资源描述:
《security engineering a guide to building dependable distributed systems外语英文电子书》由会员上传分享,免费在线阅读,更多相关内容在教育资源-天天文库。
1、PrefaceForgenerations,peoplehavedefinedandprotectedtheirpropertyandtheirprivacyusinglocks,fences,signatures,seals,accountbooks,andmeters.Thesehavebeensup-portedbyahostofsocialconstructsrangingfrominternationaltreatiesthroughna-tionallawstomannersandcustoms.Thisischa
2、nging,andquickly.Mostrecordsarenowelectronic,frombankaccountstoregistersofrealproperty;andtransactionsareincreasinglyelectronic,asshoppingmovestotheInternet.Justasimportant,butlessobvious,arethemanyeverydaysys-temsthathavebeenquietlyautomated.Burglaralarmsnolongerwa
3、keuptheneigh-borhood,butsendsilentmessagestothepolice;studentsnolongerfilltheirdormitorywashersanddryerswithcoins,butcreditthemusingasmartcardtheyrechargeatthecollegebookstore;locksarenolongersimplemechanicalaffairs,butareoperatedbyelectronicremotecontrolsorswipecar
4、ds;andinsteadofrentingvideocassettes,mil-lionsofpeoplegettheirmoviesfromsatelliteorcablechannels.Eventhehumblebanknoteisnolongerjustinkonpaper,butmaycontaindigitalwatermarksthatenablemanyforgeriestobedetectedbymachine.Howgoodisallthisnewsecuritytechnology?Unfortunat
5、ely,thehonestansweris“nowherenearasgoodasitshouldbe.”Newsystemsareoftenrapidlybroken,andthesameelementarymistakesarerepeatedinoneapplicationafteranother.Itoftentakesfourorfiveattemptstogetasecuritydesignright,andthatisfartoomany.Themediaregularlyreportsecuritybreach
6、esontheInternet;banksfighttheircus-tomersover“phantomwithdrawals”fromcashmachines;VISAreportshugeincreasesinthenumberofdisputedInternetcreditcardtransactions;satelliteTVcompanieshoundpirateswhocopytheirsmartcards;andlawenforcementagenciestrytostakeoutterritoryincybe
7、rspacewithlawscontrollingtheuseofencryption.Worsestill,featuresinteract.Amobilephonethatcallsthelastnumberagainifoneofthekeysispressedbyaccidentmaybejustaminornuisance—untilsomeoneinventsamachinethatdispensesacanofsoftdrinkeverytimeitsphonenumberiscalled.Whenallofas
8、uddenyoufind50cansofCokeonyourphonebill,whoisresponsible,thephonecompany,thehandsetmanufacturer,orthevendingmachineoperator?Oncealmostever
