Internet and Intranet Security, Second Edition

E-Mail: rolf.oppliger@esecurity.ch
Phone/Fax: +41 079 654 84 37

Aims and Scope

Internet and Intranet Security (Second Edition) introduces and discusses security technologies that are available today to provide Internet and intranet security in terms of access control and communication security services.

Target Audience

The book has been written to serve the needs of computer and network professionals that have interest in understanding, establishing, and supporting secure TCP/IP-based networks. I also hope that the book provides sufficient background to help security professionals propose approaches to secure commercial applications for the Internet. The book is tutorial in nature but still requires some familiarity with the fundamentals of computer networks and distributed systems, as well as cryptography and the use of cryptographic protocols in networked and distributed environments.

Table of Contents

Part I: FUNDAMENTALS

1. Introduction
2. TCP/IP Networking
3. Attacks
4. OSI Security Architecture
5. Cryptographic Techniques
6. Authentication and Key Distribution

Part II: ACCESS CONTROL

7. Overview
8. Packet Filtering
9. Circuit-Level Gateways
10. Application-Level Gateways
11. Firewall Configurations
12. Conclusions and Outlook

Part III: COMMUNICATION SECURITY

13. Network Access Layer Security Protocols
14. Internet Layer Security Protocols
15. Transport Layer Security Protocols
16. Application Layer Security Protocols
17. Message Security Protocols
18. Conclusions and Outlook

Part IV: DISCUSSION

19. Public Key Infrastructure
20. Electronic Commerce
21. Risk Management

Epilogue

List of Abbreviations and Acronyms
About the Author
Index

Errata List

Reviews

The following people have reviewed the book:

• Michael B. Spring for Telecommunications Electronic Review (TER), Vol. 9, Issue 3, July 2002