PART OF THE JONES & BARTLETT LEARNING INFORMATION SYSTEMS SECURITY & ASSURANCE SERIES
Series meets all standards put forth by CNSS 4011 & 4013A!
Save time and money! Order your required bundles and access codes at www.shopjblearning.com!
Watch video demo to learn more about the ISSA Complete Curriculum Solution!
Access control protects resources against unauthorized viewing, tampering, or destruction. They serve as a primary means of ensuring privacy, confidentiality, and prevention of unauthorized disclosure. Revised and updated with the latest data from this fast paced field, Access Control, Authentication, and Public Key Infrastructure defines the components of access control, provides a business framework for implementation, and discusses legal requirements that impact access control programs. It looks at the risks, threats, and vulnerabilities prevalent in information systems and IT infrastructures and how to handle them. It provides a student and professional resource that details how to put access control systems to work as well as testing and managing them.
New to the Second Edition:
- Updated references to Windows 8 and Outlook 2011
- A new discussion of recent Chinese hacking incidence
- Examples depicting the risks associated with a missing unencrypted laptop containing private data.
- New sections on the Communications Assistance for Law Enforcement Act (CALEA) and granting Windows folder permissions are added.
- New information on the Identity Theft Enforcement and Restitution Act and the Digital Millennium Copyright Act (DMCA).
Instructor Materials for Access Control, Authentication, and Public Key Infrastructure include:
- PowerPoint Lecture Slides
- Exam Questions
- Case Scenarios/Handouts
- Instructor's Manual
Access Control, Authentication, and Public Key Infrastructure, Second Edition is available with the Virtual Security Cloud Labs. Try it for Yourself!
About the Series
Visit www.issaseries.com for a complete look at the series!
This book is part of the Information Systems Security and Assurance Series from Jones and Bartlett Learning. Designed for courses and curriculums in IT Security, Cybersecurity, Information Assurance, and Information Systems Security, this series features a comprehensive, consistent treatment of the most current thinking and trends in this critical subject area. These titles deliver fundamental information-security principles packed with real-world applications and examples. Authored by Certified Information Systems Security Professionals (CISSPs), they deliver comprehensive information on all aspects of information security. Reviewed word for word by leading technical experts in the field, these books are not just current, but forward-thinking—putting you in the position to solve the cybersecurity challenges not just of today, but of tomorrow, as well.
Chapter 1 Access Control Framework
Chapter 2 Assessing Risk and Its Impact on Access Control
Chapter 3 Business Drivers for Access Controls
Chapter 4 Access Control Policies, Standards, Procedures, and Guidelines
Chapter 5 Unauthorized Access and Security Breaches
Chapter 6 Mapping Business Challenges to Access Control Types
Chapter 7 Human Nature, Organizational Behavior, and Considerations
Chapter 8 Access Control for Information Systems
Chapter 9 Physical Security and Access Control
Chapter 10 Access Control in the Enterprise
Chapter 11 Access Control System Implementations
Chapter 12 Access Control Solutions for Remote Workers
Chapter 13 Public Key Infrastructure and Encryption
Chapter 14 Testing Access Control Systems
Chapter 15 Access Control Assurance
Mike Chapple-University of Notre Dame
Mike Chapple is Senior Director for IT Service Delivery at the University of Notre Dame. In this role, he oversees the information security, data governance, IT architecture, project management, strategic planning and product management functions for the Office of Information Technologies. Mike also serves as a concurrent assistant professor in the University's Computer Applications and Management Departments where he teaches undergraduate courses on Information Security.
Mike previously served as Senior Advisor to the Executive Vice President at Notre Dame for two years. Prior to that, he was program manager of the University’s Information Security Program and a consultant to the Notre Dame Alumni Association on alumni engagement initiatives. Before returning to Notre Dame, Mike served as Executive Vice President and Chief Information Officer of the Brand Institute, a Miami-based marketing consultancy. Mike also spent four years in the information security research group at the National Security Agency and serving as an active duty intelligence officer in the U.S. Air Force. He is a technical editor for Information Security Magazine and has written several books, including Information Security Illuminated, SQL Server 2008 for Dummies, and the CISSP Prep Guide.
Mike earned both his BS and Ph.D. degrees from Notre Dame in computer science & engineering. He also holds a MS in computer science from the University of Idaho and an MBA from Auburn University.
Additional Titles by this Author
- ISBN-13: 9781284058482
- ISBN-13: 9781284075144
- ISBN-13: 9780763726775
Bill Ballad has been active in the IT security community since the mid-1990s. He is the co-author and SME for Securing PHP Web Applications (Addison-Wesley Professional, 2008) and wrote the security chapters for PHP & MySQL Web Development All-in-One Desk Reference for Dummies (For Dummies, 2008). Bill is a senior systems engineer working with mission-critical Windows networks.
Tricia Ballad spent several years as a Web applications developer before becoming a full-time freelance writer and technical editor. She has written online courseware on various consumer electronics and computing subjects and has co-authored PHP & MySQL Web Development All-in-One Desk Reference for Dummies (For Dummies, 2008) and Securing PHP Web Applications for Mere Mortals (Addison-Wesley Professional, 2008).
Erin Banks (CISSP) is a technical writer and editor. She has been in the network and security industry for more than 15 years in support, management, and technical sales roles in Fortune 500 and not-for-profit organizations. She has contributed quarterly articles to EMC-Now print magazine, provided technical editing for On Magazine, written monthly and quarterly newsletters for a Fortune 25 company, and has been a writer and contributor to a weekly corporate marketing/technical blog. Erin is an avid runner and lover of technology.