.

Review - Secrets and Lies: Digital Security in a Networked World

<<

UNIX

User avatar

Hero Member
Hero Member

Posts: 1244

Joined: Mon Apr 28, 2008 9:20 am

Post Wed Aug 12, 2009 5:22 am

Review - Secrets and Lies: Digital Security in a Networked World


Image


Secrets and Lies: Digital Security in a Networked World is divided into three chapters. The first one gives a good overview on threats and systems. The next chapter is the biggest of the three and focuses on security technologies which can be used against digital threats. The third and last chapter covers methodologies which can be used in order to build a more secure environment.

In his former book, Applied Cryptography, Schneier wrote about mathematical solutions which seems to be the key to absolute security, at least in theory. In Secrets and Lies he revises his point of view and put it in a more realistic way by applying it to reality. A chain is only as strong as its weakest link it says, which is absolutely true and could be seen many times in past and probably will be seen many times in future. There are reams of threats one have to encounter - systems are connected to the internet, employees could be blackmailed, buildings can be intruded, hardware gets old and vendors could conceal vulnerabilities in their products. In order to know the weakest link one have first to know what the chain consists of. In this first part Schneier explains this and more, and gives some further suggestions, such as possible scenarios and reasons why an attacker might be motivated.

The second and biggest part of this book covers many topics which are important in order to protect against various threats. They are presented in several small parts and discuss their pros and cons and are backed up by samples.



Full review is available here.

Feedback is as always appreciated.
<<

MadmanTM

User avatar

Newbie
Newbie

Posts: 27

Joined: Sat Nov 22, 2008 7:57 pm

Post Sat Aug 15, 2009 10:01 pm

Re: Review - Secrets and Lies: Digital Security in a Networked World

this book is on my list :P

i am glad you enjoyed it.
Network+, Security+
CEH Soon.
<<

SynJunkie

Jr. Member
Jr. Member

Posts: 71

Joined: Thu Apr 17, 2008 2:41 pm

Location: UK

Post Tue Aug 18, 2009 10:40 am

Re: Review - Secrets and Lies: Digital Security in a Networked World

THis is a really great book, as is his other book "Beyond Fear".  Essential reading in my opinion.

If you enjoy Bruces books he has a monthly news letter here:

http://www.schneier.com/crypto-gram.html

If your limited on reading time you could cath the podcast version here:

http://crypto-gram.libsyn.com

Cheers


Syn
----------------------------------
http://synjunkie.blogspot.com
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Tue Aug 18, 2009 3:13 pm

Re: Review - Secrets and Lies: Digital Security in a Networked World

SynJunkie:
I found that the crypto-gram really is just a rehash of the stuff from his blog.

http://www.schneier.com/blog/

Beyond Fear and Schneier on Security are on my shelf at home, and will hopefully be read soon.

chrisj
OSWP, Sec+
<<

SynJunkie

Jr. Member
Jr. Member

Posts: 71

Joined: Thu Apr 17, 2008 2:41 pm

Location: UK

Post Wed Aug 19, 2009 4:23 am

Re: Review - Secrets and Lies: Digital Security in a Networked World

Chris

Sorry, I should have made that clearer.  That is what I meant when I said "if your short on time there is a podcast version". Or words to that effect.

I don't have time to read his blog but I do have a 3hr commute every day so the podcast is perfect for me.

Regards

Syn
----------------------------------
http://synjunkie.blogspot.com
<<

UNIX

User avatar

Hero Member
Hero Member

Posts: 1244

Joined: Mon Apr 28, 2008 9:20 am

Post Wed Aug 19, 2009 5:58 am

Re: Review - Secrets and Lies: Digital Security in a Networked World

Beyond Fear is on my endless to-read list as well. I will probably read and work through some other books first, but looking forward to this one too. Too many books, too little time.
<<

dalepearson

Sr. Member
Sr. Member

Posts: 357

Joined: Thu Nov 09, 2006 10:03 am

Post Wed Aug 19, 2009 7:28 am

Re: Review - Secrets and Lies: Digital Security in a Networked World

Seems its just me then, I have not had much luck reading his books.
Just seems to rub me up the wrong way some how and I cant get into them.

If the library had them I might have a read, but not going to risk a purchase.
<<

rattis

User avatar

Hero Member
Hero Member

Posts: 1172

Joined: Mon Jul 27, 2009 1:25 pm

Post Wed Aug 19, 2009 10:38 am

Re: Review - Secrets and Lies: Digital Security in a Networked World

dalepearson wrote:If the library had them I might have a read, but not going to risk a purchase.


My local library has Secrets and Lies, as well as Beyond Fear. So there's a chance something around you might have it.

Another Option is to find someone local to you who has a copy and would be willing to loan it to you. If you were in the Metro-Detroit / Ann Arbor area, I'd be happy to loan you my copy.
OSWP, Sec+

Return to Book Reviews

Who is online

Users browsing this forum: No registered users and 0 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software