Security
Auditing
Network
- Nessus/Tenable Networks
- NMap
- Metasploit
Applications and Code
- Features
- Usability
- Input Validation
Beautiful Security
7. July 2009 - 4:46 — Andreas NeumeierBeautiful Security: Although most people don't give security much attention until their personal or business systems are attacked, this thought-provoking anthology demonstrates that digital security is not only worth thinking about, it's also a fascinating topic. Criminals succeed by exercising enormous creativity, and those defending against them must do the same. Beautiful Security explores this challenging subject with insightful essays and analysis on topics that include: * The underground economy for personal information: how it works, the relationships among criminals, and some of the new ways they pounce on their prey * How social networking, cloud computing, and other popular trends help or hurt our online security * How metrics, requirements gathering, design, and law can take security to a higher level * The real, little-publicized history of PGP This book includes contributions from: * Peiter "Mudge" Zatko * Jim Stickley * Elizabeth Nichols * Chenxi Wang * Ed Bellis * Ben Edelman * Phil Zimmermann and Jon Callas * Kathy Wang * Mark Curphey * John McManus * James Routh * Randy V. Sabett * Anton Chuvakin * Grant Geyer and Brian Dunphy * Peter Wayner * Michael Wood and Fernando Francisco All royalties will be donated to the Internet Engineering Task Force (IETF).
amazon:
Security Metrics
23. January 2009 - 11:35 — Andreas NeumeierReplacing Fear, Uncertainty and Doubt:
Security Metrics is the first comprehensive best-practice guide to defining, creating, and utilizing security metrics in the enterprise.
Using sample charts, graphics, case studies, and war stories, Yankee Group Security Expert Andrew Jaquith demonstrates exactly how to establish effective metrics based on your organization’s unique requirements. You’ll discover how to quantify hard-to-measure security activities, compile and analyze all relevant data, identify strengths and weaknesses, set cost-effective priorities for improvement, and craft compelling messages for senior management.
Security Metrics successfully bridges management’s quantitative viewpoint with the nuts-and-bolts approach typically taken by security professionals. It brings together expert solutions drawn from Jaquith’s extensive consulting work in the software, aerospace, and financial services industries, including new metrics presented nowhere else.
Education
- Agenda upon Request
- Core Information Security Principles
- Defining Requirements
- Processes and Products
- Agenda upon Request
- Micro Project Management
- Integration Projects
- Network and Infrastructure Projects
Angewandte Kryptographie
27. July 2008 - 14:42 — Andreas NeumeierStandardwerk zu Verschlüsselung von "Crypto- und Security Papst" Bruce Schneier
Web Applications
- Performance Analysis
- Application Structure Optimization
- Infrastructure Optimization
- Web Application Security
- Search Engine Optimization
