Cybersecurity Myths and Misconceptions: Avoiding the Hazards and Pitfalls That Derail Us (Paperback)
暫譯: 網路安全迷思與誤解:避免使我們偏離正軌的危險與陷阱 (平裝本)
Spafford, Eugene, Metcalf, Leigh, Dykstra, Josiah
- 出版商: Addison Wesley
- 出版日期: 2023-01-23
- 售價: $1,870
- 貴賓價: 9.5 折 $1,777
- 語言: 英文
- 裝訂: Quality Paper - also called trade paper
- ISBN: 0137929234
- ISBN-13: 9780137929238
-
相關分類:
資訊安全
-
相關翻譯:
網絡空間安全真相:破除流傳已久的行業謬誤與偏見 (簡中版)
買這商品的人也買了...
-
$158人工智能中的深度結構學習 (Learning Deep Architectures for Ai) -
Operating Systems: Three Easy Pieces (Paperback)$1,650$1,617 -
Practical Cloud Security (Paperback)$2,070$1,967 -
$207算法設計指南, 2/e (The Algorithm Design Manual, 2/e) -
AI & I: An Intellectual History of Artificial Intelligence (Paperback)$1,270$1,245
相關主題
商品描述
175+ Cybersecurity Misconceptions and the Myth-Busting Skills You Need to Correct Them
Cybersecurity is fraught with hidden and unsuspected dangers and difficulties. Despite our best intentions, there are common and avoidable mistakes that arise from folk wisdom, faulty assumptions about the world, and our own human biases. Cybersecurity implementations, investigations, and research all suffer as a result. Many of the bad practices sound logical, especially to people new to the field of cybersecurity, and that means they get adopted and repeated despite not being correct. For instance, why isn't the user the weakest link?
In Cybersecurity Myths and Misconceptions: Avoiding the Hazards and Pitfalls that Derail Us, three cybersecurity pioneers don't just deliver the first comprehensive collection of falsehoods that derails security from the frontlines to the boardroom; they offer expert practical advice for avoiding or overcoming each myth.
Whatever your cybersecurity role or experience, Eugene H. Spafford, Leigh Metcalf, and Josiah Dykstra will help you surface hidden dangers, prevent avoidable errors, eliminate faulty assumptions, and resist deeply human cognitive biases that compromise prevention, investigation, and research. Throughout the book, you'll find examples drawn from actual cybersecurity events, detailed techniques for recognizing and overcoming security fallacies, and recommended mitigations for building more secure products and businesses.
- Read over 175 common misconceptions held by users, leaders, and cybersecurity professionals, along with tips for how to avoid them.
- Learn the pros and cons of analogies, misconceptions about security tools, and pitfalls of faulty assumptions. What really is the weakest link? When aren't "best practices" best?
- Discover how others understand cybersecurity and improve the effectiveness of cybersecurity decisions as a user, a developer, a researcher, or a leader.
- Get a high-level exposure to why statistics and figures may mislead as well as enlighten.
- Develop skills to identify new myths as they emerge, strategies to avoid future pitfalls, and techniques to help mitigate them.
- Fall down the rabbit hole of analogies with whimsical illustrations of difficult concepts, coupled with extensive citations and humor-tinged prose that explain them.
商品描述(中文翻譯)
175+ 網路安全誤解及您需要的破解神話技能
網路安全充滿了隱藏和意想不到的危險與困難。儘管我們的意圖良好,但仍然存在一些常見且可避免的錯誤,這些錯誤源自民間智慧、對世界的錯誤假設以及我們自身的人類偏見。網路安全的實施、調查和研究都因此受到影響。許多不良做法聽起來合乎邏輯,尤其是對於新進入網路安全領域的人來說,這意味著它們會被採納並重複,儘管這些做法並不正確。例如,為什麼用戶不是最弱的環節?
在網路安全神話與誤解:避免使我們偏離正軌的危險與陷阱一書中,三位網路安全先驅不僅提供了第一本全面的錯誤觀念集,這些觀念使安全從前線到董事會受到干擾;他們還提供了專業的實用建議,以避免或克服每一個神話。
無論您在網路安全領域的角色或經驗如何,Eugene H. Spafford、Leigh Metcalf 和 Josiah Dykstra 將幫助您揭示隱藏的危險,防止可避免的錯誤,消除錯誤的假設,並抵抗妨礙預防、調查和研究的人類認知偏見。在整本書中,您將找到來自實際網路安全事件的例子、識別和克服安全謬誤的詳細技術,以及建議的緩解措施,以建立更安全的產品和業務。
- 閱讀超過 175 個用戶、領導者和網路安全專業人士所持有的常見誤解,以及如何避免這些誤解的建議。
- 了解類比的利弊、安全工具的誤解以及錯誤假設的陷阱。什麼才是真正的最弱環節?何時「最佳實踐」並不是最佳?
- 發現他人如何理解網路安全,並作為用戶、開發者、研究者或領導者提高網路安全決策的有效性。
- 高層次了解為什麼統計數據和數字可能會誤導以及啟發。
- 發展識別新神話的技能,制定避免未來陷阱的策略,以及幫助緩解這些問題的技術。
- 深入探索類比的世界,透過生動的插圖解釋困難的概念,並附上廣泛的引用和帶有幽默色彩的文筆。
作者簡介
Eugene H. Spafford, PhD, is a professor in Computer Science at Purdue University. In his 35-year career, Spaf has been honored with every major award in cybersecurity. Leigh Metcalf, PhD, is a Senior Network Security Research Analyst at the Carnegie Mellon University Software Engineering Institute's cybersecurity-focused CERT(R) division. Josiah Dykstra, PhD, is a cybersecurity practitioner, researcher, author, and speaker. He is the owner of Designer Security and has worked at the US National Security Agency for 18 years.
作者簡介(中文翻譯)
Eugene H. Spafford,博士,是普渡大學計算機科學的教授。在他35年的職業生涯中,Spaf獲得了網絡安全領域的每一項主要獎項。Leigh Metcalf,博士,是卡內基梅隆大學軟體工程研究所專注於網絡安全的CERT(R)部門的高級網絡安全研究分析師。Josiah Dykstra,博士,是一位網絡安全從業者、研究員、作者和演講者。他是Designer Security的擁有者,並在美國國家安全局工作了18年。
