Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "Systems Reliability and Failure Prevention", Herbert

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "Systems Reliability and Failure Prevention", Herbert Hecht
Date: Fri, 17 Sep 2004 12:08:49 -0800 
BKSYRLFP.RVW   20040531

"Systems Reliability and Failure Prevention", Herbert Hecht, 2004,
1-58053-372-8, U$79.00
%A   Herbert Hecht
%C   685 Canton St., Norwood, MA   02062
%D   2004
%G   1-58053-372-8
%I   Artech House/Horizon
%O   U$79.00 800-225-9977 fax: +1-617-769-6334 artech@artech-house.com
%O  http://www.amazon.com/exec/obidos/ASIN/1580533728/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/1580533728/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/1580533728/robsladesin03-20
%P   230 p.
%T   "Systems Reliability and Failure Prevention"

Chapter one is a very brief introduction: almost a preface.  Basic
statistical measures of failure and service are described in chapter
two.  "Organizational Causes of Failures," in chapter three, tells
stories of some major disasters, but provides no structural
recommendations.  Chapter four looks at analytical approaches to
failure prevention, covering the failure modes and effects analysis
(FMEA) and fault tree analysis (FTA) methods that should be more
widely used in general risk assessment.  The discussion of testing
types, purposes, and analysis, in chapter five, raises some very
interesting questions: if a thousand versions of a part are tested for
a thousand hours and only one fails, does this *really* support the
vendor's assertion that the mean time between failures (MTBF) is a
million hours--or is it equally possible that all of them start
failing shortly after a thousand hours, and one failed early?  Factors
such as partitioning, involved in implementing redundancy in a system,
are reviewed in chapter six.  The material on software reliability, in
chapter seven, is rather disappointing: there is still an evident
hardware bias, little deliberation regarding the nature of software,
and the techniques for stability are limited to UML (Universal
Modeling Language) analysis, which is, itself, only suitable to
object-oriented tasks.  Chapter eight looks at the project life cycle,
the preferred development models, reliability activities in various
phases, testing, and reviews.  In chapter nine Hecht addresses
economic considerations in preventing versus accepting failures with a
good deal of math: a more practical illustration is provided in
chapter ten.  Chapter eleven uses the techniques explained in the book
in three example cases.

For those involved in risk analysis and operation continuity work,
this text is a tutorial for a number of engineering principles that
are not widely discussed in the available literature.  However, there
are a multitude of topics that sound interesting and useful, but are
not presented in sufficient detail to be useful to the non-engineering
professional.  For those in the field, the book will definitely be
worth reading, but it probably could have provided much more
assistance to those in the safety and security field.

copyright Robert M. Slade, 2004   BKSYRLFP.RVW   20040531


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca      slade@victoria.tc.ca      rslade@sun.soci.niu.edu
I do not know what I may appear to the world; but to myself I
seem to have been only like a boy playing on the seashore, and
diverting myself now and then finding a smoother pebble or a
prettier shell than ordinary, whilst the great ocean of truth lay
all undiscovered before me.                           - Isaac Newton
http://victoria.tc.ca/techrev    or    http://sun.soci.niu.edu/~rslade




------------------------ Yahoo! Groups Sponsor --------------------~--> 
$9.95 domain names from Yahoo!. Register anything.
http://us.click.yahoo.com/J8kdrA/y20IAA/yQLSAA/kgFolB/TM
--------------------------------------------------------------------~-> 

 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [CISSP-D] REVIEW: "Systems Reliability and Failure Prevention", Herbert Hecht, Rob, grandpa of Ryan, Trevor, Devon & Hannah <=
Previous by Date:  [CISSP-D] (OT) CISSP + resume =, Doc
Next by Date:  [CISSP-D] Information Security Consultants required in Dubai, alnada02
Previous by Thread:  [CISSP-D] (OT) CISSP + resume =, Doc
Next by Thread:  [CISSP-D] Information Security Consultants required in Dubai, alnada02
Indexes:  [Date] [Thread] [Top] [All Lists]