Although the harrowing number of Internet-based attacks in recent years has elevated the importance of maintaining secure electronic networks, many developers continue to employ passive security administration strategies, addressing issues by using patches in a non-systematic fashion. This counterproductive strategy can be largely attributed to a lack of knowledge regarding the general concepts required to effectively prevent the attack and potential compromise of networked systems.
¿Developing Trust: Online Privacy and Security¿ is an indispensable resource for system administrators and application developers, providing a means to understand, create, and maintain secure Internet systems. Curtin's instructional approach facilitates a comprehensive understanding of online security by separating the core material into three sections: ¿Understanding Security and Privacy¿, which introduces attack models, general privacy theory and policy, online privacy concepts, and provides a synopsis of the mechanics of threats to privacy. Next is ¿Prevention¿, which delves into secure design principles and deployment environments, closing with several case studies of major security problems uncovered by the author himself. Finally, ¿The Cure¿ investigates the mechanics of identifying and repairing flawed security design techniques before they are incorporated into the final product. Discussion regarding the failure of ¿Opt-Out¿' systems to protect privacy is also included in this section.
About the Author:
As the founder of Interhack Corporation (http://web.interhack.com/), Matt Curtin is responsible for the technical leadership of Interhack's research, development, and consulting efforts. His present focus is to understand how complex systems interact in ¿the large picture¿ and how that affects security, privacy, and reliability. Findings of this work have been widely covered in major news media around the world. A frequent lecturer and author, Matt also teaches Programming in Common Lisp and Operating Systems Laboratory at The Ohio State University's Department of Computer and Information Science. Matt is both a student and a teacher of life.
Author is a recognized industry authority and adept communicator who is sought out on an extensive speaking circuitInstructs readers how to implement a big picture security strategy instead of narrow-minded patchingA balanced mixture of theory and practice gives a well-rounded analysis of Internet security concepts