Programming Books C Java PHP Python Learn more Browse Programming Books
  • List Price: $54.95
  • Save: $8.19 (15%)
Only 3 left in stock (more on the way).
Ships from and sold by
Gift-wrap available.
Black Hat Physical Device... has been added to your Cart
+ $3.99 shipping
Used: Good | Details
Condition: Used: Good
Comment: Connecting readers with great books since 1972. Used books may not include companion materials, some shelf wear, may contain highlighting/notes, may not include cd-rom or access codes. Customer service is our top priority!
Access codes and supplements are not guaranteed with used items.
Have one to sell? Sell on Amazon
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See this image

Black Hat Physical Device Security: Exploiting Hardware and Software Hardcover – Illustrated, October 29, 2004

ISBN-13: 978-1932266818 ISBN-10: 193226681X Edition: 1st

Buy New
Price: $46.76
21 New from $32.10 15 Used from $3.00
Rent from Amazon Price New from Used from
"Please retry"
Hardcover, Illustrated
"Please retry"
$32.10 $3.00
"Please retry"

Shop the new
New! Introducing the, a hub for Software Developers and Architects, Networking Administrators, TPMs, and other technology professionals to find highly-rated and highly-relevant career resources. Shop books on programming and big data, or read this week's blog posts by authors and thought-leaders in the tech industry. > Shop now

Product Details

  • Hardcover: 448 pages
  • Publisher: Syngress; 1 edition (October 29, 2004)
  • Language: English
  • ISBN-10: 193226681X
  • ISBN-13: 978-1932266818
  • Product Dimensions: 7.2 x 1 x 9.2 inches
  • Shipping Weight: 1.4 pounds (View shipping rates and policies)
  • Average Customer Review: 3.2 out of 5 stars  See all reviews (4 customer reviews)
  • Amazon Best Sellers Rank: #2,130,266 in Books (See Top 100 in Books)

Customer Reviews

3.2 out of 5 stars
Share your thoughts with other customers

Most Helpful Customer Reviews

7 of 7 people found the following review helpful By jose_monkey_org on January 1, 2007
Format: Hardcover
As an author, I understand the difficulty of writing a good book and the sting of a poor review. I'm reluctant to do so, but here I feel I have no choice. This book is simply very poorly done.

I don't know quite what the author was hoping to achieve, but I think it's somewhere along the lines of the philosophy behind security. Drew fails to deliver, instead we get rambling text, bad anecdotes, poor writing, and no focus. When we finally do get to some technical material, it's poorly presented (eg the crypto code in Chapter 3).

Errors are also rife throughout the text. For example, in chapter 3 the author attempts to describe connection attributes to enforce for a connection. One of these is the MAC address of a host 2 hops away. Anyone with any understanding of TCP/IP networking would know that if a host is 2 hops away, then the MAC address belongs to your router. The attack Drew describes isn't going to see the router change out from under the system.

While there's a lot of terms thrown around, there aren't any useful concepts really taught or well presented. I don't think anyone will learn much of anything from this book. The title of the book suggests that we'll be hitting hardware, too, but it's not until the last third of the book that this is introduced, and just as poorly as key concepts in software security (defense, attacks, etc), and only for one chapter.

I just don't have anything positive to say about this book, and for that I truly apologize to the author (and as a fellow author). This isn't personal (I don't know Drew, I believe, nor do I harbor any malice towards him or anyone he knows), it's just not a very good product. If you're looking for a comprehensive overview of infosec, look at something like Bishop's tome "Introduction to Computer Security".
1 Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
1 of 1 people found the following review helpful By Jordan Grotepas on March 31, 2012
Format: Hardcover
I expected this book to be provide moderate coverage of alarm system and physical access control security with a focus on hardware level attacks and defenses. My expectations were only partially met. Instead what I got was a book about general security design and assessment principles that didn't talk about hardware until the last few chapters. The book took a more abstract and high level approach than I would have liked. The only time the book went into detail was in the appendix, where it discussed at length a method of factoring numbers: A topic that is only tangentially related to the rest of the book. But there was an informative discussion about security devices, especially biometric controls.

The central theme of the book is to not trust. Every chapter discusses problems that can be traced to the incorrect assumption that certain input should be trusted. And the solution is to always validate, authenticate, encrypt, hash, and minimize storage and transmission of sensitive information. This applies even if the data is coming from a different part of the same system. The constant dire warnings about misplaced trust and the author's other suggestions are backed by analysis and anecdote, but not data. While I agreed with most of the advice, I felt the author spent too much effort conveying the possibility of attackers being able to decrypt secure tunnels and not enough attention to more likely attacks. But the attention to that possibility did make me realize how often I assume that because something is encrypted it is therefor safe.

Overall Black Hat Physical Device Security was poorly edited. I found many places where words were misspelled or even left out entirely. Sentences were sometimes poorly worded and redundant. And the code examples added almost nothing.

I enjoyed this book and picked up some great ideas. I don't regret reading it, but can't say I'd recommend it.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
By Adolphus E. Jefferies Jr. on December 18, 2014
Format: Hardcover Verified Purchase
Lots of great info in this book for professional security IT people.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
6 of 18 people found the following review helpful By Drew Miller on March 2, 2005
Format: Hardcover
There are many misconceptions about security and the quality of products in the world. This book offers a larger perspective on the details of why those misconceptions exist. We must often dig deep to find these flaws and sometimes review explicitly technical processes. At the same time, surrounding these technical details are demonstrated concepts of trust and assumption that have plagued products in the past, present, and surely in the future. Some texts may demonstrate a problem and a precise solution to that problem. This book offers the understanding of how and also why. It takes the reader from looking at any product, software or hardware, and integrates perspectives specific to trust and reliance upon technologies, which, by design, were never intended to supply a secure infrastructure. You will also see the reasons why these technologies fail; trust and assumption.

Recent intrusions into network and wireless infrastructures are just mere examples of products; however functional they may be, that, in general, lack any quality assurance specific to the types of attacks that are reviewed within this book.
3 Comments Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again

More About the Author

Discover books, learn about writers, read author blogs, and more.

What Other Items Do Customers Buy After Viewing This Item?