The Zero Trust Framework: Threat Hunting & Quantum Mechanics
暫譯: 零信任框架:威脅獵捕與量子力學
Das, Ravindra
- 出版商: CRC
- 出版日期: 2023-05-25
- 售價: $2,480
- 貴賓價: 9.5 折 $2,356
- 語言: 英文
- 頁數: 152
- 裝訂: Hardcover - also called cloth, retail trade, or trade
- ISBN: 1032492783
- ISBN-13: 9781032492780
-
相關分類:
量子 Quantum
海外代購書籍(需單獨結帳)
商品描述
The Cybersecurity landscape is a daunting one today. It is nothing like it was 10 years ago. Now, it has become very complex, covert, dynamic and stealthy. It has literally become a cat and mouse game, in which the Cyberattacker is still one step ahead. This is despite all of the technology that is available to us a society, which includes Artificial Intelligence (AI) and Machine Learning.
Part of the other problem is that human beings are resistant to change. For example, the password is still the favored way of authenticating and authorizing an individual, but it too has shown its grave limitations. Even despite the use of Password Managers, which can create long and complex passwords, people still resort to their old fashioned ways of doing things.
So what is needed now is an extreme change, in which, unfortunately, people have no choice in whether or not to participate in. It is called the Zero Trust Framework, and in this methodology, absolutely nobody can be trusted in either the internal or the external environments. The mantra here is to keep verifying everybody, all the time.
The Zero Trust Framework also involves the concept of segmentation, in which the IT and Network Infrastructure of a business is broken down into smaller components, much like a Subnet. Each component will have its own layer of security, and every individual must be authenticated via the use of Multifactor Authentication (MFA).
In this book, we review both the concepts and mechanics behind the Zero Trust Framework. We also introduce advanced technologies into it as well, including the use of Biometrics, the Public Key Infrastructure, and Quantum Mechanics/Quantum Cryptography.
商品描述(中文翻譯)
網路安全的現狀今天是相當嚴峻的。與十年前相比,情況完全不同。現在,它變得非常複雜、隱秘、動態且具隱蔽性。這實際上已經變成了一場貓捉老鼠的遊戲,網路攻擊者仍然領先一步。儘管我們社會擁有各種技術,包括人工智慧 (Artificial Intelligence, AI) 和機器學習 (Machine Learning),但這一點依然成立。
另一個問題是人類對變化的抵抗。例如,密碼仍然是驗證和授權個體的首選方式,但它也顯示出其嚴重的局限性。即使使用密碼管理器 (Password Managers) 來創建長且複雜的密碼,人們仍然會回到舊有的做法。
因此,現在所需的是一種極端的變革,遺憾的是,人們無法選擇是否參與。這被稱為零信任框架 (Zero Trust Framework),在這種方法論中,無論是內部還是外部環境,絕對沒有人可以被信任。這裡的口號是持續驗證每一個人,隨時隨地。
零信任框架還涉及分段 (segmentation) 的概念,其中企業的 IT 和網路基礎設施被拆分為更小的組件,就像子網 (Subnet) 一樣。每個組件將擁有自己的安全層,每個個體必須通過多重身份驗證 (Multifactor Authentication, MFA) 來進行身份驗證。
在本書中,我們回顧零信任框架背後的概念和機制。我們還介紹了先進技術,包括生物識別技術 (Biometrics)、公鑰基礎設施 (Public Key Infrastructure) 和量子力學/量子密碼學 (Quantum Mechanics/Quantum Cryptography)。
作者簡介
Ravindra Das is a Cybersecurity Consultant with his own practice- RaviDas.Tech, Inc. (ravidasconsulting.com). He has a Certified in Cybersecurity cert from the ISC(2), and has written and published 9 books with CRC Press, and self-published 24 eBooks on Amazon. His portfolio can be seen at: cybersecuritycontent.news
作者簡介(中文翻譯)
Ravindra Das 是一位網路安全顧問,擁有自己的公司 - RaviDas.Tech, Inc. (ravidasconsulting.com)。他持有 ISC(2) 的網路安全認證,並且已經與 CRC Press 合作撰寫並出版了 9 本書,另外還在 Amazon 自行出版了 24 本電子書。他的作品集可以在以下網站查看:cybersecuritycontent.news
