Access Control, Authentication, and Public Key Infrastructure

Description

Access control protects resources against unauthorized viewing, tampering, or destruction. They serve as a primary means of ensuring privacy, confidentiality, and prevention of unauthorized disclosure. The first part of Access Control, Authentication, and Public Key Infrastructure defines the components of access control, provides a business framework for implementation, and discusses legal requirements that impact access control programs. It then looks at the risks, threats, and vulnerabilities prevalent in information systems and IT infrastructures and how to handle them. The final part is a resource for students and professionals which discusses putting access control systems to work as well as testing and managing them.

This textbook is accompanied by a comprehensive supplements package, including all of the following: Instructor Resource Guide organized by learning objectives, with lesson plans, test questions, and Powerpoint presentation slides; lab simulations and lab manuals (labs available at additional cost), and online courseware compatible with your LMS.

 

About the Series

This book is part of the Information Systems Security and Assurance Series from Jones and Bartlett Learning. Designed for courses and curriculums in IT Security, Cybersecurity, Information Assurance, and Information Systems Security, this series features a comprehensive, consistent treatment of the most current thinking and trends in this critical subject area. These titles deliver fundamental information-security principles packed with real-world applications and examples. Authored by Certified Information Systems Security Professionals (CISSPs), they deliver comprehensive information on all aspects of information security. Reviewed word for word by leading technical experts in the field, these books are not just current, but forward-thinking - putting you in the position to solve the cybersecurity challenges not just of today, but of tomorrow, as well.

CONTENTS:

Part 1 The Need for Access Control Systems

  Chapter 1 Access Control Framework

  Chapter 2 Assessing Risk and Its Impact on Access Control

  Chapter 3 Business Drivers for Access Controls

  Chapter 4 Access Control Policies, Standards, Procedures, and Guidelines

  Chapter 5 Unauthorized Access and Security Breaches

Part 2 Mitigating Risk with Access Control Systems, Authentication, and PKI

  Chapter 6 Mapping Business Challenges to Access Control Types

  Chapter 7 Human Nature, Organizational Behavior, and Considerations

  Chapter 8 Access Control for Information Systems

  Chapter 9 Physical Security and Access Control

  Chapter 10 Access Control in the Enterprise

Part 3 Implementing, Testing, and Managing Access Control Systems

  Chapter 11 Access Control System Implementations

  Chapter 12 Access Control Solutions for Remote Workers

  Chapter 13 Public Key Infrastructure and Encryption

  Chapter 14 Testing Access Control Systems

  Chapter 15 Access Control Assurance