Overview
There is no single, credible reference available for Windows 2000 security issues. Existing and announced books all offer glimpses of outdated and simplistic issues, while Roberta Bragg offers a clear vision, with focused and technically accurate practical advice. Like other books in the Landmark series, this book presumes knowledge of Windows 2000, or the willingness to look elsewhere for a guide to the Windows 2000 interface, as it is not a step-by-step guide to the operating system. (An excellent companion book would be Inside Windows 2000 Server) Its primary directive is to assist the Windows NT professional in understanding and implementing Windows 2000 security in their organization. The book is divided into four parts. Chapters will have a "best practices" section which will make recommendations for settings and security practices. An appendix will follow the main book and will include topics on auditing and security policy.
Editorials
From Barnes & Noble
Our ReviewManaging passwords and file permissions isn't enough: If you manage Windows 2000 business systems, you need a systematic strategy for protecting your data. In Windows 2000 Security, Roberta Bragg lays out all your options -- and helps you craft a strategy that makes the best possible sense for your organization.
You'll start with an in-depth review of basic information security concepts, cryptography, security-related protocols, PKI, and Kerberos. Much of this will be new to system administrators who've worked primarily with Windows NT 4. Next, Bragg walks you through securing the base OS, providing essential information for securing Win2K Professional desktops. You'll learn how to use the Encrypting File System, work with NTFS5's security enhancements and new default settings, and use group policies to manage local security settings.
In Part III, Bragg explains securing Microsoft-centered LANs -- including domain-level security, as well as techniques for securing both legacy Windows clients and Windows 2000's new Distributed File System.
Once you've mastered all this, Bragg offers a comprehensive review of securing real-world networks -- including interoperability with UNIX implementations of Kerberos, an issue that has generated major controversy and suspicion. You'll find a chapter on securing Windows 2000 Server web sites and another on securing systems in a value chain that incorporates business partners.
Windows 2000 adds powerful new security features, but it's not enough to merely understand them. You must know the "why and when" and implement security in ways others can understand and maintain. This book helps with all of that.