  • 出版日期: 2007-04-01
  • 售價: $2,100
  • 貴賓價: 9.5$1,995
  • 語言: 英文
  • 頁數: 384
  • 裝訂: Paperback
  • ISBN: 0321436954
  • ISBN-13: 9780321436955
  • 相關分類: 資訊安全
  • 立即出貨(限量) (庫存=3)




Comprehensive, Proven Approach to Securing All Your Network Endpoints!


Despite massive investments in security technology and training, hackers are increasingly succeeding in attacking networks at their weakest links: their endpoints. Now, leading security expert Mark Kadrich introduces a breakthrough strategy to protecting all your endpoint devices, from desktops and notebooks to PDAs and cellphones.


Drawing on powerful process control techniques, Kadrich shows how to systematically prevent and eliminate network contamination and infestation, safeguard endpoints against today’s newest threats, and prepare yourself for tomorrow’s attacks. As part of his end-to-end strategy, he shows how to utilize technical innovations ranging from network admission control to “trusted computing.”


Unlike traditional “one-size-fits-all” solutions, Kadrich’s approach reflects the unique features of every endpoint, from its applications to its environment. Kadrich presents specific, customized strategies for Windows PCs, notebooks, Unix/Linux workstations, Macs, PDAs, smartphones, cellphones, embedded devices, and more.


You’ll learn how to:

 •  Recognize dangerous limitations in conventional

endpoint security strategies

 •  Identify the best products, tools, and processes to secure your specific devices and infrastructure

 •  Configure new endpoints securely and reconfigure existing endpoints to optimize security

 •  Rapidly identify and remediate compromised

endpoint devices

 •  Systematically defend against new endpoint-focused malware and viruses

 •  Improve security at the point of integration between endpoints and your network



Whether you’re a security engineer, consultant, administrator, architect, manager, or CSO, this book delivers what you’ve been searching for:

a comprehensive endpoint security strategy that works.

Mark Kadrich is President and CEO of The Security Consortium, which performs in-depth testing and evaluation of security products and vendors. As Senior Scientist for Sygate Technologies, he was responsible for developing corporate policies, understanding security trends, managing government certification programs, and evangelization. After Symantec acquired Sygate, Kadrich became Symantec’s Senior Manager of Network and Endpoint Security.


His 20 years’ IT security experience encompasses systems level design, policy generation, endpoint security, risk management, and other key issues.



            Foreword           xix

            Preface xxi

            About the Author            xxvii

Chapter 1          Defining Endpoints         1

Chapter 2          Why Security Fails        19

Chapter 3          Something Is Missing     39

Chapter 4          Missing Link Discovered 67

Chapter 5          Endpoints and Network Integration           81

Chapter 6          Trustworthy Beginnings  105

Chapter 7          Threat Vectors   125

Chapter 8          Microsoft Windows         137

Chapter 9          Apple OS X       177

Chapter 10        Linux    211

Chapter 11        PDAs and Smartphones 253

Chapter 12        Embedded Devices        285

Chapter 13        Case Studies of Endpoint Security Failures          305

Glossary           317

Index    325




儘管在安全技術和培訓方面進行了大量投資,黑客們越來越成功地攻擊網絡的最薄弱環節:它們的終端點。現在,領先的安全專家Mark Kadrich介紹了一種突破性的策略,以保護您所有的終端設備,從桌面和筆記本電腦到個人數字助理(PDA)和手機。


與傳統的“一刀切”的解決方案不同,Kadrich的方法反映了每個終端點的獨特特徵,從應用程序到環境。Kadrich為Windows PC、筆記本電腦、Unix/Linux工作站、Mac、PDA、智能手機、手機、嵌入式設備等提供了具體的定制策略。

- 辨識傳統終端點安全策略中的危險限制
- 辨識最佳的產品、工具和流程來保護您的特定設備和基礎設施
- 安全地配置新的終端點並重新配置現有的終端點以優化安全性
- 快速辨識和修復受到威脅的終端點設備
- 系統地防禦新的以終端點為重點的惡意軟件和病毒
- 在終端點和您的網絡之間的整合點改善安全性


Mark Kadrich是The Security Consortium的總裁兼首席執行官,該公司對安全產品和供應商進行深入測試和評估。作為Sygate Technologies的高級科學家,他負責制定企業政策、了解安全趨勢、管理政府認證計劃和宣傳。在Symantec收購Sygate後,Kadrich成為Symantec的網絡和終端點安全高級經理。