Secrets & Lies

Welcome to thebusinessworld.com. It's digital: information is more readily accessible than ever. It's inescapably connected: businesses are increasingly — if not totally — dependent on digital communications. But our passion for technology has a price: increased exposure to security threats. Companies around the world need to understand the risks associated with doing business electronically. The answer starts here.

Information security expert Bruce Schneier explains what everyone in business needs to know about security in order to survive and be competitive. Pragmatic, interesting, and humorous, Schneier exposes the digital world and the realities of our networked society. He examines the entire system, from the reasons for technical insecurities to the minds behind malicious attacks. You'll be guided through the security war zone, and learn how to understand and arm yourself against the threats of our connected world.

There are no quick fixes for digital security. And with the number of security vulnerabilities, breaches, and digital disasters increasing over time, it is vital that you learn how to manage the vulnerabilities and protect your data in this networked world. You need to understand who the attackers are, what they want, and how to deal with the threats they represent. In Secret and Lies, you'll learn about security technologies and product capabilities, as well as their limitations. And you'll find out how to respond given the landscape of your system and the limitations of your business.

With its accessible style, this practical guide covers:

• The digital threats and attacks that you must understand
• The security products and processes currently available
• The limitations of technology
• The steps involved in product testing to discover security flaws
• The technologies to watch for over the next couple of years
• Risk assessment in your company
• The implementation of security policies and countermeasures

Secret and Lies offers the expert guidance you'll need yo make the right choices about securing your digital self.

1. Introduction
• Part 1: The Landscape
2. Digital Threats
3. Attacks
4. Adversaries
5. Security Needs
• Part 2: Technologies
6. Cryptography
7. Cryptography in Context
8. Computer Security
9. Identification and Authentication
10. Networked-Computer Security
11. Network Security
12. Network Defenses
13. Software Reliability
14. Secure Hardware
15. Certificates and Credentisals
16. Security Tricks
17. The Human Factor
• Part 3: Strategies
18. Vulnerabilities and the Vulnerability Landscape
19. Threat Modeling and Risk Assessment
20. Security Policies and Countermeasure
21. Attack Trees
22. Product Testing and Verification
23. The Future of Products
24. Security Processes
25. Conclusion

One of the seminal works in information security. Unfortunately, he gets a bit wordy from time to time. This is must read.