"If you re even thinking of doing any security engineering, you need to read this book. It s the first, and only, end-to-end modern security design and engineering book ever written." Bruce Schneier "Many people are anxious about Internet security for PCs and servers," says leading expert Ross Anderson, "as if that s all there is when in reality security problems have just begun. By 2003, there may be more mobile phones on the Net than PCs, and they will be quickly followed by network-connected devices from refrigerators to burglar alarms to heart monitors. How will we manage the risks?" Dense with anecdotes and war stories, readable, up-to-date and full of pointers to recent research, this book will be invaluable to you if you have to design systems to be resilient in the face of malice as well as error. Anderson provides the tools and techniques you ll need, discusses what s gone wrong in the past, and shows you how to get your design right the first time around. You don t need to be a security expert to understand Anderson s truly accessible discussion of: Security engineering basics, from protocols, cryptography, and access controls to the nuts and bolts of distributed systems The lowdown on biometrics, tamper resistance, security seals, copyright marking, and many other protection technologies for many of them, this is the first detailed information in an accessible textbook What sort of attacks are done on a wide range of systems from banking and medical records through burglar alarms and smart cards to mobile phones and e-commerce and how to stop them Management and policy issues how computer security interacts with the law and with corporate culture

Ross Anderson現任劍橋大學計算機實驗室信息安全工程教授，是公認的全球最重要安全權威之一，也是安全經濟學的開創者。Ross已經發錶瞭多篇分析現場安全係統故障原因的論文，並在點對點係統、API分析及硬件安全等大量技術領域做齣瞭開拓性的貢獻。Ross教授是英國皇傢學會會員、皇傢工程學院院士、工程及科技學會會員、數學及應用學會會員、物理學會會員。