Endpoint Security

Front Cover
Addison-Wesley Professional, 2007 - Computers - 348 pages
0 Reviews

A Comprehensive, Proven Approach to Securing All Your Network Endpoints!

 

Despite massive investments in security technology and training, hackers are increasingly succeeding in attacking networks at their weakest links: their endpoints. Now, leading security expert Mark Kadrich introduces a breakthrough strategy to protecting all your endpoint devices, from desktops and notebooks to PDAs and cellphones.

 

Drawing on powerful process control techniques, Kadrich shows how to systematically prevent and eliminate network contamination and infestation, safeguard endpoints against today's newest threats, and prepare yourself for tomorrow's attacks. As part of his end-to-end strategy, he shows how to utilize technical innovations ranging from network admission control to "trusted computing."

 

Unlike traditional "one-size-fits-all" solutions, Kadrich's approach reflects the unique features of every endpoint, from its applications to its environment. Kadrich presents specific, customized strategies for Windows PCs, notebooks, Unix/Linux workstations, Macs, PDAs, smartphones, cellphones, embedded devices, and more.

 

You'll learn how to:

 *  Recognize dangerous limitations in conventional

endpoint security strategies

 *  Identify the best products, tools, and processes to secure your specific devices and infrastructure

 *  Configure new endpoints securely and reconfigure existing endpoints to optimize security

 *  Rapidly identify and remediate compromised

endpoint devices

 *  Systematically defend against new endpoint-focused malware and viruses

 *  Improve security at the point of integration between endpoints and your network

 

 

Whether you're a security engineer, consultant, administrator, architect, manager, or CSO, this book delivers what you've been searching for:

a comprehensive endpoint security strategy that works.

Mark Kadrich is President and CEO of The Security Consortium, which performs in-depth testing and evaluation of security products and vendors. As Senior Scientist for Sygate Technologies, he was responsible for developing corporate policies, understanding security trends, managing government certification programs, and evangelization. After Symantec acquired Sygate, Kadrich became Symantec's Senior Manager of Network and Endpoint Security.

 

His 20 years' IT security experience encompasses systems level design, policy generation, endpoint security, risk management, and other key issues.

 

 
 Foreword         

 Preface

 About the Author          

Chapter 1          Defining Endpoints        

Chapter 2          Why Security Fails       

Chapter 3          Something Is Missing   

Chapter 4          Missing Link Discovered

Chapter 5          Endpoints and Network Integration          

Chapter 6          Trustworthy Beginnings 

Chapter 7          Threat Vectors  

Chapter 8          Microsoft Windows        

Chapter 9          Apple OS X      

Chapter 10        Linux   

Chapter 11        PDAs and Smartphones

Chapter 12        Embedded Devices     

Chapter 13        Case Studies of Endpoint Security Failures        

Glossary          

Index   

 

 

  

What people are saying - Write a review

We haven't found any reviews in the usual places.

Contents

Chapter 1 Defining Endpoints
1
Chapter 2 Why Security Fails
19
Chapter 3 Something Is Missing
39
Chapter 4 Missing Link Discovered
67
Chapter 5 Endpoints and Network Integration
81
Chapter 6 Trustworthy Beginnings
105
Chapter 7 Threat Vectors
125
Chapter 8 Microsoft Windows
137
Chapter 9 Apple OS X
177
Chapter 10 Linux
211
Chapter 11 PDAs and Smartphones
253
Chapter 12 Embedded Devices
285
Chapter 13 Case Studies of Endpoint Security Failures
305
Glossary
317
Index
325
Copyright

Common terms and phrases

About the author (2007)

For the past 20 years, Mark Kadrich has been a contributing member of the security community. His strengths are in systems-level design, policy generation, endpoint security, and risk management. Mr. Kadrich has been published numerous times and is an avid presenter.

Mr. Kadrich is presently president and CEO of The Security Consortium (TSC), a privately held company whose mission is to provide better security product knowledge to their customers. TSC performs in-depth testing and evaluation of security products and the vendors that provide them. As CEO and chief evangelist, Mr. Kadrich is responsible for ensuring that the company continues to grow successfully. After the Symantec acquisition of Sygate Technologies, Mr. Kadrich took a position as senior manager of network and endpoint security with Symantec. His role was to ensure that the Symantec business units correctly interpreted security policy during their pursuit of innovative technology solutions.

Mr. Kadrich was senior scientist with Sygate Technologies prior to the Symantec acquisition. In his role as senior scientist, Mr. Kadrich was responsible for developing corporate policies, understanding future security trends, managing government certification programs, and evangelizing on demand. Mr. Kadrich joined Sygate through the acquisition of a start-up company (AltView) of which he was a founding member. As a founding member of AltView, Mr. Kadrich was the principal architect of a system that scanned and contextualized the network, the endpoints on it, and built a detailed knowledge base. Eventually known as Magellan, the system could determine what endpoints were on a network, how the network was changing, what endpoints were manageable, and if they were being managed.

As CTO/CSO for LDT Systems, Mr. Kadrich assisted with the development and support of a Web-based system used to securely capture and track organ-donor information. Mr. Kadrich was director of technical services for Counterpane Internet Security. He was responsible for the generation of processes that supported and improved Counterpane's ability to deploy and support customer-related security activities Mr. Kadrich was director of security for Conxion Corporation. As the director of security, his role was to plot the strategic course of Conxion's information security solutions.

Prior to Conxion, he was a principal consultant for International Network Services (INS), for which he created a methodology for performing security assessments and interfaced with industry executives to explain the benefits of a well-implemented security program.

Mr. Kadrich is a CISSP, holds a Bachelor of Science degree in Management Information Systems from the University of Phoenix, and has degrees in Computer Engineering and Electrical Engineering (Memphis, 1979). Publications contributed to include TCP Unleashed, Publish Magazine, Planet IT, RSA, CSI, and The Black Hat Briefings.

Bibliographic information