IM Instant Messaging Security [Paperback]

John Rittinghouse PhD CISM (Author), James F. Ransome PhD CISM CISSP (Author)

Book Description

ISBN-10: 1555583385 | ISBN-13: 978-1555583385 | Publication Date: July 28, 2005 | Edition: 1

BRIEF DESCRIPTION OF CONTENT:
There is a significant need for a comprehensive book addressing the operational and day-to-day security management requirements. IM, used in enterprise networks can easily be reconfigured and allow for potentially nonstop exposure; they require the level of security be scrutinized carefully. This includes inherent security flaws in various network architectures that result in additional risks to otherwise secure converged networks. A few books cover components of the architecture, design, theory, issues, challenges, and recommended policies for IM security, but none of them address IM issues in a manner that is useful for the day-to-day operations and management of enterprise networks. IM Security is intended to bridge this gap.


UNIQUE FEATURE/RATIONALE
There are no current books that cover components of the architecture, design, theory, issues, challenges, and recommended policies for IM security. No book we know of addresses IM security in a manner useful for day-to-day operations and management of IM-capable networks in today's corporate environment.

* Up-to-date coverage of architecture, design, theory, issues, challenges, and recommended policies for IM security.
* Addresses IM security for day-to-day operations and management of IM-capable networks in today's corporate environment

Editorial Reviews

Book Description

Instant messaging is popular, fast and dangerous to business networks. This is how systems managers should deal with it.

From the Back Cover

Shelving Code Computers/Networking/Security Audience:Security Professionals Systems and Network Administrators
IM Security
John W. Rittinghouse and James F. Ransome

"Instant Messaging Security is a timely and thorough examination of the security risks inherent in IM. As IM use continues to explode, it is imperative that users and administrators understand the number of threats they can be exposed to through IM. Like email, IM opens yet another avenue for spammers, hackers and high-tech criminals to disseminate unwanted and harmful messages. The authors provide a step-by-step plan for putting in place appropriate IM security measures and policies. This is a must-read for anyone responsible for securing corporate networks."

Scott Chasin, Chief Technology Officer, MX Logic, Inc.

"Instant Messaging (IM) provides a new communications mechanism that is radically changing the way business is transacted. Unfortunately, like many other communications innovations before it, the deployment of IM also has the potential to expose the corporation's most important assets to compromise. In Instant Messaging Security, Drs. Rittinghouse and Ransome skillfully discuss the limitations of traditional security solutions in protecting against these new IM threats. The authors insight and mastery of security facets of IM allow them to present new and innovative approaches one can use to mitigate IM risks and enable corporations to fully reap IM's potential economic advantage. The book is an excellent presentation of the topic and highly recommended."

Shlomo Kramer, co-founder of Check Point, co-founder and CEO, Imperva, Inc.

"IM is quickly becoming one of the most common Internet applications in use. Unfortunately, like so many other new applications in the past, the prevalence of IM is outpacing our ability to effectively secure it. System administrators, application integrators, and IM users have been blindly searching for a thorough and effective approach to security. Drs. Ransome and Rittinghouse have offered us a way out of the darkness. The material presented in this book is an absolute must-read for anyone concerned with securing IM, and that should be all of us."

James Cannady, PhD, Associate Professor, Graduate School of Computer and Information
Sciences, Nova Southeastern University

Description
IM, used in enterprise networks can easily be reconfigured and allow for potentially non-stop exposure; it requires the level of security be scrutinized carefully. This includes inherent security flaws in various network architectures that result in additional risks to otherwise secure converged networks. . A few books cover components of the architecture, design, theory, issues, challenges, and recommended policies for IM security, but none of them address IM issues in a manner that is useful for the day-to-day operations and management of enterprise networks. IM Security is intended to bridge this gap.

John Rittinghouse, PhD, CISM
Managing Partner, Rittinghouse Consulting Group, LLC. John has over 25 years experience in the IT and security sector. He is an often-sought management consultant for large enterprise and is currently a member of the Federal Communication Commission's Homeland Security Network Reliability and Interoperability Council Focus Group on Cybersecurity, working in the Voice over Internet Protocol workgroup.

James F. Ransome, PhD, CISM, CISSP
James F. Ransome, Ph.D., CISSP, CISM, has over 30 years experience in security operations and technology assessment as a corporate security executive and positions within the intelligence, DoD, and federal law enforcement communities. He has a Ph.D. in information systems specializing in information security and is a member of Upsilon Pi Epsilon (UPE), the International Honor Society for the Computing and Information Disciplines. He is currently an Independent Consultant.

www.digitalpressbooks.com

See all Editorial Reviews

Product Details

• Paperback: 432 pages
• Publisher: Digital Press; 1 edition (July 28, 2005)
• Language: English
• ISBN-10: 1555583385
• ISBN-13: 978-1555583385
• Product Dimensions: 9.1 x 7.4 x 0.9 inches
• Shipping Weight: 1.9 pounds (View shipping rates and policies)
• Average Customer Review: 4.0 out of 5 stars  See all reviews (1 customer review)
• Amazon Best Sellers Rank: #2,947,093 in Books (See Top 100 in Books)

More About the Author

Dr. John W. Rittinghouse is a senior security and management executive with over 25 years of experience. As the Chief Software Architect of the Hypersecurity DataVault, he has sought to bring sensibility and ease of use to data security. Dr. Rittinghouse was a former Chair of both the Cybersecurity Group and the Network Computing Technologies Group with the Network Reliability and Interoperability Council for the Federal Communications Commission and currently sits on several corporate boards. His areas of expertise include all facets of Information Technology and Information Security and Assurance. He is a globally recognized expert in information security. Some of the organizations Dr. Rittinghouse has worked with include Compaq Computer, Bowne Global Solutions, Cable and Wireless, Exodus Communications, Boeing, Allstate, AIG, the Department of Homeland Security, Department of Commerce, DataWatch, etc. in determining risk and establishing policies for mitigation of potential threats. John has many books on information security, programming and IT program management to his credit.

Customer Reviews

Most Helpful Customer Reviews

4 of 4 people found the following review helpful:

4.0 out of 5 stars IM can be a big hole, July 4, 2006

By 

W Boudville (Terra, Sol 3) - See all my reviews
(VINE VOICE)    (TOP 1000 REVIEWER)    (HALL OF FAME REVIEWER)    (REAL NAME)   

This review is from: IM Instant Messaging Security (Paperback)

As Instant Messaging continues to rise in usage, it presents new problems for a sysadmin to defend a corporate network. IM can be an open channel for external attackers. The most important section of the book is an entire chapter devoted to the types of attacks that are possible. The book shows the general way in which each can happen.

It also explains why you might be attacked. A successful IM attack might involve malware being installed on your machines. These might launch spam or phishing messages back to the Internet. Or be used as the destinations in links in those messages. Or, the malware might target your data, perhaps copying parts of it to outside machines.

The book is a sobering counterpoint to the pervasive and easy use of IM.