Sunday, July 17, 2005

Draft of Extrusion Detection Submitted for Copyeditin

I am happy to report that I just submitted cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 final draft of my next book Extrusion Detection: Security Monitoring for Internal Intrusions to my publisher, Addison-Wesley. The new book is a sequel to The Tao of Network Security Monitoring: Beyond Intrusion Detection. I think readers will find cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new book very interesting. Thus far my reviewers have provided positive feedback.

For those interested in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 mechanics of book writing: I thought of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 idea last summer, just after my first book arrived. I signed a contract in November, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365n began writing in January. My first due date was 1 April for half cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book in draft form, followed by cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 rest of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book in draft form by 1 June. I've been working on addressing reviewer feedback since late June, and now cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book is ready for copyediting.

The chapter-level table of contents is listed next.

  1. Network Security Monitoring Revisited

  2. Defensible Network Architecture

  3. Extrusion Detection Illustrated

  4. Enterprise Network Instrumentation

  5. Layer 3 Network Access Control (by Ken Meyers)

  6. Traffic Threat Assessment

  7. Network Incident Response

  8. Network Forensics

  9. Traffic Threat Assessment Case Study

  10. Malicious Bots (by Mike Heiser)



Furcá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365rmore, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365re are cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365se elements:

  • Foreword by Marcus Ranum

  • Preface

  • Appendix A. Collecting Session Data in an Emergency

  • Appendix B. Minimal Snort Installation Guide

  • Appendix C. Survey of Enumeraiton Methods (by Ron Gula)

  • Appendix D. Open Source Host Enumeration (by Rohyt Belani)



I'm estimating cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book will be between 450 and 500 pages, but I usually err on cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 low side. Expect to see cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book on shelves in December 2005 or January 2006. I'll probably provide excerpts as publication approaches as well.

You can also get a thorough look at material from cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new book at day two of my class at USENIX Security in two weeks. If I am accepted to USENIX LISA in December, I hope to teach three days. The third day will also be based on Extrusion.

4 comments:

Anonymous said...

Looking forward to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book.

Anonymous said...

Richard,

If you don't mind me asking, how did this work for you? Did you submit cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 idea right after your first book came out?

I went to my editor with cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 idea of doing anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r book...first a second edition, but cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365n a different book...and was told that cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y would not even consider it until cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 second set of numbers came out in Oct '05.

H. Carvey
"Windows Forensics and Incident Recovery"
http://www.windows-ir.com
http://windowsir.blogspot.com

Richard Bejtlich said...

Hi Harlan,

I originally planned to write a book on writing Snort rules, but I decided to wait until cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new Snort rules language was released. I submitted a proposal for a Snort Rules Handbook right after Tao arrived. When I saw that a new Snort rules language was delayed indefinitely, I submitted cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 proposal for Extrusion in November.

I review lots of draft books for Pearson and Addison-Wesley. Some end up being published elsewhere, like several of James Foster's books. If you are not satisfied with AWL, you might find anocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r publisher more eager to work with you -- especially since you are already published.

I cannot explain my situation, but I think we work with different parts of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Pearson house, and we have different editors.

Anonymous said...

Richard,

I'd guess that you're right about working in different parts of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 AWL/Pearson house...

I've got some time, and an overall plan in mind for how I'm going to go about things this time...was just wondering how things had worked out for you.

Congrats on cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new book...we'll have to plan to catch up at a conference after it's published so that I can get you to sign my copy of that one... ;-)

H. Carvey
"Windows Forensics and Incident Recovery"
http://www.windows-ir.com
http://windowsir.blogspot.com