چه کسانی این کتاب را می‌خوانند

دانشجوعلاقه‌مند یادگیری
کتابخوان حرفه‌ایلذت مطالعه
نویسندهالهام‌گیری

802. 1X Port-Based Authentication

Edwin Lyle Brown

قیمت نهایی

۴۴٬۰۰۰ تومان۴۹٬۰۰۰ تومان۱۰٪ تخفیف
  • تخفیف زمان‌دار−۵٬۰۰۰ تومان

۵٬۰۰۰ تومان صرفه‌جویی نسبت به قیمت اصلی

نسخه اصلی و اورجینال

بلافاصله پس از خرید، فایل کتاب روی دستگاه شما آمادهٔ دانلود است.

تحویل فوری
پرداخت امن
ضمانت فایل
پشتیبانی

مشخصات کتاب

نویسنده
Edwin Lyle Brown
سال انتشار
۲۰۰۷
فرمت
PDF
زبان
انگلیسی
تعداد صفحات
۳٬۲۰۰ صفحه
حجم فایل
۱۵ مگابایت

دربارهٔ کتاب

Port-based authentication is a “network access control” concept in which a particular device is evaluated before being permitted to communicate with other devices located on the network. **802.1X Port-Based Authentication** examines how this concept can be applied and the effects of its application to the majority of computer networks in existence today. 802.1X is a standard that extends the Extensible Authentication Protocol (EAP) over a Local Area Network (LAN) through a process called Extensible Authentication Protocol Over LANs (EAPOL). The text presents an introductory overview of port-based authentication including a description of 802.1X port-based authentication, a history of the standard and the technical documents published, and details of the connections among the three network components. It focuses on the technical aspect of 802.1X and the related protocols and components involved in implementing it in a network. The book provides an in-depth discussion of technology, design, and implementation with a specific focus on Cisco devices. Including examples derived from the 802.1X implementation, it also addresses troubleshooting issues in a Cisco environment. Each chapter contains a subject overview. Incorporating theoretical and practical approaches, **802.1X Port-Based Authentication** seeks to define this complex concept in accessible terms. It explores various applications to today’s computer networks using this particular network protocol.

While information security is an ever-present challenge for all types of organizations today, most focus on providing security without addressing the necessities of staff, time, or budget in a practical manner.

Information Security Cost Management offers a pragmatic approach to implementing information security, taking budgetary and real-world constraints into consideration. By providing frameworks, step-by-step processes, and project management breakdowns, this book demonstrates how to design the best security strategy with the resources you have available.

Organized into five sections, the book-

  • Focuses on setting the right road map so that you can be most effective in your information security implementations
  • Discusses cost-effective staffing, the single biggest expense to the security organization
  • Presents practical ways to build and manage the documentation that details strategy, provides resources for operating annual audits, and illustrates how to advertise accomplishments to senior management effectively
  • Identifies high-risk areas, focusing limited resources on the most imminent and severe threats
  • Describes how to manage the key access controls when faced with manual user management, how to automate user management tasks in a cost effective manner, and how to deal with security breaches

Demonstrating strategies to maximize a limited security budget without compromising the quality of risk management initiatives, Information Security Cost Management helps you save your organization time and money. It provides the tools required to implement policies, processes, and training that are crucial to the success of a company's security.

The CISO Handbook: A Practical Guide to Securing Your Company provides unique insights and guidance into designing and implementing an information security program, delivering true value to the stakeholders of a company. The authors present several essential high-level concepts before building a robust framework that will enable you to map the concepts to your company’s environment.

The book is presented in chapters that follow a consistent methodology – Assess, Plan, Design, Execute, and Report. The first chapter, Assess, identifies the elements that drive the need for infosec programs, enabling you to conduct an analysis of your business and regulatory requirements. Plan discusses how to build the foundation of your program, allowing you to develop an executive mandate, reporting metrics, and an organizational matrix with defined roles and responsibilities. Design demonstrates how to construct the policies and procedures to meet your identified business objectives, explaining how to perform a gap analysis between the existing environment and the desired end-state, define project requirements, and assemble a rough budget. Execute emphasizes the creation of a successful execution model for the implementation of security projects against the backdrop of common business constraints. Report focuses on communicating back to the external and internal stakeholders with information that fits the various audiences.

Each chapter begins with an Overview, followed by Foundation Concepts that are critical success factors to understanding the material presented. The chapters also contain a Methodology section that explains the steps necessary to achieve the goals of the particular chapter.

The CISO A Practical Guide to Securing Your Company provides unique insights and guidance into designing and implementing an information security program, delivering true value to the stakeholders of a company. The authors present several essential high-level concepts before building a robust framework that will enable you to map the concepts to your companys environment. The book is presented in chapters that follow a consistent methodology Assess, Plan, Design, Execute, and Report. The first chapter, Assess, identifies the elements that drive the need for infosec programs, enabling you to conduct an analysis of your business and regulatory requirements. Plan discusses how to build the foundation of your program, allowing you to develop an executive mandate, reporting metrics, and an organizational matrix with defined roles and responsibilities. Design demonstrates how to construct the policies and procedures to meet your identified business objectives, explaining how to perform a gap analysis between the existing environment and the desired end-state, define project requirements, and assemble a rough budget. Execute emphasizes the creation of a successful execution model for the implementation of security projects against the backdrop of common business constraints. Report focuses on communicating back to the external and internal stakeholders with information that fits the various audiences. Each chapter begins with an Overview, followed by Foundation Concepts that are critical success factors to understanding the material presented. The chapters also contain a Methodology section that explains the steps necessary to achieve the goals of the particular chapter.

Effective security rules and procedures do not exist for their own sake-they are put in place to protect critical assets, thereby supporting overall business objectives. Recognizing security as a business enabler is the first step in building a successful program.

Information Security Fundamentals allows future security professionals to gain a solid understanding of the foundations of the field and the entire range of issues that practitioners must address. This book enables students to understand the key elements that comprise a successful information security program and eventually apply these concepts to their own efforts. The book examines the elements of computer security, employee roles and responsibilities, and common threats. It examines the need for management controls, policies and procedures, and risk analysis, and also presents a comprehensive list of tasks and objectives that make up a typical information protection program.

The volume discusses organizationwide policies and their documentation, and legal and business requirements. It explains policy format, focusing on global, topic-specific, and application-specific policies. Following a review of asset classification, the book explores access control, the components of physical security, and the foundations and processes of risk analysis and risk management. Information Security Fundamentals concludes by describing business continuity planning, including preventive controls, recovery strategies, and ways to conduct a business impact analysis.

As regulation and legislation evolve, the critical need for cost-effective and efficient IT audit and monitoring solutions will continue to grow. Audit and Trace Log Management: Consolidation and Analysis offers a comprehensive introduction and explanation of requirements and problem definition, and also delivers a multidimensional solution set with broad applicability across a wide range of organizations.

Itprovidesa wealth of information in the form of processwalkthroughs. These include problem determination, requirements gathering,scope definition, risk assessment, compliance objectives, systemdesign and architecture, implementation and operational challenges, productand solution evaluation, communication plans, project managementchallenges, and determining Return on Investment (ROI). By using templates, tools, and samples that enhance your understanding of processes and solution sets, the author successfully emphasizes the core themes of the book. He also includes many diagrams throughout his discussion that aid in a clear communication of process and solution recommendations.

This volume enables you to gain the knowledge, perspective, and insight needed to independently implement a successful audit and monitoring management system tailored to the unique requirements of your organization.

I work for a network test equipment developer and have to test devices with multiple security types by multiple security device vendors. Most all enterprise security uses 802.1x whether wired or wireless. To many, 802.1x can be confusing at best, and mind-blowing at its worst. Edwin Brown's book is the best I read on the subject. It's a book that explains the concepts that are the building blocks of 802.1x in a conversation tone that neither talks over the heads of interested parties or simplify the subject to the point of being meaningless babble. Brown's style of writing comes across as sitting and listening to a very knowledge colleague help you to understand a subject. Brown's presents the information to you on an equal to equal basis so that you just "get it". The technical information is clear and thorough and serves as an excellent reference when you need to dig into a specific issue of 802.1x I'm pleased to have it on my bookshelf at work. "Information Security Fundamentals allows security professionals to gain a solid understanding of the foundations of the field and the entire range of issues that practitioners must address. This book enables you to understand the key elements that comprise a successful information security program and apply these concepts into your own efforts. The book examines the elements of computer security, employee roles and responsibilities, and common threats. It examines the need for management controls, policies and procedures, and risk analysis, and also presents a comprehensive list of tasks and objectives that make up a typical information protection program."--Jacket Audit and Trace Log Management enables companies to improve their security infrastructure by effective management of corporate security audit/trace logs. The book addresses electronic audit logging practices and reveals, from a real world perspective, various methods to consolidate these electronic audit log requirements and streamline the audit process while still maintaining accountability and meeting industry requirements. The author provides a sound view of the issues and potential solutions when explaining electronic audit logging and reporting requirements for today's large enterprises. Maier; Phillip Q Truly a practical work, this handbook offers a comprehensive roadmap for designing and implementing an effective information security program based on real world scenarios. It builds a bridge between high-level theory and practical execution by illustrating solutions to practical issues often overlooked by theoretical texts. This leads to a set of practices that security professionals can use every day. The framework it describes can be expanded or contracted to meet the needs of almost any organization. A reference as well as a guide, each of the chapters are self-contained and can be read in any order. The purpose of information protection is to protect an organization's valuable resources. Through the selection and application of appropriate safeguards, security helps an organization to meet its business objectives by protecting its physical and financial resources, reputation, legal position, employees, and other tangible and intangible assets. This book examines the elements of computer security, employee roles and responsibilities, and common threats. It also examines the need for management controls, policies and procedures, and risk analysis. Finally it presents a comprehensive list of The Chief Security Officer helps readers understand the emerging phenomenon of a position that combines the traditional security manager with one who protects information. It explains why a chief security officer is important and how security needs to be implemented in terms of identifying risk, developing a corporate policy, and implementing unified strategy for the protection of people, facilities, and information. This non-technical book examines risks associated with a lack of security and explains how to build a structure for examining and building unified security. The author reviews req Written to appeal to a broad audience, 802.1X Port-Based Authentication seeks to define this complex concept in accessible terms and to explore its various applications to today's computer networks using this particular network protocol. This text assumes that the reader may have little or no prior knowledge and only a general understanding of computer networking, presenting an introductory overview as well as a subject overview in each chapter. It provides an in-depth discussion of technology, design, and implementation with a specific focus on Cisco devices. Including examples derived from t "Port-based authentication is a "network access control" concept in which a particular device is evaluated before it is permitted to communicate with other devices located on the network. 802.1X Port-Based Authentication examines how this concept can be applied and the effects of its application to the majority of computer networks in existence today. 802.1X is a standard that extends the Extensible Authentication Protocol (EAP) over a local area network (LAN) through a process called Extensible Authentication Protocol Over LANs (EAPOL)."--Jacket

Considered the gold-standard reference on information security, the Information Security Management Handbook provides an authoritative compilation of the fundamental knowledge, skills, techniques, and tools required of today's IT security professional. Now in its sixth edition, this 3200 page stand-alone reference is organized under the CISSP Common Body of Knowledge domains and has been updated yearly. Volumes 2, 3, and this year’s Volume 4 reflect the changes to the CBK in response to new laws and evolving technology.

Considered the gold-standard reference on information security, the Information Security Management Handbook provides an authoritative compilation of the fundamental knowledge, skills, techniques, and tools required of today's IT security professional. Now in its sixth edition, this 3200 page, 4 volume stand-alone reference is organized under the CISSP Common Body of Knowledge domains and has been updated yearly. Each annual update, the latest is Volume 6, reflects the changes to the CBK in response to new laws and evolving technology. As regulation and legislation evolve, the need for cost-effective audit and monitoring solutions will grow. This book offers an introduction of requirements and problem definition, and delivers a multidimensional solution set with applicability across a range of organizations. It provides information in the form of process walkthroughs. Shows how to strategically maximize a limited security budget without compromising the quality of risk management initiatives. This book describes how to manage the key access controls when faced with manual user management, how to automate user management tasks in a cost effective manner, and how to deal with security breaches. "The CISO Handbook: A Practical Guide to Securing Your Company provides insights into designing and implementing an information security program, delivering essential high-level concepts before building a robust framework that enables you to map concepts to your company's environment."--BOOK JACKET The 'Information Security Management Handbook' serves not only as an everyday reference for information security practitioners, but also as an important document for conducting the intense review necessary to prepare for the Certified Information System Security Professional (CISSP) examination Examining elements of computer security, as well as employee roles and responsibilities, this text shows organisations how to protect their valuable resources. It also discusses the needs for management controls, policies and procedures, as well as the need for risk assessments The assess phase of the methodology is the process of determining information about the enterprise to support the planning of your information security program. The purpose of information protection is to protect an organization's valuable resources, such as information, hardware, and software.

قیمت نهایی

۴۴٬۰۰۰ تومان