New book by Bruce Schneier

[InfoSec News <isn () C4I ORG>]

Forwarded By: "Berislav Kucan BHZ" <bhz () net-security org>

http://www.net-security.org/text/press/966994526,44171,.shtml

SAN JOSE, Calif.--(BUSINESS WIRE)--Aug. 22, 2000-- Bruce Schneier,
computer security expert, CTO and founder of Counterpane Internet
Security, Inc., has written a new book specifically for corporate
managers. Secrets and Lies: Digital Security in a Networked World is a
practical, straightforward guide to understanding and achieving
security throughout computer networks. Schneier draws on his extensive
field experience to dispel myths as well as help business executives
assess corporate security risks to choose the right solutions and
implement the right processes.

"Protecting information has become increasingly difficult in the
digital world. Teen-aged hackers have compromised the security of the
U.S. State Department's web site and, in so doing, have proven that
gaining access to personal passwords and other `secure' information is
far easier than many could have ever anticipated," says Schneier.

Secrets and Lies offers strategies and solutions that will yield
secure company results. This practical guide covers:

-- Digital threats and attacks that managers must understand

-- Security products and processes currently available

-- Limitations of technology

-- Steps involved in product testing to discover security flaws

-- Technologies to watch over the next few years

-- Assessing a company's risks

-- Implementation of security policies and countermeasures

"This work provides a unique understanding of the digital age and is a
handbook for understanding business problems and challenges. This book
should be--and can be--read by any business executive. No specialty in
security is required...we spent millions of dollars to understand what
Bruce Schneier has deftly explained in his new book," said Jay S.
Walker, founder of priceline.com and chairman of Walker Digital.

Secrets and Lies offers real guidance and discusses in detail why
security must be thought of as a system within larger systems.
Although much has been accomplished on the theory of cryptography,
firewalls, intrusion detection, and biometrics, many systems fielded
with great theory still fail in practice. The real world is far too
complicated for any theory to encompass. This means that design
trade-offs, unseen variables, and imperfect implementations must be
considered.

"Security should no longer be the sole purview of cryptoanalysts.
Unless management understands fundamental security issues and deploys
proactive measures to protect corporate information, the number of
security vulnerabilities, breaches, and disasters will continue to
grow," Schneier explains.

Secrets and Lies is published by John Wiley & Sons, Inc. Publication
date is September 8, 2000; $29.99; 0-471-25311-1.


Berislav Kucan aka BHZ
bhz () net-security org
http://net-security.org

ISN is hosted by SecurityFocus.com
---
To unsubscribe email LISTSERV () SecurityFocus com with a message body of
"SIGNOFF ISN".