Books
Cryptography (found 2061 titles)
Author: Shon HarrisPublisher: McGraw-Hill Osborne Media
Publication date: 2010-01-15
ISBN: 0071602178
Pages: 1216
Rating:
Price: $79.99
Get complete coverage of the latest release of the Certified Information Systems Security Professional (CISSP) exam inside this comprehensive, fully updated resource. Written by the leading expert in IT security certification and training, this authoritative guide covers all 10 CISSP exam domains developed by the International Information Systems Security Certification Consortium (ISC2). You'll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, and in-depth explanations. Designed to help you pass the CISSP exam with ease, this definitive volume also serves as an essential on-the-job reference.
COVERS ALL 10 CISSP DOMAINS:
- Information security and risk management
- Access control
- Security architecture and design
- Physical and environmental security
- Telecommunications and network security
- Cryptography
- Business continuity and disaster recovery planning
- Legal regulations, compliance, and investigations
- Application security
- Operations security
THE CD-ROM FEATURES:
- Hundreds of practice exam questions
- Video training excerpt from the author
- E-book
Shon Harris, CISSP, is a security consultant, a former member of the Information Warfare unit in the Air Force, and a contributing writer to Information Security Magazine and Windows 2000 Magazine. She is the author of the previous editions of this book.
Customes reviews 15
Important source for pass the exam (2010-09-02)
I used the 3rd edition when I took my exam like 3 or 4 years ago. I have not read this book but based on the previous edition, I'll give my HO. at the time, I had security+, project+ and ceh as well as a very strong background on systems. I used this as one of my main source of study material. I started with exam cram's book first to get an idea of stuff covered but this is the real source. my understanding is the book updates some topics but for the test there is a lot of overkill/subjects covered in great detail not needed for the test. it definitely is a large book but stay with it. just because it's not part of the test it's worth reading if you intend to work in security. Along with some other sources I discovered I successfully pass the exam. the exam isn't impossible by any stretch of the imagination but understand it's test you need practice concentrating for hours at a time. additionally had other notes and materials but this was well worth the time and money. I used to pass the exam on the first try. I was confident enough to ask on my way out if my name was spelled correctly (which it was but yet was wrong on the certificate that was sent out).
Great Book! (2010-08-02)
So far so good! I've been reading the book - and was informed by other CISSP certified people - that this book will enhance your knowledge on Security - and knowledge for the CISSP exam. I am currently on Chapter 4.
CISSP All in one Exam Guide (2010-07-06)
I cannot say enough good things about this book. I used this and Exam Cram as my sole sources to prepare for this exam and I passed on my first try. I don't have a very technical background so this book prepared me thoroughly for the exam and also helped a great deal in my work as an IT Security Specialist.
Superb Domain Coverage (2010-06-10)
I've had the pleasure to attend a CCISP class conducted by Shon Harris. She is an exceptional instructor and her All in One book translates the classroom discussions well to the written form.
Great coverage of all the required domains. Highly recommended!
I passed the CISSP using only this book and a TON of preparation (2010-05-31)
There is no simple formula to prepare for the CISSP certification, and no single resource which can guarantee success on the certification exam since every applicant's background is unique. However, this book (fifth edition) was my only resource in preparing for the exam and I passed on my first attempt (April 24, 2010).
I spent 60+ hours in preparation for the exam... that's 60+ hours of DEDICATED individual study using this book and CD, not 60+ hours spent web surfing during lunch hours or commercial breaks. My recent background is in middle management, with 20 years experience in network architecture and data security, so I already had a firm technical foundation for the test areas dealing with protocols and encryption variations. I also have an MS in Computer Science. Nonetheless, the exam was so broad, with topics covering general principles and concepts, that I could have prepared twice as long and still left the exam with questions about the outcome.
My personal opinion is that formal classroom instruction, through one of the many organizations offering CISSP preparation courses, is a worthwhile companion to Shon Harris' book. A study group is also a good idea. You will not obtain CISSP certification if you take the exam without preparation. This book (fifth edition) was sufficient, but not 100% comprehensive, to prepare me for passing the CISSP test.
Note: Some reviewers do not appreciate Shon's frequent analogies and humor. Most of her analogies helped me internalize the complex topics, but that's my personal learning style. The efforts at humor were generally awful, but every once in a while she was subtle and brilliant enough to make me laugh out loud. Working through Shon's unique writing style was not a problem for me... I actually found it refreshing.
Author: Simon SinghPublisher: Anchor
Publication date: 2000-08-29
ISBN: 0385495323
Pages: 432
Rating:
Price: $16.00
People love secrets. Ever since the first word was written, humans have sent coded messages to each other. In The Code Book, Simon Singh, author of the bestselling Fermat's Enigma, offers a peek into the world of cryptography and codes, from ancient texts through computer encryption. Singh's compelling history is woven through with stories of how codes and ciphers have played a vital role in warfare, politics, and royal intrigue. The major theme of The Code Book is what Singh calls "the ongoing evolutionary battle between codemakers and codebreakers," never more clear than in the chapters devoted to World War II. Cryptography came of age during that conflict, as secret communications became critical to both sides' success.
Confronted with the prospect of defeat, the Allied cryptanalysts had worked night and day to penetrate German ciphers. It would appear that fear was the main driving force, and that adversity is one of the foundations of successful codebreaking.
In the information age, the fear that drives cryptographic improvements is both capitalistic and libertarian--corporations need encryption to ensure that their secrets don't fall into the hands of competitors and regulators, and ordinary people need encryption to keep their everyday communications private in a free society. Similarly, the battles for greater decryption power come from said competitors and governments wary of insurrection.
The Code Book is an excellent primer for those wishing to understand how the human need for privacy has manifested itself through cryptography. Singh's accessible style and clear explanations of complex algorithms cut through the arcane mathematical details without oversimplifying. --Therese Littleton
Customes reviews 276
Murder plots, Indiana Joneses, and cyphers (2010-08-03)
I tremendously enjoyed reading this book, which explores perhaps the most fascinating aspect of cryptology: its role in society. From Queen Mary who was executed because her cypher was vulnerable to previously unheard-of frequency analysis, continuing with the war-altering influence of Enigma code breakers, to the advent of public-key cryptology in use today, the author paints a rich picture of historical events, personalities, and government interests.
Mr. Singh's account of the people behind the cypher breakthroughs was the most valuable to me. For example, while I had heard of the formidable Alan Turing, my CS education neglected to include the sad bit that he had committed suicide, on account of his being homosexual- a sin at the time. There are more gems of information like this to be found, making this book interesting to a wide array of people, from historians to conspirationalists.. For the latter group, the author for example offers the juicy bit that the British Empire condoned and actively spread the use of Enigmas, particularly after they had broken the code, lulling countries and colonies into a false sense of security.
I also liked the nod towards archeologists, a welcome relief from the otherwise politically and militarily motivated encryption landscape. I learned more about Knossos in Crete from this book than when I went there in person!
Here's the best part: the text is easily understandable. Even for someone very rusty in his/her high school math, it is accessible as the author assumes practically nothing and even defines concepts such as prime numbers and modulus arithmetic. The precise example of an RSA code exchange is relegated to the appendix, meanwhile the author found an analogy involving buckets of paint. Brilliant.
If I have to find one flaw with Singh's work, it is the age of the publication. 11 years spell "ancient" in the computer world and it's nothing short of bizarre to read that "the Internet is in its infancy" when I can access my bank accounts on a remote island - on my cell phone. An update of the last two chapters would do this otherwise priceless book good.
Interesting Read (2010-07-12)
I bought this book several years ago and enjoyed every aspect of it. It is a nice blend to tech and history. This is a great book for anyone interested in encipherment of information.
Great read. (2010-05-05)
This is a well written book from an author with great knowledge on the topic. Don't be put off by all the talk about 'Where is the American side of the story' because in all honesty it's nice to read a book which is not so pro American for a change! A breath of fresh air.
History of Code Made Fun (2010-04-16)
This book helped me master a project I was undertaking on the subject of Encryption Techniques. It gave me supplemental knowledge in an area that I knew little about. Overall, an insightful and informative look into the many details of codes created around the world~~and also an interesting read for almost anyone.
The Code Book (2010-03-12)
The book was interesting and appeared well researched but the writing a little amateurish. My biggest complaint though is that the book was misbound with about 25 pages not appearing at all and 25 pages being repeated twice, once backwards. Very annoying.
Author: Jon EricksonPublisher: No Starch Press
Publication date: 2008-02-04
ISBN: 1593271441
Pages: 488
Rating:
Price: $49.95
Hacking is the art of creative problem solving, whether that means finding an unconventional solution to a difficult problem or exploiting holes in sloppy programming. Many people call themselves hackers, but few have the strong technical foundation needed to really push the envelope.
Rather than merely showing how to run existing exploits, author Jon Erickson explains how arcane hacking techniques actually work. To share the art and science of hacking in a way that is accessible to everyone, Hacking: The Art of Exploitation, 2nd Edition introduces the fundamentals of C programming from a hacker's perspective.
The included LiveCD provides a complete Linux programming and debugging environment--all without modifying your current operating system. Use it to follow along with the book's examples as you fill gaps in your knowledge and explore hacking techniques on your own. Get your hands dirty debugging code, overflowing buffers, hijacking network communications, bypassing protections, exploiting cryptographic weaknesses, and perhaps even inventing new exploits. This book will teach you how to:
- Program computers using C, assembly language, and shell scripts
- Corrupt system memory to run arbitrary code using buffer overflows and format strings
- Inspect processor registers and system memory with a debugger to gain a real understanding of what is happening
- Outsmart common security measures like nonexecutable stacks and intrusion detection systems
- Gain access to a remote server using port-binding or connect-back shellcode, and alter a server's logging behavior to hide your presence
- Redirect network traffic, conceal open ports, and hijack TCP connections
- Crack encrypted wireless traffic using the FMS attack, and speed up brute-force attacks using a password probability matrix
Hackers are always pushing the boundaries, investigating the unknown, and evolving their art. Even if you don't already know how to program, Hacking: The Art of Exploitation, 2nd Edition will give you a complete picture of programming, machine architecture, network communications, and existing hacking techniques. Combine this knowledge with the included Linux environment, and all you need is your own creativity.
Customes reviews 65
help (2010-08-02)
first off this CD will NOT work in a MAC
and unfortunately it seems it does not work in my PC either
i put it in, reboot my computer just like it says, and NOTHING is different; and the practices he gives you in the book mean ziltch without the cd working!!!
furthermore, without the CD, this whole book means less than nothing to me. It could not be more useless
just to make my point clear
this book is for people who are already adept and highly skilled at programming, and EXTREMELY farmiliar with C and other computer languages. big waste of $50
maybe in ten years when im the leader of nationwide cyber security this will help, but not now
Great Learning Material (2010-02-28)
This piece is very helpful for those who like a step-by-step and analogous style of learning. It starts at a very basic level, but soon goes straight into the nitty gritty which is helpful for those who like to go a little further than just basic level 10 material.
Fabulous (2010-02-21)
This book is the most interesting i've ever read. Its instructive and explains in detail everything you can expect.
I recommend it...
Excellent Book (2010-01-17)
After I read the first edition, I thought to myself that this was the best book on "hacking" that I have ever read. Very practical, technical, useful information for anyone who wants to get started with computer security and learn how "hackers" exploit computer software.
This book was written very well, where each step of the exploitation process was explained and I could follow along and execute the code being discussed in each chapter.
I bought the second edition which has even more material than the first and thought the same thing. Excellent book, must-read for anybody interested in this topic.
In order to get the most out of this book, I would recommend that the reader be familiar with the *nix command line and some experience with C programming.
Excellent Book (2010-01-15)
This is indeed an excellent book. I would surely recommend this book to anybody needing insights into different hacking methods. I am a graduate student in computer science and I don't think there are too many books on this subject out there that are better than this one.
Author: William StallingsPublisher: Prentice Hall
Publication date: 2010-01-24
ISBN: 0136097049
Pages: 744
Rating:
Price: $111.40
William Stallings' Cryptography and Network Security: Principles and Practice, 5e is a practical survey of cryptography and network security with unmatched support for instructors and students.
In this age of universal electronic connectivity, viruses and hackers, electronic eavesdropping, and electronic fraud, security is paramount. This text provides a practical survey of both the principles and practice of cryptography and network security. First, the basic issues to be addressed by a network security capability are explored through a tutorial and survey of cryptography and network security technology. Then, the practice of network security is explored via practical applications that have been implemented and are in use today. An unparalleled support package for instructors and students ensures a successful teaching and learning experience.
The new edition has been updated to include coverage of the latest topics including expanded coverage of block cipher modes of operation, including authenticated encryption; revised and expanded coverage of AES; expanded coverage of pseudorandom number generation; new coverage of federated identity, HTTPS, Secure Shell (SSH) and wireless network security; completely rewritten and updated coverage of IPsec; and a new chapter on legal and ethical issues.
Customes reviews 8
Good conditon and timely delivery (2009-11-15)
The "Cryptography and Network Security (4th Edition)" book that I bought through Amazon was delivered timely. The book was also in the good condition that was said of it.
Easy Read (2008-11-11)
An easy to read book on cryptography and security. Stallings illustrates concepts well, with lots of examples. If you're after mathematical depth, this book is not for you. This book is more about high level ideas and concepts.
Worst writing ever (2008-10-30)
There has never been a more poorly written book, to my knowledge. The subject matter is fascinating and it is hard to imagine a less well-executed explanation of this material. It is difficult to count how many times that concepts are introduced and explained with statements that begin "It is obvious that..." - I've got news for the author, not much of those things are obvious, and smaller books explain the same material in much clearer and accessible language. I personally prefer the writings of Bruce Schneier on the subject. The rough thing is, the professor of the class I'm taking picked this for the textbook... I've had to download errata, search out information online, and buy other books to try to cover the material. One of the exercises is to brute-force attack a misprinted encrypted message, and one has to know to go to the author's website to download the corrected ciphertext. That totally sucks in an $80 book.
aweful (2008-10-14)
This book is terrible. I am forced to read it for class and it's simply awful. If you want to learn cryptography get 'Applied Cryptography' by Bruce Schneier.
Not outstanding (2007-04-16)
OK, this book has received prizes and stellar reviews here and elsewhere but personally I didn't like it very much. First, the text and the exercises lack mathematical depth. There are entire chapters, such as the one on AES, which add hardly anything to the official standard, and the book explanation is often harder to understand, and especially more ambiguous than the official standard of the protocols it is supposed to explain.
On the other hand, it is a relatively "polished" book, without too many errors or typos. Most of the time, it gives gives enough information to implement the algorithms it talks about. But it certainly doesn't give you enough to become a cryptographer, or to evaluate the security of a new algorithm, or things like that.
Author: Joseph BruchacPublisher: Speak
Publication date: 2006-07-06
ISBN: 0142405965
Pages: 231
Rating:
Price: $7.99
After being taught in a boarding school run by whites that Navajo is a useless language, Ned Begay and other Navajo men are recruited by the Marines to become code talkers, sending messages in their native tongue during World War II. Author: Joseph BruchacReading Level: Young AdultFormat: 240 pages, PaperbackPublisher: Puffin (July 6, 2006) ISBN: 978-0142405963
Customes reviews 25
Code Talker was a Good book (2010-08-18)
Code Talker was a term used to describe people that used Navajo as a code so the Japanese couldn't understand what the Americans were planning. The story is about a Navajo boy named is Kii Yazhi. His parents and friends call him small ant because he is small but does a lot of work. After the Navajo boy says goodbye to his family his uncle takes him to the high school. While traveling his uncle starts to tell him stories about when he went to the same school.
After they arrive at the school, the uncle and his nephew say goodbye and the supervisor tells the uncle to leave. The teachers teach the Navajo boys that his culture is no good. Each Navajo was assigned an American name. Kii Yazhi's American name was Ned Begay. He met other Navajos while he was at the high school.
The first day of school for Ned was very tough. He greeted his teacher with a mannerly Navajo phrase and the teacher pulled him out of the room and into the bathroom. The teacher punished Ned by washing his mouth out with soap. Ned had never had a punishment as cruel as that. He returned to his classroom and continued his schoolwork.
Later that day, Ned met a young boy who was punished so many times for speaking Navajo he became immune to all punishments. He even thought the soap was a little tasteful. Ned would secretly speak Navajo to any young Navajo person that came to the high school. He would never let go of his culture. He continued to speak English in public and was good in school. He would give 100% on all of his assignments
High school was over before Ned knew it and he was headed off to college. In college, he found out that a military group was hiring Navajos to help them fight the war because they needed Navajos to help send coded messages back and forth. Ned decided to sign up and help fight against the Japanese. There was only one problem, Ned was not old enough. He tried to convince his parents to let him lie about his age. Ned's parents wanted him to wait a year before he signed up. He was pleased for them supporting him. He went and continued his regular routine for the year.
Before the year passed, the class was informed about a Japanese bomb that struck the United States. The school was on lockdown and they listened to their radio to find out what else was happening. Luckily everything was fine and they continued to work. When a new student came, Ned was caught greeting him in Navajo. The teacher yelled at Ned and repeated "Navajo is no good"!
Once Ned signed up he went to places all around the world. Ned told all of these stories about the places he fought in. The one I didn't like was when the Japanese would lie about the Americans and would sometimes push their kids off of building before they jumped over so the Americans wouldn't kill them because they were told that the Americans would make them die slow and painfully. Once he got home he was thrown out of a restaurant because it was a white's only building. He continued his journey back to his home. Once he arrived he greeted his family in Navajo and that just proved that you should never give up your culture or your beliefs and you should hold on to them forever. I would strongly recommend this book to a friend because in the book one of Ned's friends said "stick with me and you'll be fine" so some parts of the book is about friendship. I think this book was informational about the war and how Navajos were treated but showed they can actually help make a difference.
youth book (2010-08-07)
sent to a 3rd party school library, about Native Americans during WW II, no complaints
Amazing True Story (2010-05-31)
This book just is an amazing true story. It just makes you think these Navajos were treated horribly taught that their culture is bad, but later their language became one of the most important things in WWII. Just an amazing story.
Code Talker (2009-11-04)
This book held the interest of my 12 year old son that is a history buff of sorts. We read it together and it was very a good book. You could see the area and the situations in the story. Some books we sell after reading, this one is a keeper.
Great book (2009-10-30)
Code Talker is a thrilling yet at the same time humorous book that I think anyone will enjoy. The story begins with Kii Yazhi, on his way to boarding school to learn the `white man's way'. The book quickly explains about his life at the school and the school trying to erase his Navajo language from him (and his secret to always remember his sacred language). The book then fast forwards to him graduating and being accepted to go to high school. Soon though, in his 1st year in high school, World War 2 began. Many of his older friends and class mates of age begin joining the cause to fight the Japanese. He asks his parents to allow him to join but they tell him that they will when he is 17. 2 years later he gets his parents blessing and joins the marine forced, is trained and is sent to a top secret, Navajo exclusive training section to become a code talker. He learns the code and his shipped out to fight. More action and comedy ensue but you will have to read the book to find that out! This book however is a very good book, for ages 8-80. I have read it numerous times and still can't stop. Action may take place from furious firer fights to suspenseful radio calls. Comedy tops this great formula up to give any reader a real wild ride. Maybe you don't trust me well you can ask Kirkus Reviews- `With its multicultural theme and well told WWII history, this will appeal to a wide audience.' I love this book so much and I hope you will to.
Author: Kimberly GravesPublisher: Sybex
Publication date: 2010-04-26
ISBN: 0470525207
Pages: 432
Rating:
Price: $49.99
Prepare for the new version of CEH certification with this advanced guide
Once you learn the thought processes of unethical hackers, you can figure out how to secure your computer systems to defend against them. That's the philosophy behind ethical hacking, and it's a growing field. Prepare for certification in this important area with this advanced study guide that covers all exam objectives for the challenging CEH Certified Ethical Hackers exam. The book provides full coverage of exam topics, real-world examples, and a CD with additional materials for extra review and practice.
- Covers ethics and legal issues, footprinting, scanning, enumeration, system hacking, trojans and backdoors, sniffers, denial of service, social engineering, session hijacking, hacking Web servers, Web application vulnerabilities, and more
- Walks you through exam topics and includes plenty of real-world scenarios to help reinforce concepts
- Includes a CD with review questions, bonus exams, and more study tools
This is the ideal guide to prepare you for the new CEH certification exam.
Note: CD-ROM/DVD and other supplementary materials are not included as part of eBook file.
Customes reviews 2
Well done and a good read (2010-07-22)
I managed to read this book very quickly (2 nights) and found it rather enjoyable. The materials were very well covered within the confines of the CEH exam. This was my primary reference material for the CEH, which I passed. If you DON'T have any previous networking and INFOSEC experience, I would recommend additional study elsewhere.
Super book! (2010-07-15)
This is a super book! It nicely rounds out required topics for the latest EC-Council exam! It's also a very nice complement to the Review Guide. I highly recommend this book to all who are embarking down the CEH path and need further insight into the diverse topics that candidates must master.
Authors: Niels Ferguson, Bruce Schneier, Tadayoshi KohnoPublisher: Wiley
Publication date: 2010-03-15
ISBN: 0470474246
Pages: 384
Rating:
Price: $55.00
The ultimate guide to cryptography, updated from an author team of the world's top cryptography experts.
Cryptography is vital to keeping information safe, in an era when the formula to do so becomes more and more challenging. Written by a team of world-renowned cryptography experts, this essential guide is the definitive introduction to all major areas of cryptography: message security, key negotiation, and key management. You'll learn how to think like a cryptographer. You'll discover techniques for building cryptography into products from the start and you'll examine the many technical changes in the field.
After a basic overview of cryptography and what it means today, this indispensable resource covers such topics as block ciphers, block modes, hash functions, encryption modes, message authentication codes, implementation issues, negotiation protocols, and more. Helpful examples and hands-on exercises enhance your understanding of the multi-faceted field of cryptography.
- An author team of internationally recognized cryptography experts updates you on vital topics in the field of cryptography
- Shows you how to build cryptography into products from the start
- Examines updates and changes to cryptography
- Includes coverage on key servers, message security, authentication codes, new standards, block ciphers, message authentication codes, and more
Cryptography Engineering gets you up to speed in the ever-evolving field of cryptography.
Customes reviews 5
Exam Questions add little to Practical Cryptography (2010-04-22)
This book is exactly the same as Ferguson and Schneier's _Practical Cryptography_ with the addition of examination questions, so it can be used in a college level course on cryptography. OK. I liked that.
Disappointing that none of the new crypto system were added to update the text to 2010. As far as I can see it still looks like the 2003 PC book. This "new" book is seven (7) years out of date? Wiskey Tango. Hey, I still like the book, but FCOL . . . I'd like to see the NIST new block cipher modes, such as more on the NIST block cipher mode from Rogaway at UC Davis-OCB and how it can be used in authenticating VPN-like remote connections back to the home office. This book had nothing on Propagating-PCBC (maybe I missed seeing it - if so sorry), and where is format preserving encryption (AES-FFX mode)? Or, LUKS dm-crypt, loop-aes? No? Too specific for this book maybe. OK. But still, nothing new at all? Nothing about SHA3 except to say the competition has started? It's almost done now. Not even one thing on their own entry, Skein?
Disappointing. I think the time for book publishing is over. I can get more info. and more up to date info. from Googling then reading PDF-downloaded papers and (of all things) Wikipedia - how sad.
Nice intro for non-cryptographists (2010-03-30)
This book gives you a nice introduction to modern cryptography including message authentication, public key infrastructure and hashing algorithms. It does not delve too much in unimportant details, but gives an overview of the common pitfalls and the state of the art software available.
The book contains exercises at the end of each chapter which makes the book suitable for self teaching. Do not expect to be able to implement your own safe cryptographic algorithms simply by reading this book but learn some kind of professional paranoia and an idea of just how difficult it is to write safe code today.
I am not a professional programmer myself or a cryptographic engineer, but I did enjoy the book very much since it was able to keep me up to speed with the newest technology. I wholeheartedly recommend this book to anyone interested in an overview of cryptography, but beware that some mathematical background is required (not more than high school stuff).
Just an update of an earlier work (2010-03-28)
I bought this blind on the promise of some new work from Ferguson and Schneier. But got fooled by the different title: "Cryptography Engineering" is just an update of the first edition of "Practical Cryptography". This is good stuff by some excellent authors, but if you've already bought the first edition, there's not enough more to make it worth forking out another $40 or so.
The text we've needed (2010-03-16)
It turns out that cryptography is the least of the issues in cryptographic systems. Good codes are available in good implementations all over the place (one reason the authors warn against implementing your own, since good implementations are very hard). But, as the authors say in their introductory chapter, "Cryptography by itself is fairly useless." They liken strong codes in a weak system to a bank-vault door on a tent. This book provides a first lesson in pouring some concrete into the walls behind that door.
Phrased as a text for a one semester graduate or advanced undergrad class, this highly readable text covers a range of basics - the first and most pervasive being the professional paranoia needed to actively seek out ways to defeat your own systems. The authors cover things you might expect in a crypto course, including ciphers, message digests, key exchange, and a smattering of mathematical basics. There's less of the real crypto material than you might think, however. I mean, what good is the unbreakable code when the bad guy with a root kit can read your passwords from the paging file or /dev/kmem? Instead, this book stands out for things like wiping secrets from memory as fast as you can - if you can, if language design or the physics of computer memory even make it possible. Even things like random numbers and the system clock come under careful scrutiny and analysis of their own. The reader who goes through this book cover to cover comes away with a solid appreciation of the hardware, software, and social issues involved in creating truly secure systems.
But, as the authors take pains to state, this is only an introduction. As happened with Schneier's "Applied Cryptography", it could become "... notorious for the systems that [readers] then designed and implemented on their own" after reading it. Serious cryptographic systems require specialized skills, skills that only a handful of people worldwide have. Since the authors observe that "We don't actually know how to create secure code," it's arguable that no one is qualified. But, to get even as good as the experts are today, a student has to start somewhere. This introductory text gets that student off to that start.
- wiredweird
Long awaited update of the Practical Cryptography (2010-03-12)
I just got the book, skimmed over it and compared it with the 1st edition (Practical Cryptography).
First of all, if you don't have the 1st edition, this is an excellent buy. It's a "middle ground" book and probably the one you should start with if you are interested in practical cryptography. Then, depending on your interests and needs, you could proceed to a technically and mathematically much deeper (but somewhat obsolete) Applied Cryptography: Protocols, Algorithms, and Source Code in C, Second Edition or to some other direction using the foundation laid down in this book and then getting other book(s) about "hard-core" mathematics of cryptography or about "softer" methods of social engineering and real-life security.
I will now assume you know what the book is all about and that you are considering upgrading it so here are some quick things I hope to help you deciding:
- first of all, obviously, the errata from the 1st edition is incorporated into the text (there is no errata for the 2nd edition yet but keep checking on the book's home page [ [..] ]) which also contains the links from the book so you don't have to type them yourself while investigating
- the algorithms, protocols and formulas look the same but they might have minor tweaks, most of the stuff I looked up is the same as in the 1st edition
- the 2nd edition has 60 pages less and that's because the line spacing is smaller (the text is more dense) and not because some material has been omitted (at least I could not find anything significant being removed)
- one (really small) speculative mathematical subchapter has been removed (4.5.6 in 1st edition: Equation Solving Attacks); I guess the attack/math did not turn out to work
- the new addition to the team of the authors is a university professor and, as a result of that, the book has more of a textbook feel: exercises at the end of each chapter are added and the preface now contains example syllabi subchapter with three course proposals (6, 10 and 12 week) based on the book; it is also mentioned in the preface that the book is now "more suited for a self-study"
- the chapter layout is exactly the same as in 1st edition but off by one since "Our Design Philosophy" from the 1st edition has been presented a bit later as a subchapter of another chapter
- there are more references at the end (130 vs 97)
- minor: the cover is more boring, it really looks and, with the denser text inside, feels like a textbook while the 1st edition looked more like an engineering/hacking book
These are my very first quick and most likely incomplete and biased impressions, I might come back and update the review if I find anything significant.
Authors: Bruce SchneierPublisher: Wiley
Publication date: 1996-10-18
ISBN: 0471117099
Pages: 758
Rating:
Price: $60.00
Cryptographic techniques have applications far beyond the obvious uses of encoding and decoding information. For Internet developers who need to know about capabilities, such as digital signatures, that depend on cryptographic techniques, there's no better overview than Applied Cryptography, the definitive book on the subject. Bruce Schneier covers general classes of cryptographic protocols and then specific techniques, detailing the inner workings of real-world cryptographic algorithms including the Data Encryption Standard and RSA public-key cryptosystems. The book includes source-code listings and extensive advice on the practical aspects of cryptography implementation, such as the importance of generating truly random numbers and of keeping keys secure.
Customes reviews 106
No CD (2010-07-26)
I feel totally ripped off. What idiot would publish code these days with no CD or download. I would glad to have paid $40 more to get a book that comes with a CD. Now I have to, get this, snail mail the author and wait 4 weeks to get the CD. Serves me right for not reading the negative reviews before buying the book.
Good but starting to show its age (2010-05-29)
A classic reference on all things crypto, but since 1996 there have been a lot of developments in the field. It still serves as a great source of information for someone new to the field, but if you're looking for the latest information on algorithm security and implementation considerations, you might do better with Schneier's very recent Practical Cryptography.
BS grade. (2010-03-03)
Essentially a glossary. Repetitious, drawn-out, painful explanation of terms. Nothing serious, nothing in-depth. Sounds professional but hollow. The only strong point of this book is that it includes many, many terms; useful from a "talk" point of view, but useless from an "applied" point of view.
A great book for start in Cryptography (2010-02-01)
I am no expert, not in mathematics neither in cryptography. Well this book is exactly what i was looking for, no hard mathematics, no hard cryptographic theory, indeed a book for beginners like me and also for the engineer who wants implement his own cryptographic system. Specially for
computer science students and system developers this book is a great reference.
Implementation details and sample code in C language are included. The book is also very complete
Including the main topics in cryptography and cryptanalysis.
$142 from a so-so bookseller? (2009-07-22)
This bookseller has a somewhat low rating and has complaints ("never received the book", "wrong book"), etc. The book being offered is a used library book and is priced at several multiples over what the later edition sells for new. I can understand selling collectibles at a premium over new, but a book discarded by a library?
Authors: Hugh Sebag-MontefiorePublisher: Wiley
Publication date: 2001-02-28
ISBN:
Pages: 448
Rating:
Price: $30.00
"cracking stuff . . . vivid and hitherto unknown details."-Sunday Times (London)
The complete untold story of the cracking of the infamous Nazi code
Most histories of the cracking of the elusive Enigma code focus on the work done by the codebreakers at Bletchley Park, Britain's famous World War II counterintelligence station. In this fascinating account, however, we are told, for the first time, the hair-raising stories of the heroic British and American sailors, spies, and secret agents who put their lives on the line to provide the codebreakers with the materials they needed. Noted British journalist Hugh Sebag-Montefiore tracked down many of the surviving players in the Enigma drama, and these witnesses-some of them speaking on record for the first time-provide unforgettable firsthand accounts of the courageous men and women who faced death in order to capture vital codebooks from sinking ships and snatch them from under the noses of Nazi officials. In addition to these gripping stories, we learn fascinating new details about the genesis of the code and the feverish activities at Bletchley. Enigma is a spellbinding account of the brilliant feat of decryption that turned the tide of World War II.
Customes reviews 17
Superb report on the Enigma machine, its codes and the cost of obtaining them (2010-05-04)
I have a great interest in the Battle of the Atlantic part of World War Two. My expectation was that this book would shed important light on how that part of the war was fought and I was not disappointed. The book is very richly researched with a full and easy to follow footnote section at the back. For those who are interested in following the complexities on how the Enigma machines worked there are fascinating chapters at the end of the book where one can read at length and in depth.
Several things struck me about this book. One was how irregular, sporadic and fragmented were the efforts of the math whizzes at Bletchley Park. This was not their fault but was a product both of how complex the puzzle was to unwrap (before the age of computers)and how difficult each new twist and turn of changes to the wheels in the machine were to unravel. On top of this there were several types of Enigma languages to consider. One for the Army and a more complex one for the German Navy. There were sub codes that the weather stations would use and others that the Officers of certain rank would use. Another fact that was of interest was the often odd way that the code breakers went about recruiting brilliant and young people into a program that was super secret. We also learn that a few very capable women were involved.....what is clear is that because of the extreme nature of the needs (to break the codes as fast as possible) the "old boys" club attitudes towards excluding women or men with many years of experience was thrown out in favor of accepting anyone who could help and was not a security risk.
That last point has a reference to the very tragic story of the best of the brightest, Alan Turing. He WAS considered a security risk and not because he was very eccentric. He was thought of as a danger because he was a somewhat open homosexual. I know, to our minds in the 21'st century it sounds absurd, but his fate after the war was extraordinarily cruel and unjust. I won't ruin the story because it should be read; but I will say that the injustice done to him was an ugly throwback to the Victorian Era sexual ethos that destroyed the likes of Oscar Wilde.
A big surprise for me was learning that the code breakers had to make the same type of terrible decision to withhold releasing code intercepts to their own Navy out of a fear of another successful sorti or diversion for the Navy. The fear was that too many successes back to back would tip the German High Command off to the fact that their codes had been breached. This, it was feared, would motivate the Germans to complicate the codes even more, thus putting the Brits right back into the dark again. What this meant in the real world is that on certain occassions, the British Navy either was attacked and some of its sailors lost or else in a mirror way, some U-boats or other German ships were allowed to get away, all again to protect that secret. This is a parallel conundrum that Churchill had to face when deciding whether he should evacuate Coventry. He knew that the Luftwaffe was coming and would decimate the city. Should he evacuate the citizens and thus alert the Germans that they had prior knowledge? He chose to not evacutate them and many died as a result. A terrible choice to make and the Bletchley Park people, working with Churchill, made similar choices. This was really chilling to read.
There are other stories here in the book that talk about how the Polish teams were the first to crack early variations of Enigma even before the expected war broke out. We learn of spies and the price they paid for their craft. We learn of how very dangerous it was for the Allied sailors when they attempted to climb down into a U-boat that had been captured. The book is full of so many stories that you do not loose your interest from beginning to the end. A really great example of thorough, insightful and penetrating research. I loved it.
Stealing the Code... (2009-09-19)
One of World War II's great secrets, the breaking of the German Enigma ciphers at the British intelligence center at Bletchley Park, has been become a fertile source of both historical and fictional accounts. Hugh Sebag-Monterfiore's "Enigma: The Battle for the Code" finds a intriguing niche in the middle of that spectrum.
Sebag-Montefiore expands the story of codebreaking at Bletchley Park to include the efforts from the 1930s through the end of the war by the Poles, French, British, and Americans to steal phyiscal Enigma machines and machine components, codebooks, and messages from the Germans. This chase took place all over Europe and at sea around the world. The sea chase involves the ambush of German ships and submarines to seize their code materials. The pursuit was made all the more hazardous by the danger that the Germans might learn Enigma had been compromised.
Sebag-Montefiore nicely mixes an understandable and very human account of the codebreaking with the large espionage effort against the Enigma. Many of the events at sea read like chapters out of a James Bond novel, rather than the excellent popular history that is this book. There is more than enough detail to interest serious students of the intelligence business, and enough daring-do to entertain the general reader. "Enigma: The Battle for the Code" is highly recommended to both. This edition comes with a nice selection of photographs and some detailed appendices on the techniques of codebreaking.
Focuses on the Naval Enigma and the capture of code books (2009-06-09)
There are two themes to this book, the methods used to break the German enigma machine cipher and the capture of code books that aided in this process. As such, the book contains both a lot of technical information on machine ciphering/deciphering and exciting chapters dealing with the capturing of German submarines and some surface ships; both are critical aspects of the story of how the German enigma messages were deciphered. The book focuses almost exclusively on the naval machine, which was both more technically complex and utilized more complex encoding procedures than that of the German Army and Air force machines. The breaking of the naval code was made easier by the ability to capture code books from submarines and small surface ships (weather ships, trawlers, etc.). This, as is discussed in the book, was a two edged sword, as the whole enigma deciphering program might be placed in jeopardy if the Germans learned of these captures. Fortunately, the Germans believed that even such captures would be of only modest value because of the complexity of the machines and the procedures that were employed. At most, it was believed that code books would be of only short-term value, since the machine settings and tables were frequently changed making a stolen code book soon obsolete.
The Germans did not realize that Polish and then British mathematicians had uncovered weaknesses in the enigma system, and that these weaknesses allowed the ciphers to be broken even without code books (although at times these code books were invaluable). This book explains how this was done, both in the body of the text and at greater length in a series of appendices. (This aspect of the book is very complex and technical, which some readers might find a bit tedious and off-putting.) The book also tells the exciting stories of very brave British sailors (and some Americans) going down into sinking submarines to retrieve code books and enigma machines, all the while aware that scuttling charges might go off killing them outright or trapping them in a very much more rapidly sinking submarine (from which they would not be able to escape); indeed some did not escape. Some of the book also focuses on spies and counter spies and how a German sold the secret of the enigma machine to the French, how this aided the Polish code breakers before the start of the war, the subsequent German attempts (mostly successful) to capture the French and Polish code breakers, and finally why they did not learn enough from these captures to stop using the enigma machines.
As noted, this is largely the story of British code breakers, working on the German naval ciphers. There is some reference to work with the Americans and work on other German ciphers. I recommend Budiansky's Battle of Wits for information on the American collaboration with the British, efforts of the British and Americans to break the German Army and Air force enigma machines and the American work on Japanese codes and ciphers.
I recommend this book to those interested in the history of WWII and to those interested in codes and ciphers. Those who just want an exciting story of spies and adventure on the high seas may find the more than half of the book that is very technically oriented to detract from what they are seeking and they therefore might be disappointed. Likewise, those only looking for technical information may find the adventure parts of the book distracting.
Very Good (2009-03-11)
Very thorough look at the breaking of the Enigma code...A bit heavy on the actual mechanics of the device itself, which was hard to follow; otherwise an interesting look into history.
Poorly structured account. (2008-11-24)
A tedious and poorly organised account of a fabulously interesting history. Other reviewers have writen accurately about this book's good qualities but none have told how gripping it could be for a few pages and how absolutely bloodless and irritating it could turn for the next 10, leaving this reader frustrated, wanting the author to finish his present narrative (sometimes of treason and spies) before going onto the next stage of his story. Then there are the many pages of how the enigma machines actually worked. Perhaps code-breakers could follow it, but it was (again to this reader) writing as clear as mud -- descriptive writing so incredibly turgid as to make one read it aloud and laugh.
Authors: Wade Trappe, Lawrence C. WashingtonPublisher: Prentice Hall
Publication date: 2005-07-25
ISBN: 0131862391
Pages: 592
Rating:
Price: $114.67
With its conversational tone and practical focus, this text mixes applied and theoretical aspects for a solid introduction to cryptography and security, including the latest significant advancements in the field. Assumes a minimal background. The level of math sophistication is equivalent to a course in linear algebra. Presents applications and protocols where cryptographic primitives are used in practice, such as SET and SSL. Provides a detailed explanation of AES, which has replaced Feistel-based ciphers (DES) as the standard block cipher algorithm. Includes expanded discussions of block ciphers, hash functions, and multicollisions, plus additional attacks on RSA to make readers aware of the strengths and shortcomings of this popular scheme. For engineers interested in learning more about cryptography.
Customes reviews 13
Not as decribed, but still in acceptable condition (2009-12-08)
Not completely as descibed (new book), but it is still useful. There was some deformations and scatches on the book, but as I mentioned, it is still useful and in acceptable condition.
Introduction To Cryptography Reviw (2009-04-13)
Hi. This is a very good book for university studies or also for personal use too. Easy to read and understand. There are few mathematical details (this is a negative feature) but it explains very well all arguments. The only really negative thing is the cost, a little much ...
Otherwise, i suggest you this book.
Excellent Book (2008-02-16)
I highly, highly recommend this book to anyone who either is taking a course in cryptography in school or wants to learn about it. It is a very well written book which clarifies a lot of basic concepts. I bought it as it was recommended by my professor in school and managed to get an A in the course. It is a good book and I think it helped me come back after a lecture and find all the matter that I needed. Good reference material.
Inadequate mathematical explanations (2007-10-05)
The authors of the book are obviously very knowledgeable about the subject matter. This book would have worked well as a reference to lectures delivered by the authors. But for self-study, this book provides INADEQUATE mathematical explanations.
My bachelor's degree is in Physics, and my commercial computer experience totals 11 years. And yet I found it hard to follow many of the mathematical assertions of the authors. If you are willing to accept the mathematical assertions on FAITH, then you will likely feel satisfied with this book. But if you want to UNDERSTAND the mathematics, and you want to be able to PROVE to yourself that the assertions and theorems are true, then you may find the explanations inadequate, as I did.
This book really REQUIRES a very strong foundation in Number Theory. My Physics course was not concerned with Number Theory. If you are like me, who has not finished a college-level course in Number Theory, then you might have the same difficulty in understanding this book.
The writing style of the authors does not help, either. They seldom give solved examples of the mathematical concepts they are presupposing. The end-of-chapter Exercises and Computer Problems are supplied with no feedback answers. The authors do not define two mathematical objects, that they use, and which I do not recognize.
In the first several chapters, the authors make about 10 mathematical assertions that they do not prove or demonstrate. These are embedded in "explanations" seeking to explain something else. But since the "explanations" make use of undemonstrated mathematical assertions, they fail to elicit understanding in the mind of the reader.
To summarize, this book is more like a textbook in support of classroom lectures, NOT for self-study seeking UNDERSTANDING of the subject matter.
General Book Review (2007-03-10)
I am using this book in a senior eletrical engineering course. This is an excellentally written text, though very mathematically. Even though it recommmends a calculus based course in Probability I would recommend a you also have a good grasp on working with modulus or mod (n). A course in number theory would help too. If you don't have hat then extra time should be dedicated to a course using this text.
Pages: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207