Dorothy Denning is one of the world's most respected computer-security experts. She's also the author of the now-classic
Cryptography and Data Security (Addison-Wesley, 1982) and a professor of computer science at Georgetown University. But if Denning ever wants to chuck it all and opt for an honest living of, say, writing horror stories, her most recent book,
Information Warfare and Security, has all the source material she will ever need. Before reading half the book, I was ready to cancel my e-mail accounts, jettison my modems, cancel my credit cards, move what little money I have from the bank to my mattress, and head out for the Flint Hills.
You see, part of what Denning has done in
Information Warfare and Security is chronicle what seems to be just about every breach in computer security over the past few years. Page after page of hacks, cracks, phreaks, and psyopts by everyone from teenagers and thrill seekers to spies and nuts. Credit card numbers, passwords, bank accounts -- they're all fair game for anyone who is bright, persistent, online, and so inclined.
Not that it was Denning's intent simply to titillate us with one interesting or exciting story after another. Instead, her goal is to provide us with a comprehensive overview of what's become known as "information warfare" Read more from this review. --
Jonathan Erickson, Dr. Dobb's Journal --
Dr. Dobb's Journal
Customer Reviews & Comments
Gulf war, fraud, national security, Spam, traitors, and computer viruses. These are just a few of the topics covered by Dorothy Denning's book Information_Warfare_and_Security. This book gives a broad and informative view of information security, however it lacks specifics to make it more than an introductory work to this field. The book has a broad overview of subjects. The Introduction section encompasses around 75 pages and gives substantial theory to the how and why of information security. Part II discusses "Offensive Information Warfare" which brings the reader through techniques on obtaining information. "Defensive Information Warfare" in Part III naturally discusses how to repel the offenses discussed in Part II. Information_Warfare_and_Security is very informative on the problem areas which it discusses. Computers and phones are obvious places for intrusion and the book covers the facets of these areas in depth. The less obvious methodologies are also mentioned such as eavesdropping, traffic analysis, and sabotage. Denning does not leave out the human factor in her sections on social engineering, traitors, and even dumpster diving. Denning's book, however, lacks specific in-depth information. Any chapter subject could have a large book written on it. The book does not give the "how-to's" to create or block an attack; rather it merely discusses the possibilities. To Denning's credit, however, she does include a substantial bibliography and endnotes so the reader can find further information in the source material. Information_Warfare_and_Security would serve the purpose of an excellent introductory overview to the information security field. It is broad and informative, but lacks the specific information to execute any of the offenses or defenses. Denning's book is useful to heighten awareness of information security issues, but it is not sufficient to provide an education in this field.
