Der Artikel ist weiterhin als ^^OTHERCONDITION^^ verfügbar.
Autor: Markus Schumacher
ISBN-13: 9781118725931
Einband: E-Book
Seiten: 448
Sprache: Englisch
eBook Typ: Adobe Digital Editions
eBook Format: E-Book
Kopierschutz: Adobe DRM [Hard-DRM]
Systemvoraussetzungen
Der Artikel wird am Ende des Bestellprozesses zum Download zur Verfügung gestellt.

Security Patterns

Wiley Series in Software Design Patterns
Integrating Security and Systems Engineering
 E-Book
Sofort lieferbar
E-Book (Adobe DRM [Hard-DRM])
Systemvoraussetzungen
43,99 €*
1
Most security books are targeted at security engineers andspecialists. Few show how build security into software. Nonebreakdown the different concerns facing security at differentlevels of the system: the enterprise, architectural and operationallayers. Security Patterns addresses the fullspectrum of security in systems design, using best practicesolutions to show how to integrate security in the broaderengineering process.* Essential for designers building large-scale systems who wantbest practice solutions to typical security problems
* Real world case studies illustrate how to use the patterns inspecific domains

For more information visit securitypatterns.org
4
Chapter 1: The Pattern Approach.

Patterns at a Glance.

No Pattern is an Island.

Patterns Everywhere.

Humans are the Target.

Patterns Resolve Problems and Shape Environments.

Towards Pattern Languages.

Documenting Patterns.

A Brief Note on The History of Patterns.

The Pattern Community and its Culture.

Chapter 2: Security Foundations.

Overview.

Security Taxonomy.

General Security Resources.

Chapter 3: Security Patterns.

The History of Security Patterns.

Characteristics of Security Patterns.

Why Security Patterns?

Sources for Security Pattern Mining.

Chapter 4: Patterns Scope and Enterprise Security.

The Scope of Patterns in the Book.

Organization Factors.

Resulting Organization.

Mapping to the Taxonomy.

Organization in the Context of an Enterprise Framework.

Chapter 5: The Security Pattern Landscape.

Enterprise Security and Risk Management Patterns.

Identification & Authentication (I&A) Patterns.

Access Control Model Patterns.

System Access Control Architecture Patterns.

Operating System Access Control Patterns.

Accounting Patterns.

Firewall Architecture Patterns.

Secure Internet Applications Patterns.

Cryptographic Key Management Patterns.

Related Security Pattern Repositories Patterns.

Chapter 6: Enterprise Security and Risk Management.

Security Needs Identification for Enterprise Assets.

Asset Valuation.

Threat Assessment.

Vulnerability Assessment.

Risk Determination.

Enterprise Security Approaches.

Enterprise Security Services.

Enterprise Partner Communication.

Chapter 7: Identification and Authentication(I&A).

I&A Requirements.

Automated I&A Design Alternatives.

Password Design and Use.

Biometrics Design Alternatives.

Chapter 8: Access Control Models.

Authorization.

Role-Based Access Control.

Multilevel Security.

Reference Monitor.

Role Rights Definition.

Chapter 9: System Access Control Architecture.

Access Control Requirements.

Single Access Point.

Check Point.

Security Session.

Full Access with Errors.

Limited Access.

Chapter 10: Operating System Access Control.

Authenticator.

Controlled Process Creator.

Controlled Object Factory.

Controlled Object Monitor.

Controlled Virtual Address Space.

Execution Domain.

Controlled Execution Environment.

File Authorization.

Chapter 11: Accounting.

Security Accounting Requirements.

Audit Requirements.

Audit Trails and Logging Requirements.

Intrusion Detection Requirements.

Non-Repudiation Requirements.

Chapter 12: Firewall Architectures.

Packet Filter Firewall.

Proxy-Based Firewall.

Stateful Firewall.

Chapter 13: Secure Internet Applications.

Information Obscurity.

Secure Channels.

Known Partners.

Demilitarized Zone.

Protection Reverse Proxy.

Integration Reverse Proxy.

Front Door.

Chapter 14: Case Study: IP Telephony.

IP Telephony at a Glance.

The Fundamentals of IP Telephony.

Vulnerabilities of IP Telephony Components.

IP Telephony Use Cases.

Securing IP telephony with patterns.

Applying Individual Security Patterns.

Conclusion.

Chapter 15: Supplementary Concepts.

Security Principles and Security Patterns.

Enhancing Security Patterns with Misuse Cases.

Chapter 16: Closing Remarks.

References.

Index.
Autor: Markus Schumacher, Eduardo Fernandez-Buglioni, Duane Hybertson, Frank Buschmann, Peter Sommerlad
Markus Schumacher, SAP AG, Germany.

Eduardo Fernandez-Buglioni, Florida Atlantic University, USA.

Duane Hybertson, The MITRE Corp, USA.

Frank Buschmann, Siemens AG, Germany.

Peter Sommerlad, Hochschule für Technik Rapperswil, Germany.

Zu diesem Artikel ist noch keine Rezension vorhanden.
Helfen sie anderen Besuchern und verfassen Sie selbst eine Rezension.

 

Rezensionen

Autor: Markus Schumacher
ISBN-13:: 9781118725931
ISBN: 111872593X
Verlag: John Wiley & Sons
Seiten: 448
Sprache: Englisch
Auflage 1. Auflage
Sonstiges: Ebook