Microsoft® Encyclopedia of Security (Paperback)

~ (Author) "Also called Triple DES or EDE (encrypt, decrypt, encrypt), a secret key encryption algorithm based on repeated application of the Data Encryption Standard (DES)..." (more)
Key Phrases: standards governing collection, baseline security settings, launching distributed denial, Microsoft Windows, Internet Protocol, Transmission Control Protocol (more...)

Editorial Reviews

Product Description

Get the single resource that defines and illustrates the rapidly evolving world of computer and network security. The MICROSOFT ENCYCLOPEDIA OF SECURITY delivers more than 1000 cross-referenced entries detailing the latest security-related technologies, standards, products, services, and issues including sources and types of attacks, countermeasures, policies, and more. You get clear, concise explanations and case scenarios that deftly take you from concept to real-world application ready answers to help maximize security for your mission-critical systems and data. Know your vulnerabilities understand the ways black-hat attackers footprint and enumerate systems, exploit security holes, crack passwords, elevate privileges, and cover their tracks. Deploy your best defense review fundamental concepts of intrusion detection systems, encryption technologies, virus protection, and computer forensics. Stay one step ahead keep pace with emerging security technologies, such as Wi-Fi Protected Access and XML Encryption; recent government legislation; and the latest industry trends. Decipher security acronyms from AES to XMLDSIG and 3DES to 802.11i, decode essential terms.Build your own network of resources from professional associations and standards organizations to online communities and links to free information, know how to stay current. Get an edge in certification preparation ideal reference for anyone pursuing Security+, MCSE, CISSP, GIAC, and other professional certifications. Entries include: Advanced Encryption Standard backdoors CERT/CC cookie poisoning digital rights management dynamic packet filtering E-SIGN Act file slack hacking honeypots ICMP tunneling IPSec John the Ripper keystroke logging L2TP L0phtCrack managed security service providers message digests NIAP Nmap Qchain one-time passwords password cracking PKI port scanning privacy reverse Telnet Safe Harbor Agreement spoofing Tcp_wrapper Trin00 UDP scanning viruses wardriving Windows(r) cryptographic API XML signatures Web services security worms zombie zapper and more

Product Details

• Paperback: 480 pages
• Publisher: Microsoft Press (July 16, 2003)
• Language: English
• ISBN-10: 0735618771
• ISBN-13: 978-0735618770
• Product Dimensions: 9 x 7.3 x 1.2 inches
• Shipping Weight: 2 pounds
• Average Customer Review: 3.3 out of 5 stars  See all reviews (3 customer reviews)
• Amazon.com Sales Rank: #912,540 in Books (See Bestsellers in Books)

  Popular in this category: (What's this?)

  #94 in

  Books > Computers & Internet > Security & Encryption > Windows Security

Customer Reviews

Most Helpful Customer Reviews

8 of 8 people found the following review helpful:

4.0 out of 5 stars Very useful encyclopedia for security, July 4, 2003

By	D. M Swaney (Oxnard, CA) - See all my reviews (REAL NAME)

As a new student to the realm of security I've been hit hard with new terminology and after a while sometimes I find it hard to rememberr what an acronym stands for or what it means.

This book makes it easy to look it up quickly for a refresher without having to flip through various books or search the internet. Great if you are a student like myself and working late at night cramming for an exam and you can't remember what PFS stands for.

This book I will keep near me at home, school, and at work because it is just a great reference book.

I gave it four stars instead of five because it would have been great if Microsoft included a CD with the book in electronic format so instead of carrying the book around I could just load it up on my computer and have quick access whenever I need it without having to remember where I left the book this time.

2 of 2 people found the following review helpful:

4.0 out of 5 stars Could have been more in depth..., January 6, 2004

By A Customer

The information given in this book is pretty basic. It is about at the level of your average MCSE or Jr SysAdmin. That is not necessarily a bad thing though. It is very easy and light reading. I actually read it from cover to cover without getting bored which is saying a lot for an encyclopedia!

1 of 1 people found the following review helpful:

2.0 out of 5 stars Good knowledge, however big mistakes and omissions., September 14, 2005

By	coffee_fan (Seattle, WA United States) - See all my reviews

I changed my review - I previously gave a 3 to this book, as I had done a cursory browsing and it looked great. Lately I have been focusing on security and trying to use the book as an actual reference and found it has some big omissions and mistakes and is NOT a reference -- Which deserves a 1 -- I am however giving it a 2 because it has coverage of lots of subjects which are important.

If you are a beginner in the security area, this book may prove valuable, but be forwarned that you may be de-railed in some concepts as they are plain wrong. So far what I have found:

Notable omissions: Subject, Object, Domain (not the NT one), Capability, Protected susbsystem, TCB, Reference monitor.

Errors: RBAC, Principal, Ticket.


FWIW here goes my previous review:

Handy Reference - 3

This encyclopedia is a good "1st base" reference that gets you closer to security definitions and perspectives.

Security is a constantly moving target, so some definitions are dated or lack accuracy, which is why I say it is just the 1st base. You may need to seek your 2nd and 3rd bases of information on the internet or via updated security information sources.

Nevertheless, the book has value in that it allows me to avoid some amount of googling.