[Cisspstudy] cisspstudy Digest, Vol 15, Issue 2
Youssef El Malty
MALTY at eg.ibm.com
Thu Sep 3 00:36:15 EDT 2009
also try Applied Cryptography by Bruce Shneier
cisspstudy-request at cccure.org
Sent by: cisspstudy-bounces at cccure.org
09/01/2009 06:00 PM
Please respond to
cisspstudy at cccure.org
To
cisspstudy at cccure.org
cc
Subject
cisspstudy Digest, Vol 15, Issue 2
Send cisspstudy mailing list submissions to
cisspstudy at cccure.org
To subscribe or unsubscribe via the World Wide Web, visit
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
or, via email, send a message with subject or body 'help' to
cisspstudy-request at cccure.org
You can reach the person managing the list at
cisspstudy-owner at cccure.org
When replying, please edit your Subject line so it is more specific
than "Re: Contents of cisspstudy digest..."
Today's Topics:
1. Re: Cryptography Study Guide (amar singh)
2. Re: preambles questions (An.Dang at do.treas.gov)
3. Re: preambles questions (Vardhan, Aditya {PI})
----------------------------------------------------------------------
Message: 1
Date: Tue, 1 Sep 2009 17:04:40 +0530 (IST)
From: amar singh <amar_ncet at yahoo.co.in>
To: The CISSP Study Mailing list <cisspstudy at cccure.org>
Subject: Re: [Cisspstudy] Cryptography Study Guide
Message-ID: <182297.48273.qm at web8904.mail.in.yahoo.com>
Content-Type: text/plain; charset="iso-8859-1"
william stallings is easy and best...did from that
BEST OF LUCK
________________________________
From: "Dallas, Michael J Civ USAF USAFE 100 CS/SCQ"
<mike.dallas at mildenhall.af.mil>
To: Prakash <prakash2757 at yahoo.com>; The CISSP Study Mailing list
<cisspstudy at cccure.org>
Sent: Tuesday, 1 September, 2009 4:13:10 PM
Subject: Re: [Cisspstudy] Cryptography Study Guide
Thank you Prakash... this should be helpful
Mike
-----Original Message-----
From: Prakash [mailto:prakash2757 at yahoo.com]
Sent: 01 September 2009 11:36
To: The CISSP Study Mailing list
Cc: Dallas, Michael J Civ USAF USAFE 100 CS/SCQ
Subject: Re: [Cisspstudy] Cryptography Study Guide
Hello Mike,
You can read Cryptography from Shon Harris AIO & Official Book. They are
very well explained.
You can also read following books.
Handbook of Applied Cryptography (Free Online Version with copyright
permission from CRC Press)
http://www.cacr.math.uwaterloo.ca/hac/ <
http://www.cacr.math.uwaterloo.ca/hac/>
One more great resource here -
http://williamstallings.com/Crypto/Crypto4e.html <
http://williamstallings.com/Crypto/Crypto4e.html>
Hope it helps.
- Prakash
http://www.linkedin.com/in/prakashp <http://www.linkedin.com/in/prakashp>
--- On Tue, 9/1/09, Dallas, Michael J Civ USAF USAFE 100 CS/SCQ
<mike.dallas at mildenhall.af.mil> wrote:
??? From: Dallas, Michael J Civ USAF USAFE 100 CS/SCQ
<mike.dallas at mildenhall.af.mil>
??? Subject: [Cisspstudy] Cryptography Study Guide
??? To: "'cisspstudy at cccure.org'" <cisspstudy at cccure.org>
??? Date: Tuesday, September 1, 2009, 3:03 PM
???
???
??? Does anyone have (or know where I can get) a good study guide to use
for cryptography?
??? This is the only domain of the 10 that I seem to have trouble with...
thanks much
???
??? Mike
??? -----Inline Attachment Follows-----
???
???
??? _______________________________________________
??? cisspstudy mailing list
??? cisspstudy at cccure.org <
http://us.mc365.mail.yahoo.com/mc/compose?to=cisspstudy@cccure.org>
??? http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
???
_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
See the Web's breaking stories, chosen by people like you. Check
out Yahoo! Buzz. http://in.buzz.yahoo.com/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <
http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090901/6792b26d/attachment-0001.html
>
------------------------------
Message: 2
Date: Tue, 01 Sep 2009 08:19:08 -0400
From: An.Dang at do.treas.gov
To: cisspstudy at cccure.org
Subject: Re: [Cisspstudy] preambles questions
Message-ID:
<3B449623CE62F94DB4FA3CCD437BDD9D2A055D7AD0 at EXC15VP.do.treas.gov>
Content-Type: text/plain; charset=us-ascii
I have a few questions that are in the "gray area" of things. I have the
answers (maybe) but want to know what the group thinks.
Using ISC(2) preambles as guides, answers these questions:
1) A visiting professor is assigned to work in a university computing
center. He found a hole in a financial transaction program that would
enable one to collect students' social security numbers, last names, and
other personally identifiable information. He quietly collected the
information into a computer file and gave the file to the system
administrator on his last day.
a) The professor was unethical. He should have disclosed the hole right
away.
b) There is nothing unethical with what he did. He did not give the
information to anyone else.
c) Though he did nothing unethical, the professor should have disclosed
the information because ISC(2) preambles stated responsibility to the
public first.
d) None of the above. ISC(2) ethics were observed.
2) An analyst for an anti-virus software company is assigned to test a new
product. He developed an automated program to generate multiple instances
of a computer virus with varying signatures. He wants to use it to test
the new anti-virus software the company is going to publish.
a) He should not use it. It is illegal to create virus.
b) There is nothing wrong with using it since it is contained in a test
lab and would never get out to the Internet.
c) It is unethical to develop something that would potentially harm the
public.
d) It is part of his job. It is completely ethical.
------------------------------
Message: 3
Date: Tue, 1 Sep 2009 22:00:03 +0800
From: "Vardhan, Aditya {PI}" <aditya.vardhan at intl.pepsico.com>
To: "The CISSP Study Mailing list" <cisspstudy at cccure.org>
Subject: Re: [Cisspstudy] preambles questions
Message-ID:
<BA3849E85C9B6040BFA9656812C802F943A664 at PEPWMV33125.cww.pep.pvt>
Content-Type: text/plain; charset="us-ascii"
Pl share the correct answers,
I think these are,
1- a
2 -b
-----Original Message-----
From: cisspstudy-bounces at cccure.org
[mailto:cisspstudy-bounces at cccure.org] On Behalf Of An.Dang at do.treas.gov
Sent: Tuesday, September 01, 2009 5:49 PM
To: cisspstudy at cccure.org
Subject: Re: [Cisspstudy] preambles questions
I have a few questions that are in the "gray area" of things. I have
the answers (maybe) but want to know what the group thinks.
Using ISC(2) preambles as guides, answers these questions:
1) A visiting professor is assigned to work in a university computing
center. He found a hole in a financial transaction program that would
enable one to collect students' social security numbers, last names, and
other personally identifiable information. He quietly collected the
information into a computer file and gave the file to the system
administrator on his last day.
a) The professor was unethical. He should have disclosed the hole right
away.
b) There is nothing unethical with what he did. He did not give the
information to anyone else.
c) Though he did nothing unethical, the professor should have disclosed
the information because ISC(2) preambles stated responsibility to the
public first.
d) None of the above. ISC(2) ethics were observed.
2) An analyst for an anti-virus software company is assigned to test a
new product. He developed an automated program to generate multiple
instances of a computer virus with varying signatures. He wants to use
it to test the new anti-virus software the company is going to publish.
a) He should not use it. It is illegal to create virus.
b) There is nothing wrong with using it since it is contained in a test
lab and would never get out to the Internet.
c) It is unethical to develop something that would potentially harm the
public.
d) It is part of his job. It is completely ethical.
_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
------------------------------
_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
End of cisspstudy Digest, Vol 15, Issue 2
*****************************************
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090903/46303063/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 18208 bytes
Desc: not available
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090903/46303063/attachment-0001.gif>
More information about the cisspstudy
mailing list