The Zero Trust Framework: Threat Hunting & Quantum Mechanics
Das, Ravindra
- 出版商: CRC
- 出版日期: 2023-05-25
- 售價: $2,440
- 貴賓價: 9.5 折 $2,318
- 語言: 英文
- 頁數: 152
- 裝訂: Hardcover - also called cloth, retail trade, or trade
- ISBN: 1032492783
- ISBN-13: 9781032492780
-
相關分類:
量子 Quantum
下單後立即進貨 (約2~4週)
相關主題
商品描述
The Cybersecurity landscape is a daunting one today. It is nothing like it was 10 years ago. Now, it has become very complex, covert, dynamic and stealthy. It has literally become a cat and mouse game, in which the Cyberattacker is still one step ahead. This is despite all of the technology that is available to us a society, which includes Artificial Intelligence (AI) and Machine Learning.
Part of the other problem is that human beings are resistant to change. For example, the password is still the favored way of authenticating and authorizing an individual, but it too has shown its grave limitations. Even despite the use of Password Managers, which can create long and complex passwords, people still resort to their old fashioned ways of doing things.
So what is needed now is an extreme change, in which, unfortunately, people have no choice in whether or not to participate in. It is called the Zero Trust Framework, and in this methodology, absolutely nobody can be trusted in either the internal or the external environments. The mantra here is to keep verifying everybody, all the time.
The Zero Trust Framework also involves the concept of segmentation, in which the IT and Network Infrastructure of a business is broken down into smaller components, much like a Subnet. Each component will have its own layer of security, and every individual must be authenticated via the use of Multifactor Authentication (MFA).
In this book, we review both the concepts and mechanics behind the Zero Trust Framework. We also introduce advanced technologies into it as well, including the use of Biometrics, the Public Key Infrastructure, and Quantum Mechanics/Quantum Cryptography.
商品描述(中文翻譯)
現今的網絡安全環境令人畏懼。與十年前相比,它已變得非常複雜、隱蔽、動態和隱匿。這實際上已成為一場貓捉老鼠的遊戲,其中網絡攻擊者始終領先一步。儘管我們作為一個社會擁有各種技術,包括人工智能(AI)和機器學習,但這種情況仍然存在。
另一個問題的一部分是人類對變革的抵制。例如,密碼仍然是驗證和授權個人的首選方式,但它也顯示出其嚴重的局限性。即使使用密碼管理器可以創建長且複雜的密碼,人們仍然倚賴他們過去的做事方式。
所以現在需要的是一個極端的改變,不幸的是,人們無法選擇是否參與其中。這被稱為零信任框架,在這種方法論中,無論是內部還是外部環境,絕對不能信任任何人。這裡的口號是始終對每個人進行驗證。
零信任框架還涉及分割的概念,即將企業的IT和網絡基礎設施分解為較小的組件,就像子網一樣。每個組件都有自己的安全層,每個人都必須通過多因素驗證(MFA)進行身份驗證。
在本書中,我們將回顧零信任框架背後的概念和機制。我們還介紹了其中的先進技術,包括生物識別、公鑰基礎設施和量子力學/量子加密。
作者簡介
Ravindra Das is a Cybersecurity Consultant with his own practice- RaviDas.Tech, Inc. (ravidasconsulting.com). He has a Certified in Cybersecurity cert from the ISC(2), and has written and published 9 books with CRC Press, and self-published 24 eBooks on Amazon. His portfolio can be seen at: cybersecuritycontent.news
作者簡介(中文翻譯)
Ravindra Das 是一位擁有自己的顧問公司 RaviDas.Tech, Inc. (ravidasconsulting.com) 的網路安全顧問。他擁有 ISC(2) 頒發的網路安全認證,並在 CRC Press 出版了 9 本書籍,同時在 Amazon 自行出版了 24 本電子書。您可以在 cybersecuritycontent.news 上查看他的作品集。