Network Security Essentials: Applications and Standards (3rd Edition) [Paperback]

William Stallings (Author)

Book Description

ISBN-10: 0132380331 | ISBN-13: 978-0132380331 | Publication Date: July 29, 2006 | Edition: 3

This book provides a practical, up-to-date, and comprehensive survey of network-based and Internet-based security applications and standards. Covers e-mail security, IP security, Web security, and network management security. Includes a concise section on the discipline of cryptography–covering algorithms and protocols underlying network security applications, encryption, hash functions, digital signatures, and key exchange. For system engineers, engineers, programmers, system managers, network managers, product marketing personnel, and system support specialists.

Editorial Reviews

From the Inside Flap

Preface In this age of electronic connectivity, of viruses and hackers, of electronic eavesdropping and electronic fraud, network security has assumed increasing importance. Two trends have come together to make the topic of this book of vital interest. First, the explosive growth in computer systems and their interconnections via networks has increased the dependence of both organizations and individuals on the information stored and communicated using these systems. This, in turn, has led to a heightened awareness of the need to protect data and resources from disclosure, to guarantee the authenticity of data and messages, and to protect systems from network-based attacks. Second, the disciplines of cryptography and network security have matured, leading to the development of practical, readily available applications to enforce network security. Objectives It is the purpose of this book to provide a practical survey of network security applications and standards. The emphasis is on applications that are widely used on the Internet and for corporate networks, and on standards, especially Internet standards, that have been widely deployed. Intended Audience The book is intended for both an academic and a professional audience. As a textbook, it is intended as a one-semester undergraduate course on network security for computer science, computer engineering, and electrical engineering majors. The book also serves as a basic reference volume and is suitable for self-study. Plan of the Book The book is organized in three parts: I. Cryptography: A concise survey of the cryptographic algorithms and protocols

i

report underlying network security applications, including encryption, hash functions,

digital signatures, and key exchange.

i

See Appen~ II.

Network Security Applications: Covers important network security tools and

applications, including Kerberos, X.509v3 certificates, PGP, S/MIME, IP Secu-

rity, SSL/TLS, SET, and SNMPv3. III.

System Security: Looks at system-level security issues, including the threat of

and countermeasures for intruders and viruses, and the use of firewalls and

trusted systems. This book i A more detailed, chapter-by-chapter summary appears at the end of Chapter ~

(CNS2e). 1. In addition, the book includes an extensive glossary, a list of frequently used

detailed anInternet Services for Instructors and Students There is a Web page for this book that provides support for students and instruc tors. The page includes links to relevant sites, transparency masters of figures in the book in PDF (Adobe Acrobat) format, and sign-up information for the book's Internet mailing list. The Web page is at shore/-ws/NetSec.html. An Internet mailing list has been set up so that instructors using this book can exchange information, suggestions, and questions with each other and with the author. As soon as typos or other errors are discovered, an errata list for this book will be available at shore/-ws. Projects for Teaching Network Security For many instructors, an important component of a cryptography or security course is a project or set of projects by which the student gets hands-on experience to rein force concepts from the text. This book provides an unparalleled degree of support for including a projects component in the course. The instructor's manual not only includes guidance on how to assign and structure the projects, but also includes a set of suggested projects that covers a broad range of topics from the text:

• Research Projects: A series of research assignments that instruct the student

to research a particular topic on the Internet and write a report. •

Programming Projects: A series of programming projects that cover a broad range of topics and that can be implemented in any suitable language on any platform. •

Reading/Report Assignments: A list of papers in the literature, one for each chapter, that can be assigned for the student to read and then write a short report. See Appendix B for details. Realtionship to Crytography and Network Security, Second Edition This book is on spin-off from Cryptography and Network Security, Second Edition (CNS2e). CNS2e provides a substantial treatment of cryptography, including detailed analysis of algorithms and a significant mathematical component, the whole of which covers over 300 pages. Network Security Essentials: Applications and Standards (NSEle) provides instead a concise overview of these topics in Chapters 2 and 3. NSEle includes all of the remaining material of CNS2e, with updates. NSEle also covers SNMP security, which is not covered in CNS2e. Thus, NSEle is intended for college courses and professional readers where the interest is primarily in the application of network security, without the need or desire to delve deeply in to cryptographic theory and principles. --This text refers to an alternate Paperback edition.

From the Back Cover

It's no longer an option. Network security is essential to every corporation, organization, institution, and small business on the planet. Anyone working in IT or other computer-related professions must know the practical applications and standards for enforcing network security. Whether student, professor, or industry professional, this book will provide you with the most up-to-date, comprehensive coverage of vital Internet-based security tools and applications. Organized to provide critical information in the optimal sequence for classroom instruction and self-study, this book also serves as a useful reference for practicing system engineers, programmers, system managers, network managers, product marketers, system support specialists and other professionals. Stallings has expanded and updated his popular first edition of Network Security Essentials to include:

• New discussion of Advanced Encryption Standard
• Expanded discussion of Viruses, Worms, and Intruders
• Key words and review questions for each chapter
• Web site for instructor and student support at
  http://www.WilliamStallings.com/NetSec2e.html

--This text refers to an out of print or unavailable edition of this title.

See all Editorial Reviews

Product Details

• Paperback: 432 pages
• Publisher: Prentice Hall; 3 edition (July 29, 2006)
• Language: English
• ISBN-10: 0132380331
• ISBN-13: 978-0132380331
• Product Dimensions: 9.1 x 6.9 x 0.8 inches
• Shipping Weight: 1.3 pounds (View shipping rates and policies)
• Average Customer Review: 4.2 out of 5 stars  See all reviews (10 customer reviews)
• Amazon Best Sellers Rank: #642,387 in Books (See Top 100 in Books)

More About the Author

Discover books, learn about writers, read author blogs, and more.

Customer Reviews

Most Helpful Customer Reviews

13 of 15 people found the following review helpful:

4.0 out of 5 stars Quick & Dirty, October 24, 2000

By 

jeremycec "jeremycec" (Tampa, FL) - See all my reviews

This review is from: Network Security Essentials: Applications and Standards (Paperback)

This book appears to be a shorter, more concise version of Stallings' "Cryptography and Network Security: Principles and Practice." It has a much shorter, and therefore less complete treatment of security concepts in general and specifically cryptography. It might be good for a focused introductory course on network-level security, but there's not much there about application-level security. Overall, I found it a little terse. I like Stallings' books on networks and computer architecture better.

10 of 11 people found the following review helpful:

5.0 out of 5 stars For folks serious about learning network security, December 22, 2002

By A Customer

This review is from: Network Security Essentials: Applications and Standards (Paperback)

I purchased this book as part of the required reading for an Information Security class at UCLA. From the start the book was full of very technical and detailed information. Having little practical network experience, my first reading focused on grasping the low-hanging fruit. As I read the book a second and third time I picked up some serious knowledge. It seemed like everytime I re-read a chapter there was more there to glean. I'm now studying for the CISSP and CISA. My initial cold self-assessments returned scores in the 80%-100% range. That's without CISSP/CISA-specific studying. I attribute most of that knowledge to this book. This was money well spent!

10 of 11 people found the following review helpful:

4.0 out of 5 stars Pretty good book for serious beginners, September 7, 2000

By 

Robert C. (CA United States) - See all my reviews

This review is from: Network Security Essentials: Applications and Standards (Paperback)

Pretty good starting book for serious beginners in the network security area. Give you an in-depth overview of cryptography (part 1) and network security (part 2). The system security (part 3) is kind of weak. Most of the discussion are rather theoretic than practical, so you need another more practical book as companion. Anyway, understanding the contents of the book will lay a solid foundation for further exploring in the network security. BTW, if you hate math, this won't be a book for you!