BKNTSCUR.RVW   950331
 
"Network Security", Richard Baker, 1995, 0-07-005141-0, U$34.95
%A   Richard Baker
%C   2600 Tenth St., Berkeley, CA   94710
%D   1995
%G   0-07-005141-0
%I   McGraw-Hill, Inc.
%O   U$34.95 510-548-2805 800-227-0900 lkissing@osborne.mhs.compuserve.com
%P   456
%T   "Network Security"
 
Despite the title, this is a general data security guide, with material for the
distributed environment included.  It provides a fairly thorough framework for
policy work, and is particularly strong when discussing the social and
"political" aspects of security.  It is quite practical in the areas of staff
involvement, and the need for education and participation.
 
The lack of any theoretical discussion will be considered a small loss by
managers, but the technical material is quite weak.  The chapter on computer
viral programs shows that the author has no familiarity with that field. 
Possible future developments are presented as established fact, and the "facts"
listed throughout are conjectural.
 
The very extensive bibliography turns out to be a list of clippings from the
trade press.  This might, perhaps, be useful for fleshing out some backgrounds,
but the lack of any substantive works makes the overall information in the book
highly suspect.
 
(Can *anyone* give me a confirmed example of a "salami scam" attack?  Anyone?)
 
For those who have the time and the technical resources to do a thorough
security policy review, this could help to direct the project and keep it on
track.  Others may wish to look at "Information Security Policies Made Easy"
(cf. BKISPME.RVW).
 
copyright Robert M. Slade, 1995   BKNTSCUR.RVW   950331

======================
DECUS Canada Communications, Desktop, Education and Security group newsletters
Editor and/or reviewer ROBERTS@decus.ca, RSlade@sfu.ca, Rob Slade at 1:153/733
Author "Robert Slade's Guide to Computer Viruses" 0-387-94311-0/3-540-94311-0