Schneier on Security review
Little of interest to professionals, but easy to dip into and decent introduction to 'security thinking'.
Review Date: 8 Dec 2008
Reviewed By: Darien Graham-Smith
Price when reviewed:
Bruce Schneier is best known for his influential 1994 work Applied Cryptography, but these days he describes himself as a general 'security technologist'. Schneier on Security is a collection of short essays on topics ranging from firewalls to illegal immigration, written since 2003 for publications including Wired magazine and his own Crypto-Gram newsletter.
Each article stands alone, and most can be digested in under five minutes, so it's an easy read. Unfortunately, this format doesn't give Schneier the space to really dig into complex issues, so his arguments can seem rather trivial.
On the subject of airport security, for example, he concludes that 'we need to spend our resources on things that actually make us safer'. Well duh.
There's also a certain degree of repetition between essays - understandable in a collection of this nature but wearing nevertheless.
Phrases such as 'join the dots', 'police state' and 'control of our data' echo through the text, creating an uneasy sense of déjà-vu. The effect is reinforced by the half-decade span of articles: Schneier's repeated references to the September 2001 terrorist attacks may have been timely when first written, but today they make him seem stuck in the past.
It's a shame, because at its best Schneier on Security is genuinely thought-provoking. Several essays show, with clear logic and concrete example, how instinct can lead us to make nonsensical choices in the name of security.
Others give excellent warnings about the open-ended nature of our relationships with online services. And Schneier isn't afraid to point fingers, rightly excoriating the likes of McAfee and Symantec for their pusillanimity when Sony started distributing malware in 2005.
For a non-expert, Schneier on Security could make a highly accessible introduction to 'security thinking'. Its tone is invitingly informal, and though its discussions are biased toward US-centric issues, the underlying principles have universal application.
Schneier's high-level, populist approach, however, means little in this book will be of practical use to professionals.
Author: Darien Graham-Smith
- Music and lights could trigger malware
- McAfee: cloud storage could help spread viruses
- McAfee: smart homes need security
- McAfee LiveSafe protects PCs, mobiles and the cloud
- Hotmail loophole leaves Facebook accounts vulnerable
- Queen's speech: government works to improve IP matching in criminal investigations
- Antivirus firms "won't co-operate" with PC-hacking police
- Mozilla: government spyware disguising itself as Firefox
- Small businesses worse than consumers on security
- Kaspersky: cyber-attacks could be "catastrophic" for human race
- Hands on with the new Google Maps
- Nokia Lumia 925 review: first look
- Why I won't subscribe to Creative Cloud
- GoPro camera strapped to a remote-control helicopter: the ultimate boy's toy
- Acer Iconia A1 review: first look
- Acer Aspire P3 review: first look
- Acer Aspire R7 review: first look
- How we produce the PC Pro podcast
- Google Now draining iPhone battery
- The government website that doesn't work with IE, Chrome, Firefox, Safari, Macs or smartphones
- Windows 8 picture passwords: are they safe?
- What if there were no viruses?
- The best iPhone security apps
- Best paid-for security suites for 2013
- Best free antivirus for 2013
- How to protect your business against spear phishing
- The zero-day bounty hunters
- Q&A: The life of a bug bounty hunter
- How much is your hard disk worth to hackers?
- Understanding ASI: Advanced Security Intelligence for business
- Yes, I write down my passwords
- How to deal with a ransomware attack
- How secure is your Wi-Fi network?
- How QR codes caught out the security pros
- Why I do not trust Do Not Track... yet
- The hard disks you can "secure" with a single-digit password
- Why I've started using a password manager
- Time to kill off CAPTCHA
- Are today's young people Generation I (for insecure)?
- Ransomware that's better made than antivirus software
There are dozens of exciting prizes up for grabs on PC Pro Competitions. All our competitions are free to enter. Try your luck.ENTER NOW