- This topic has 7 replies, 5 voices, and was last updated 11 years, 6 months ago by
rattis.
-
AuthorPosts
-
-
August 12, 2009 at 10:22 am #4117
UNIX
Participant[align=center:bf2e7j99]
[/align:bf2e7j99]
Secrets and Lies: Digital Security in a Networked World is divided into three chapters. The first one gives a good overview on threats and systems. The next chapter is the biggest of the three and focuses on security technologies which can be used against digital threats. The third and last chapter covers methodologies which can be used in order to build a more secure environment.
In his former book, Applied Cryptography, Schneier wrote about mathematical solutions which seems to be the key to absolute security, at least in theory. In Secrets and Lies he revises his point of view and put it in a more realistic way by applying it to reality. A chain is only as strong as its weakest link it says, which is absolutely true and could be seen many times in past and probably will be seen many times in future. There are reams of threats one have to encounter – systems are connected to the internet, employees could be blackmailed, buildings can be intruded, hardware gets old and vendors could conceal vulnerabilities in their products. In order to know the weakest link one have first to know what the chain consists of. In this first part Schneier explains this and more, and gives some further suggestions, such as possible scenarios and reasons why an attacker might be motivated.
The second and biggest part of this book covers many topics which are important in order to protect against various threats. They are presented in several small parts and discuss their pros and cons and are backed up by samples.
Full review is available here.
Feedback is as always appreciated.
-
August 16, 2009 at 3:01 am #26071
MadmanTM
Participantthis book is on my list 😛
i am glad you enjoyed it.
-
August 18, 2009 at 3:40 pm #26072
SynJunkie
ParticipantTHis is a really great book, as is his other book “Beyond Fear”. Essential reading in my opinion.
If you enjoy Bruces books he has a monthly news letter here:
http://www.schneier.com/crypto-gram.html
If your limited on reading time you could cath the podcast version here:
Cheers
Syn
-
August 18, 2009 at 8:13 pm #26073
rattis
ParticipantSynJunkie:
I found that the crypto-gram really is just a rehash of the stuff from his blog.Beyond Fear and Schneier on Security are on my shelf at home, and will hopefully be read soon.
chrisj
-
August 19, 2009 at 9:23 am #26074
SynJunkie
ParticipantChris
Sorry, I should have made that clearer. That is what I meant when I said “if your short on time there is a podcast version”. Or words to that effect.
I don’t have time to read his blog but I do have a 3hr commute every day so the podcast is perfect for me.
Regards
Syn
-
August 19, 2009 at 10:58 am #26075
UNIX
ParticipantBeyond Fear is on my endless to-read list as well. I will probably read and work through some other books first, but looking forward to this one too. Too many books, too little time.
-
August 19, 2009 at 12:28 pm #26076
dalepearson
ParticipantSeems its just me then, I have not had much luck reading his books.
Just seems to rub me up the wrong way some how and I cant get into them.If the library had them I might have a read, but not going to risk a purchase.
-
August 19, 2009 at 3:38 pm #26077
rattis
Participant@dalepearson wrote:
If the library had them I might have a read, but not going to risk a purchase.
My local library has Secrets and Lies, as well as Beyond Fear. So there’s a chance something around you might have it.
Another Option is to find someone local to you who has a copy and would be willing to loan it to you. If you were in the Metro-Detroit / Ann Arbor area, I’d be happy to loan you my copy.
-
-
AuthorPosts
- You must be logged in to reply to this topic.