Saltar al contenido principal
Elsevier

Libros en Ciencias Sociales

  • The Corporate Security Professional's Handbook on Terrorism

    • 1 Edición
    • Edward Halibozek + 2 más
    • Inglés
    The Corporate Security Professional's Handbook on Terrorism is a professional reference that clarifies the difference between terrorism against corporations and their assets, versus terrorism against government assets. It addresses the existing misconceptions regarding how terrorism does or does not affect corporations, and provides security professionals and business executives with a better understanding of how terrorism may impact them. Consisting three sections, Section I provides an explanation of what terrorism is, its history, who engages in it, and why. Section II focuses on helping the security professional develop and implement an effective anti-terrorism program in order to better protect the employees and assets of the corporation. Section III discusses the future as it relates to the likelihood of having to deal with terrorism. The book provides the reader with a practitioner’s guide, augmented by a historical assessment of terrorism and its impact to corporations, enabling them to immediately put in place useful security processes and methods to protect their corporate interests against potential acts of terror. This is guide is an essential tool for preparing security professionals and company executives to operate in an increasingly hostile global business environment.

  • The History of Information Security

    A Comprehensive Handbook
    • 1 Edición
    • Karl Maria Michael de Leeuw + 1 más
    • Inglés
    Information Security is usually achieved through a mix of technical, organizational and legal measures. These may include the application of cryptography, the hierarchical modeling of organizations in order to assure confidentiality, or the distribution of accountability and responsibility by law, among interested parties. The history of Information Security reaches back to ancient times and starts with the emergence of bureaucracy in administration and warfare. Some aspects, such as the interception of encrypted messages during World War II, have attracted huge attention, whereas other aspects have remained largely uncovered. There has never been any effort to write a comprehensive history. This is most unfortunate, because Information Security should be perceived as a set of communicating vessels, where technical innovations can make existing legal or organisational frame-works obsolete and a breakdown of political authority may cause an exclusive reliance on technical means.This book is intended as a first field-survey. It consists of twenty-eight contributions, written by experts in such diverse fields as computer science, law, or history and political science, dealing with episodes, organisations and technical developments that may considered to be exemplary or have played a key role in the development of this field.These include: the emergence of cryptology as a discipline during the Renaissance, the Black Chambers in 18th century Europe, the breaking of German military codes during World War II, the histories of the NSA and its Soviet counterparts and contemporary cryptology. Other subjects are: computer security standards, viruses and worms on the Internet, computer transparency and free software, computer crime, export regulations for encryption software and the privacy debate.

  • Fighting Fraud

    How to Establish and Manage an Anti-Fraud Program
    • 1 Edición
    • Gerald L. Kovacich
    • Inglés
    This practical reference provides the basics for instituting a corporate anti-fraud program that helps prepare corporate security professionals and other corporate managers for fighting corporate fraud from inside the company. Fighting Fraud provides an exceptional foundation for security professionals or business executives involved in developing and implementing a corporate anti-fraud program as part of a corporate assets protection program. The author’s intent is to provide the reader with a practitioner’s guide (a “how-to” book), augmented by some background information to put it all in perspective. The approach used should enable the readers to immediately put in place a useful anti-fraud program under the leadership of the corporate security officer (CSO), or other corporate professional.

  • Bloodstain Pattern Evidence

    Objective Approaches and Case Applications
    • 1 Edición
    • Anita Y. Wonder
    • Inglés
    In Bloodstain Pattern Evidence, the concepts introduced in the author's first book, Blood Dynamics, are updated and applied to provide essential answers in the resolution of actual crimes. The book is accessible to all levels of investigators, regardless of academic background, and allows readers to develop a fundamental understanding of the underlying scientific principles behind bloodstain pattern evidence. Bloodstain Pattern Evidence builds on the fundamental ideas brought about by an understanding of Non-Newtonian dynamics, and illustrates through case work the practical forensic science applications of these principles to the analysis of bloodstain patterns.

  • AVIEN Malware Defense Guide for the Enterprise

    • 1 Edición
    • Robert S. Vibert + 1 más
    • Inglés
    Members of AVIEN (the Anti-Virus Information Exchange Network) have been setting agendas in malware management for several years: they led the way on generic filtering at the gateway, and in the sharing of information about new threats at a speed that even anti-virus companies were hard-pressed to match. AVIEN members represent the best-protected large organizations in the world, and millions of users. When they talk, security vendors listen: so should you. AVIEN’s sister organization AVIEWS is an invaluable meeting ground between the security vendors and researchers who know most about malicious code and anti-malware technology, and the top security administrators of AVIEN who use those technologies in real life. This new book uniquely combines the knowledge of these two groups of experts. Anyone who is responsible for the security of business information systems should be aware of this major addition to security literature.* “Customer Power” takes up the theme of the sometimes stormy relationship between the antivirus industry and its customers, and tries to dispel some common myths. It then considers the roles of the independent researcher, the vendor-employed specialist, and the corporate security specialist.* “Stalkers on Your Desktop” considers the thorny issue of malware nomenclature and then takes a brief historical look at how we got here, before expanding on some of the malware-related problems we face today.* “A Tangled Web” discusses threats and countermeasures in the context of the World Wide Web. * “Big Bad Bots” tackles bots and botnets, arguably Public Cyber-Enemy Number One.* “Crème de la CyberCrime” takes readers into the underworld of old-school virus writing, criminal business models, and predicting future malware hotspots.* “Defense in Depth” takes a broad look at DiD in the enterprise, and looks at some specific tools and technologies.* “Perilous Outsorcery” offers sound advice on how to avoid the perils and pitfalls of outsourcing, incorporating a few horrible examples of how not to do it.* “Education in Education” offers some insights into user education from an educationalist’s perspective, and looks at various aspects of security in schools and other educational establishments.* “DIY Malware Analysis” is a hands-on, hands-dirty approach to security management, considering malware analysis and forensics techniques and tools.* “Antivirus Evaluation & Testing” continues the D-I-Y theme, discussing at length some of the thorny issues around the evaluation and testing of antimalware software.* “AVIEN & AVIEWS: the Future” looks at future developments in AVIEN and AVIEWS.

  • Teaching with Technology

    An Academic Librarian’s Guide
    • 1 Edición
    • Joe Williams + 1 más
    • Inglés
    This practical book introduces readers to the current technology topics and issues facing today’s academic instruction and reference librarians. The book provides up-to-date overviews of cutting edge technologies, offers an insight on current educational uses and applications of these new tools, and discusses common problems and pitfalls librarians may encounter when incorporating current technologies into their instruction services. Chapters are written by experienced practitioners, providing detailed information on best practices and common pitfalls using today’s technologies. Topics include teaching with streaming video, chat-based virtual reference services, wireless networking, weblogs and course management software.

  • The Biology of Human Longevity

    Inflammation, Nutrition, and Aging in the Evolution of Lifespans
    • 1 Edición
    • Caleb E. Finch
    • Inglés
    Written by Caleb Finch, one of the leading scientists of our time, The Biology of Human Longevity: Inflammation, Nutrition, and Aging in the Evolution of Lifespans synthesizes several decades of top research on the topic of human aging and longevity particularly on the recent theories of inflammation and its effects on human health. The book expands a number of existing major theories, including the Barker theory of fetal origins of adult disease to consider the role of inflammation and Harmon's free radical theory of aging to include inflammatory damage. Future increases in lifespan are challenged by the obesity epidemic and spreading global infections which may reverse the gains made in lowering inflammatory exposure. This timely and topical book will be of interest to anyone studying aging from any scientific angle.

  • How to Cheat at Microsoft Vista Administration

    • 1 Edición
    • Jan Kanclirz
    • Inglés
    The Perfect Reference for the Multitasked SysAdminThe Microsoft Windows Vista operating system offers several changes and improvements over its predecessors. It not only brings a new and redesigned interface, but also improves on many administrative utilities and management consoles. It also enhances the system’s reliability, performance, and problem-solving tools. As administrators, Vista will sometimes look like its predecessor, Windows XP, and at other times, look like an all-new operating system. How to Cheat will help you get Vista up and running as quickly and safely as possible and provide you with a solid idea of all the important changes and improvements the new Microsoft Vista OS has to offer.In the book you will:* Automate Windows Vista InstallationSee how Windows installations can be automated for large-scale deployments using the Windows Automated Installation Kit (WAIK).* Install and Maintain DevicesWindows Vista contains device drivers for hundreds of PnP devices, and the Device Manager snap-in is the main utility on a local computer for managing them.* Customize Appearances, Taskbars, and ToolbarsSee how to use a personalization page, use the taskbar, and customize desktop themes.* Manage File System Formats, Partitions, and VolumesLearn how Windows Vista supports basic and dynamic volumes and two partition styles: MBR and GPT.* Increase File System PerformanceLearn how using tools such as disk defragging, cluster size adjustment, removing short filename support, and compression can help with performance.* Administer via RemoteRemote Desktop and Windows Firewall can help administrators perform administrative tasks on remote computers.* Managing ServicesThe Services utility allows you to view the status of services, as well as to disable nonessential services.* Configure TCP/IP in VistaSee how to configure TCP/IP (both IPv4 and IPv6) via the user interface or via the netsh command.* See What’s New with Wireless in VistaUnderstand wireless security and learn how to install a wireless network.* Optimize Windows Startup, the Hard Disk, and MoreOptimize memory, applications, and the network connection, and see how to monitor performance.Contents IncludeIntroducing and Installing Microsoft VistaInstalling and Maintaining Hardware Devices and DriversCustomizing Desktop PropertiesManaging File Systems and DisksGeneral Administration TasksManaging Local Networking EssentialsManaging the Wireless World and Its SecurityManaging Security EssentialsSecuring User AccessTuning for Better Performance Troubleshooting

  • Laboratory Experiments in the Social Sciences

    • 1 Edición
    • Murray Webster + 1 más
    • Inglés
    Laboratory Experiments in the Social Sciences is the only book providing core information for researchers about the ways and means to conduct experiments. Its comprehensive regard for laboratory experiments encompasses “how-to” explanations, investigations of philosophies and ethics, explorations of experiments in specific social science disciplines, and summaries of both the history and future of social science laboratories. No other book offers such a direct avenue to enlarging our knowledge in the social sciences.This collection of original chapters combines instructions and advice about the design of laboratory experiments in the social sciences with the array of other issues. While there are books on experimental design and chapters in more general methods books on design, theory, and ethical issues, no other book attempts to discuss the fundamental ideas of the philosophy of science or lays out the methods comprehensively or in such detail. Experimentation has recently prospered because of increasing interest in cross-disciplinary syntheses, and this book of advice, guidelines, and observations underline its potential and increasing importance.

  • Counterterrorist Detection Techniques of Explosives

    • 1 Edición
    • Jehuda Yinon
    • Inglés
    The detection of hidden explosives has become an issue of utmost importance in recent years. While terrorism is not new to the international community, recent terrorist attacks have raised the issue of detection of explosives and have generated a great demand for rapid, sensitive and reliable methods for detecting hidden explosives. Counterterrorist Detection Techniques of Explosives covers recent advances in this area of research including vapor and trace detection techniques (chemiluminescence, mass spectrometry, ion mobility spectrometry, electrochemical methods and micromechanical sensors, such as microcantilevers) and bulk detection techniques (neutron techniques, nuclear quadrupole resonance, x-ray diffraction imaging, millimeter-wave imaging, terahertz imaging and laser techniques). This book will be of interest to any scientists involved in the design and application of security screening technologies including new sensors and detecting devices which will prevent the smuggling of bombs and explosives.

  • The Evaluation of Worldwide Digital Reference Services in Libraries

    • 1 Edición
    • Jia Liu
    • Inglés
    This book outlines and evaluates the digital reference services in libraries worldwide. The work is based on an international collaborative project between two groups from German and Chinese institutions, during which digital reference services provided by nearly 200 libraries all over the world were evaluated. The book also examines the reasons for the resulting differences; it also contains more generic proposals and perspectives on digital reference services.

  • Asterisk Hacking

    • 1 Edición
    • Joshua Brashars
    • Inglés
    Asterisk Hacking provides detials of techniques people may not be aware of. It teaches the secrets the bad guys already know about stealing personal information through the most common, seemingly innocuous, highway into computer networks: the phone system. This book provides detials to readers what they can do to protect themselves, their families, their clients, and their network from this invisible threat. Power tips show how to make the most out of the phone system for defense or attack.

  • How to Cheat at IIS 7 Server Administration

    • 1 Edición
    • Chris Adams
    • Inglés
    According to Microsoft, Internet Information Services (IIS) 7.0 is a web server that provides a secure, easy to manage platform for developing and reliably hosting Web applications and services. With the new version of IIS, there are more security options, 40 new feature models that allow administrators to customize their settings, and a new set of administration tools. Administrators migrating from version 6 will find this How to Cheat book the perfect vehicle for getting up to speed fast on the new version.IIS version 7 is the perfect product for the How to Cheat series. This new version from Microsoft is an ambitious overhaul that tries to balance the growing needs for performance, cost effectiveness, and security. For the average SysAdmin, it will present a difficult migration path from earlier versions and a vexing number of new features. How to Cheat promises help get IIS 7 up and running as quickly and safely as possible.

  • Business Continuity and Disaster Recovery Planning for IT Professionals

    • 1 Edición
    • Susan Snedaker
    • Inglés
    Powerful Earthquake Triggers Tsunami in Pacific. Hurricane Katrina Makes Landfall in the Gulf Coast. Avalanche Buries Highway in Denver. Tornado Touches Down in Georgia. These headlines not only have caught the attention of people around the world, they have had a significant effect on IT professionals as well. As technology continues to become more integral to corporate operations at every level of the organization, the job of IT has expanded to become almost all-encompassing. These days, it’s difficult to find corners of a company that technology does not touch. As a result, the need to plan for potential disruptions to technology services has increased exponentially. That is what Business Continuity Planning (BCP) is: a methodology used to create a plan for how an organization will recover after a disaster of various types. It takes into account both security and corporate risk management tatics.There is a lot of movement around this initiative in the industry: the British Standards Institute is releasing a new standard for BCP this year. Trade shows are popping up covering the topic.

  • Linksys WRT54G Ultimate Hacking

    • 1 Edición
    • Paul Asadoorian + 1 más
    • Inglés
    This book will teach the reader how to make the most of their WRT54G series hardware. These handy little inexpensive devices can be configured for a near endless amount of networking tasks. The reader will learn about the WRT54G’s hardware components, the different third-party firmware available and the differences between them, choosing the firmware that is right for you, and how to install different third-party firmware distributions. Never before has this hardware been documented in this amount of detail, which includes a wide-array of photographs and complete listing of all WRT54G models currently available, including the WRTSL54GS.Once this foundation is laid, the reader will learn how to implement functionality on the WRT54G for fun projects, penetration testing, various network tasks, wireless spectrum analysis, and more! This title features never before seen hacks using the WRT54G. For those who want to make the most out of their WRT54G you can learn how to port code and develop your own software for the OpenWRT operating system.

  • Letting Go of the Words

    Writing Web Content that Works
    • 1 Edición
    • Janice (Ginny) Redish
    • Inglés
    "Redish has done her homework and created a thorough overview of the issues in writing for the Web. Ironically, I must recommend that you read her every word so that you can find out why your customers won't read very many words on your website -- and what to do about it."-- Jakob Nielsen, Principal, Nielsen Norman Group“There are at least twelve billion web pages out there. Twelve billion voices talking, but saying mostly nothing. If just 1% of those pages followed Ginny’s practical, clear advice, the world would be a better place. Fortunately, you can follow her advice for 100% of your own site’s pages, so pick up a copy of Letting Go of the Words and start communicating effectively today.”--Lou Rosenfeld, co-author, Information Architecture for the World Wide WebOn the web, whether on the job or at home, we usually want to grab information and use it quickly. We go to the web to get answers to questions or to complete tasks – to gather information, reading only what we need. We are all too busy to read much on the web.This book helps you write successfully for web users. It offers strategy, process, and tactics for creating or revising content for the web. It helps you plan, organize, write, design, and test web content that will make web users come back again and again to your site. Learn how to create usable and useful content for the web from the master − Ginny Redish. Ginny has taught and mentored hundreds of writers, information designers, and content owners in the principles and secrets of creating web information that is easy to scan, easy to read, and easy to use. This practical, informative book will help anyone creating web content do it better.Features* Clearly-explained guidelines with full color illustrations and examples from actual web sites throughout the book. * Written in easy-to-read style with many "befores" and "afters."* Specific guidelines for web-based press releases, legal notices, and other documents.* Tips on making web content accessible for people with special needs.Janice (Ginny) Redish has been helping clients and colleagues communicate clearly for more than 20 years. For the past ten years, her focus has been helping people create usable and useful web sites. She is co-author of two classic books on usability: A Practical Guide to Usability Testing (with Joseph Dumas), and User and Task Analysis for Interface Design (with JoAnn Hackos), and is the recipient of many awards.

  • Security Convergence

    Managing Enterprise Security Risk
    • 1 Edición
    • Dave Tyson
    • Inglés
    Security Convergence describes the movement in business to combine the roles of physical security and security management with network computer security measures within an organization. This is the first book to discuss the subject of security convergence, providing real-world illustrations of implementation and the cost-saving benefits that result. Security Convergence discusses security management, electronic security solutions, and network security and the manner in which all of these interact. Combining security procedures and arriving at complete security solutions improves efficiency, greatly improves security, and saves companies money. Implementation of convergence principles has increased rapidly and the number of businesses moving to this model will continue to grow over the next few years. All security professionals, regardless of background, will find this a useful reference and a practical look at the benefits of convergence and a look to the future of how organizations and corporations will protect their assets.

  • Building Robots with LEGO Mindstorms NXT

    • 1 Edición
    • Mario Ferrari + 2 más
    • David Astolfo
    • Inglés
    The Ultimate Tool for MINDSTORMS® ManiacsThe new MINDSTORMS kit has been updated to include a programming brick, USB cable, RJ11-like cables, motors, and sensors. This book updates the robotics information to be compatible with the new set and to show how sound, sight, touch, and distance issues are now dealt with. The LEGO MINDSTORMS NXT and its predecessor, the LEGO MINDSTORMS Robotics Invention System (RIS), have been called "the most creative play system ever developed." This book unleashes the full power and potential of the tools, sensors, and components that make up LEGO MINDSTORMS NXT. It also provides a unique insight on newer studless building techniques as well as interfacing with the traditional studded beams. Some of the world's leading LEGO MINDSTORMS inventors share their knowledge and development secrets. You will discover an incredible range of ideas to inspire your next invention. This is the ultimate insider's look at LEGO MINDSTORMS NXT system and is the perfect book whether you build world-class competitive robots or just like to mess around for the fun of it.Featuring an introduction by astronaut Dan Barry and written by Dave Astolfo, Invited Member of the MINDSTORMS Developer Program and MINDSTORMS Community Partners (MCP) groups, and Mario and Guilio Ferrari, authors of the bestselling Building Robots with LEGO Mindstorms, this book covers:Understanding LEGO GeometryPlaying with GearsControlling MotorsReading SensorsWhat's New with the NXT?Building StrategiesProgrammin... the NXTPlaying Sounds and MusicBecoming MobileGetting Pumped: PneumaticsFinding and Grabbing ObjectsDoing the MathKnowing Where You AreClassic ProjectsBuilding Robots That WalkRobotic AnimalsSolving a MazeDrawing and WritingRacing Against TimeHand-to-Hand CombatSearching for Precision

  • Windows Forensic Analysis DVD Toolkit

    • 1 Edición
    • Harlan Carvey
    • Inglés
    Windows Forensic Analysis DVD Toolkit addresses and discusses in-depth forensic analysis of Windows systems. The book takes the reader to a whole new, undiscovered level of forensic analysis for Windows systems, providing unique information and resources not available anywhere else. This book covers both live and post-mortem response collection and analysis methodologies, addressing material that is applicable to law enforcement, the federal government, students, and consultants. This book also brings this material to the doorstep of system administrators, who are often the front line troops when an incident occurs, but due to staffing and budgets do not have the necessary knowledge to effectively respond. All disc-based content for this title is now available on the Web.

  • Treatment of the Postmenopausal Woman

    Basic and Clinical Aspects
    • 3 Edición
    • Rogerio A. Lobo
    • Inglés
    For anyone who treats postmenopausal women, this latest edition of Rogerio Lobo's classic work combines the best from two well-known references: Menopause, and the second edition of Treatment of the Postmenopausal Woman. By adding significant discussions of the basic science behind menopause, it is possible to objectively assess the clinical value and limitations of current approaches to treatment and provide a basis and rationale for strategies that will result in better individualized and specialized care. Not only does the third edition discuss diagnosis and treatment of menopause but it covers biological, anatomical, physiological, pathobiological, and pharmacological aspects as well bringing together, in one source, all of the information needed to understand and treat postmenopausal conditions.

  • Exploring Methods in Information Literacy Research

    • 1 Edición
    • Suzanne Lipu + 2 más
    • Inglés
    This book provides an overview of approaches to assist researchers and practitioners to explore ways of undertaking research in the information literacy field. The first chapter provides an introductory overview of research by Dr Kirsty Williamson (author of Research Methods for Students, Academics and Professionals: Information Management and Systems) and this sets the scene for the rest of the chapters where each author explores the key aspects of a specific method and explains how it may be applied in practice. The methods covered include those representing qualitative, quantitative and mixed methods. Both a chapter on the topical evidence-based practice approach, and another critiquing it, are also included. The final chapter points the way towards potential new directions for the burgeoning field.Renowned information literacy researcher Dr Christine Bruce affirms the usefulness of the book: New researchers and early career professionals will appreciate the clarity of the introductions provided' to each of the methods covered.

  • Libraries in the Twenty-First Century

    Charting Directions in Information Services
    • 1 Edición
    • Stuart J. Ferguson
    • Inglés
    Libraries in the Twenty-First Century brings together library educators and practitioners to provide a scholarly yet accessible overview of library and information management and the challenges that the twenty-first century offers the information profession. The papers in this collection illustrate the changing nature of the library as it evolves into its twenty-first century manifestation. The national libraries of Australia and New Zealand, for instance, have harnessed information and communication technologies to create institutions that are far more national, even democratic, in terms of delivery of service and sheer presence than their print-based predecessors.Aimed at practitioners and students alike, this publication covers specific types of library and information agencies, discusses specific aspects of library and information management and places developments in library and information services in a number of broad contexts: socio-economic, ethico-legal, historical and educational.

  • Institutional Repositories

    Content and Culture in an Open Access Environment
    • 1 Edición
    • Catherine Jones
    • Inglés
    A practical guide to current Institutional Repository (IR) issues, focussing on content - both gaining and preserving it and what cultural issues need to be addressed to make a successful IR. Importantly, the book uses real-life experiences to address and highlight issues raised in the book.

  • Security+ Study Guide

    • 2 Edición
    • Ido Dubrawsky + 1 más
    • Inglés
    Over 700,000 IT Professionals Have Prepared for Exams with Syngress Authored Study GuidesThe Security+ Study Guide & Practice Exam is a one-of-a-kind integration of text and and Web-based exam simulation and remediation. This system gives you 100% coverage of official CompTIA Security+ exam objectives plus test preparation software for the edge you need to achieve certification on your first try! This system is comprehensive, affordable, and effective!* Completely Guaranteed Coverage of All Exam ObjectivesAll five Security+ domains are covered in full: General Security Concepts, Communication Security, Infrastructure Security, Basics of Cryptography, and Operational / Organizational Security * Fully Integrated LearningThis package includes a Study Guide and one complete practice exam. * Each chapter starts by explaining the exam objectives covered in the chapterYou will always know what is expected of you within each of the exam’s domains.* Exam-Specific Chapter ElementsNotes, Tips, Alerts, Exercises, Exam’s Eyeview, and Self Test with fully explained answers. * Test What You LearnedHundreds of self-test review questions test your knowledge of specific exam objectives. A Self Test Appendix features answers to all questions with complete explanations of correct and incorrect answers.

  • The Art of War for Security Managers

    10 Steps to Enhancing Organizational Effectiveness
    • 1 Edición
    • Scott Watson
    • Inglés
    The classic book The Art of War (or as it is sometimes translated, The Art of Strategy) by Sun Tzu is often used to illustrate principles that can apply to the management of business environments. The Art of War for Security Managers is the first book to apply the time-honored principles of Sun Tzu’s theories of conflict to contemporary organizational security.Corporate leaders have a responsibility to make rational choices that maximize return on investment. The author posits that while conflict is inevitable, it need not be costly. The result is an efficient framework for understanding and dealing with conflict while minimizing costly protracted battles, focusing specifically on the crucial tasks a security manager must carry out in a 21st century organization.

  • How to Cheat at VoIP Security

    • 1 Edición
    • Thomas Porter CISSP CCNP CCDA CCS + 1 más
    • Inglés
    The Perfect Reference for the Multitasked SysAdminThis is the perfect guide if VoIP engineering is not your specialty. It is the perfect introduction to VoIP security, covering exploit tools and how they can be used against VoIP (Voice over IP) systems. It gives the basics of attack methodologies used against the SIP and H.323 protocols as well as VoIP network infrastructure. * VoIP Isn’t Just Another Data ProtocolIP telephony uses the Internet architecture, similar to any other data application. However, from a security administrator’s point of view, VoIP is different. Understand why. * What Functionality Is Gained, Degraded, or Enhanced on a VoIP Network?Find out the issues associated with quality of service, emergency 911 service, and the major benefits of VoIP.* The Security Considerations of Voice MessagingLearn about the types of security attacks you need to protect against within your voice messaging system.* Understand the VoIP Communication ArchitecturesUnderst... what PSTN is and what it does as well as the H.323 protocol specification, and SIP Functions and features.* The Support Protocols of VoIP EnvironmentsLearn the services, features, and security implications of DNS, TFTP, HTTP, SNMP, DHCP, RSVP, SDP, and SKINNY.* Securing the Whole VoIP InfrastructureLearn about Denial-of-Service attacks, VoIP service disruption, call hijacking and interception, H.323-specific attacks, and SIP-specific attacks.* Authorized Access Begins with AuthenticationLearn the methods of verifying both the user identity and the device identity in order to secure a VoIP network.* Understand Skype SecuritySkype does not log a history like other VoIP solutions; understand the implications of conducting business over a Skype connection.* Get the Basics of a VoIP Security PolicyUse a sample VoIP Security Policy to understand the components of a complete policy.

  • How to Cheat at Configuring Open Source Security Tools

    • 1 Edición
    • Michael Gregg + 4 más
    • Inglés
    The Perfect Reference for the Multitasked SysAdminThis is the perfect guide if network security tools is not your specialty. It is the perfect introduction to managing an infrastructure with freely available, and powerful, Open Source tools. Learn how to test and audit your systems using products like Snort and Wireshark and some of the add-ons available for both. In addition, learn handy techniques for network troubleshooting and protecting the perimeter.* Take InventorySee how taking an inventory of the devices on your network must be repeated regularly to ensure that the inventory remains accurate.* Use NmapLearn how Nmap has more features and options than any other free scanner.* Implement FirewallsUse netfilter to perform firewall logic and see how SmoothWall can turn a PC into a dedicated firewall appliance that is completely configurable.* Perform Basic HardeningPut an IT security policy in place so that you have a concrete set of standards against which to measure. * Install and Configure Snort and WiresharkExplore the feature set of these powerful tools, as well as their pitfalls and other security considerations.* Explore Snort Add-OnsUse tools like Oinkmaster to automatically keep Snort signature files current.* Troubleshoot Network ProblemsSee how to reporting on bandwidth usage and other metrics and to use data collection methods like sniffing, NetFlow, and SNMP.* Learn Defensive Monitoring ConsiderationsSee how to define your wireless network boundaries, and monitor to know if they’re being exceeded and watch for unauthorized traffic on your network.

  • XSS Attacks

    Cross Site Scripting Exploits and Defense
    • 1 Edición
    • Seth Fogie + 4 más
    • Inglés
    A cross site scripting attack is a very specific type of attack on a web application. It is used by hackers to mimic real sites and fool people into providing personal data.XSS Attacks starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented, used, and abused. After XSS is thoroughly explored, the next part provides examples of XSS malware and demonstrates real cases where XSS is a dangerous risk that exposes internet users to remote access, sensitive data theft, and monetary losses. Finally, the book closes by examining the ways developers can avoid XSS vulnerabilities in their web applications, and how users can avoid becoming a victim. The audience is web developers, security practitioners, and managers.

  • Encyclopedia of Security Management

    • 2 Edición
    • John Fay
    • Inglés
    The Encyclopedia of Security Management is a valuable guide for all security professionals, and an essential resource for those who need a reference work to support their continuing education. In keeping with the excellent standard set by the First Edition, the Second Edition is completely updated. The Second Edition also emphasizes topics not covered in the First Edition, particularly those relating to homeland security, terrorism, threats to national infrastructures (e.g., transportation, energy and agriculture) risk assessment, disaster mitigation and remediation, and weapons of mass destruction (chemical, biological, radiological, nuclear and explosives). Fay also maintains a strong focus on security measures required at special sites such as electric power, nuclear, gas and chemical plants; petroleum production and refining facilities; oil and gas pipelines; water treatment and distribution systems; bulk storage facilities; entertainment venues; apartment complexes and hotels; schools; hospitals; government buildings; and financial centers. The articles included in this edition also address protection of air, marine, rail, trucking and metropolitan transit systems.

  • Security Design Consulting

    The Business of Security System Design
    • 1 Edición
    • Brian Gouin
    • Inglés
    A crucial reference for the practicing or aspiring design consultant, Security Design Consulting brings you step by step through the process of becoming a security consultant, describing how to start the business, market services, write proposals, determine fees, and write a report. Specific elements of assessment, design and project management services as well as acquiring product and industry knowledge are all covered in detail. Concentrating on client-focused marketing and sales strategies as well as the crucial elements of preparing, running, and succeeding at the security consulting business, Security Design Consulting gives the reader a working knowledge of all the steps necessary to be a successful security design consultant and a smarter business owner. Security directors, architects and security management consultants will also find this reference invaluable in understanding the security design consultant’s important and growing role in an overall security program.

  • E-Journal Invasion

    A Cataloguer’s Guide to Survival
    • 1 Edición
    • Helen Heinrich
    • Inglés
    Written by an authoritative practitioner, this book explores the changing nature of cataloguing in the aftermath of e-journal invasion. It traces the development of the issue by examining changes in AACR2 and CONSER rules, focusing on the revision of AACR2, Chapter 12, and emergence of the concept of ‘Continuing Resources’. The book analyzes challenges of e-journal cataloguing that stem from an ever-growing number of online publications and aggregator databases. It assesses the complexities of incorporating commercially produced cataloguing into a local database, and offers practical solutions to the most common questions in the process. The book concludes with a look into the future of e-resource cataloguing from technical and conceptual standpoints.

  • The Challenges of Knowledge Sharing in Practice

    A Social Approach
    • 1 Edición
    • Gunilla Widen-Wulff
    • Inglés
    Addresses the key skills that are required in organisations in the information intensive society. The book examines the power of information behaviour on the construction of different kinds of shared knowledge and social identity in a group. An introduction to the different dimensions of social capital that is structural and cognitive, and looks at the relational aspects of information behaviour in organisations. Experiences are analysed in two different case studies - in the financial and biotechnology industries - in order to gain additional insights in how the internal organisation environment should be designed to support the development of the organisation's intellectual capital.

  • Evidence-Based Librarianship

    Case Studies and Active Learning Exercises
    • 1 Edición
    • Elizabeth Connor
    • Inglés
    This book features case studies and active learning exercises related to using evidence-based approaches in several types of academic libraries. Evidence-Based Librarianship is a vital reference to practicing librarians, library science students, and library science educators as it focuses on applying practice-based evidence gleaned from users, direct observation, and research.

  • Youth Services and Public Libraries

    • 1 Edición
    • Susan Higgins
    • Inglés
    Youth Services and Public Libraries offers strategies to match the information needs and wants of children and young adults in public libraries and translates these into knowledge for providing relevant services. The latest trends in service provision are covered within the context of appropriate management, programming and marketing of services. The book is grounded in the principles of public library services to children and young adults everywhere.

  • Physical and Logical Security Convergence: Powered By Enterprise Security Management

    • 1 Edición
    • Brian T Contos + 3 más
    • Eric Cole
    • Inglés
    Government and companies have already invested hundreds of millions of dollars in the convergence of physical and logical security solutions, but there are no books on the topic.This book begins with an overall explanation of information security, physical security, and why approaching these two different types of security in one way (called convergence) is so critical in today’s changing security landscape. It then details enterprise security management as it relates to incident detection and incident management. This is followed by detailed examples of implementation, taking the reader through cases addressing various physical security technologies such as: video surveillance, HVAC, RFID, access controls, biometrics, and more.

  • Handbook of Defense Economics

    Defense in a Globalized World
    • 1 Edición
    • Todd Sandler + 1 más
    • Inglés
    The second volume of the Handbook of Defense Economics addresses defense needs, practices, threats, and policies in the modern era of globalization. This new era concerns the enhanced cross-border flows of all kinds (e.g., capital and labor flows, revolutionary rhetoric, guerrillas, and terrorists) including the spillovers of benefits and costs associated with public goods and transnational externalities (i.e., uncompensated interdependencies affecting two or more nations). These ever-increasing flows mean that military armaments and armies are less able to keep out security threats. Thus, novel defense and security barriers are needed to protect borders that are porous to terrorists, pollutants, political upheavals, and conflicts. Even increased trade and financial flows imply novel security challenges and defenses. Globalization also underscores the importance of a new set of institutions (e.g., the European Union and global governance networks) and agents (e.g., nongovernmental organizations and partnerships). This volume addresses the security challenges in this age of globalization, where conflicts involve novel tactics, new technologies, asymmetric warfare, different venues, and frightening weapons. Volume 2 contains topics not covered in volume 1 – i.e., civil wars, peacekeeping, economic sanctions, the econometrics of arms races, conversion, peace economics, and the interface of trade, peace, and democracy. Volume 2 also revisits topics from volume 1, where there has been a significant advancement of knowledge – i.e., conflict analysis, terrorism, arms races, arms trade, military manpower, and arms industries. All of the main securities concerns of today are analyzed. Chapters are written by the leading contributors in the topic areas.

  • Generalisation of Geographic Information

    Cartographic Modelling and Applications
    • 1 Edición
    • William A. Mackaness + 2 más
    • Inglés
    Theoretical and Applied Solutions in Multi Scale Mapping Users have come to expect instant access to up-to-date geographical information, with global coverage--presented at widely varying levels of detail, as digital and paper products; customisable data that can readily combined with other geographic information. These requirements present an immense challenge to those supporting the delivery of such services (National Mapping Agencies (NMA), Government Departments, and private business. Generalisation of Geographic Information: Cartographic Modelling and Applications provides detailed review of state of the art technologies associated with these challenges, including the most recent developments in cartometric analysis techniques able to support high levels of automation among multi scale derivation techniques. The book illustrates the application of these ideas within existing and emerging technologies. In addition to providing a comprehensive theoretical underpinning, the book demonstrates how theoretical developments have translated into commercial systems deployed within NMAs. The book explores relevance of open systems in support of collaborative research and open source web based map services.

  • Snort Intrusion Detection and Prevention Toolkit

    • 1 Edición
    • Brian Caswell + 2 más
    • Inglés
    This all new book covering the brand new Snort version 2.6 from members of the Snort developers team.This fully integrated book and Web toolkit covers everything from packet inspection to optimizing Snort for speed to using the most advanced features of Snort to defend even the largest and most congested enterprise networks. Leading Snort experts Brian Caswell, Andrew Baker, and Jay Beale analyze traffic from real attacks to demonstrate the best practices for implementing the most powerful Snort features. The book will begin with a discussion of packet inspection and the progression from intrusion detection to intrusion prevention. The authors provide examples of packet inspection methods including: protocol standards compliance, protocol anomaly detection, application control, and signature matching. In addition, application-level vulnerabilities including Binary Code in HTTP headers, HTTP/HTTPS Tunneling, URL Directory Traversal, Cross-Site Scripting, and SQL Injection will also be analyzed. Next, a brief chapter on installing and configuring Snort will highlight various methods for fine tuning your installation to optimize Snort performance including hardware/OS selection, finding and eliminating bottlenecks, and benchmarking and testing your deployment. A special chapter also details how to use Barnyard to improve the overall performance of Snort. Next, best practices will be presented allowing readers to enhance the performance of Snort for even the largest and most complex networks. The next chapter reveals the inner workings of Snort by analyzing the source code. The next several chapters will detail how to write, modify, and fine-tune basic to advanced rules and pre-processors. Detailed analysis of real packet captures will be provided both in the book and the companion material. Several examples for optimizing output plugins will then be discussed including a comparison of MySQL and PostrgreSQL. Best practices for monitoring Snort sensors and analyzing intrusion data follow with examples of real world attacks using: ACID, BASE, SGUIL, SnortSnarf, Snort_stat.pl, Swatch, and more.The last part of the book contains several chapters on active response, intrusion prevention, and using Snort’s most advanced capabilities for everything from forensics and incident handling to building and analyzing honey pots.

  • Zen and the Art of Information Security

    • 1 Edición
    • Ira Winkler
    • Inglés
    While security is generally perceived to be a complicated and expensive process, Zen and the Art of Information Security makes security understandable to the average person in a completely non-technical, concise, and entertaining format. Through the use of analogies and just plain common sense, readers see through the hype and become comfortable taking very simple actions to secure themselves. Even highly technical people have misperceptions about security concerns and will also benefit from Ira Winkler’s experiences making security understandable to the business world. Mr. Winkler is one of the most popular and highly rated speakers in the field of security, and lectures to tens of thousands of people a year. Zen and the Art of Information Security is based on one of his most well received international presentations.

  • Introduction to Environmental Forensics

    • 2 Edición
    • Brian L. Murphy + 1 más
    • Brian L. Murphy + 1 más
    • Inglés
    Introduction to Environmental Forensics helps readers unravel the complexities of environmental pollution cases. It outlines techniques for identifying the source of a contaminant release, when the release occurred, and the extent of human exposure. Written by leading experts in environmental investigations, the text provides detailed information on chemical "fingerprinting" techniques applicable to ground water, soils, sediments, and air, plus an in-depth look at petroleum hydrocarbons. It gives the environmental scientist, engineer, and legal specialist a complete toolbox for conducting forensic investigations. It demonstrates the range of scientific analyses that are available to answer questions of environmental liability and support a legal argument, and provides several examples and case studies to illustrate how these methods are applied. This is a textbook that would prove useful to a range of disciplines, including environmental scientists involved in water and air pollution, contaminated land and geographical information systems; and archaeologists, hydrochemists and geochemists interested in dating sources of pollution.

  • Cyber Crime Investigations

    Bridging the Gaps Between Security Professionals, Law Enforcement, and Prosecutors
    • 1 Edición
    • James Steele + 3 más
    • Inglés
    Written by a former NYPD cyber cop, this is the only book available that discusses the hard questions cyber crime investigators are asking.The book begins with the chapter “What is Cyber Crime?” This introductory chapter describes the most common challenges faced by cyber investigators today. The following chapters discuss the methodologies behind cyber investigations; and frequently encountered pitfalls. Issues relating to cyber crime definitions, the electronic crime scene, computer forensics, and preparing and presenting a cyber crime investigation in court will be examined. Not only will these topics be generally be discussed and explained for the novice, but the hard questions —the questions that have the power to divide this community— will also be examined in a comprehensive and thoughtful manner. This book will serve as a foundational text for the cyber crime community to begin to move past current difficulties into its next evolution.

  • Biometric Technologies and Verification Systems

    • 1 Edición
    • John Vacca
    • Inglés
    Biometric Technologies and Verification Systems is organized into nine parts composed of 30 chapters, including an extensive glossary of biometric terms and acronyms. It discusses the current state-of-the-art in biometric verification/authent... identification and system design principles. It also provides a step-by-step discussion of how biometrics works; how biometric data in human beings can be collected and analyzed in a number of ways; how biometrics are currently being used as a method of personal identification in which people are recognized by their own unique corporal or behavioral characteristics; and how to create detailed menus for designing a biometric verification system. Only biometrics verification/authent... is based on the identification of an intrinsic part of a human being. Tokens, such as smart cards, magnetic stripe cards, and physical keys can be lost, stolen, or duplicated. Passwords can be forgotten, shared, or unintentionally observed by a third party. Forgotten passwords and lost "smart cards" are a nuisance for users and an expensive time-waster for system administrators. Biometric security solutions offer some unique advantages for identifying and verifying/ authenticating human beings over more traditional security methods. This book will serve to identify the various security applications biometrics can play a highly secure and specific role in.

  • Crime Scene Photography

    • 1 Edición
    • Edward M. Robinson
    • Inglés
    Crime Scene Photography is a book wrought from years of experience, with material carefully selected for ease of use and effectiveness in training, and field tested by the author in his role as a Forensic Services Supervisor for the Baltimore County Police Department.While there are many books on non-forensic photography, none of them adequately adapt standard image-taking to crime scene photography. The forensic photographer, or more specifically the crime scene photographer, must know how to create an acceptable image that is capable of withstanding challenges in court. This book blends the practical functions of crime scene processing with theories of photography to guide the reader in acquiring the skills, knowledge and ability to render reliable evidence.

  • Text Entry Systems

    Mobility, Accessibility, Universality
    • 1 Edición
    • I. Scott MacKenzie + 1 más
    • Inglés
    Text Entry Systems covers different aspects of text entry systems and offers prospective researchers and developers global guidelines for conducting research on text entry, in terms of design strategy, evaluation methodology, and requirements; a discussion of the history and current state of the art of entry systems; and specific guidelines for designing entry systems for a specific target, depending on devices, modalities, language, and different physical conditions of users. Text entry has never been so important as it is today. This is in large part due to the phenomenal, relatively recent success of mobile computing, text messaging on mobile phones, and the proliferation of small devices like the Blackberry and Palm Pilot. Compared with the recent past, when text entry was primarily through the standard "qwerty" keyboard, people today use a diverse array of devices with the number and variety of such devices ever increasing. The variety is not just in the devices, but also in the technologies used: entry modalities have become more varied and include speech recognition and synthesis, handwriting recognition, and even eye-tracking using image processing on web-cams. Statistical language modeling has advanced greatly in the past ten years and so therein is potential to facilitate and improve text entry — increasingly, the way people communicate.

  • Techno Security's Guide to Managing Risks for IT Managers, Auditors, and Investigators

    • 1 Edición
    • Johnny Long + 7 más
    • Inglés
    “This book contains some of the most up-to-date information available anywhere on a wide variety of topics related to Techno Security. As you read the book, you will notice that the authors took the approach of identifying some of the risks, threats, and vulnerabilities and then discussing the countermeasures to address them. Some of the topics and thoughts discussed here are as new as tomorrow’s headlines, whereas others have been around for decades without being properly addressed. I hope you enjoy this book as much as we have enjoyed working with the various authors and friends during its development.” —Donald Withers, CEO and Cofounder of TheTrainingCo.• Jack Wiles, on Social Engineering offers up a potpourri of tips, tricks, vulnerabilities, and lessons learned from 30-plus years of experience in the worlds of both physical and technical security.• Russ Rogers on the Basics of Penetration Testing illustrates the standard methodology for penetration testing: information gathering, network enumeration, vulnerability identification, vulnerability exploitation, privilege escalation, expansion of reach, future access, and information compromise. • Johnny Long on No Tech Hacking shows how to hack without touching a computer using tailgating, lock bumping, shoulder surfing, and dumpster diving.• Phil Drake on Personal, Workforce, and Family Preparedness covers the basics of creating a plan for you and your family, identifying and obtaining the supplies you will need in an emergency.• Kevin O’Shea on Seizure of Digital Information discusses collecting hardware and information from the scene.• Amber Schroader on Cell Phone Forensics writes on new methods and guidelines for digital forensics.• Dennis O’Brien on RFID: An Introduction, Security Issues, and Concerns discusses how this well-intended technology has been eroded and used for fringe implementations.• Ro... Green on Open Source Intelligence details how a good Open Source Intelligence program can help you create leverage in negotiations, enable smart decisions regarding the selection of goods and services, and help avoid pitfalls and hazards. • Raymond Blackwood on Wireless Awareness: Increasing the Sophistication of Wireless Users maintains it is the technologist’s responsibility to educate, communicate, and support users despite their lack of interest in understanding how it works.• Greg Kipper on What is Steganography? provides a solid understanding of the basics of steganography, what it can and can’t do, and arms you with the information you need to set your career path.• Eric Cole on Insider Threat discusses why the insider threat is worse than the external threat and the effects of insider threats on a company.

  • How to Cheat at Configuring Exchange Server 2007

    Including Outlook Web, Mobile, and Voice Access
    • 1 Edición
    • Henrik Walther
    • Inglés
    The Perfect Reference for the Multitasked System AdministratorsThe new version of Exchange is an ambitious overhaul that tries to balance the growing needs for performance, cost effectiveness, and security. For the average system administrator, it will present a difficult migration path from earlier versions and a vexing number of new features. How to Cheat will help you get Exchange Server 2007 up and running as quickly and safely as possible.• Understand Exchange 2007 PrerequisitesReview hardware and software requirements, Active Directory requirements, and more.• Manage Recipient FilteringCreate a custom MMC that contains the Exchange 2007 Recipients work center, which can be used, for example, by the helpdesk staff in your organization.• Manage Outlook AnywhereOutlook Anywhere makes it possible for your end users to remotely access their mailboxes from the Internet using their full Outlook clients.• Manage Outlook Web Access 2007See how Outlook Web Access 2007 was completely rewritten in managed code to make it scale even better.• Use the Exchange 2007 Queue ViewerYou can now view information about queues and examine the messages held within them.• Master Powerful Out-of-the-Box Spam ProtectionThe Edge Transport server supports SMTP, provides several antispam filtering agents, and supports antivirus extensibility.• Manage a Single-Copy Cluster-Based SetupSCC-based cluster provides service failover and still has a single point of failure when it comes to the databases.• Recover Mailbox DatabasesUse the improved database portability feature to port and recover a Mailbox database to any server in the Exchange 2007 organization.

  • Improving Library Services to People with Disabilities

    • 1 Edición
    • Courtney Deines-Jones
    • Inglés
    The book takes account of the key fact that to maximize their potential, people must have lifelong access to the information and services offered through books and libraries. Whether to address concerns of an ageing population or to enable all citizens to contribute fully through meaningful education and work opportunities, more emphasis is being given to promoting library services to people who have disabilities. This book is a compendium of articles focused on serving adults with disabilities in an international setting. From this book, librarians, policy makers and constituents will understand the importance of serving all potential patrons, will be exposed to best practices and model programs, and will learn techniques and strategies for improving the services their libraries offer.

  • Information Architecture for Information Professionals

    • 1 Edición
    • Susan Batley
    • Inglés
    This book covers the key aspects of information architecture: core elements of information management, indexing, cataloguing and classification - organising and recording information in the digital environment. Information Architecture for Information Professionals also focuses on design, specifically user-centred design: designing information systems that support the needs of users, by providing attractive, intuitive interfaces that support a range of information tasks and accommodate a range of individual resources.

  • A Comprehensive Library Staff Training Programme in the Information Age

    • 1 Edición
    • Aileen Wood
    • Inglés
    This book discusses the issues surrounding the implementation and ‘selling’ of a comprehensive library staff training programme. Importantly, it contains many tried and tested techniques used by the author; it also includes standard documentation that readers can use in their own organisation for training purposes.

  • Organising Knowledge

    Taxonomies, Knowledge and Organisational Effectiveness
    • 1 Edición
    • Patrick Lambe
    • Inglés
    Taxonomies are often thought to play a niche role within content-oriented knowledge management projects. They are thought to be ‘nice to have’ but not essential. In this ground-breaking book, Patrick Lambe shows how they play an integral role in helping organizations coordinate and communicate effectively. Through a series of case studies, he demonstrates the range of ways in which taxonomies can help organizations to leverage and articulate their knowledge. A step-by-step guide in the book to running a taxonomy project is full of practical advice for knowledge managers and business owners alike.

Temas relacionados