Customer Reviews

Information Security : Principles and Practice

5 star:		(10)
4 star:		(1)
3 star:		(0)
2 star:		(0)
1 star:		(1)

 

 

This text is an excellent introduction to the popular, important subjects of computer and network security, and is the best such text that I have yet seen. Professor Stamp offers clarity of presentation and a fluid, conversational style. There is an nice balance between comprehensive coverage and detailed analysis. Overall, I really like the structural organization, selection of topics, breadth of coverage, and level of difficulty. No special prerequisites are required to comprehend the basic ideas. However, readers with technical backgrounds will find a lot of material to challenge them. There are an abundance of illustrative figures, nice examples within the body of the text, and a wealth of good problems at the end of each chapter. The author provides excellent references for further study. Appendices delve into details concerning mathematical underpinnings and networking details.

The book is divided into four main parts: cryptography, access control, protocols, and software. The cryptography section introduces fascinating historical vignettes, then explores details of modern block and stream ciphers. The author includes an excellent chapter on cryptanalysis. He provides specific examples, using mathematics and Boolean logic. The access control section explains issues of policy and implementation, regarding authentication and authorization. The protocols section discusses specific mechanisms for secure exchange of confidential information. The final section describes management of software flaws and related security issues.

Dr. Stamp touches many of the widely used and implemented security algorithms and techniques in today's industry. His clear and concise diagrams, examples, and thought provoking questions allow the reader to get a clear overview of the workings (positive and negative) of security technology. Mark Stamp has gathered all relevant information from a wide range of sources to produce an essential guide for information security. totally sweet

I needed this book for a class on E-commerce and Computer security. It's actually pretty decent. I feel like the majority of my text books required for classes are useless, but this one is good. I actually was able to learn from reading it.

While Matt Bishop's book (Computer Security, Art and Science) is considered the standard by many professors, I think students will find that Mark Stamp's book provides much more practical utility. Here's what Stamp has that Bishop doesn't:

1.) More readable writing style.

2.) Non-essential theory and rigor removed.

3.) Some less traditional but interesting topics (ex: CAPTCHAs, DRM).

A few things that Bishop has that Stamp doesn't:

1.) Broader range of topics covered.

2.) Classic proofs and theory that Stamp omits for succinctness.

Let's be clear though. One text is not better than the other-- the authors simply have different aims. I suggest that a student use Stamp's book to ease into Information Security, and then to go Bishop when more information is required. For example, in my introductory course to Information Assurance, I used Stamp's book to answer 90% of all questions quickly and completely and Bishop's book to tackle the remaining 10%. If I ever get into the theory side of IA, I'll probably have to use Bishop more, but Stamp works great in most situations.

This is a very readable primer on information security that address a number of topics including symmetric key crypto, public key crypto, hash functions, cryptanalysis, authentication, authorization, software anomalies, software insecurity, malware, and operating systems. I recommend this book.

Mark has written an excellent book on technical aspects of information protection. For the coverage he provides, he has done an excellent job of explaining things at a technical level suited to students in undergraduate computer science classes or other similar corporate arenas. Well written, nicely done, and well worth the price tag.

A+++. Best security book ever. Covers almost all security related topics. I had to buy 3 different books to study security and still didn't understand so many protocols, etc. This single book covers it all in a very simple and easy to understand language. Its a must have for anybody wanting to study security for the first time or for expert-security users wanting to brush up their knowledge.

Great book on Internet security. Well written, clear, and precise just like Professor Stamp. If you need "one stop shopping" on Internet security, then this is the book to have. Heard he is working on a new book and can't wait to purchase it also. A must have for anyone working with computer/network security.

If I had to have only one book on information security, this would be the book!

Without trying to be encyclopedic, Professor Stamp gives a panoramic view of four key areas in information security: cryptography, access control, protocols, and software. Within each of these four parts, relevant and diverse topics are discussed and studied. The breadth and depth of coverage is appropriate for both the general reader as well as for the expert.

Topics in the book include: symmetric key crypto, public key crypto, hash functions, cryptanalysis, authentication, authorization, authentication protocols, real-world security protocols, software flaws and malware, insecurity in software, operating systems and security.

The book reads well and does not have the "dry flavor", so often found in other books of this type. I recommend this book, without reservation!

I have many security related books. Among them, this book is the best to understand the information security within one book. First of all, it is easy to read. It also covers whole information security area. For the persons who study information security, I strongly recommend this book to read.