Home » Designing Secure Systems
Product Image

Designing Secure Systems

Michael Melone
€59.99
Quantity:
Delivery/Collection within 10-20 working days
Shipping & Delivery
A01=Michael Melone
A01=Neil deGrasse Tyson
Access Control List
Age Group_Uncategorized
Age Group_Uncategorized
Anomaly Detection
Authentication System
Author_Michael Melone
Author_Neil deGrasse Tyson
Authorization Checks
Authorization Control
automatic-update
Category1=Non-Fiction
Category=KNS
Category=PG
Category=PHVB
Category=RB
Category=UM
Category=UMZ
Category=UR
Category=UT
Category=UYF
Certificate's Issuer
Certificate’s Issuer
Common Weakness Enumeration
COP=United Kingdom
Credential Confidentiality
Credential Theft
Credential Translation
CVE
CWE
cybersecurity frameworks
Delivery_Pre-order
enterprise security architecture
eq_bestseller
eq_business-finance-law
eq_computing
eq_isMigrated=2
eq_nobargain
eq_non-fiction
Holds
human factors security
Id Card
Implementation Vulnerabilities
Language_English
Logic Vulnerabilities
Malicious Activity
NIST CSF implementation
OCSP Responder
PA=Not yet available
Price_€20 to €50
PS=Forthcoming
Revocation Information
risk assessment methods
Sensitive Information
softlaunch
SSL Certificate
Top Secret
unified system security analysis
Validity Period
Visitor Badge
vulnerability management
Wo

Product details

  • ISBN 9780367700027
  • Weight: 453g
  • Dimensions: 156 x 234mm
  • Publication Date: 04 Oct 2024
  • Publisher: Taylor & Francis Ltd
  • Publication City/Country: GB
  • Product Form: Paperback
  • Language: English
Secure checkout Fast Shipping Easy returns
Description

Modern systems are an intertwined mesh of human process, physical security, and technology. Attackers are aware of this, commonly leveraging a weakness in one form of security to gain control over an otherwise protected operation. To expose these weaknesses, we need a single unified model that can be used to describe all aspects of the system on equal terms.

Designing Secure Systems takes a theory-based approach to concepts underlying all forms of systems – from padlocks, to phishing, to enterprise software architecture. We discuss how weakness in one part of a system creates vulnerability in another, all the while applying standards and frameworks used in the cybersecurity world. Our goal: to analyze the security of the entire system – including people, processes, and technology – using a single model.

We begin by describing the core concepts of access, authorization, authentication, and exploitation. We then break authorization down into five interrelated components and describe how these aspects apply to physical, human process, and cybersecurity. Lastly, we discuss how to operate a secure system based on the NIST Cybersecurity Framework (CSF) concepts of "identify, protect, detect, respond, and recover."

Other topics covered in this book include the NIST National Vulnerability Database (NVD), MITRE Common Vulnerability Scoring System (CVSS), Microsoft’s Security Development Lifecycle (SDL), and the MITRE ATT&CK Framework.
About Michael Melone | Neil deGrasse Tyson

Michael Melone has 20 years of information security experience overall, including 16 years in technology and 8 years as an incident responder. He currently works as a principal program manager for the Defender ATP product group gathering feedback and assisting Microsoft’s largest and most influential customers throughout their onboarding process.
He was previously one of the initial members of DART, Microsoft’s customer-facing targeted attack incident response team. During his tenure he designed the process used by consultants to recover customer networks from targeted attacks and led the development of IRDB, the proprietary threat hunting platform designed to surface attackers hidden within networks.

He holds a masters degree in IT management specializing in information assurance and security from Capella University, and is actively pursuing his executive MBA from University of South Florida. He also holds a number of information security and other technology credentials including CISSP since 2007.
In 2017 Michael self-published his first short book on authorization theory called Think Like a Hacker. This new book is the result of applying its concepts at customers and identifying a single unified approach based on its core algorithm.

More from this author