Information Security: Principles and Practice, 3/e (Hardcover)

INFORMATION SECURITY

Provides systematic guidance on meeting the information security challenges of the 21st century, featuring newly revised material throughout

Information Security: Principles and Practice is the must-have book for students, instructors, and early-stage professionals alike. Author Mark Stamp provides clear, accessible, and accurate information on the four critical components of information security: cryptography, access control, network security, and software. Readers are provided with a wealth of real-world examples that clarify complex topics, highlight important security issues, and demonstrate effective methods and strategies for protecting the confidentiality and integrity of data.

Fully revised and updated, the third edition of Information Security features a brand-new chapter on network security basics and expanded coverage of cross-site scripting (XSS) attacks, Stuxnet and other malware, the SSH protocol, secure software development, and security protocols. Fresh examples illustrate the Rivest-Shamir-Adleman (RSA) cryptosystem, elliptic-curve cryptography (ECC), SHA-3, and hash function applications including bitcoin and blockchains. Updated problem sets, figures, tables, and graphs help readers develop a working knowledge of classic cryptosystems, modern symmetric and public key cryptography, cryptanalysis, simple authentication protocols, intrusion and malware detection systems, quantum computing, and more. Presenting a highly practical approach to information security, this popular textbook:

• Provides up-to-date coverage of the rapidly evolving field of information security
• Explains session keys, perfect forward secrecy, timestamps, SSH, SSL, IPSec, Kerberos, WEP, GSM, and other authentication protocols
• Addresses access control techniques including authentication and authorization, ACLs and capabilities, and multilevel security and compartments
• Discusses software security issues, ranging from malware detection to secure software development
• Includes an instructor's solution manual, PowerPoint slides, lecture videos, and additional teaching resources

Information Security: Principles and Practice, Third Edition is the perfect textbook for advanced undergraduate and graduate students in all Computer Science programs, and remains essential reading for professionals working in industrial or government security.

《資訊安全》

《資訊安全：原理與實踐》是21世紀應對資訊安全挑戰的必備書籍，全書經過全新修訂。作者馬克·斯坦普（Mark Stamp）提供了關於資訊安全的四個關鍵組成部分：密碼學、存取控制、網絡安全和軟體的清晰、易懂和準確的資訊。書中豐富的實例解釋了複雜的主題，突出了重要的安全問題，並展示了保護數據機密性和完整性的有效方法和策略。

全書第三版經過全面修訂和更新，新增了一章關於網絡安全基礎的內容，並擴展了對跨站腳本（XSS）攻擊、Stuxnet和其他惡意軟體、SSH協議、安全軟體開發和安全協議的涵蓋。新的實例說明了Rivest-Shamir-Adleman（RSA）加密系統、橢圓曲線加密（ECC）、SHA-3和哈希函數應用，包括比特幣和區塊鏈。更新的問題集、圖表和圖形幫助讀者建立對經典密碼系統、現代對稱和公鑰加密、密碼分析、簡單身份驗證協議、入侵和惡意軟體檢測系統、量子計算等的實際知識。這本受歡迎的教科書以高度實用的方式呈現資訊安全的方法：

- 提供最新的資訊安全領域的內容
- 解釋會話金鑰、完美前向保密、時間戳、SSH、SSL、IPSec、Kerberos、WEP、GSM和其他身份驗證協議
- 討論存取控制技術，包括身份驗證和授權、ACL和能力、多級安全和隔離
- 討論軟體安全問題，從惡意軟體檢測到安全軟體開發
- 包括教師解答手冊、PowerPoint幻燈片、講座視頻和其他教學資源

《資訊安全：原理與實踐，第三版》是所有計算機科學專業的高年級本科生和研究生的理想教科書，也是從事工業或政府安全工作的專業人士的必讀之書。

Mark Stamp, PhD, has more than 25 years of experience in the field of information security. He has worked in industry, in academia as Professor of Computer Science, and in government as a cryptologic scientist for the National Security Agency. He has published more than 120 academic research articles and three books related to information security.

Mark Stamp博士在資訊安全領域擁有超過25年的經驗。他曾在工業界工作，並在學術界擔任計算機科學教授，也曾在國家安全局擔任密碼學科學家的職位。他已發表了超過120篇學術研究文章，並出版了三本與資訊安全相關的書籍。