Cybersecurity myths and misconceptions : avoiding the hazards and pitfalls that derail us / Eugene H. Spafford, Leigh Metcalf, and Josiah Dykstra ; illustrations by Pattie Spafford.
Author/creator |
Spafford, Eugene H. author. |
Format | Book and Print |
Publication Info | Boston : Addison-Wesley, [2023] |
Copyright Notice | ©2023 |
Description | xxxv, 380 pages : illustrations ; 24 cm |
Subject(s) |
Click here for more information about this title
Other author/creator | Metcalf, Leigh (Computer security researcher), author. |
Other author/creator | Dykstra, Josiah, author. |
Other author/creator | Spafford, Pattie, illustrator. |
Other author/creator | Cerf, Vinton G., 1943- writer of foreword. |
Contents | Foreword / by Vint Cerf -- Introduction -- Part I. General issues. What is cybersecurity? -- What is the internet? -- Part II. Human issues. Faulty assumptions and magical thinking -- Fallacies and misunderstandings -- Cognitive biases -- Perverse incentives and the cobra effect -- Problems and solutions -- Part III. Contextual issues. Pitfalls of analogies and abstractions -- Legal issues -- Tool myths and misconceptions -- Vulnerabilities -- Malware -- Digital forensics and incident response -- Part IV. Data issues. Lies, damn lies, and statistics -- Illustrations, visualizations and delusions -- Finding hope -- Appendix: Short background explanations -- Acronyms -- Index |
Abstract | "Cybersecurity is fraught with hidden and unsuspected dangers and difficulties. Despite our best intentions, there are common and avoidable mistakes that arise from folk wisdom, faulty assumptions about the world, and our own human biases. Cybersecurity implementations, investigations, and research all suffer as a result. Many of the bad practices sound logical, especially to people new to the field of cybersecurity, and that means they get adopted and repeated despite not being correct. For instance, why isn't the user the weakest link? In Cybersecurity Myths and Misconceptions: Avoiding the Hazards and Pitfalls that Derail Us, three cybersecurity pioneers don't just deliver the first comprehensive collection of falsehoods that derail security from the frontlines to the boardroom; they offer expert practical advice for avoiding or overcoming each myth. Whatever your cybersecurity role or experience, Eugene H. Spafford, Leigh Metcalf, and Josiah Dykstra will help you surface hidden dangers, prevent avoidable errors, eliminate faulty assumptions, and resist deeply human cognitive biases that compromise prevention, investigation, and research. Throughout the book, you'll find examples drawn from actual cybersecurity events, detailed techniques for recognizing and overcoming security fallacies, and recommended mitigations for building more secure products and businesses."-- Provided by publisher |
Bibliography note | Includes bibliographical references and index. |
ISBN | 9780137929238 paperback |
ISBN | 0137929234 paperback |
Available Items
Library | Location | Call Number | Status | Item Actions | |
Joyner | General Stacks | QA76.9.A25 S73 2023 | ✔ Available | Place Hold |