Information Security and Auditing in the Digital Age A Practical and Managerial Perspecive

This book presents a practical and managerial perspective on IS security in the modern digital enterprises. Based on a systematic methodology, the topics are subdivided into five parts, that allows examination of security risks and circumventions associated with newer areas such as e-business/e-commerce, mobile applications, XML and Web Services, wireless communications and applications servers. The first part concentrates on management issues of policies, procedures, risks, controls and security requirements. The second part gives a practical review of security technologies such as cryptography, authentication, authorization, non-repudiation, and commercially available security packages (PKI, PGP, Kerberos, SSL, VPN). The third part shows how to use the technologies to secure wireless and wired networks. The fourth part shows how to secure enterprise applications, databases and platforms by using the security technologies. The last part concludes this book by examining audits and controls for continued secure operations and putting all of the above into a systematic procedure. Numerous case studies and examples are included to illustrate the key points. This classroom tested book is highly suitable for information security courses in IT/IS Programs. Complete instructor materials are available. See the author site (www.amjadumar.com) for more details.Umar, Amjad is the author of 'Information Security and Auditing in the Digital Age A Practical and Managerial Perspecive', published 2003 under ISBN 9780972741477 and ISBN 097274147X.