Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "Ending Spam", Jonathan A. Zdziarski

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "Ending Spam", Jonathan A. Zdziarski
Date: Thu, 19 Jan 2006 08:16:23 -0800 
BKENDSPM.RVW   20051029

"Ending Spam", Jonathan A. Zdziarski, 2005, 1-59327-052-6,
U$39.95/C$53.95
%A   Jonathan A. Zdziarski
%C   555 De Haro Street, Suite 250, San Francisco, CA   94107
%D   2005
%G   1-59327-052-6
%I   No Starch Press
%O   U$39.95/C$53.95 415-863-9900 fax 415-863-9950 info@nostarch.com
%O  http://www.amazon.com/exec/obidos/ASIN/1593270526/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/1593270526/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/1593270526/robsladesin03-20
%O   Audience s+ Tech 3 Writing 2 (see revfaq.htm for explanation)
%P   287 p.
%T   "Ending Spam"

The preface states that the book is for those seriously interested in
spam identification technologies, and concentrates on Bayesian and
related statistical filtering.

Part one is an introduction to spam filtering.  Chapter one reviews
the history of spam, although many of the early entries are simply
annoyances or chain letters rather than the commercial or fraudulent
items considered under the banner today, and the author does not seem
to realize that 419 scams predated email by a considerable margin.  A
look at the development of spam filtering (excluding Bayesian) is
presented in chapter two, along with some non-filtering.   Bayesian
analysis is explained in chapter three, and the statistical filtering
basis is outlined in chapter four.

The fundamental actuarial core is expanded in part two.  Chapter five
covers message coding.  Tokenization, chunking characters into
identifiable items, is examined in chapter six.  Tricks spammers use
to evade filters, and the solutions finding spam despite the
deceptions, are outlined in chapter seven.  Storage and performance
issues raised by the data rules required by statistical filters are
addressed in chapter eight.  Chapter nine looks at aspects of scaling
to systems supporting large numbers of users.

Part three deals with advanced concepts in statistical filtering. 
Chapter ten delves into testing which, because of the individual and
adaptive nature of Bayesian filtering, presents unique challenges. 
Tokenization is revisited in chapter eleven, in more advanced forms. 
Markovian discrimination, with its examination of stateful entities,
is explained in chapter twelve.  Having noted many kinds of features
in the book, chapter thirteen explores ways to reduce the items used
(and data required) while maintaining accuracy.  Collaborative rule-
building with other users, groups, or systems is reviewed in chapter
fourteen.

As the preface implies, this is *not* a book for users who just want
to install POPFile (although that and other programs are explored in
an appendix).  For those who are seriously involved in managing and
developing spam filtering, however, the book does provide very useful
advice, pointers, and research.

copyright Robert M. Slade, 2005   BKENDSPM.RVW   20051029


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca      slade@victoria.tc.ca      rslade@sun.soci.niu.edu
                  Eat well, stay fit, die anyway
http://victoria.tc.ca/techrev    or    http://sun.soci.niu.edu/~rslade


 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [CISSP-D] REVIEW: "Ending Spam", Jonathan A. Zdziarski, Rob, grandpa of Ryan, Trevor, Devon & Hannah <=
Previous by Date:  Re: [CISSP-D] risk assessment vs disaster recovery, Richard Thomas
Next by Date:  [CISSP-D] REVIEW: "Incident Response", Douglas Schweitzer, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Previous by Thread:  [CISSP-D] Official CAP certification study book released by Auerbach/ISC2, Clement Dupuis
Next by Thread:  [CISSP-D] REVIEW: "Incident Response", Douglas Schweitzer, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Indexes:  [Date] [Thread] [Top] [All Lists]