Web Security: A Matter of Trust: World Wide Web Journal: Volume 2, Issue 3 [Paperback]

Simson Garfinkel (Author), Cricket Liu (Author), Lincoln Stein (Author), Bradford Biddle (Author), et al. (Author), John Gilmore (Author), Rohit Khare (Author)

Available from these sellers.

Book Description

Series: World Wide Web Journal | Publication Date: September 8, 1997

"Web surfing is a dangerous sport," observes one of the key papers in Web Security: A Matter of Trust, the Summer 1997 issue of the World Wide Web Journal. Indeed it is -- we are always at risk while downloading "cool" new applets, protecting secure information services, and even in trusting that a Web page comes from the stated author. The interviews, specifications, and articles in this issue reframe the debate as a matter of trust rather than cryptography.

Of course, strong security technology is still the foundation (good fences make good neighbors!), but a broad recent survey concerning public Web site vulnerability shows that our fences are in poor shape. The remedy is more careful administration, deployment of new cryptographic protocols, and public key distribution infrastructure. To protect real-world applications such as health care, electronic commerce, and protected "lockboxes" for digital content, however, means understanding tough concepts: Who is authorized to look at this data? Why? And on whose authority? This leads us to questions of trust management, a new approach to automated security decision making.

This issue covers W3C's Digital Signature Initiative (DSI), which breaks new ground in this area by binding machine-readable labels to public key signatures. Other topics include medical records privacy issues (Lincoln Stein), signature legality (C. Bradford Biddle), trust in Internet information systems (Rohit Khare), the PGP Web of Trust (Simson Garfinkel), REFEREE: a trust management system for Web applications (presented at WWW6 by Yang-Hua Chu), as well as articles on Java security, the "hacker threat," and much more.

#outer_postBodyPS { display: none; } #psGradient { display: none; } #psPlaceHolder { display: none; } #psExpand { display: none; }

Editorial Reviews

From the Publisher

"Web surfing is a dangerous sport," observes one of the key papers in Web Security: A Matter of Trust, the Summer 1997 issue of the World Wide Web Journal. Indeed it is -- we are always at risk while downloading "cool" new applets, protecting secure information services, and even in trusting that a web page comes from the stated author. The interviews, specifications, and articles in this issue reframe the debate as a matter of trust rather than cryptography. Of course, strong security technology is still the foundation (good fences make good neighbors!), but a broad recent survey concerning public web site vulnerability shows that our fences are in poor shape. The remedy is more careful adminsistration, deployment of new cryptographic protocols, and public key distribution infrastructure. To protect real-world applications such as health care, electronic commerce, and protected "lockboxes" for digital content, however, means understanding tough concepts: Who is authorized to look at this data? Why? And on whose authority? This leads us to questions of trust management, a new approach to automated security decision making. This issue covers W3C's Digital Signature Initiative (DSI), which breaks new ground in this area by binding machine-readable labels to public key signatures. Other topics include medical records privacy issues (Lincoln Stein), signature legality (Braddford Biddle), trust in Internet information systems (Rohit Khare), the PGP Web of Trust (Simson Garfinkel), REFEREE: a trust management system for web applications (presented at WWW6 by Yang-Hua Chu), as well as articles on Java security, the "hacker threat," and much more.

About the Author

Simson Garfinkel, CISSP, is a journalist, entrepreneur, and international authority on computer security. Garfinkel is chief technology officer at Sandstorm Enterprises, a Boston-based firm that develops state-of-the-art computer security tools. Garfinkel is also a columnist for Technology Review Magazine and has written for more than 50 publications, including Computerworld, Forbes, and The New York Times. He is also the author of Database Nation; Web Security, Privacy, and Commerce; PGP: Pretty Good Privacy; and seven other books. Garfinkel earned a master's degree in journalism at Columbia University in 1988 and holds three undergraduate degrees from MIT. He is currently working on his doctorate at MIT's Laboratory for Computer Science.

Cricket Liu matriculated at the University of California's Berkeley campus, that great bastion of free speech, unencumbered Unix, and cheap pizza. He joined Hewlett-Packard after graduation and worked for HP for nine years. Cricket began managing the hp.com zone after the Loma Prieta earthquake forcibly transferred the zone's management from HP Labs to HP's Corporate Offices (by cracking a sprinkler main and flooding Labs' computer room). Cricket was hostmaster@hp.com for over three years, and then joined HP's Professional Services Organization to cofound HP's Internet Consulting Program. Cricket left HP in 1997 to form Acme Byte & Wire, a DNS consulting and training company, with his friend (and now co-author) Matt Larson. Network Solutions acquired Acme in June 2000, and later the same day merged with VeriSign. Cricket worked for a year as Director of DNS Product Management for VeriSign Global Registry Services. Cricket joined Men & Mice, an Icelandic company specializing in DNS software and services, in September, 2001. He is currently their Vice President, Research & Development. Cricket, his wife, Paige, and their son, Walt, live in Colorado with two Siberian Huskies, Annie and Dakota. On warm weekend afternoons, you'll probably find them on the flying trapeze or wakeboarding behind Betty Blue.

Lincoln Stein is an assistant investigator at Cold Spring Harbor Laboratory, where he develops databases and user interfaces for the Human Genome Project using the Apache server and its module API. He is the author of several books about programming for the Web, including The Official Guide to CGI.pm, How to Set Up and Maintain a Web Site, and Web Security: A Step-by-Step Reference Guide.

Gilmore's career spans many years in Hollywood and New York as an actor, director, and screenwriter.

Product Details

Paperback: 282 pages
Publisher: O'Reilly Media; 1 edition (September 8, 1997)
Language: English
ISBN-10: 1565923294
ISBN-13: 978-1565923294
Product Dimensions: 9.2 x 7 x 0.7 inches
Shipping Weight: 1.2 pounds
Amazon Best Sellers Rank: #1,699,504 in Books (See Top 100 in Books)

Would you like to update product info or give feedback on images?

Customer Reviews

There are no customer reviews yet.

Create your own review

Video reviews

Amazon now allows customers to upload product video reviews. Use a webcam or video camera to record and upload reviews to Amazon.

Tags Customers Associate with This Product

(What's this?)

Click on a tag to find related items, discussions, and people.

1565923294(1)

9781565923294(1)

Agree with these tags?

Sell a Digital Version of This Book in the Kindle Store

If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store. Learn more

.jsOffDisplayBlock { display: block; } .jsOffDisplayInline { display: inline; } .jsOffVisibility { visibility: visible; } .jsOnDisplayBlock { display: none; } .jsOnDisplayNoneBlock { display: block; } .jsOnDisplayNoneInline { display: inline; } .jsOnDisplayInline { display: none; } .jsOnVisibility { visibility: hidden; } .jqOnDisplayBlock { display: none; } .jqOnDisplayInline { display: none; } .jqOnVisibility { visibility: hidden; } .jqOnDisplayNoneBlock { display: block; } .jqOnDisplayNoneInline { display: inline; }