Partially
Annotated References
GWU Courses
INFOSEC
at its best
Randall K. Nichols, Daniel J. Ryan and Julie
J.C.H. Ryan. Defending Your Digital Assets
Against Hackers, Crackers, Spies, and Thieves,
(DEFEND). New York: McGraw-Hill, 2000. [Required]
Dorothy, Denning, Information Warfare
and Security, Reading, Massachusetts:
Addison-Wesley, 1999. A classic that is valid
far into the future.
Harold F. Tipton and Micki Krause, Information
Security Management Handbook, 4th Ed,
Auerbauch, 1999. Top notch read.
Jan H.P. Eloff and Sebastian H. von Solms, Information Security - The Next Decade,
Chapman & Hall, 2001.
Raymond J. Curtis and Douglas E Campbell, Building a Global Information Assurance
Program, Auerbauch, 2003.
On SECURITY ENGINEERING
Ross Anderson, Security Engineering: A
Guide to Building Dependable Distributed Systems,
Wiley, 2001. Very good discussions and applicable.
Arthur E. Hutt, Seymour Bosworth, and Douglas
B. Hoyt, Computer Security Handbook, 3rd
Ed., Wiley, 1995.
Matthew
Strebe and Charles Perkins, Firewalls,
24 Seven™, Sybex Inc. 2000.
Schneier,
B. (2000). Secrets and Lies: Digital Security
in a Networked World. New York, NY: John
Wiley & Sons, Inc. ISBN: 0-47-125311-1.
Ford,
W. (1994). Computer Communications Security
– Principles, Standard Protocols, and
Techniques. Englewood Cliffs, NJ: Prentice
Hall PTR.
Selections
from the Proceedings of the 22nd National
Information Systems Security Conference (NISSC
99), Crystal City, VA, October 18-21,
1999. *
Selections
from the Proceedings of the 23rd National
Information Systems Security Conference (NISSC
00), Baltimore, MD, October 16-19, 2000.
*
(*
Available on-line at: http://csrc.ncsl.nist.gov/nissc Click on appropriate year, then link to “toc.pdf”.)
On WIRELESS ISSUES:
Randall K Nichols and Panos C Lekkas, Wireless
Security, (WS) McGraw-Hill Professional
Books, January 2002. [ISBN: 0-07-138038-8.] One of the most comprehensive references
on the subject, by far.
Phillip M. Feldman, Emerging Commercial Mobile
Wireless Technology and Standards, Suitable
for the Army? Report sponsored by the
United States Army under Contract No. DASW01-96-C-004,
copyright 1998, RAND
Sergio Benedetto and Ezio Biglieri, Principles
of Digital Transmission with Wireless Applications,
Kluwar Academic Publishers, Dordrecht, the
Netherlands, 1999.
Richard Dreher, Lawrence Harte, Steven Kellog,
Tom Schaffnit, The Comprehensive Guide
To Wireless Technologies, APDG, 1999.
Easy and interesting read.
William Webb, The Future of Wireless,
Artech House, 2001
ON SIGNAL PROCESSING:
John G. Ackenhusen, Real-Time Signal Processing;
Design and Implementation of Signal Processing
Systems, Prentice-Hall, Upper Saddle
River, New Jersey, 1999.
John A. Chiong, Internetworking ATM for
the Internet and Enterprise Networks,
McGraw-Hill, 1998.
John Doble, Introduction to Radio Propagation
for Fixed and Mobile Communications,
Artech House, 1996.
On INTELLIGENCE GATHERING
Gene
Adcock, Electro-Optical Surveillance,
Vol. Three, CCS Security Source Library, 2000.
Bob Berkel, and Alfred Kornbluth, Electronic
Surveillance and Counter-Measures, Vol.
Two, CCS Security Source Library, 1995.
Bob Berkel, and Lowell Rapaport, Covert
Audio Interception, Volume 1, CCS Security
Source Library, CCS Security Publishing, Ltd.,
New York, New York, 1994.
On SECURE SPEECH SYSTEMS
Henry
J. Beker and Piper, Fred C., Secure Speech
Communications, Academic Press, 1985.
Collin Campbell, Surface Acoustic Wave Devices
for Mobile and Wireless Communications, Academic
Press, New York, NY, 1998.
Randy Goldberg, and Lance Riek, A Practical
Handbook of Speech Coders, CRC, NYC 2000.
Lambros D. Callimahos, Traffic Analysis
and the Zendian Problem, Aegean Park
Press, 1986.
On
WIRELESS NETWORKS
Juha
Korhonen, Introduction to 3G Mobile Communications.
Boston: Artech House, 2001.
Gil Held, Data Over Wireless Networks:
Bluetooth, WAP & Wireless LANs, McGraw-Hill,
Inc., 2001, 212
Annabel Z. Dodd, The Essential Guide to
Telecommunications, Upper Saddle River,
NJ: Prentice Hall, 1999
William Webb, The Future of Wireless,
Artech House, 2001
On SPREAD SPRECTRUM
Fazel,
Khaled, and Gerhard P. Fettweis (editors), Multi-Carrier Spread Spectrum, Kluwar
Academic Press, Dordrecht, the Netherlands,
1997.
Operating Security
Michael E Whitman and Herbert J Mattord, Management of Information Security, Thomson, 2004.
Michael Palmer, Operating Systems Security, Thomson, 2004.
Mark Ciampa, Security Awareness:Applying Practical Security in Your World, Thomson, 2004.
Paul Campbell, Ben Calvert and Steven Boswell, Network Security Fundamentals, Cisco Learning Institute, Thomson, 2004.
Two Important NIST Standards
FIPS 140-1, FIPS 140-2 Security Requirements
for Cryptographic Modules, establishes the
physical and logical security requirements
for the design and manufacture of modules
implementing NIST- approved cryptographic
algorithms.
FIPS 180, Secure Hash Standard SHS, specifies
a Secure Hash Algorithm SHA for use with the
Digital Signature Standard. Additionally,
for applications not requiring a digital signature,
the SHA is to be used whenever a secure hash
algorithm is required for federal applications.
On Military History and Intelligence
John Keegan, A History of Warfare,
Vintage, 1993.
Hansen W. Baldwin, Battles Won and Lost:
Great Campaigns of World War II, Konecky
& Konecky, 1966.
John Keegan, Intelligence in War,
Knopf, 2003.
On ELECTRONIC WARFARE
David Adamy, EW 101: A First Course in
Electronic Warfare, Artech House, 2001.
Very readable text. David Adamy, Introduction
To Electronic Warfare, Artech House, 2002.
David
L. Adamy, Electronic Warfare: Modeling
and Simulation, Artech House, 2002. New
and viable read
Sergei A. Vakin, Lev N. Shustov, Fundamentals
of Electronic Warfare, Artech House,
2001. Comprehensive but a hard read.
On CRYPTOGRAPHY for those who enjoy
readable moderate level mathematics
Randall K. Nichols, The ICSA Guide To
Cryptography, McGraw-Hill Professional
Books, November 1999, 837 pages with CDROM.
[ISBN 0-07-913759- 8]
Richard
A Mollin, An Introduction To Cryptography,
Chapman & Hall/CRC, Jan 2001.
William Stallings, Cryptography and Network
Security, Principles and Practice, 2nd
Ed, 1999.
Steve Burnett and Stephen Paine, RSA Security's
Guide To Cryptography, Osborne, NYC,
2001.
Robert Edward Lewand, Cryptological Mathematics,
The Mathematical Association of America, 2002.
Excellent.
For those who would dive deeper into
the mathematics of CRYPTOGRAPHY
Bruce Schneier, Applied Cryptography,
2nd Ed, 1996.
A.
P. Menezes, Van Oorschot, S Vanstone, Handbook
of Applied Cryptography, CRC Press, 1997.
Michael
Rosing, Elliptic Curve Cryptography,
Manning, 1999. Practical implementation advice
of ECC systems.
David Naccache, Ed, Topics in Cryptology
- CT RSA 2001, LNCS 2020, RSA 2001 Conference,
Springer 2001. Discussions of AES and SHA
as an encryption engine.
Exploring the historical and THE
RECREATIONAL SIDE OF CRYPTOGRAPHY
David
Kahn, The Codebreakers, 2nd Ed, Scribner,
1996.
LANAKI, Classical Cryptography Course
Volume I, Aegean Park Press,
1995, and Classical Cryptography Course Volume
II, Aegean Park Press, 1996. Downloadable
classical cryptography course from www.infosec-technologies.com\resources
F.L. Bauer, Decrypted Secrets: Methods
and Maxims of Cryptology Springer, 1997.
[ISBN 3-540-60418-9] Fascinating read and
historically accurate.
F. L. Bauer, Decrypted Secrets, Springer,
1991.
Kenith
Dam, and Herbert S. Lin, eds, Cryptography's
Role In Securing The Information Society,
National Academy press, 1997.
Fred Wrixom, Codes and Ciphers & Other
Cryptic & Clandestine Communication,
Black Dog and Leventhal, 1992.
EFF, Cracking DES: Secrets of Encryption Research,
Wiretap Politics & Chip Design, and
O "Reilly Press, 1998. The title is overstated
but the DES story is fascinating.
On STEGANOGRAPHY
Stefan Katzenbeisser and Fabien A.P. Petitcolas, Information Hiding -Techniques for Steganography
and Digital Watermarking, Artech House,
NYC, 2000. A solid manual of techniques and
you will learn more about in class.
Peter Wayner, Digital Copyright Protection,
Academic Press, 1997.
On SECURING ELECTRONIC COMMERCE
Warwick Ford, and Michael S Baum, Secure
Electronic Commerce, PTR, 1997.
Jon
C. Graff, Cryptography and E-Commerce,
Wiley, 2001.
For those Interested in SATELLITES
John
Vacca, Satellite Encryption, Academic
Press, 1999. Detailed and effective.
Andrew F. Inglis and Arch C. Luther, Satellite
technology: An Introduction, Focal Press,
1997.
On SPEECH CRYPTANALYSIS
I. J. Kumar, Cryptology, System Identification
and Key Clustering, Aegean park Press,
1997. A hidden asset.
Randy Goldberg and Lance Riek, A Practical
Handbook of Speech Coders, CRC, NYC 2000.
An excellent treatment of the subject.
On INTERNET / NETWORKING SECURITY
AND AUTHENTICATION
Rolf Oppliger, Authentication Systems
for Securing Networks, Artech House,
1996.
Richard E. Smith, Authentication: From
Passwords to Public Keys, Addison Wesley,
2001 Fascinating and easy reading.
Gail L. Grant, Understanding Digital Signatures:
Establishing Trust Over The Internet and Other
Networks, McGraw Hill 1998.
William Stallings, Networking and InterNetwork
Security: Principles and Practice, Prentice
Hall, 1995.
On HIGH-TECH CRIME
Kenneth S. Rosenblatt, High-Technology
Crime: Investigating Cases Involving Computers,
KSK Publications, 1996.
Warren G. Kruse II and Jay G. Heiser, Computer
Forensics, Addison Wesley, 2001.
Donn B. Parker, Fighting Computer Crime:
A New Framework for Protecting Information,
Wiley, 1998.
ON INTRUSION DETECTION
Edward Amoroso, Intrusion Detection: An
Introduction to Internet Surveillance, Correlation,
Trace Back Traps, and Response, Intrusion.net
Books, 1999. Everything by Dr. Amoroso is
A+.
Comprehensive
bibliography on Intrusion Detection from
conferences between 1980 and 2001.
On HACKING
Joel Scambray, Stuart McClure and George Kurtz, Hacking Exposed, 2nd ed, McGraw Hill,
2001.
Aviel D. Rubin, White-Hat Security Arsenal: Tackling Today's Threats, Addison
Wesley, 2002.
Know Your Enemy, HoneyNet Project,
Addison Wesley, 2002.
On BIOMETRICS
Anil Jain, Ruud Bolle and Sharath Pankanti, Biometrics: Personal Identification in
a Networked Society, Kluwar Academic
Publishers, 1999.
On TERRORISM
Dan Verton, Black Ice: The Invisible Threat
of Cyber-Terrorism, (ICE) Osborne, 2004
John Holms Pynchon with Tom Burke, Terrorism:
Today's Biggest Threat to Freedom, Pinnacle,
2001.
Peter L Bergen, Holy War Inc: Inside The
Secret World Of Osama bin Laden, Free
Press, 2001. A knowledgeable account.
Loch K. Johnson, Bombs, Bugs, Drugs and
Thugs, NYU Press, 2000.
Ian O. Lesser, Bruce Hoffman, John Arquilla,
David Ronfeldt and Michael Jenkins, Countering
the New Terrorism, RAND Press, 1999.
Power in a small package.
John
S. Burnett, Dangerous Waters: Modern Piracy
and Terror on the High Seas, Dutton,
2002.
Harry Henderson, Global Terrorism: The
Complete Reference Guide, Checkmark Books,
2003.
Capt. Dick Couch, The U.S. Armed Forces
Nuclear, Biological and Chemical Survival
Manual, Basic, 2003.
James K. Kallstrom, The Survival Guide:
What To Do in a Biological, Chemical, or Nuclear
Emergency, Random House, 2003.
***ALSO SEE www.infosec-technologies.com website
for lots of downloadable materials!
For those interested in (lack of)
PRIVACY
Alderman, Ellen and Kennedy, Caroline, The
Right to Privacy, 1995: Alfred Knopf,
New York.
Joseph Culligan, You Can Find Anybody! Jodere Group 2000. A sourcebook of techniques.
John Vacca, Privacy, McGraw Hill,
2001. Another winner by Vacca.
On PUBLIC KEY INFRASTRUCTURE
Jalal Feghhi, Jalil Feghhi, and Peter Williams, Digital Certificates: Applied Internet
Security, Addison Wesley, 1999.
Steward A Baker, and Paul R Hurst, The
Limits of Trust: Cryptography, Government
and Electronic Commerce, Kluwar Law International,
1998. Written by the ex NSA counsel and fascinating.
Andrew Nash, William Duane, Celia Joseph,
and Derek Brink, PKI: Implementing and
Managing E-Security, Osborne, 2001.
Klaus Schmeh, Cryptography and Public
Key Infrastructure on the Internet, (PKI),
Wiley, 2003. Timely, practical, reliable info
on PKI. [ISBN: 0-470-84745-X]
On 911
Bill Gertz, Breakdown: How America’s
Intelligence Failures Led to September 11,
Regnery, 2003.
C. William Michaels, No Greater threat:
America After September 11 and the Rise of
A National Security State, Algora, 2002.
Michael Cherkasky, Forewarned: Why the
Government is Failing to Protect Us- And What
We Must do to Protect Ourselves, Ballatine
Books, 2003.
Rudolph W. Giuliani, Leadership,
Hyperion, 2002.
Jere Longman, Among the Hero’s,
Harper Collins, 2003.
FOR THOSE WHO WOULD LET THEIR MINDS
WANDER TO REST FROM ALL OF THE ABOVE
Neale, Tom, Chesapeake Bay Cruising Guide
- Volume I Upper Bay: Susquehanna River to
Patuxent River and Little Choptank River,
Wescott Cove Publishing, 1996. A thousand
places to hide to contemplate your navel.
ADDITIONAL IN-CLASS RESOURCES
In class: White Papers on terminology,
Internet Cryptography, Digital Signatures and
CA Trust, VPN technology, INFOSEC, Wireless
Security Lessons Learned, commercial best practices
and handouts on specific encryption systems
for our engineering friends.
Web resources: Discussion and
listing of productive websites, crypto farm
links, books, vendor products, search bots and
other research resources. Start with www.infosec-technologies.com
resources page.
Time permitting: three films
on the historical significance of cryptography,
ENIGMA / NSA and Hacker vs. Government |
