This book serves as a security practitioner’s guide to today’s most crucial issues in cyber security and IT infrastructure. It offers in-depth coverage of theory, technology, and practice as they relate to established technologies as well as recent advancements. It explores practical solutions to a wide range of cyber-physical and IT infrastructure protection issues.

Composed of 11 chapters contributed by leading experts in their fields, this highly useful book covers disaster recovery, biometrics, homeland security, cyber warfare, cyber security, national infrastructure security, access controls, vulnerability assessments and audits, cryptography, and operational and organizational security, as well as an extensive glossary of security terms and acronyms.

Written with instructors and students in mind, this book includes methods of analysis and problem-solving techniques through hands-on exercises and worked examples as well as questions and answers and the ability to implement practical solutions through real-life case studies. For example, the new format includes the following pedagogical elements:
• Checklists throughout each chapter to gauge understanding
• Chapter Review Questions/Exercises and Case Studies
• Ancillaries: Solutions Manual; slide package; figure files

This format will be attractive to universities and career schools as well as federal and state agencies, corporate security training programs, ASIS certification, etc.

Key Features

  • Chapters by leaders in the field on theory and practice of cyber security and IT infrastructure protection, allowing the reader to develop a new level of technical expertise
  • Comprehensive and up-to-date coverage of cyber security issues allows the reader to remain current and fully informed from multiple viewpoints
  • Presents methods of analysis and problem-solving techniques, enhancing the reader's grasp of the material and ability to implement practical solutions


Information security practitioners at the managerial, operational and technical levels. Job titles include IT Manager, Information Security Officer, IT Security Analyst, Security Auditor, etc. This book will also be of value to students in upper-level courses in information security management.

Table of Contents



About the Editor



Organization of this Book

Chapter 1. Fault Tolerance and Resilience in Cloud Computing Environments

1 Introduction

2 Cloud Computing Fault Model

3 Basic Concepts on Fault Tolerance

4 Different Levels of Fault Tolerance in Cloud Computing

5 Fault Tolerance against Crash Failures in Cloud Computing

6 Fault Tolerance against Byzantine Failures in Cloud Computing

7 Fault Tolerance as a Service in Cloud Computing

8 Summary

Chapter Review Questions/Exercises




Chapter 2. Data Encryption

1 Need for Cryptography

2 Mathematical Prelude to Cryptography

3 Classical Cryptography

4 Modern Symmetric Ciphers

5 Algebraic Structure

6 The Internal Functions of Rijndael in AES Implementation

7 Use of Modern Block Ciphers

8 Public-Key Cryptography

9 Cryptanalysis of RSA

10 Diffie-Hellman Algorithm

11 Elliptic Curve Cryptosystems

12 Message Integrity and Authentication

13 Triple Data Encryption Algorithm (TDEA) Block Cipher

14 Summary

Chapter Review Questions/Exercises



Chapter 3. Public Key Infrastructure

1 Cryptographic Background

2 Overview of PKI

3 The X.509 Model

4 X.509 Implementation Architectures

5 X.509 Certificate Validation

6 X.509 Certificate Revocation

7 Server-Based Certificate Validity Protocol

8 X.509 Bridge Certification Systems

9 X.509 Certificate Format

10 PKI Policy Description

11 PKI Standards Organizations

12 PGP Certificate Formats

13 PGP PKI Implementations

14 W3C

15 Is PKI Secure?

16 Alternative PKI Architectures


No. of pages:
© 2014
Print ISBN:
Electronic ISBN:

About the author

John Vacca

John Vacca is an information technology consultant, professional writer, editor, reviewer and internationally-known, best-selling author based in Pomeroy, Ohio. Since 1982, John has authored 72 books, including: Identity Theft (Cybersafety) (Publisher: Chelsea House Pub (April 1, 2012 ); System Forensics, Investigation, And Response (Publisher: Jones & Bartlett Learning (September 24, 2010); Managing Information Security (Publisher: Syngress (an imprint of Elsevier Inc.) (March 29, 2010)); Network and Systems Security (Publisher: Syngress (an imprint of Elsevier Inc.) (March 29, 2010)); Computer and Information Security Handbook (Publisher: Morgan Kaufmann (an imprint of Elsevier Inc.) (June 2, 2009)); Biometric Technologies and Verification Systems (Publisher: Elsevier Science & Technology Books (March 16, 2007)); Practical Internet Security (Hardcover): (Publisher: Springer (October 18, 2006)); Optical Networking Best Practices Handbook (Hardcover): (Publisher: Wiley-Interscience (November 28, 2006)); Computer Forensics: Computer Crime Scene Investigation (With CD-ROM), 2nd Edition (Publisher: Charles River Media (May 26, 2005) John Vacca has also written more than 600 articles in the areas of advanced storage, computer security and aerospace technology (copies of articles and books are available upon request). John was also a configuration management specialist, computer specialist, and the computer security official (CSO) for NASA's space station program (Freedom) and the International Space Station Program, from 1988 until his retirement from NASA in 1995. In addition, John is also an independent online book reviewer. Finally, John was one of the security consultants for the MGM movie titled: "AntiTrust," which was released on January 12, 2001.


"The book consists of some 15 chapters, each one a contribution by a leading expert in his/her field. The editor is also an expert in his own right, having written some 73 books on IS and related matters over the past 30 years or so.. a well-produced book with some good diagrams and charts."  Score: 7 out of, February 2014