Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "Between Silk and Cyanide", Leo Marks

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "Between Silk and Cyanide", Leo Marks
Date: Tue, 15 May 2007 09:40:27 -0800 
BKBESICY.RVW   20070322

"Between Silk and Cyanide", Leo Marks, 1998, 0-684-86422-3,
U$27.50/C$41.00
%A   Leo Marks
%C   1230 Avenue of the Americas, New York NY   10020
%D   1998
%G   0-684-86422-3
%I   Simon & Schuster
%O   U$27.50/C$41.00 212-373-8500
%O  http://www.amazon.com/exec/obidos/ASIN/0684864223/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/0684864223/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/0684864223/robsladesin03-20
%O   Audience n+ Tech 1 Writing 3 (see revfaq.htm for explanation)
%P   614 p.
%T   "Between Silk and Cyanide: A Codemaker's War"

In one chapter, Marks recounts a training session, on the encryption
of messages, with an agent who is intelligent and creative, but
somewhat careless.  Knowing that she has been raised to believe that
lying is the worst sin, he points out that her mistakes force the code
to lie to those receiving her messages.  It's an intriguing point of
view.

Those who know about cryptography may find the book rather
frustrating.  There is just enough material to hint at the
cryptological techniques being used, but at the point you think you
are going to get down to details the text takes off on another tack,
or delivers a weak analogy.  Yes, those familiar with the field will
recognize substitution, permutation, one-time pads, traffic padding,
and attempts at misdirection, but you'd think the secrecy requirements
would have been lifted off some of this stuff after all this time.

Marks writes well, though often (ironically, given the ostensible
subject matter) cryptically.  While his stories are fascinating, his
reticence on some issues weakens a number of them.  In the end, this
volume is about people, not cryptography.  Marks writes of bravery,
foolishness, empire-building, jealousy, and a great many human
foibles.  It is understandable that he avoids thinking or writing of
events regarding some of those for whom he had the deepest feelings:
that's a foible, too.  Although all of the personal content is
affecting, Marks, has, perhaps, done a disservice to those closest to
him by either passing over them too quickly, or by foreshadowing
tragedies far too long in advance.

Read as a story about people and their reactions to new situations and
technologies, the book is both entertaining and informing.  And,
ultimately, security is all about people, anyway.

copyright Robert M. Slade, 2007   BKBESICY.RVW   20070322


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca     slade@victoria.tc.ca     rslade@computercrime.org
You realize, of course, that these new facts do not
coincide with my preconceived ideas.
Dictionary of Information Security  www.syngress.com/catalog/?pid=4150
http://victoria.tc.ca/techrev/rms.htm


 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> Your email settings:
    Individual Email | Traditional

<*> To change settings online go to:
    http://groups.yahoo.com/group/CISSP-Discuss/join
    (Yahoo! ID required)

<*> To change settings via email:
    mailto:CISSP-Discuss-digest@yahoogroups.com 
    mailto:CISSP-Discuss-fullfeatured@yahoogroups.com

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [CISSP-D] Application firewall, shafiq_1212
Next by Date:  [CISSP-D] What sort of questions?, Aun Ali Motani
Previous by Thread:  [CISSP-D] Application firewall, shafiq_1212
Next by Thread:  [CISSP-D] What sort of questions?, Aun Ali Motani
Indexes:  [Date] [Thread] [Top] [All Lists]