Security Engineering and over 900,000 other books are available for Amazon Kindle . Learn more


or
Sign in to turn on 1-Click ordering.
or
Amazon Prime free trial required. Sign up when you check out. Learn more
More Buying Choices
Have one to sell? Sell yours here
or
Get a £10.75 Amazon.co.uk Gift Card
Security Engineering: A Guide to Building Dependable Distributed Systems
 
 
Share your own customer images
Search inside this book
Start reading Security Engineering on your Kindle in under a minute.

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

Security Engineering: A Guide to Building Dependable Distributed Systems [Hardcover]

Ross J. Anderson (Author)
5.0 out of 5 stars  See all reviews (2 customer reviews)
RRP: £50.00
Price: £27.78 & this item Delivered FREE in the UK with Super Saver Delivery. See details and conditions
You Save: £22.22 (44%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
In stock.
Dispatched from and sold by Amazon.co.uk. Gift-wrap available.
Want guaranteed delivery by Thursday, February 9? Choose Express delivery at checkout. See Details

Formats

 Amazon Price New from Used from
Kindle Edition £20.84   -- --
Hardcover £27.78   -- --
Trade In this Item for up to £10.75
Trade in Security Engineering: A Guide to Building Dependable Distributed Systems for an Amazon.co.uk gift card of up to £10.75, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.

Frequently Bought Together

Security Engineering: A Guide to Building Dependable Distributed Systems + Secrets and Lies: Digital Security in a Networked World + Schneier on Security
Price For All Three: £49.48

Show availability and delivery details

Buy the selected items together

Customers Who Bought This Item Also Bought

Product details

  • Hardcover: 1080 pages
  • Publisher: John Wiley & Sons; 2nd Edition edition (11 April 2008)
  • Language English
  • ISBN-10: 0470068523
  • ISBN-13: 978-0470068526
  • Product Dimensions: 23.5 x 19.4 x 6.4 cm
  • Average Customer Review: 5.0 out of 5 stars  See all reviews (2 customer reviews)
  • Amazon Bestsellers Rank: 5,916 in Books (See Top 100 in Books)

    •  Would you like to update product info or give feedback on images?

  • See Complete Table of Contents

More About the Author

Ross Anderson
Discover books, learn about writers, and more.

Visit Amazon's Ross Anderson Page

Product Description

Review

“At over a thousand pages, this is a comprehensive volume.” Engineering & Technology Saturday 7 June 2008

Product Description

The world has changed radically since the first edition of this book was published in 2001. Spammers, virus writers, phishermen, money launderers, and spies now trade busily with each other in a lively online criminal economy and as they specialize, they get better. In this indispensable, fully updated guide, Ross Anderson reveals how to build systems that stay dependable whether faced with error or malice. Here’s straight talk on critical topics such as technical engineering basics, types of attack, specialized protection mechanisms, security psychology, policy, and more.
See all Product Description
Inside This Book (Learn More)
Browse Sample Pages
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover
Search inside this book:

Suggested Tags from Similar Products

 (What's this?)
Be the first one to add a relevant tag (keyword that's strongly related to this product)
 
(8)
(4)
(4)
(2)
(2)
(1)
(1)
(1)
(1)
(1)

Your tags: Add your first tag
 
See most popular tags
 

Customer Reviews

2 Reviews
5 star:
 (2)
4 star:    (0)
3 star:    (0)
2 star:    (0)
1 star:    (0)
 
 
 
 
 
Average Customer Review
5.0 out of 5 stars (2 customer reviews)
 
 
 
 
Share your thoughts with other customers:
Most Helpful Customer Reviews

2 of 2 people found the following review helpful:
5.0 out of 5 stars A bible, 5 July 2011
By 
Jack Brennan (Norway) - See all my reviews
(REAL NAME)   
This review is from: Security Engineering: A Guide to Building Dependable Distributed Systems (Hardcover)
If you're interested in cyber (and physical) security in any way or have a few subjects touching on the topic at university or at a technical colleague this book is a must.

It focuses very much on secure systems and their implementation, while at the same time acknowledging the drawbacks that plague secure systems every day. The topic range is extremely broad and the author does indeed have great knowledge regarding all the topics he writes about.

If you're unsure if this book is for you you should go to Robert Andersons website and download the 1st edition for free.

Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


1 of 1 people found the following review helpful:
5.0 out of 5 stars A Classic in its Field, 16 Jun 2011
By 
Eoin Woods (Hertfordshire, United Kingdom) - See all my reviews
(REAL NAME)   
This review is from: Security Engineering: A Guide to Building Dependable Distributed Systems (Hardcover)
Security Engineering was already a classic text in its field and the new edition simply builds on this. It's comprehensive, correct, well written and easy to use. Highly recommended.
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No

Share your thoughts with other customers: Create your own review
Most Helpful Customer Reviews on Amazon.com (beta)
Amazon.com: 4.3 out of 5 stars (9 customer reviews)

5 of 5 people found the following review helpful:
5.0 out of 5 stars A profoundly influential work written by a world-class security expert, 17 Nov 2008
By Jacob Gajek - Published on Amazon.com
This review is from: Security Engineering: A Guide to Building Dependable Distributed Systems (Hardcover)
For the typical busy security professional, reading a 900-page tome cover to cover represents an investment of time that may be difficult to justify. Frankly, security books that are worth the effort are few and far between. Security Engineering is one such book, for several reasons.

First, Ross Anderson's vast knowledge, experience and insight on the subject are well known, and his reputation as one of the top security experts in the world is well deserved. No doubt a reflection of this, his book covers a very broad range of security topics, the discussions ranging from high-level policy issues, all the way down to details of smartcard hacking and the mathematics of cryptography. The topics are well researched and described at a level of detail useful to the non-specialist. Concise summaries and occasional nuggets of insight indicate an in-depth understanding of the subject matter. The book is well written, easy to follow, and devoid of the vagueness and platitudes so typical of much of the security literature.

Second, the book exposes the sheer difficulty of engineering secure systems in the face of the many forces at play in a typical product development lifecycle. Through many case studies of success and failure, the author illustrates the numerous pitfalls that may befall even a well-intentioned design. Lessons learned from deploying products in the real world include the negative impact of perverse economic incentives, the importance of designing security features for maximum usability, and the need to look at a security problem from many different angles in a holistic manner. The book is a treasure trove of wisdom for the aspiring security engineer.

Lastly, the book brings together insight from many diverse areas of research. Disciplines ranging from economics, psychology, sociology, criminology, banking and bookkeeping, safety research, electronic warfare, to politics are all mined for ideas and results that could yield a better understanding of - and novel approaches to - difficult security problems. It is perhaps in this aspect that the book will prove to be most influential. Since the first edition was published in 2001, security economics, security usability, and security psychology have emerged as fertile areas of research.

2 of 2 people found the following review helpful:
3.0 out of 5 stars Four benefits for the ISSEP candidate, 17 Mar 2011
By Kurt D. Danis "Navy CISSP" - Published on Amazon.com
This review is from: Security Engineering: A Guide to Building Dependable Distributed Systems (Hardcover)
Four beneficial take-aways from Ross Anderson's book, Security Engineering: A Guide to Building Dependable Distributed Systems:

1. After reading 600 pages of prose, there are four bullets on page 652 that epitomize the entire book. Here they are:

DEFENSE AGAINST NETWORK ATTACK - four sets of tools to defend against network attack:

(1) Management (i.e. CM)
(2) Filtering (i.e. Firewalls)
(3) Intrusion Detection (i.e. IDS devices)
(4) Encryption (i.e. VPN devices with encryption)


2. I discovered a little known standard that may have influenced the Risk Management Framework (RMF) methodology developed in the NIST SP 800-37. Read this excerpt (p. 838): "It is important for the Security Engineer to have some knowledge of internal controls. There is a shortage of books on this subject... the most influential is the Risk Management Framework from the Committee of Sponsoring Organizations (COSO), a group of U.S. accounting and auditing bodies [ [].... Its basic process is an evolutionary cycle: in a given environment, you assess the risks, design controls, monitor their performance, and then go around the loop again."

3. There's a small blurb on the Capability Maturity Model (p. 849). I think this little concept helps to understand all the CMM documents on the street. Here it is: "Some useful insights come from the Capability Maturity Model developed by the Carnegie-Mellon University. Although this is aimed at dependability and at delivering code on time rather than specifically at security, their research shows that capability is something that develops in groups; it's not just a purely individual thing."

Then another blurb on p.864-865:
"The Carnegie-Mellon research showed that newly formed teams tended to underestimate the amount of work in project, and also had a high variance in the amount of time they took; the teams that worked best together were much better able to predict how long they'd take, in terms of the mean development time, but reduced the variance as well."

4. Lastly, the author admits that he's a cynic, and a cynical attitude is probably the BEST way to look at the Common Criteria.

1 of 1 people found the following review helpful:
5.0 out of 5 stars Excellent, readable, current, 17 Jan 2011
By Greg - Published on Amazon.com
This review is from: Security Engineering: A Guide to Building Dependable Distributed Systems (Kindle Edition)
Certainly a top 5 in its space. Especially notable for its broad coverage and excellent references to other more detailed material. This is a very worthwhile update from the first edition (which is freely available from the author's web site as a PDF).
 Go to Amazon.com to see all 9 reviews  4.3 out of 5 stars 
Were these reviews helpful?   Let us know
 
 
Only search this product's reviews


Customer Discussions

This product's forum
Discussion Replies Latest Post
No discussions yet

Ask questions, Share opinions, Gain insight
Start a new discussion
Topic:
First post:
Prompts for sign-in
 

Search Customer Discussions
Search all Amazon discussions
   

Listmania!

Create a Listmania! list

Look for similar items by category

Look for similar items by subject





















i.e., each product must be in subject 1 AND subject 2 AND ...

Feedback


Amazon.co.uk Privacy Statement Amazon.co.uk Delivery Information Amazon.co.uk Returns & Exchanges