Assessing and Managing Security Risk in IT Systems
A Structured Methodology
Seiten
2004
Auerbach (Verlag)
978-0-8493-2232-7 (ISBN)
Auerbach (Verlag)
978-0-8493-2232-7 (ISBN)
Presents an overview of information systems security, offering the basic underpinnings of information security and concluding with an analysis of risk management. This book offers ways to accurately map information flow in computer and telecom systems. It also explains how to apply the methodology to individual system components and subsystems.
Assessing and Managing Security Risk in IT Systems: A Structured Methodology builds upon the original McCumber Cube model to offer proven processes that do not change, even as technology evolves. This book enables you to assess the security attributes of any information system and implement vastly improved security environments.
Part I delivers an overview of information systems security, providing historical perspectives and explaining how to determine the value of information. This section offers the basic underpinnings of information security and concludes with an overview of the risk management process.
Part II describes the McCumber Cube, providing the original paper from 1991 and detailing ways to accurately map information flow in computer and telecom systems. It also explains how to apply the methodology to individual system components and subsystems.
Part III serves as a resource for analysts and security practitioners who want access to more detailed information on technical vulnerabilities and risk assessment analytics. McCumber details how information extracted from this resource can be applied to his assessment processes.
Assessing and Managing Security Risk in IT Systems: A Structured Methodology builds upon the original McCumber Cube model to offer proven processes that do not change, even as technology evolves. This book enables you to assess the security attributes of any information system and implement vastly improved security environments.
Part I delivers an overview of information systems security, providing historical perspectives and explaining how to determine the value of information. This section offers the basic underpinnings of information security and concludes with an overview of the risk management process.
Part II describes the McCumber Cube, providing the original paper from 1991 and detailing ways to accurately map information flow in computer and telecom systems. It also explains how to apply the methodology to individual system components and subsystems.
Part III serves as a resource for analysts and security practitioners who want access to more detailed information on technical vulnerabilities and risk assessment analytics. McCumber details how information extracted from this resource can be applied to his assessment processes.
John McCumber
SECURITY CONCEPTS. Using models. Defining information security. Information as an asset. Understanding threat and its relation to vulnerabilities. Assessing risk variables: The risk assessment process. THE MCCUMBER CUBE METHODOLOGY. The McCumber Cube. Determining information states and mapping information flow. Decomposing the cube for security enforcement. Information state analysis for components and subsystems. Managing the security life cycle. Safeguard analysis. Practical applications of McCumber Cube Analysis. APPENDICES.
| Erscheint lt. Verlag | 12.8.2004 |
|---|---|
| Zusatzinfo | 16 Tables, black and white; 35 Illustrations, black and white |
| Verlagsort | London |
| Sprache | englisch |
| Maße | 156 x 234 mm |
| Gewicht | 690 g |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| Informatik ► Theorie / Studium ► Kryptologie | |
| Recht / Steuern ► Privatrecht / Bürgerliches Recht ► IT-Recht | |
| ISBN-10 | 0-8493-2232-4 / 0849322324 |
| ISBN-13 | 978-0-8493-2232-7 / 9780849322327 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
Mehr entdecken
aus dem Bereich
aus dem Bereich
Lehrbuch für Prüfung und Praxis
Buch | Softcover (2023)
Springer Fachmedien Wiesbaden GmbH (Verlag)
19,99 €
Wie Geheimdienste und Kriminelle uns im Netz infiltrieren
Buch | Hardcover (2023)
Wiley-VCH (Verlag)
24,99 €
