Practical Security (實用安全)
Roman Zabicki
- 出版商: Pragmatic Bookshelf
- 出版日期: 2019-03-26
- 售價: $1,080
- 貴賓價: 9.5 折 $1,026
- 語言: 英文
- 頁數: 134
- 裝訂: Paperback
- ISBN: 168050634X
- ISBN-13: 9781680506341
-
相關分類:
資訊安全
立即出貨 (庫存 < 3)
買這商品的人也買了...
-
$2,280Working Effectively with Legacy Code (Paperback)
-
$1,870$1,777 -
$1,520$1,440 -
$1,700$1,700 -
$580$458 -
$4,620$4,389 -
$1,980$1,881 -
$600$474 -
$1,650$1,568 -
$560$442 -
$1,998$1,898 -
$1,980$1,881 -
$990$941 -
$680$537 -
$2,450$2,328 -
$1,368Domain Storytelling: A Collaborative, Visual, and Agile Way to Build Domain-Driven Software (Paperback)
-
$1,840Multithreaded JavaScript: Concurrency Beyond the Event Loop
-
$2,475Software Architecture: The Hard Parts: Modern Trade-Off Analyses for Distributed Architectures (Paperback)
-
$2,680$2,626 -
$1,824Mastering API Architecture: Design, Operate, and Evolve Api-Based Systems (Paperback)
-
$380$342 -
$2,350$2,233 -
$1,881Functional Design: Principles, Patterns, and Practices (Paperback)
-
$750$495 -
$2,043$1,935
相關主題
商品描述
Most security professionals don't have the words "security" or "hacker" in their job title. Instead, as a developer or admin you often have to fit in security alongside your official responsibilities - building and maintaining computer systems. Implement the basics of good security now, and you'll have a solid foundation if you bring in a dedicated security staff later. Identify the weaknesses in your system, and defend against the attacks most likely to compromise your organization, without needing to become a trained security professional.
Computer security is a complex issue. But you don't have to be an expert in all the esoteric details to prevent many common attacks. Attackers are opportunistic and won't use a complex attack when a simple one will do. You can get a lot of benefit without too much complexity, by putting systems and processes in place that ensure you aren't making the obvious mistakes. Secure your systems better, with simple (though not always easy) practices.
Plan to patch often to improve your security posture. Identify the most common software vulnerabilities, so you can avoid them when writing software. Discover cryptography - how it works, how easy it is to get wrong, and how to get it right. Configure your Windows computers securely. Defend your organization against phishing attacks with training and technical defenses.
Make simple changes to harden your system against attackers.
What You Need:
You don't need any particular software to follow along with this book. Examples in the book describe security vulnerabilities and how to look for them. These examples will be more interesting if you have access to a code base you've worked on. Similarly, some examples describe network vulnerabilities and how to detect them. These will be more interesting with access to a network you support.
商品描述(中文翻譯)
大多數安全專業人員的職稱中並不包含「安全」或「駭客」這些詞彙。相反地,作為一名開發人員或管理員,您通常需要在正式職責之外兼顧安全 - 建立和維護電腦系統。現在實施良好安全的基本原則,如果以後引入專職安全人員,您將擁有堅實的基礎。識別系統中的弱點,並防禦最有可能危及組織的攻擊,而無需成為受過訓練的安全專業人員。
電腦安全是一個複雜的問題。但是,您不需要成為所有專業細節的專家來防止許多常見攻擊。攻擊者是機會主義者,當簡單的攻擊足夠時,他們不會使用複雜的攻擊。通過建立和實施系統和流程,確保您不犯明顯的錯誤,您可以在不增加太多複雜性的情況下獲得很多好處。通過簡單(但不總是容易)的做法,更好地保護您的系統。
計劃經常修補以提高您的安全狀態。識別最常見的軟體漏洞,以便在編寫軟體時避免它們。了解加密 - 它的工作原理,易於出錯的地方以及如何正確使用它。安全配置您的Windows電腦。通過培訓和技術防禦來防禦釣魚攻擊。
進行簡單的更改以增強系統對抗攻擊的能力。
所需材料:
您不需要任何特定的軟體來跟隨本書。本書中的示例描述了安全漏洞以及如何尋找它們。如果您可以存取自己曾經工作過的程式碼庫,這些示例將更有趣。同樣地,一些示例描述了網路漏洞以及如何檢測它們。如果您可以存取您支援的網路,這些示例將更有趣。