Internet Security: Cryptographic Principles, Algorithms and Protocols (Hardcover)

Knowledge of number theory and abstract algebra are pre-requisites for any engineer designing a secure internet-based system.
However, most of the books currently available on the subject are aimed at practitioners who just want to know how the various tools available on the market work and what level of security they impart. These books traditionally deal with the science and mathematics only in so far as they are necessary to understand how the tools work.
Internet Security differs by its assertion that cryptography is the single most important technology for securing the Internet. To quote one reviewer "if every one of your communication partners were using a secure system based on encryption, viruses, worms and hackers would have a very hard time". This scenario does not reflect the reality of the Internet world as it currently stands. However, with security issues becoming more and more important internationally, engineers of the future will be required to design tougher, safer systems.
Internet Security:

• Offers an in-depth introduction to the relevant cryptographic principles, algorithms protocols - the nuts and bolts of creating a secure network
• Links cryptographic principles to the technologies in use on the Internet, eg. PGP, S/MIME, IPsec, SSL TLS, Firewalls and SET (protecting credit card transactions)
• Provides state-of-the-art analysis of the latest IETF standards plus summaries and explanations of RFC documents
• Authored by a recognised expert in security

Internet Security is the definitive text for graduate students on security and cryptography courses, and researchers in security and cryptography areas. It will prove to be invaluable to professionals engaged in the long-term development of secure systems.

Table of Contents

Author Biography.

Preface.

Internetworking and Layered Models.

TCP/IP Suite and Internet Stack Protocols.

Symmetric Block Ciphers.

Hash Function, Message Digest and Message Authentication Code.

Asymmetric Public-key Cryptosystems.

Public-key Infrastructure.

Network Layer Security.

Transport Layer Security: SSLv3 and TLSv1.

Electronic Mail Security: PGP, S/MIME.

Internet Firewalls for Trusted Systems.

SET for E-commerce Transactions.

Acronyms.

Bibliography.

Index.

數論和抽象代數的知識是設計安全的基於互聯網的系統的工程師的先決條件。然而，目前市面上大部分關於這個主題的書籍都是針對只想知道市場上各種工具如何運作以及它們提供的安全級別的從業人員。這些書籍傳統上只涉及科學和數學，僅僅是為了理解這些工具的運作原理而需要。《網絡安全》不同於其他書籍，它主張密碼學是保護互聯網最重要的技術。引用一位評論家的話：“如果你的每一個通信夥伴都使用基於加密的安全系統，病毒、蠕蟲和駭客將會非常困難。”然而，這種情況並不反映當前互聯網世界的現實。然而，隨著安全問題在國際上變得越來越重要，未來的工程師將需要設計更堅固、更安全的系統。《網絡安全》具有以下特點：
- 提供深入介紹相關密碼學原理、算法和協議，這些是創建安全網絡的基礎。
- 將密碼學原理與互聯網上使用的技術相結合，例如PGP、S/MIME、IPsec、SSL TLS、防火牆和SET（保護信用卡交易）。
- 提供對最新IETF標準的最新分析，以及RFC文件的摘要和解釋。
- 由安全領域的知名專家撰寫。

《網絡安全》是研究生安全和密碼學課程的必讀教材，也是安全和密碼學領域的研究人員的寶貴資源。對於長期開發安全系統的專業人士來說，它將是無價之寶。

目錄：
- 作者簡介
- 前言
- 網絡互聯和分層模型
- TCP/IP套件和互聯網協議堆棧
- 對稱區塊加密
- 雜湊函數、消息摘要和消息驗證碼
- 非對稱公鑰加密系統
- 公鑰基礎設施
- 網絡層安全
- 傳輸層安全：SSLv3和TLSv1
- 電子郵件安全：PGP、S/MIME
- 用於可信系統的互聯網防火牆
- 用於電子商務交易的SET
- 縮寫
- 參考文獻
- 索引