论文信息 - Computer Incident Response and Forensics Team Management: Conducting a Successful Incident Response

Computer Incident Response and Forensics Team Management: Conducting a Successful Incident Response

Computer Incident Response and Forensics Team Management provides security professionals with a complete handbook of computer incident response from the perspective of forensics team management. This unique approach teaches readers the concepts and principles they need to conduct a successful incident response investigation, ensuring that proven policies and procedures are established and followed by all team members. Leighton R. Johnson III describes the processes within an incident response event and shows the crucial importance of skillful forensics team management, including when and where the transition to forensics investigation should occur during an incident response event. The book also provides discussions of key incident response components. Provides readers with a complete handbook on computer incident response from the perspective of forensics team managementIdentify the key steps to completing a successful computer incident response investigation Defines the qualities necessary to become a successful forensics investigation team member, as well as the interpersonal relationship skills necessary for successful incident response and forensics investigation teams

Leighton R. Johnson

[1] L. Johnson,et al. Minimum Security Requirements for Federal Information and Information Systems , 2006 .

[2] Eugene Schultz,et al. Incident Response: A Strategic Guide to Handling System and Network Security Breaches , 2001 .

[3] John R. Vacca,et al. System Forensics, Investigation, And Response , 2010 .

[4] Warren G. Kruse,et al. Computer Forensics: Incident Response Essentials , 2001 .

[5] Jim Mellander,et al. Intrusion Detection & Prevention , 2003 .

[6] Karen A. Scarfone,et al. Computer Security Incident Handling Guide , 2004 .

[7] Eoghan Casey,et al. Digital Evidence and Computer Crime , 2000 .

[8] Robin M. Ruefle,et al. Handbook for Computer Security Incident Response Teams (CSIRTs) , 2003 .

[9] Shirley M. Radack,et al. Federal Information Processing Standard (FIPS) 199, Standards for Security | NIST , 2004 .

[10] Brian D. Carrier,et al. File System Forensic Analysis , 2005 .

[11] Harlan Carvey. Windows Forensics and Incident Recovery (The Addison-Wesley Microsoft Technology Series) , 2004 .

[12] John R. Vacca,et al. Computer Forensics: Computer Crime Scene Investigation (Networking Series) (Networking Series) , 2005 .