From: Howard C. Berkowitz (hcb@gettcomm.com)
Date: Fri Apr 30 2004 - 22:21:55 GMT-3
At 11:53 PM +0100 4/30/04, Richard Dumoulin wrote:
>I have a bachelor degree in Telecommunications (Politecnica de Madrid in
>Spain) and for the moment I am interested in theory only,
Do note my correction below.
Then if you want to get some understanding of cryptographic
algorithms, Schneier is good, and Kahn is just fun as well as
informative. Start with the NIST and NSA sites, as there's lots of
free algorithms.
Subscribing to the NANOG list (www.nanog.org) will give you a lot of
information about current attacks on service providers.
[URL eater food]
Another very good source, especially about denial of service but also
related subjects such as forensics, is Dave Dittrich's page at the
University of Washington: http://staff.washington.edu/dittrich/
>
>--Richard
>
>-----Original Message-----
>From: Howard C. Berkowitz [mailto:hcb@gettcomm.com]
>Sent: viernes, 30 de abril de 2004 23:19
>To: ccielab@groupstudy.com
>Subject: RE: Cleared SP Lab in RTP
>
>
>At 9:45 PM +0100 4/30/04, Richard Dumoulin wrote:
>>Howard, do you have more specific reading recommendations for
>>security ? Thanks --Richard(
>
>It depends on how deeply you want to get into theory, or also
>specific applications of security (e.g., for medical networks).
>
>How much mathematical background do you have? For some materials,
>you need some exposure to middling-level security, and if you are
>getting into algorithms, some abstract algebra (particularly group
>theory).
That was exposure to middling-level STATISTICS. It's also worth
looking at Knuth's _The Art of Computer Programming, Volume II:
Seminumerical Algorithms._ Best description I know of writing and
testing pseudo-random number generators.
>
>
>
>
>
>
>
>[url eater food]
>
>
>
>
>
>Lots of stuff at the NIST resource center, http://csrc.nist.gov/
>
>The NSA Rainbow books may be getting dated, but they are freely
>downloadable (I've not heard of any .us restrictions).
>http://www.radium.ncsc.mil/tpep/library/rainbow/index.html
>
>As far as books, I highly recommend, as enjoyable reading if nothing
>else, David Kahn's _The Codebreakers_. Get the 1st edition used if
>you can; the 2nd edition really doesn't add anything. Stephen
>Levy's _Hackers_ made the New York Times best seller list, and, if
>you hunt around, it's freely downloadable. I personally find the
>history of cryptography to be very interesting and give lots of
>background. I can give more recommendations there if that's of
>interest.
>
>I'll recommend, for a broad view, Annlee Hines' _Building Survivable
>Networks_.
>
>Bruce Scheier's _Applied Cryptography_ is one of the best books, but
>I'll warn the math can get heavy.
>
>For the IETF, start with the Security Area at
>http://web.mit.edu/network/ietf/sa/ .Then go to the Working Groups
>directory at
>http://www.ietf.org/html.charters/wg-dir.html#Security%20Area
>Get the latest IPSec overview, which, offhand, is RFC2401, and read
>supporting RFCs as they seem appropriate. Some are readable,
>some...well, I said to one of the RFCs on partial elliptical function
>encryption, "If I leave you alone will you leave me alone?"
>
>Definitely RFC 2196, the Site Security Handbook.
>
>_______________________________________________________________________
>Please help support GroupStudy by purchasing your study materials from:
>http://shop.groupstudy.com
>
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
>
>_______________________________________________________________________
>Please help support GroupStudy by purchasing your study materials from:
>http://shop.groupstudy.com
>
>Subscription information may be found at:
>http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Mon May 03 2004 - 19:48:58 GMT-3