| 1. Incident Response: A Strategic Guide to Handling System and Network Security Breaches |
| 2. Table of Contents |
| 3. Copyright | Copyright Copyright 2002 by New Riders Publishing Trademarks Warning and Disclaimer Credits Dedication |
| 4. About the Authors | About the Authors |
| 5. About the Technical Reviewers | About the Technical Reviewers |
| 6. Acknowledgments | Acknowledgments |
| 7. Tell Us What You Think | Tell Us What You Think |
| 8. Introduction | Introduction |
| 9. Organization of this Book | Organization of this Book |
| 10. Conventions Used in This Book | Conventions Used in This Book |
| 11. Chapter 1. An Introduction to Incident Response | Chapter 1. An Introduction to Incident Response |
| 12. What Is Incident Response? | Outages Hoax Lists: Good or Bad? The Relationship between Incident Response and Incident Response Teams What Is Incident Response? |
| 13. The Rationale for Incident Response | Dealing with Security-Related Vulnerabilities The Fortress Mentality The Rationale for Incident Response |
| 14. Overview of Incident Response | Performance Appraisal Overview of Incident Response |
| 15. Summary | Summary |
| 16. Chapter 2. Risk Analysis | Chapter 2. Risk Analysis |
| 17. About Risk Analysis | Assessing Risk About Risk Analysis |
| 18. Types of Security-Related Risks | The SANS Top 10 Vulnerabilities Ping Viruses and Worms Malicious Active Content Executables The Ever-Broadening Nature of Security-Related Incidents Types of Security-Related Risks |
| 19. Obtaining Data About Security-Related Incidents | Vulnerability Detection Obtaining Data About Security-Related Incidents |
| 20. The Importance of Risk Analysis in Incident Response | A Few Caveats About Risk Analysis The Importance of Risk Analysis in Incident Response |
| 21. Summary | Summary |
| 22. Chapter 3. A Methodology for Incident Response | Chapter 3. A Methodology for Incident Response |
| 23. Rationale for Using an Incident Response Methodology | RFC 2196: Incident Management Rationale for Using an Incident Response Methodology |
| 24. A Six-Stage Methodology for Incident Response | The Importance of Contact Lists Intrusion-Detection Systems (IDSs) Case Study: Making A UNIX Backup for Incident Response Purposes What Type of Information about Incidents Needs to Be Reported? The Role of Users When Incidents Occur Dealing with the Press A Six-Stage Methodology for Incident Response |
| 25. Caveats | Caveats |
| 26. Summary | Summary |
| 27. Chapter 4. Forming and Managing an Incident Response Team | Chapter 4. Forming and Managing an Incident Response Team |
| 28. What Is an Incident Response Team? | Outsourcing Incident Response Efforts What Is an Incident Response Team? |
| 29. Why Form an Incident Response Team? | Why Form an Incident Response Team? |
| 30. Issues in Forming a Response Team | What if You Don t Have a Response Team Per Se? Case Studies: Failing to Adequately Serve a Constituency To Pay or Not to Pay That Is the Question Dealing with the Media Requirements for Communicating with a Constituency Case Study: A Lesson Learned in Establishing Communication Channels Issues in Forming a Response Team |
| 31. About Managing an Incident Response Effort | Suggested Action Items for Incident Response Team Managers About Managing an Incident Response Effort |
| 32. Summary | Summary |
| 33. Chapter 5. Organizing for Incident Response | Chapter 5. Organizing for Incident Response |
| 34. Virtual Teams-Ensuring Availability | Virtual TeamsEnsuring Availability |
| 35. Training the Team | Training the Team |
| 36. Testing the Team | Demonstrating Interteam Communications Testing the Team |
| 37. Barriers to Success | Barriers to Success |
| 38. External Coordination | Infragard External Coordination |
| 39. Managing Incidents | Strategies for Sustained Operations Managing Incidents |
| 40. Summary | Summary |
| 41. Chapter 6. Tracing Network Attacks | Chapter 6. Tracing Network Attacks |
| 42. What Does Tracing Network Attacks Mean? | What Does Tracing Network Attacks Mean? |
| 43. Putting Attack Tracing in Context | Vulnerability Scans: Intrusions Attacks or ??? Do No Evil See No Evil? Putting Attack Tracing in Context |
| 44. Tracing Methods | Tracing Methods |
| 45. Next Steps | Should You Scan a Host that May Have Attacked You? Next Steps |
| 46. Constructing an | Constructing an Attack Path |
| 47. Final Caveats | Final Caveats |
| 48. Summary | Summary |
| 49. Chapter 7. Legal Issues | Chapter 7. Legal Issues |
| 50. U.S. Computer Crime Statutes | Incident Response under HIPAA and G-L-B U.S. Computer Crime Statutes |
|
|
Authors: Schultz E. Shumway R. ISBN: 1578702569 Current page: 1 from 103 This Book reviews are presented on flylib.comOur library present to you materials from book Incident Response. A Strategic Guide to Handling System and Network Security Breaches. Warning! The page Table of content from this book is informational only! Do not print out this page! Do NOT SUBMIT this page as part of your website or work without confirmation from the authors. You can read the contents of the book, but we strongly recommend that you purchase. or example, you can Buy this book on Amazon.com |