Security without Obscurity: A Guide to Confidentiality, Authentication, and Integrity, 1st Edition (e-Book) book cover

Security without Obscurity

A Guide to Confidentiality, Authentication, and Integrity, 1st Edition

By J.J. Stapleton

Auerbach Publications

355 pages

Purchasing Options:$ = USD
Hardback: 9781466592148
pub: 2014-05-02
SAVE ~$22.00
eBook (VitalSource) : 9780429167706
pub: 2014-05-02
from $28.98

FREE Standard Shipping!


The traditional view of information security includes the three cornerstones: confidentiality, integrity, and availability; however the author asserts authentication is the third keystone. As the field continues to grow in complexity, novices and professionals need a reliable reference that clearly outlines the essentials. Security without Obscurit

Table of Contents

Introduction. Confidentiality. Authentication. Integrity. Nonrepudiation. Privacy. Key Management. Bibliography.

About the Author

Jeff J. Stapleton has over 30 years experience developing and assessing payment systems and security techniques, including cryptography and biometrics. His career includes the major card brands (MasterCard, Visa, American Express, and Discover) for payment systems and security assessments; big-four accounting firm experience performing security assessments of applications, systems, and products; working with large and medium-sized financial institutions providing risk assessments and security compliance audits; and developing policies, practices, and procedures for security systems.

Jeff has participated in developing ISO and X9 security standards for over 25 years within the financial services industry. For the first five years, he participated on several X9 workgroups and has been an industry liaison and U.S. expert several times for various ISO workgroups. In addition, he has been chair of the X9F4 Cryptographic Protocols and Application Security Workgroup for 15 years. His experience includes participation on several X9 and ISO workgroups and development of over three dozen ISO and X9 standards. Some of the standards have multiple parts, which add to the overall count.

Jeff has published articles in various information security journals, IEEE papers, PKI Forum notes, and is a contributing author to several books on biometrics and cryptography. He is also a patent holder for cryptographic solutions.

Jeff has also authored various white papers for customers on debit card payments, key management, data loss prevention (DLP) solutions, and format-preserving encryption (FPE). He is a CISSP and former Certified TG-3 Assessor (CTGA) and PCI Qualified Security Assessor (QSA). The CTGA and QSA are only viable for security consultants in active practice. He has also been a frequent public speaker at information security conferences, seminars, and webinars.

Subject Categories

BISAC Subject Codes/Headings:
COMPUTERS / Information Technology
COMPUTERS / Security / General