• Technology professionals seeking higher-paying security jobs need to know security fundamentals to land the job-and this book will help
• Divided into two parts: how to get the job and a security crash course to prepare for the job interview
• Security is one of today's fastest growing IT specialties, and this book will appeal to technology professionals looking to segue to a security-focused position
• Discusses creating a resume, dealing with headhunters, interviewing, making a data stream flow, classifying security threats, building a lab, building a hacker's toolkit, and documenting work
• The number of information security jobs is growing at an estimated rate of 14 percent a year, and is expected to reach 2.1 million jobs by 2008

Learn how to use the Microsoft .NET Micro Framework to develop applications for the next generation of embedded devices. Embedded programming is set to move into the mainstream as a variety of new devices come to market. A key embedded device enabled by Windows Vista(tm) that requires the .NET Micro Framework is Windows SideShow(tm), the external display that will be incorporated into many notebook computers. This reference shows developers how to use the .NET Micro Framework to create new applications for Windows SideShow displays and small, resource-constrained devices. With insights direct from the product team it covers essential topics, including interface design and managed drivers, device capabilities, and how to use emulation technologies. In addition, it delves into how to port key functionality from existing applications into other form factors. Ideal for developers with experience working with Microsoft Visual Studio® 2005 and Microsoft Visual C#®, this essential guide includes practical examples and code samples.

Developing enterprise applications has traditionally been a long, painful, and expensive task because applications developers often have to reinvent the wheel by writing, from scratch, the entire infrastructure needed to scale business logic up to the enterprise level. That’s where COM+ comes in. It’s an advanced Component Object Model (COM) runtime environment that provides prefabricated solutions to many of these generic infrastructure problems. It’s like a toolkit full of prefabricated solutions that are always available to simplify the work of Microsoft enterprise application developers. UNDERSTANDING COM+, REVISED EDITION elaborates on this story for developers, technical managers, and anyone else who needs to understand the COM+ architecture and technologies. –This text refers to an out of print or unavailable edition of this title.

Written for the IS manager or developer, Understanding COM+ explains the details of the emerging Windows 2000 COM+ standard and the real advantages it provides for enterprise computing. Clearly written and illustrated with easy-to-understand diagrams, this title succeeds in explaining the fairly difficult “plumbing” of COM+ and its impact for the future of businesses running on the Microsoft platform.

Though it provides a good deal of technical detail, the standout feature of this book is its focus on real-world business problems in the enterprise and the solutions offered by COM+. Any IS manager or developer will be able to understand concepts like transactions, resource management, events, and asynchronous communications through the author’s carefully rendered diagrams and business scenarios. There’s not much actual code here, but the author does suggest techniques for designing components to take advantage of COM+.

Information security practices have evolved from Internet perimeter protection to an in-depth defense model in which multiple countermeasures are layered throughout the infrastructure to address vulnerabilities and attacks. This is necessary due to increased attack frequency, diverse attack sophistication, and the rapid nature of attack velocity–all blurring the boundaries between the network and perimeter.

End-to-End Network Security is designed to counter the new generation of complex threats. Adopting this robust security strategy defends against highly sophisticated attacks that can occur at multiple locations in your network. The ultimate goal is to deploy a set of security capabilities that together create an intelligent, self-defending network that identifies attacks as they occur, generates alerts as appropriate, and then automatically responds.

End-to-End Network Security provides you with a comprehensive look at the mechanisms to counter threats to each part of your network. The book starts with a review of network security technologies then covers the six-step methodology for incident response and best practices from proactive security frameworks. Later chapters cover wireless network security, IP telephony security, data center security, and IPv6 security. Finally, several case studies representing small, medium, and large enterprises provide detailed example configurations and implementation strategies of best practices learned in earlier chapters.

Adopting the techniques and strategies outlined in this book enables you to prevent day-zero attacks, improve your overall security posture, build strong policies, and deploy intelligent, self-defending networks.

Filthy Rich Clients refers to ultra-graphically rich applications that ooze cool. They suck the user in from the outset and hang on to them with a death grip of excitement. Filthy Rich Clients: Developing Animated and Graphical Effects for Desktop Java™ Applications shows you how to build better, more effective, cooler desktop applications that intensify the user experience.

The keys to Filthy Rich Clients are graphical and animated effects. These kinds of effects provide ways of enhancing the user experience of the application through more attractive GUIs, dynamic effects that give your application a pulse, and animated transitions that keep your user connected to the logical flow of the application. The book also discusses how to do so effectively, making sure to enrich applications in sensible ways.

In-depth coverage includes

• Graphics and GUI fundamentals: Dig deep into the internals of how Swing and Java 2D work together to display GUI applications onscreen. Learn how to maximize the flexibility of these libraries and use them most effectively.
• Performance: Follow in-depth discussions and tips throughout the book that will help you write high-performing GUI applications.
• Images: Understand how images are created and used to make better Java applications.
• Advanced graphics: Learn more about elements of Swing and Java 2D that are of particular benefit to Filthy Rich Clients.
• Animation: Discover general concepts of animation, as well as how to use the facilities provided in the Java platform. Learn new utility libraries that vastly simplify animations in Java.
• Effects: Learn how to create, customize, and use static and animated effects—the mainstays of Filthy Rich Clients.

Contrary to popular belief, Ethernet switches are not inherently secure. Security vulnerabilities in Ethernet switches are multiple: from the switch implementation, to control plane protocols (Spanning Tree Protocol [STP], Cisco® Discovery Protocol [CDP], and so on) and data plane protocols, such as Address Routing Protocol (ARP) or Dynamic Host Configuration Protocol (DHCP). LAN Switch Security explains all the vulnerabilities in a network infrastructure related to Ethernet switches. Further, this book shows you how to configure a switch to prevent or to mitigate attacks based on those vulnerabilities. This book also includes a section on how to use an Ethernet switch to increase the security of a network and prevent future attacks.

Divided into four parts, LAN Switch Security provides you with steps you can take to ensure the integrity of both voice and data traffic traveling over Layer 2 devices. Part I covers vulnerabilities in Layer 2 protocols and how to configure switches to prevent attacks against those vulnerabilities. Part II addresses denial-of-service (DoS) attacks on an Ethernet switch and shows how those attacks can be mitigated. Part III shows how a switch can actually augment the security of a network through the utilization of wirespeed access control list (ACL) processing and IEEE 802.1x for user authentication and authorization. Part IV examines future developments from the LinkSec working group at the IEEE. For all parts, most of the content is vendor independent and is useful for all network architects deploying Ethernet switches.

Wi-Fi telephony is the latest, most cost effective, and clearest way of carrying voice data wirelessly. The great news is that it can be integrated seamlessly into the same infrastructures as currently used for computer and telephone data.The digital quality is far above current cellular technologies.

This book will be among the first to discuss Session Initiation Protocol (SIP), Quality of Service (QoS), and interoperability in connection with Wi-Fi telephony. Security challenges are also presented and solved along these malleable wireless boundaries. In short, this book provides all the information necessary for effective, reliable, crystal clear Wi-Fi telephony service and implementation.

IPv6 was introduced in 1994 and has been in development at the IETF for over 10 years. It has now reached the deployment stage. KAME, the de-facto open-source reference implementation of the IPv6 standards, played a significant role in the acceptance and the adoption of the IPv6 technology. The adoption of KAME by key companies in a wide spectrum of commercial products is a testimonial to the success of the KAME project, which concluded not long ago.

This book is the first and the only one of its kind, which reveals all of the details of the KAME IPv6 protocol stack, explaining exactly what every line of code does and why it was designed that way. Through the dissection of both the code and its design, the authors illustrate how IPv6 and its related protocols have been interpreted and implemented from the specifications. This reference will demystify those ambiguous areas in the standards, which are open to interpretation and problematic in deployment, and presents solutions offered by KAME in dealing with these implementation challenges.

Learn how to design and implement database solutions using SQL Server 2000 Enterprise Edition–as you prepare for MCP Exam 70-229, a core requirement for MCDBA certification and an elective for the MCAD, MCSE, and MCSA tracks.