Publisher: McGraw-Hill, 1993, 234 pages
Keywords: IT Security
With the increasing dependence of modern business on computer systems, the prevention of unauthorized access to these resources becomes ever more crucial. Access control mechanisms are one of the most important means of securing the 'host' mainframe and mid-range computers.
A Practical Approach to Logical Access Control provides a much-needed holistic look at this specific area, placing it within the wider context of general information security. The book begins by establishing broad conceptual framework for access path analysis. This is intended as both a structured overview and an applicable method for auditing and designing access control mechanisms. This logical approach is then applied in detail to particular computer systems. IBM's mainframe and mid-range computers, including the RS/6000 which raises the wider issue of UNIX security, are discussed in terms of the implementation of this methodology. DEC's VAX(VMS system, Siemens Nixdorf's BS2000 and Tandem's Guardian 90 are also considered in this way.
Information system auditors and security consultants analysing security mechanisms will find this practical approach invaluable, as will all managers concerned with minimising business risk in this vulnerable area.
Ernst & Young knows as always what they are doing. An excellent book that I personally use as a reference.