Review From the reviews: "This book on access control systems centers on security, identity management, and trust models. … The book includes adequate references and a handy index. … The coverage of topics in the book is satisfactory. The book will be useful for those who wish to go deep into mechanisms for access control. It may be used for advanced courses in information security. Practitioners and university students are likely to benefit from reading it. I recommend this book as a useful reference for access control." (S. V. Nagaraj, Computing Reviews, December, 2006) Read more From the Back Cover Access Control Systems: Security, Identity Management and Trust Models provides a thorough introduction to the foundations of programming systems security, delving into identity management, trust models, and the theory behind access control models. The book details access control mechanisms that are emerging with the latest Internet programming technologies, and explores all models employed and how they work. The latest role-based access control (RBAC) standard is also highlighted. This unique technical reference is designed for security software developers and other security professionals as a resource for setting scopes of implementations with respect to the formal models of access control systems. The book is also suitable for advanced-level students in security programming and system design. Read more
D**W
More esoteric but less practical than needed
The author is gives us an academic tome rather than a practical text. A background in discrete math is needed for several chapters. The author is using a strange mix of historical references (HRU for example) and bleeding edge, yet to penetrate the market (XNS) technologies. This would be fine but virtually ignores much in the process; UNIX and Windows as minor examples.The text is accurate in what it says and would be a good masters level text in Compute Science. It is about the only text focusing deeply on Access Control. In any classroom situation, it will need supplementing.
G**O
Good Book
This book have a good content and i was working with it in university...I used that reference in documents for my research group..
V**N
Terminology tangle
This is a review of 2006 (hardcover) edition.The book is hardly self-sufficient, requiring frequent cross-reference toexternal sources to confirm/deny used terminology.Here're some examples (using highlights from the top of the book).1. policy vs. paradigm (p. 25);For access-control author defines 2 types of policies, but 3 paradigms.Most available sources reference 3 types of a/c policies.2. information-flow officer (p. 25);3. MVS examples, used throughout the book, are hardly illustrative, sincefew are versed in MF architecture;4. diagrams are not illustrative.This work was not expected to serve as a "practical text" (see review byDennis Dow).However, it failed to become an a/c reference due to the discrepanciesin terminology.Since this is a technical book, terminology accuracy is paramount,hence my rating is 2.
Trustpilot
2 days ago
1 day ago
