000 06945cam a2200601Ki 4500
001 9781003080787
003 FlBoTFG
005 20220724194352.0
006 m o d
007 cr |n|||||||||
008 200820s2020 flua ob 001 0 eng d
040 _aOCoLC-P
_beng
_cOCoLC-P
020 _a9781000165166
_q(electronic bk.)
020 _a1000165167
_q(electronic bk.)
020 _a9781003080787
_q(electronic bk.)
020 _a1003080782
_q(electronic bk.)
020 _a9781000165203
_q(electronic bk. : Mobipocket)
020 _a1000165205
_q(electronic bk. : Mobipocket)
020 _a9781000165241
_q(electronic bk. : EPUB)
020 _a1000165248
_q(electronic bk. : EPUB)
020 _z9780367531737
020 _z0367531739
020 _z9780367532963
020 _z0367532964
024 7 _a10.1201/9781003080787
_2doi
035 _a(OCoLC)1184237665
035 _a(OCoLC-P)1184237665
050 4 _aTK5105.59
072 7 _aCOM
_x083000
_2bisacsh
072 7 _aCOM
_x005030
_2bisacsh
072 7 _aCOM
_x066000
_2bisacsh
072 7 _aKJV
_2bicssc
082 0 4 _a005.8
_223
100 1 _aFoltz, Kevin E.,
_eauthor.
245 1 0 _aEnterprise level security 2
_h[electronic resource] :
_badvanced topics in an uncertain world /
_cDr. Kevin E. Foltz and Dr. William R. Simpson, Institute for Defense Analysis.
264 1 _aBoca Raton :
_bCRC Press,
_c2020.
300 _a1 online resource :
_billustrations
336 _atext
_2rdacontent
336 _astill image
_2rdacontent
337 _acomputer
_2rdamedia
338 _aonline resource
_2rdacarrier
520 _aEnterprise Level Security 2: Advanced Topics in an Uncertain World follows on from the authors first book on Enterprise Level Security (ELS), which covered the basic concepts of ELS and the discoveries made during the first eight years of its development. This book follows on from this to give a discussion of advanced topics and solutions, derived from 16 years of research, pilots, and operational trials in putting an enterprise system together. The chapters cover specific advanced topics derived from painful mistakes and numerous revisions of processes. This book covers many of the topics omitted from the first book including multi-factor authentication, cloud key management, enterprise change management, entity veracity, homomorphic computing, device management, mobile ad hoc, big data, mediation, and several other topics. The ELS model of enterprise security is endorsed by the Secretary of the Air Force for Air Force computing systems and is a candidate for DoD systems under the Joint Information Environment Program. The book is intended for enterprise IT architecture developers, application developers, and IT security professionals. This is a unique approach to end-to-end security and fills a niche in the market.
505 0 _a<P></p><p>Chapter 1. The First 16 Years.</p><p>1.1 The Beginning of Enterprise Level Security (ELS).</p><p>1.2 Design Principles. </p><p>1.3 Key Concepts. </p><p>1.4 Implementation.</p><p>Chapter 2. A Brief Review of the Initial Book. </p><p>2.1 Security Principles. </p><p>2.2 ELS Framework. </p><p>Chapter 3. Minimal Requirements for the Advanced Topics. </p><p>3.1 Needed Capabilities. </p><p>3.2 Creating an Attribute Store. </p><p>3.3 Registering a Service. </p><p>3.4 Computing Claims. </p><p>3.5 User Convenience Services. </p><p>3.6 The Enterprise Attribute Ecosystem.</p><p>3.7 Summary. </p><p>Identity and Access Advanced Topics.</p><p>Chapter 4. Identity Claims in High Assurance.</p><p>4.1 Who Are You?. </p><p>4.2 Entity Vetting. </p><p>4.3 Naming. </p><p>4.4 Key and Credential Generation.</p><p>4.5 Key and Credential Access Control.</p><p>4.6 Key and Credential Management.</p><p>4.7 Key and Credential Uses. </p><p>4.8 Some Other Considerations. </p><p>Chapter 5. Cloud Key Management.</p><p>5.1 Clouds. </p><p>5.2 ELS in a Private Cloud.</p><p>5.3 The Public Cloud Challenge.</p><p>5.4 Potential Hybrid Cloud Solutions.</p><p>5.5 Proposed Secure Solutions.</p><p>5.6 Implementation.</p><p>5.7 Cloud Key Management Summary. </p><p>Chapter 6. Enhanced Assurance Needs. </p><p>6.1 Enhanced Identity Issues. </p><p>6.2 Scale of Identity Assurance. </p><p>6.3 Implementing the Identity Assurance Requirement.</p><p>6.4 Additional Requirements. </p><p>6.5 Enhanced Assurance Summary. </p><p>Chapter 7. Temporary Certificates. </p><p>7.1 Users That Do Not Have a PIV.. </p><p>7.2 Non-PIV STS/CA-Issued Certificate. </p><p>7.3 Required Additional Elements. </p><p>7.4 Precluding the Use of Temporary Certificates. </p><p>7.5 Temporary Certificate Summary. </p><p>Chapter 8. Derived Certificates on Mobile Devices. </p><p>8.1 Derived Credentials. </p><p>8.2 Authentication with the Derived Credential.</p><p>8.3 Encryption with the Derived Credential.</p><p>8.4 Security Considerations. </p><p>8.5 Certificate Management.</p><p>Chapter 9. Veracity and Counter Claims. </p><p>9.1 The Insider Threat.</p><p>9.2 Integrity, Reputation, and Veracity. </p><p>9.3 Measuring Veracity.</p><p>9.4 Creating a Model & Counter-Claims. </p><p>9.5 Veracity and Counter-Claims Summary. </p><p>Chapter 10. Delegation of Access and Privilege. </p><p>10.1 Access and Privilege. </p><p>10.2 Delegation Principles. </p><p>10.3 ELS Delegation. </p><p>10.4 Delegation Summary. </p><p>Chapter 11. Escalation of Privilege. </p><p>11.1 Context for Escalation. </p><p>11.2 Access and Privilege Escalation. </p><p>11.3 Planning for Escalation. </p><p>11.4 Invoking Escalation. </p><p>11.5 Escalation Implementation within ELS. </p><p>11.6 Accountability. </p><p>11.7 Escalation Summary.</p><p>Chapter 12. Federation. </p><p>12.1 Federation Technical Considerations. </p><p>12.2 Federation Trust Considerations. </p><p>12.3 Federation Conclusions. </p><p>ELS Extensions - Content Management.</p><p>Chapter 13. &n
588 _aOCLC-licensed vendor bibliographic record.
650 0 _aComputer networks
_xSecurity measures.
650 0 _aIndustries
_xSecurity measures.
650 7 _aCOMPUTERS / Cryptography
_2bisacsh
650 7 _aCOMPUTERS / Groupware
_2bisacsh
700 1 _aSimpson, William Randolph,
_d1946-
_eauthor.
856 4 0 _3Read Online
_uhttps://www.taylorfrancis.com/books/9781003080787
856 4 2 _3OCLC metadata license agreement
_uhttp://www.oclc.org/content/dam/oclc/forms/terms/vbrl-201703.pdf
942 _2lcc
_cEBK
999 _c16811
_d16811