Security in a Web 2.0+ World: A Standards-Based Approach - Hardcover

About the Author

Carlos Curtis Solari (lead author) is VP, Security Strategy and Solutions, Alcatel-Lucent. Carlos joined Alcatel-Lucent as Bell Labs Security Solutions Vice President in April 2006. In this role, Carlos heads a team defining and implementing the security strategy positioning Alcatel-Lucent as the vendor of choice for secure, reliable networks, services and applications. Carlos has extensive experience in the field of information systems security as applied in the areas of homeland security, law enforcement, public safety and defence; with over 25 years in various government and private industry positions, including more than 6 years as a senior executive with the Federal Bureau of Investigation. From 2002 to 2005 he served as Chief Information Officer for the Executive Office of the President - the White House.

From the Back Cover

Security for a Web 2.0 world has become a necessity.  There is an overwhelming need for a better approach to implement appropriate information security controls. However, limited information is available on the importance of a consistent model for security supported by international standards; the business value is difficult to quantify and the topic tends to be mis-communicated between technicians and policy makers.

Security Standards for a Web 2.0+ World clearly demonstrates how existing security solutions are failing to provide secure environments and trust between users and among organizations. Bringing together much needed information, and a broader view on why and how to deploy the appropriate standards. This book supports a shift in the current approach to information security, allowing companies to develop more mature models and achieve cost effective solutions to security challenges.

From the Inside Flap

Discover how technology is affecting your business, and why typical security mechanisms are failing to address the issue of risk and trust.

Security for a Web 2.0+ World looks at the perplexing issues of cyber security, and will be of interest to those who need to know how to make effective security policy decisions to engineers who design ICT systems – a guide to information security and standards in the Web 2.0+ era. It provides an understanding of IT security in the converged world of communications technology based on the Internet Protocol.

Many companies are currently applying security models following legacy policies or ad-hoc solutions. A series of new security standards (ISO/ITU) allow security professionals to talk a common language. By applying a common standard, security vendors are able to create products and services that meet the challenging security demands of technology further diffused from the central control of the local area network. Companies are able to prove and show the level of maturity of their security solutions based on their proven compliance of the recommendations defined by the standard.

Carlos Solari and his team present much needed information and a broader view on why and how to use and deploy standards. They set the stage for a standards-based approach to design in security, driven by various factors that include securing complex information-communications systems, the need to drive security in product development, the need to better apply security funds to get a better return on investment.

Security applied after complex systems are deployed is at best a patchwork fix. Concerned with what can be done now using the technologies and methods at our disposal, the authors set in place the idea that security can be designed in to the complex networks that exist now and for those in the near future. Web 2.0 is the next great promise of ICT – we still have the chance to design in a more secure path.

Time is of the essence – prevent-detect-respond!