Wolverine Books
Search Advanced SearchView Cart   Checkout   
 Location:  Home » Books » MIS » The Art of Deception: Controlling the Human Element of Security  
Categories
Books
DVDs
Music
Magazines
VHS
Food
Jewelry
Apparel
Sporting Goods
Outdoor

BlogRoll

Travel With Books

Related Categories
• MIS
Industries & Professions
Business & Investing
Subjects
Books
• General
E-commerce
Industries & Professions
Business & Investing
Subjects
• Culture
Business & Culture
Computers & Internet
Subjects
Books
• Hacking
Business & Culture
Computers & Internet
Subjects
Books
• Manager's Guides to Computing
Business & Culture
Computers & Internet
Subjects
Books
• Security
Business & Culture
Computers & Internet
Subjects
Books
• General
Networks, Protocols & APIs
Networking
Computers & Internet
Subjects
• General
Computers & Internet
Subjects
Books
• Security+
Exams
Certification Central
Computers & Internet
Subjects
• Criminology
Crime & Criminals
Nonfiction
Subjects
Books
• Networking
Computer Science
New & Used Textbooks
Custom Stores
Specialty Stores
• Computer Science
Computer Science
New & Used Textbooks
Custom Stores
Specialty Stores
• General AAS
Computer Science
New & Used Textbooks
Custom Stores
Specialty Stores
• General AAS
New & Used Textbooks
Custom Stores
Specialty Stores
Books
• General AAS
Business & Finance
New & Used Textbooks
Custom Stores
Specialty Stores
• All Amazon Upgrade
Amazon Upgrade
Custom Stores
Specialty Stores
Books
• Business & Investing
Amazon Upgrade
Custom Stores
Specialty Stores
Books
• Computers & Internet
Amazon Upgrade
Custom Stores
Specialty Stores
Books
• Nonfiction
Amazon Upgrade
Custom Stores
Specialty Stores
Books
• General AAS
Qualifying Textbooks
Custom Stores
Specialty Stores
Books
• Hardcover
Binding (binding)
Refinements
Books
• Printed Books
Format (feature_browse-bin)
Refinements
Books

The Art of Deception: Controlling the Human Element of Security

The Art of Deception: Controlling the Human Element of Security
Authors: Kevin D. Mitnick, William L. Simon
Creator: Steve Wozniak
Publisher: Wiley
Category: Book

List Price: $40.00
Buy Used: $4.14
You Save: $35.86 (90%)



New (29) Used (35) Collectible (2) from $4.14

Avg. Customer Rating: 4.0 out of 5 stars 122 reviews
Sales Rank: 210398

Media: Hardcover
Edition: 1
Number Of Items: 1
Pages: 304
Shipping Weight (lbs): 1.5
Dimensions (in): 9.1 x 6.1 x 1.1

ISBN: 0471237124
Dewey Decimal Number: 005.8
UPC: 723812237128
EAN: 9780471237129
ASIN: 0471237124

Publication Date: October 4, 2002
Availability: Usually ships in 1-2 business days
Condition: Pages in very good condition with exception of edge wear. Dust jacket shows wear. Great book at a great price!!!
Also Available In:

  • Unbound - The Art of Deception: Controlling the Human Element of Security
  • Paperback - Art of Deception: Controlling the Human Element of Security
  • Paperback - The Art of Deception: Controlling the Human Element of Security
  • Digital - The Art of Deception: Controlling the Human Element of Security
  • Kindle Edition - The Art of Deception: Controlling the Human Element of Security
  • Digital - The Art of Deception: Controlling the Human Element of Security
Similar Items:

  • The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders & Deceivers
  • Secrets and Lies: Digital Security in a Networked World
  • Hacking: The Art of Exploitation, 2nd Edition
  • The Cuckoo's Egg: Tracking a Spy Through the Maze of Computer Espionage
  • Beyond Fear: Thinking Sensibly About Security in an Uncertain World.
Editorial Reviews:

Amazon.com Review
The Art of Deception is about gaining someone's trust by lying to them and then abusing that trust for fun and profit. Hackers use the euphemism "social engineering" and hacker-guru Kevin Mitnick examines many example scenarios.

After Mitnick's first dozen examples anyone responsible for organizational security is going to lose the will to live. It's been said before, but people and security are antithetical. Organizations exist to provide a good or service and want helpful, friendly employees to promote the good or service. People are social animals who want to be liked. Controlling the human aspects of security means denying someone something. This circle can't be squared.

Considering Mitnick's reputation as a hacker guru, it's ironic that the last point of attack for hackers using social engineering are computers. Most of the scenarios in The Art of Deception work just as well against computer-free organizations and were probably known to the Phoenicians; technology simply makes it all easier. Phones are faster than letters, after all, and having large organizations means dealing with lots of strangers.

Much of Mitnick's security advice sounds practical until you think about implementation, when you realize that more effective security means reducing organizational efficiency--an impossible trade in competitive business. And anyway, who wants to work in an organization where the rule is "Trust no one"? Mitnick shows how easily security is breached by trust, but without trust people can't live and work together. In the real world, effective organizations have to acknowledge that total security is a chimera--and carry more insurance. --Steve Patient, amazon.co.uk

Product Description
The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.

Customer Reviews:   Read 117 more reviews...

5 out of 5 stars Frightening   September 12, 2008
Read this book or become a victim! Not only will you learn the how's and why's of social engineering, but you will also be thoroughly entertained by Mitnick's stories. Everyone in the security field should consider The Art of Deception required reading. Let me rephrase that - everyone should be required to read this book. Period.

This would be a great book to recommend to your employees as part of security awareness training. The text is accessible and drives the message home that social engineering is a very real threat.


5 out of 5 stars Social Engineering 101 - Read It or Become a Victim   August 25, 2008
 2 out of 2 found this review helpful

"The Art of Deception" was recommended to me by an instructor teaching a CISSP prep class. It is both an enjoyable and informative read. Mitnik is the "real deal" in exploiting social engineering techniques and his books should be required reading by corporate security policy makers (and I am sure it is for many already).

This book illustrates various techniques for bypassing established corporate physical and information security security policies. I have actually inadvertently used some of these techniques when troubleshooting network issues or having forgotten my passcard to gain access to systems and rooms. It is often easier to bypass the rules than to go through the steps needed to obtain proper access and people are surprisingly willing to cooperate "just this one time".

This book will help you sensitize your employees to the risks of bypassing security policy and recognize when this might be occurring. Highly recommended!


5 out of 5 stars Awesome book   July 30, 2008
This is a complex read, not that it has good literary qualities, but in that it is packed with information that relates to other information within the book, and gaining an overall "bigger-picture" understanding of the concepts withing this book requires multiple readings.


5 out of 5 stars It's just excellent   July 3, 2008
Adequate for noobs and pros to understand how important social engineering in our security is, this applied not only in software; you can relate it with anything in your live.
Highly recommended



4 out of 5 stars This book is quite an eye-opener   June 17, 2008
 1 out of 1 found this review helpful

This is a great, but frightening book. The book explains many, many ways how "social engineers" (what the author calls those who manipulate strangers) can take advantage of people. These stories are clearly and convincingly illustrated by examples. Unfortunately, when one realizes all the people who have access to their private information and that it only takes one to fall for the kind of tricks mentioned here, it is clear that safety is all but impossible. That said, this can serve as a wake up call to fix what we can, especially in our own workplaces. My one complaint with the book is that the sample security policies in the last chapter were not available electronically.


Powered by Associate-O-Matic

Contact Wolverine Books