Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "Understanding and Managing Cybercrime", Samuel C. McQ

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "Understanding and Managing Cybercrime", Samuel C. McQuade
Date: Mon, 11 Dec 2006 12:08:15 -0800 
BKUMCBCR.RVW   20061105

"Understanding and Managing Cybercrime", Samuel C. McQuade, 2006,
0-205-43973-X
%A   Samuel C. McQuade scmcms@rit.edu
%C   75 Arlington Street, Boston, MA   02116
%D   2006
%G   0-205-43973-X
%I   Allyn and Bacon (Pearson)
%O   U$60.80/C$77.200 www.ablongman.com
%O  http://www.amazon.com/exec/obidos/ASIN/020543973X/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/020543973X/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/020543973X/robsladesin03-20
%O   Audience i+ Tech 1 Writing 2 (see revfaq.htm for explanation)
%P   500 p.
%T   "Understanding and Managing Cybercrime"

The preface states that this book should be considered an introductory
text to the field of cybercrime (although it does not define what that
topic is until chapter one of the book).  The guide is addressed to
two audiences of students, those in the field of information
technology administration and management, and those in the field of
criminology.  McQuade suggests that the work can be used as a primer
in basic courses expounding on information systems security, and may
also be used as a supporting volume for curricula in sociology, law,
public administration, public policy, or ethics courses that deal with
information system crime and abuse.  In the Foreword, Charles Wellford
notes the increase in significance of crimes related to, or
perpetrated via the use of, computers.  Whereas crime statistics of
traditional types have been falling in recent years, cybercrime has
exploded in an environment where traditional law enforcement has been
largely unprepared.

Part one introduces the field, and outlines the growth, of cybercrime. 
Chapter one starts out with a valuable addition to the discussion of
the sociology of cybercrime: the concept of "relative" normality and
deviance of behaviour in a new and rapidly changing field.  The author
then moves on to note the range of terms and activities covered under
the cybercrime reference, and to note the importance of defining those
terms not only in regard to research, but particularly in relation to
law and prosecution.  (Sam, since I have attacked the whole *concept*
of salami scams for years, and have received only a single [and
minimal: the "drive-through" incident noted in the RISKS-FORUM Digest]
instance of one occurring, you can*not* expect me to let footnote 11
pass unchallenged: it should be a documented citation, not a mere
explanation.)  The questions provided at the end of the chapter are
not simply reading checks, but thoughtful items to prompt discussion
of critical concepts.  The protection of information and other assets
is covered in chapter two, starting with the nature of information
itself, moving through the standard concepts of information security,
and ending up with critical infrastructure protection (which may be a
bit of overkill).  Chapter three reviews the various types of cyber
attacks and crimes.  I was intrigued to note the inclusion of a
section on academic computer abuses (generally a neglected topic), and
pleased with the realistic assessment of cyberterrorism, but the
structure and taxonomy of attacks could use some work.  In addition,
the material on malware is quite weak: the definitions for differing
types are better than many in general security works, but many of the
surrounding explanations are false or misleading.  For example,
McQuade partially uses the Cohenesque definition that viruses must
infect existing programs (which is no longer true of recent versions),
and implies that a user is required for viral reproduction and spread
(viruses generally require some user action for invocation, but spread
is usually automated).  Additionally, he makes the rather questionable
assertion that the skills necessary for creating malware are the same
as those required to defend national security.  The psychology of
cybercriminals and abusers is reviewed in chapter four, which also
provides a very detailed classification for social engineering, and
Donn Parker's SKRAM (skill, knowledge, resources, access, motivation)
model for assessing attackers.  McQuade notes the difficulty in
getting agreement on a profile for computer abusers, but does not
address the changing style of attacks and attackers over time.

It is interesting that chapter four is not contained within part two,
which addresses social thought on cybercrime.  Chapter five, in a
sense, extends chapter four's discussion of categories of criminals by
providing an overview of major criminologic theories: it would have
been interesting to see the classification schema analyzed in light of
the hypotheses, but simply having the philosophies outlined here is a
major contribution to the information security literature.  In
assessing the impact of cybercrime, in chapter six, McQuade notes that
there is both economic and social damage to be determined.  However,
this merely exacerbates an existing problem: the author also points
out the lack of reliable information, even in regard to economic
losses alone.  It is difficult to know what to make of chapter seven. 
Titularly it promises emerging and controversial topics in cybercrime. 
However, the discussion of the necessity for attack skills in regard
to defence (promised in chapter three) never appears.  The topics that
are presented would seem to extend either the first section of chapter
one (noting that computers are changing various activities in
society), or chapter three (listing different types of attacks).

Part three moves to the management of cybercrime: prevention and
protection.  Although chapter eight deals with legal philosophies and
types of laws, most of the material is only relevant to the United
States.  The limitations on investigators, which is the primary
content of chapter nine, is again mostly restricted to the United
States.  There is material on investigation and computer forensics
(although network and software forensics do not appear to be covered),
but it is fairly brief.  Chapter ten's review of information security
is oddly disjointed: parts are academic in tone, parts read like a
"secure your home computer" pamphlet, and parts promote risk
assessment models best suited to major corporations.  Future
activities (mostly at the federal government level) that might help
reduce cybercrime is one part of chapter eleven, the other is a
discussion of computer ethics.

The book is readable, and entertaining in sections.  Most of the
information is reasonable.  However, suggesting this as a sole text
for an information security course would be unwise: it is weak in a
number of technical areas.  As an adjunct text it would be excellent:
the law enforcement perspective is all too often neglected in security
literature.

copyright Robert M. Slade, 2006   BKUMCBCR.RVW   20061105


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca     slade@victoria.tc.ca     rslade@computercrime.org
           GOVERNMENT.SYS corrupted, reboot Ottawa? (Y/N)
Dictionary of Information Security  www.syngress.com/catalog/?pid=4150
http://victoria.tc.ca/techrev/rms.htm


 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> Your email settings:
    Individual Email | Traditional

<*> To change settings online go to:
    http://groups.yahoo.com/group/CISSP-Discuss/join
    (Yahoo! ID required)

<*> To change settings via email:
    mailto:CISSP-Discuss-digest@yahoogroups.com 
    mailto:CISSP-Discuss-fullfeatured@yahoogroups.com

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [CISSP-D] REVIEW: "Understanding and Managing Cybercrime", Samuel C. McQuade, Rob, grandpa of Ryan, Trevor, Devon & Hannah <=
Previous by Date:  [CISSP-D] How much should I score in practice quizzes to take the exam?, gnognios
Next by Date:  [CISSP-D] REVIEW: "International IT Governance", Alan Calder/Steve Watkins, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Previous by Thread:  [CISSP-D] How much should I score in practice quizzes to take the exam?, gnognios
Next by Thread:  [CISSP-D] REVIEW: "International IT Governance", Alan Calder/Steve Watkins, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Indexes:  [Date] [Thread] [Top] [All Lists]