ACCU Home page ACCU Conference Page
Search Contact us ACCU at Flickr ACCU at GitHib ACCU at Facebook ACCU at Linked-in ACCU at Twitter Skip Navigation

ACCU Menu

Advertisement

Advertisement

Membership

Join ACCU

Login

» Create an account

» Password Reminder

ACCU Buttons

Add them to your site:

ACCU: professionalism in programming (116x31 px)
ACCU: professionalism in programming (225x60 px)

Search in Book Reviews

The ACCU passes on review copies of computer books to its members for them to review. The result is a large, high quality collection of book reviews by programmers, for programmers. Currently there are 1949 reviews in the database and more every month.
Search is a simple string search in either book title or book author. The full text search is a search of the text of the review.
    View all alphabetically
Title:
Computer Security
Author:
Dieter Gollmann
ISBN:
0 471 97844 2
Publisher:
Wiley
Pages:
320pp
Price:
£22-50
Reviewer:
Mike Ellis
Subject:
security
Appeared in:
13-1
Dieter Gollman has picked a large and complex area of modern computer technology as the subject area for this book and he is obviously well qualified to write it. Intended as a book to accompany a university CS course, or for self-study, it includes comprehensive exercises at the end of each chapter (answers not included).

Four sections, each of four chapters, cover the whole topic of system security from fundamentals, through current practice on individual systems and on distributed systems rounding off with a section on the theory of security. Along the way we are taught that security is not an absolute but depends on the application(s) the system supports.

Right from the start the importance of security at all levels in the system is stressed; there is little benefit in using passwords if the password file is clear-text, nor if the application passes clear-text across the network, nor if several users use one password. Security is therefore addressed at the network level, the operating system level, within databases and within applications. Techniques discussed range from simple access control, through authentication to cryptography.

Of course, no security is perfect and sections are included which deal with detecting intrusions as well as looking at the sociological problem of users finding convenient (but insecure) ways around awkward (but secure) systems.

Computer Security is a book that will teach you what you don't know, but will only go part way to fill in the blanks. The conscientious reader will need to complete the exercises and follow up the further reading sections in order to gain fully from this book.