S\u1ef1 ph\u00e1t tri\u1ec3n m\u1ea1nh m\u1ebd c\u1ee7a c\u00e1c h\u1ec7 th\u1ed1ng ph\u00e2n t\u00e1n, \u0111i\u1ec7n to\u00e1n \u0111\u00e1m m\u00e2y, Internet of Things (IoT) v\u00e0 d\u1ecbch v\u1ee5 s\u1ed1 \u0111\u00e3 khi\u1ebfn an ninh th\u00f4ng tin tr\u1edf th\u00e0nh m\u1ed9t trong nh\u1eefng th\u00e1ch th\u1ee9c c\u1ed1t l\u00f5i c\u1ee7a k\u1ef9 thu\u1eadt ph\u1ea7n m\u1ec1m hi\u1ec7n \u0111\u1ea1i. Kh\u00f4ng c\u00f2n gi\u1edbi h\u1ea1n trong ph\u1ea1m vi b\u1ea3o v\u1ec7 d\u1eef li\u1ec7u hay ng\u0103n ch\u1eb7n x\u00e2m nh\u1eadp, an ninh ng\u00e0y nay g\u1eafn li\u1ec1n v\u1edbi \u0111\u1ed9 tin c\u1eady, kh\u1ea3 n\u0103ng v\u1eadn h\u00e0nh b\u1ec1n v\u1eefng v\u00e0 s\u1ef1 an to\u00e0n c\u1ee7a to\u00e0n b\u1ed9 h\u1ec7 th\u1ed1ng, \u0111\u1eb7c bi\u1ec7t khi c\u00e1c h\u1ec7 th\u1ed1ng \u0111\u00f3 c\u00f3 quy m\u00f4 l\u1edbn, nhi\u1ec1u th\u00e0nh ph\u1ea7n v\u00e0 ch\u1ecbu \u1ea3nh h\u01b0\u1edfng c\u1ee7a c\u1ea3 con ng\u01b0\u1eddi l\u1eabn t\u1ed5 ch\u1ee9c.<\/p>\n\n\n\n
Trong b\u1ed1i c\u1ea3nh \u0111\u00f3, cu\u1ed1n Security Engineering: A Guide to Building Dependable Distributed Systems<\/strong> c\u1ee7a Ross Anderson<\/strong> \u0111\u01b0\u1ee3c xem l\u00e0 m\u1ed9t trong nh\u1eefng t\u00e1c ph\u1ea9m n\u1ec1n t\u1ea3ng v\u00e0 to\u00e0n di\u1ec7n nh\u1ea5t v\u1ec1 k\u1ef9 thu\u1eadt an ninh h\u1ec7 th\u1ed1ng. Kh\u00f4ng ch\u1ec9 \u0111\u01a1n thu\u1ea7n l\u00e0 m\u1ed9t cu\u1ed1n s\u00e1ch v\u1ec1 m\u1eadt m\u00e3 hay an ninh m\u1ea1ng, Security Engineering<\/em> ti\u1ebfp c\u1eadn an ninh nh\u01b0 m\u1ed9t ng\u00e0nh k\u1ef9 thu\u1eadt \u0111\u00fang ngh\u0129a, n\u01a1i c\u00e1c quy\u1ebft \u0111\u1ecbnh thi\u1ebft k\u1ebf ch\u1ecbu t\u00e1c \u0111\u1ed9ng \u0111\u1ed3ng th\u1eddi c\u1ee7a c\u00f4ng ngh\u1ec7, kinh t\u1ebf, h\u00e0nh vi con ng\u01b0\u1eddi v\u00e0 ch\u00ednh s\u00e1ch.<\/p>\n\n\n\n V\u1edbi ph\u1ea1m vi bao qu\u00e1t r\u1ed9ng v\u00e0 chi\u1ec1u s\u00e2u ph\u00e2n t\u00edch hi\u1ebfm c\u00f3, cu\u1ed1n s\u00e1ch \u0111\u00e3 tr\u1edf th\u00e0nh t\u00e0i li\u1ec7u tham kh\u1ea3o chu\u1ea9n m\u1ef1c cho k\u1ef9 s\u01b0 an ninh, ki\u1ebfn tr\u00fac s\u01b0 h\u1ec7 th\u1ed1ng v\u00e0 gi\u1edbi nghi\u00ean c\u1ee9u trong nhi\u1ec1u th\u1eadp k\u1ef7.<\/p>\n\n\n\n Ross Anderson l\u00e0 gi\u00e1o s\u01b0 t\u1ea1i \u0110\u1ea1i h\u1ecdc Cambridge, \u0111\u1ed3ng th\u1eddi l\u00e0 m\u1ed9t trong nh\u1eefng h\u1ecdc gi\u1ea3 \u0111\u1eb7t n\u1ec1n m\u00f3ng cho l\u0129nh v\u1ef1c security engineering v\u00e0 economics of security. Nh\u1eefng nghi\u00ean c\u1ee9u c\u1ee7a \u00f4ng c\u00f3 \u1ea3nh h\u01b0\u1edfng s\u00e2u r\u1ed9ng \u0111\u1ebfn c\u00e1ch gi\u1edbi k\u1ef9 thu\u1eadt nh\u00ecn nh\u1eadn an ninh \u2013 kh\u00f4ng ph\u1ea3i l\u00e0 m\u1ed9t l\u1edbp b\u1ea3o v\u1ec7 b\u1ed5 sung, m\u00e0 l\u00e0 thu\u1ed9c t\u00ednh c\u1ed1t l\u00f5i c\u1ee7a h\u1ec7 thvi\u1ed1ng.<\/p>\n\n\n\n \u1ea4n b\u1ea3n th\u1ee9 ba c\u1ee7a cu\u1ed1n s\u00e1ch \u0111\u01b0\u1ee3c c\u1eadp nh\u1eadt m\u1ea1nh m\u1ebd, b\u1ed5 sung c\u00e1c ch\u1ee7 \u0111\u1ec1 hi\u1ec7n \u0111\u1ea1i nh\u01b0 \u0111i\u1ec7n to\u00e1n \u0111\u00e1m m\u00e2y, IoT, h\u1ec7 th\u1ed1ng c\u00f4ng nghi\u1ec7p, c\u00f9ng nh\u1eefng ph\u00e2n t\u00edch m\u1edbi v\u1ec1 kinh t\u1ebf v\u00e0 ch\u00ednh s\u00e1ch an ninh.<\/p>\n\n\n\n Ngay t\u1eeb nh\u1eefng ch\u01b0\u01a1ng \u0111\u1ea7u, Ross Anderson \u0111\u00e3 \u0111\u1ecbnh v\u1ecb r\u00f5 r\u00e0ng kh\u00e1i ni\u1ec7m security engineering<\/em>. Theo \u00f4ng, an ninh kh\u00f4ng ch\u1ec9 l\u00e0 vi\u1ec7c tri\u1ec3n khai c\u00e1c c\u01a1 ch\u1ebf k\u1ef9 thu\u1eadt r\u1eddi r\u1ea1c nh\u01b0 m\u00e3 h\u00f3a, x\u00e1c th\u1ef1c hay t\u01b0\u1eddng l\u1eeda. Thay v\u00e0o \u0111\u00f3, an ninh l\u00e0 ngh\u1ec7 thu\u1eadt v\u00e0 khoa h\u1ecdc thi\u1ebft k\u1ebf h\u1ec7 th\u1ed1ng c\u00f3 th\u1ec3 ti\u1ebfp t\u1ee5c ho\u1ea1t \u0111\u1ed9ng \u0111\u00fang \u0111\u1eafn ngay c\u1ea3 khi ch\u1ecbu l\u1ed7i, t\u1ea5n c\u00f4ng ho\u1eb7c h\u00e0nh vi l\u1ea1m d\u1ee5ng.<\/p>\n\n\n\n C\u00e1ch ti\u1ebfp c\u1eadn n\u00e0y gi\u00fap ng\u01b0\u1eddi \u0111\u1ecdc thay \u0111\u1ed5i t\u01b0 duy: thay v\u00ec h\u1ecfi \u201cl\u00e0m sao \u0111\u1ec3 ng\u0103n ch\u1eb7n m\u1ecdi t\u1ea5n c\u00f4ng?\u201d<\/em>, c\u00e2u h\u1ecfi \u0111\u00fang ph\u1ea3i l\u00e0 \u201ch\u1ec7 th\u1ed1ng s\u1ebd ho\u1ea1t \u0111\u1ed9ng nh\u01b0 th\u1ebf n\u00e0o khi m\u1ed9t ph\u1ea7n trong \u0111\u00f3 b\u1ecb x\u00e2m ph\u1ea1m?\u201d<\/em>.<\/p>\n\n\n\n Cu\u1ed1n s\u00e1ch ph\u00e2n t\u00edch chi ti\u1ebft c\u00e1c m\u1ee5c ti\u00eau an ninh c\u1ed1t l\u00f5i, n\u1ed5i b\u1eadt l\u00e0 b\u1ed9 ba Confidentiality \u2013 Integrity \u2013 Availability (CIA)<\/strong>, \u0111\u1ed3ng th\u1eddi ch\u1ec9 ra r\u1eb1ng trong th\u1ef1c t\u1ebf, c\u00e1c m\u1ee5c ti\u00eau n\u00e0y th\u01b0\u1eddng xung \u0111\u1ed9t l\u1eabn nhau.<\/p>\n\n\n\n Ross Anderson ti\u1ebfp t\u1ee5c tr\u00ecnh b\u00e0y c\u00e1c m\u00f4 h\u00ecnh an ninh kinh \u0111i\u1ec3n nh\u01b0:<\/p>\n\n\n\n \u0110i\u1ec3m \u0111\u1eb7c bi\u1ec7t l\u00e0 t\u00e1c gi\u1ea3 kh\u00f4ng ch\u1ec9 m\u00f4 t\u1ea3 m\u00f4 h\u00ecnh, m\u00e0 c\u00f2n ph\u00e2n t\u00edch b\u1ed1i c\u1ea3nh s\u1eed d\u1ee5ng, \u01b0u \u0111i\u1ec3m, h\u1ea1n ch\u1ebf v\u00e0 nh\u1eefng gi\u1ea3 \u0111\u1ecbnh ng\u1ea7m khi\u1ebfn nhi\u1ec1u m\u00f4 h\u00ecnh th\u1ea5t b\u1ea1i khi \u00e1p d\u1ee5ng m\u00e1y m\u00f3c v\u00e0o h\u1ec7 th\u1ed1ng th\u1ef1c t\u1ebf.<\/p>\n\n\n\n M\u1ed9t ph\u1ea7n l\u1edbn c\u1ee7a s\u00e1ch t\u1eadp trung v\u00e0o c\u00e1c c\u01a1 ch\u1ebf k\u1ef9 thu\u1eadt n\u1ec1n t\u1ea3ng:<\/p>\n\n\n\n T\u00e1c gi\u1ea3 nhi\u1ec1u l\u1ea7n nh\u1ea5n m\u1ea1nh r\u1eb1ng ph\u1ea7n l\u1edbn s\u1ef1 c\u1ed1 an ninh kh\u00f4ng \u0111\u1ebfn t\u1eeb thu\u1eadt to\u00e1n y\u1ebfu, m\u00e0 \u0111\u1ebfn t\u1eeb thi\u1ebft k\u1ebf h\u1ec7 th\u1ed1ng k\u00e9m ho\u1eb7c gi\u1ea3 \u0111\u1ecbnh sai v\u1ec1 m\u00f4i tr\u01b0\u1eddng v\u1eadn h\u00e0nh.<\/p>\n\n\n\n M\u1ed9t trong nh\u1eefng \u0111\u00f3ng g\u00f3p l\u1edbn nh\u1ea5t c\u1ee7a Security Engineering<\/em> l\u00e0 vi\u1ec7c \u0111\u01b0a kinh t\u1ebf h\u1ecdc v\u00e0 h\u00e0nh vi con ng\u01b0\u1eddi v\u00e0o trung t\u00e2m c\u1ee7a ph\u00e2n t\u00edch an ninh.<\/p>\n\n\n\n Ross Anderson ch\u1ec9 ra r\u1eb1ng:<\/p>\n\n\n\n Nh\u1eefng ph\u00e2n t\u00edch n\u00e0y gi\u00fap ng\u01b0\u1eddi \u0111\u1ecdc hi\u1ec3u r\u1eb1ng an ninh th\u1ea5t b\u1ea1i th\u01b0\u1eddng l\u00e0 h\u1ec7 qu\u1ea3 c\u1ee7a incentive sai l\u1ec7ch, ch\u1ee9 kh\u00f4ng ch\u1ec9 do thi\u1ebfu c\u00f4ng ngh\u1ec7.<\/p>\n\n\n\n Cu\u1ed1n s\u00e1ch ch\u1ee9a h\u00e0ng lo\u1ea1t nghi\u00ean c\u1ee9u t\u00ecnh hu\u1ed1ng th\u1ef1c t\u1ebf trong:<\/p>\n\n\n\n C\u00e1c v\u00ed d\u1ee5 n\u00e0y cho th\u1ea5y an ninh lu\u00f4n l\u00e0 b\u00e0i to\u00e1n \u0111\u00e1nh \u0111\u1ed5i gi\u1eefa b\u1ea3o m\u1eadt, chi ph\u00ed, hi\u1ec7u n\u0103ng v\u00e0 kh\u1ea3 n\u0103ng s\u1eed d\u1ee5ng<\/strong>, v\u00e0 kh\u00f4ng t\u1ed3n t\u1ea1i gi\u1ea3i ph\u00e1p ho\u00e0n h\u1ea3o tuy\u1ec7t \u0111\u1ed1i.<\/p>\n\n\n\n \u0110i\u1ec3m gi\u00e1 tr\u1ecb l\u1edbn nh\u1ea5t c\u1ee7a Security Engineering: A Guide to Building Dependable Distributed Systems<\/strong> n\u1eb1m \u1edf vi\u1ec7c cu\u1ed1n s\u00e1ch gi\u00fap ng\u01b0\u1eddi \u0111\u1ecdc hi\u1ec3u v\u00e0 ti\u1ebfp c\u1eadn an ninh nh\u01b0 m\u1ed9t v\u1ea5n \u0111\u1ec1 k\u1ef9 thu\u1eadt \u1edf c\u1ea5p \u0111\u1ed9 ki\u1ebfn tr\u00fac, thay v\u00ec coi b\u1ea3o m\u1eadt l\u00e0 t\u1eadp h\u1ee3p c\u00e1c bi\u1ec7n ph\u00e1p ph\u00f2ng v\u1ec7 b\u1ed5 sung sau khi h\u1ec7 th\u1ed1ng \u0111\u00e3 \u0111\u01b0\u1ee3c x\u00e2y d\u1ef1ng. Ross Anderson nh\u1ea5n m\u1ea1nh r\u1eb1ng an ninh ph\u1ea3i \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf ngay t\u1eeb \u0111\u1ea7u, g\u1eafn ch\u1eb7t v\u1edbi c\u1ea5u tr\u00fac h\u1ec7 th\u1ed1ng, m\u00f4 h\u00ecnh tin c\u1eady v\u00e0 c\u00e1ch ph\u00e2n b\u1ed5 quy\u1ec1n h\u1ea1n.<\/p>\n\n\n\n Cu\u1ed1n s\u00e1ch \u0111\u1eb7c bi\u1ec7t thuy\u1ebft ph\u1ee5c \u1edf kh\u1ea3 n\u0103ng ph\u00e2n t\u00edch nguy\u00ean nh\u00e2n s\u00e2u xa c\u1ee7a c\u00e1c th\u1ea5t b\u1ea1i an ninh trong th\u1ef1c t\u1ebf. Thay v\u00ec t\u1eadp trung v\u00e0o l\u1ed7 h\u1ed5ng hay k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng, t\u00e1c gi\u1ea3 ch\u1ec9 ra r\u1eb1ng ph\u1ea7n l\u1edbn s\u1ef1 c\u1ed1 xu\u1ea5t ph\u00e1t t\u1eeb thi\u1ebft k\u1ebf sai, gi\u1ea3 \u0111\u1ecbnh kh\u00f4ng th\u1ef1c t\u1ebf v\u1ec1 m\u00f4i tr\u01b0\u1eddng v\u1eadn h\u00e0nh v\u00e0 vi\u1ec7c \u0111\u00e1nh gi\u00e1 kh\u00f4ng \u0111\u1ea7y \u0111\u1ee7 c\u00e1c m\u1ed1i \u0111e d\u1ecda. C\u00e1ch ti\u1ebfp c\u1eadn n\u00e0y gi\u00fap ng\u01b0\u1eddi \u0111\u1ecdc tr\u00e1nh t\u01b0 duy \u201cv\u00e1 l\u1ed7i\u201d, \u0111\u1ed3ng th\u1eddi h\u00ecnh th\u00e0nh n\u0103ng l\u1ef1c \u0111\u00e1nh gi\u00e1 r\u1ee7i ro m\u1ed9t c\u00e1ch c\u00f3 h\u1ec7 th\u1ed1ng.<\/p>\n\n\n\n Ngo\u00e0i y\u1ebfu t\u1ed1 k\u1ef9 thu\u1eadt, Security Engineering<\/em> c\u00f2n cung c\u1ea5p g\u00f3c nh\u00ecn hi\u1ebfm c\u00f3 v\u1ec1 vai tr\u00f2 c\u1ee7a con ng\u01b0\u1eddi, t\u1ed5 ch\u1ee9c v\u00e0 \u0111\u1ed9ng l\u1ef1c kinh t\u1ebf trong an ninh h\u1ec7 th\u1ed1ng. T\u00e1c gi\u1ea3 cho th\u1ea5y nhi\u1ec1u h\u1ec7 th\u1ed1ng k\u00e9m an to\u00e0n kh\u00f4ng ph\u1ea3i v\u00ec thi\u1ebfu c\u00f4ng ngh\u1ec7, m\u00e0 v\u00ec c\u00e1c quy\u1ebft \u0111\u1ecbnh thi\u1ebft k\u1ebf b\u1ecb chi ph\u1ed1i b\u1edfi chi ph\u00ed, l\u1ee3i \u00edch kinh doanh v\u00e0 h\u00e0nh vi ng\u01b0\u1eddi d\u00f9ng. Ch\u00ednh s\u1ef1 k\u1ebft h\u1ee3p gi\u1eefa k\u1ef9 thu\u1eadt v\u00e0 b\u1ed1i c\u1ea3nh th\u1ef1c t\u1ebf n\u00e0y khi\u1ebfn cu\u1ed1n s\u00e1ch c\u00f3 gi\u00e1 tr\u1ecb l\u00e2u d\u00e0i, v\u01b0\u1ee3t qua gi\u1edbi h\u1ea1n c\u1ee7a c\u00e1c c\u00f4ng ngh\u1ec7 hay xu h\u01b0\u1edbng nh\u1ea5t th\u1eddi.<\/p>\n\n\n\n Security Engineering: A Guide to Building Dependable Distributed Systems<\/em> ph\u00f9 h\u1ee3p v\u1edbi nh\u1eefng \u0111\u1ed1i t\u01b0\u1ee3ng c\u00f3 n\u1ec1n t\u1ea3ng k\u1ef9 thu\u1eadt nh\u1ea5t \u0111\u1ecbnh<\/strong> v\u00e0 mong mu\u1ed1n hi\u1ec3u an ninh \u1edf c\u1ea5p \u0111\u1ed9 h\u1ec7 th\u1ed1ng, thay v\u00ec ch\u1ec9 d\u1eebng l\u1ea1i \u1edf c\u00e1c k\u1ef9 thu\u1eadt ph\u00f2ng v\u1ec7 c\u1ee5 th\u1ec3.<\/p>\n\n\n\n Tr\u01b0\u1edbc h\u1ebft, cu\u1ed1n s\u00e1ch \u0111\u1eb7c bi\u1ec7t h\u1eefu \u00edch cho k\u1ef9 s\u01b0 ph\u1ea7n m\u1ec1m v\u00e0 ki\u1ebfn tr\u00fac s\u01b0 h\u1ec7 th\u1ed1ng \u0111ang tham gia thi\u1ebft k\u1ebf ho\u1eb7c v\u1eadn h\u00e0nh c\u00e1c h\u1ec7 th\u1ed1ng ph\u00e2n t\u00e1n, n\u1ec1n t\u1ea3ng d\u1ecbch v\u1ee5 l\u1edbn v\u00e0 \u1ee9ng d\u1ee5ng c\u00f3 y\u00eau c\u1ea7u cao v\u1ec1 \u0111\u1ed9 tin c\u1eady. V\u1edbi nh\u00f3m \u0111\u1ed1i t\u01b0\u1ee3ng n\u00e0y, s\u00e1ch gi\u00fap l\u00e0m r\u00f5 m\u1ed1i li\u00ean h\u1ec7 gi\u1eefa ki\u1ebfn tr\u00fac, ph\u00e2n quy\u1ec1n, lu\u1ed3ng d\u1eef li\u1ec7u v\u00e0 m\u1ee9c \u0111\u1ed9 an to\u00e0n t\u1ed5ng th\u1ec3 c\u1ee7a h\u1ec7 th\u1ed1ng \u2014 nh\u1eefng y\u1ebfu t\u1ed1 th\u01b0\u1eddng kh\u00f3 nh\u1eadn th\u1ea5y n\u1ebfu ch\u1ec9 t\u1eadp trung v\u00e0o code.<\/p>\n\n\n\n B\u00ean c\u1ea1nh \u0111\u00f3, chuy\u00ean gia an ninh m\u1ea1ng, k\u1ef9 s\u01b0 DevSecOps v\u00e0 ki\u1ebfn tr\u00fac s\u01b0 an ninh s\u1ebd t\u00ecm th\u1ea5y trong cu\u1ed1n s\u00e1ch m\u1ed9t khung t\u01b0 duy to\u00e0n di\u1ec7n \u0111\u1ec3 \u0111\u00e1nh gi\u00e1 r\u1ee7i ro. N\u1ed9i dung s\u00e1ch gi\u00fap h\u1ecd hi\u1ec3u v\u00ec sao nhi\u1ec1u c\u01a1 ch\u1ebf ph\u00f2ng th\u1ee7 th\u1ea5t b\u1ea1i trong th\u1ef1c t\u1ebf, t\u1eeb \u0111\u00f3 \u0111\u01b0a ra quy\u1ebft \u0111\u1ecbnh ph\u00f9 h\u1ee3p h\u01a1n khi t\u00edch h\u1ee3p an ninh v\u00e0o v\u00f2ng \u0111\u1eddi ph\u00e1t tri\u1ec3n v\u00e0 v\u1eadn h\u00e0nh h\u1ec7 th\u1ed1ng.<\/p>\n\n\n\n Cu\u1ed1n s\u00e1ch c\u0169ng r\u1ea5t ph\u00f9 h\u1ee3p v\u1edbi nghi\u00ean c\u1ee9u sinh, gi\u1ea3ng vi\u00ean v\u00e0 ng\u01b0\u1eddi h\u1ecdc chuy\u00ean s\u00e2u trong c\u00e1c l\u0129nh v\u1ef1c an ninh th\u00f4ng tin, h\u1ec7 th\u1ed1ng ph\u00e2n t\u00e1n v\u00e0 k\u1ef9 thu\u1eadt ph\u1ea7n m\u1ec1m. L\u01b0\u1ee3ng ki\u1ebfn th\u1ee9c n\u1ec1n t\u1ea3ng c\u00f9ng c\u00e1c ph\u00e2n t\u00edch li\u00ean ng\u00e0nh trong s\u00e1ch gi\u00fap m\u1edf r\u1ed9ng t\u01b0 duy nghi\u00ean c\u1ee9u, \u0111\u1eb7c bi\u1ec7t \u1edf giao \u0111i\u1ec3m gi\u1eefa k\u1ef9 thu\u1eadt, kinh t\u1ebf v\u00e0 ch\u00ednh s\u00e1ch an ninh.<\/p>\n\n\n\n Cu\u1ed1i c\u00f9ng, qu\u1ea3n l\u00fd k\u1ef9 thu\u1eadt, CTO v\u00e0 ng\u01b0\u1eddi ra quy\u1ebft \u0111\u1ecbnh c\u00f4ng ngh\u1ec7 c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng cu\u1ed1n s\u00e1ch nh\u01b0 m\u1ed9t t\u00e0i li\u1ec7u \u0111\u1ecbnh h\u01b0\u1edbng. D\u00f9 kh\u00f4ng t\u1eadp trung v\u00e0o chi ti\u1ebft tri\u1ec3n khai, s\u00e1ch gi\u00fap nh\u00f3m \u0111\u1ed1i t\u01b0\u1ee3ng n\u00e0y hi\u1ec3u r\u00f5 c\u00e1c \u0111\u00e1nh \u0111\u1ed5i gi\u1eefa an ninh, chi ph\u00ed v\u00e0 kh\u1ea3 n\u0103ng v\u1eadn h\u00e0nh, t\u1eeb \u0111\u00f3 \u0111\u01b0a ra c\u00e1c quy\u1ebft \u0111\u1ecbnh chi\u1ebfn l\u01b0\u1ee3c d\u1ef1a tr\u00ean r\u1ee7i ro thay v\u00ec c\u1ea3m t\u00ednh.<\/p>\n\n\n\n Security Engineering: A Guide to Building Dependable Distributed Systems<\/em> kh\u00f4ng ch\u1ec9 l\u00e0 m\u1ed9t cu\u1ed1n s\u00e1ch v\u1ec1 an ninh th\u00f4ng tin, m\u00e0 l\u00e0 m\u1ed9t t\u00e1c ph\u1ea9m n\u1ec1n t\u1ea3ng \u0111\u1ecbnh h\u00ecnh c\u00e1ch ti\u1ebfp c\u1eadn an ninh nh\u01b0 m\u1ed9t ng\u00e0nh k\u1ef9 thu\u1eadt h\u1ec7 th\u1ed1ng ho\u00e0n ch\u1ec9nh. Th\u00f4ng qua vi\u1ec7c k\u1ebft h\u1ee3p ch\u1eb7t ch\u1ebd gi\u1eefa nguy\u00ean l\u00fd k\u1ef9 thu\u1eadt, ki\u1ebfn tr\u00fac h\u1ec7 th\u1ed1ng, y\u1ebfu t\u1ed1 con ng\u01b0\u1eddi v\u00e0 \u0111\u1ed9ng l\u1ef1c kinh t\u1ebf, Ross Anderson \u0111\u00e3 ch\u1ec9 ra r\u1eb1ng an ninh kh\u00f4ng th\u1ec3 \u0111\u1ea1t \u0111\u01b0\u1ee3c b\u1eb1ng c\u00e1c gi\u1ea3i ph\u00e1p r\u1eddi r\u1ea1c hay mang t\u00ednh \u0111\u1ed1i ph\u00f3, m\u00e0 ph\u1ea3i \u0111\u01b0\u1ee3c thi\u1ebft k\u1ebf c\u00f3 ch\u1ee7 \u0111\u00edch ngay t\u1eeb \u0111\u1ea7u.<\/p>\n\n\n\n Gi\u00e1 tr\u1ecb c\u1ed1t l\u00f5i c\u1ee7a cu\u1ed1n s\u00e1ch n\u1eb1m \u1edf vi\u1ec7c gi\u00fap ng\u01b0\u1eddi \u0111\u1ecdc nh\u1eadn di\u1ec7n v\u00e0 hi\u1ec3u r\u00f5 b\u1ea3n ch\u1ea5t c\u1ee7a c\u00e1c v\u1ea5n \u0111\u1ec1 an ninh, thay v\u00ec ch\u1ec9 t\u1eadp trung v\u00e0o tri\u1ec7u ch\u1ee9ng b\u1ec1 m\u1eb7t nh\u01b0 l\u1ed7 h\u1ed5ng hay k\u1ef9 thu\u1eadt t\u1ea5n c\u00f4ng. C\u00e1ch ti\u1ebfp c\u1eadn n\u00e0y \u0111\u1eb7c bi\u1ec7t quan tr\u1ecdng trong b\u1ed1i c\u1ea3nh c\u00e1c h\u1ec7 th\u1ed1ng ph\u00e2n t\u00e1n ng\u00e0y c\u00e0ng ph\u1ee9c t\u1ea1p, n\u01a1i th\u1ea5t b\u1ea1i an ninh th\u01b0\u1eddng b\u1eaft ngu\u1ed3n t\u1eeb ki\u1ebfn tr\u00fac, gi\u1ea3 \u0111\u1ecbnh thi\u1ebft k\u1ebf v\u00e0 t\u1ed5 ch\u1ee9c v\u1eadn h\u00e0nh h\u01a1n l\u00e0 t\u1eeb c\u00f4ng ngh\u1ec7 \u0111\u01a1n l\u1ebb.<\/p>\n\n\n\n V\u1edbi ph\u1ea1m vi bao qu\u00e1t r\u1ed9ng, chi\u1ec1u s\u00e2u ph\u00e2n t\u00edch cao v\u00e0 gi\u00e1 tr\u1ecb l\u00e2u d\u00e0i v\u01b0\u1ee3t qua c\u00e1c xu h\u01b0\u1edbng c\u00f4ng ngh\u1ec7 ng\u1eafn h\u1ea1n, Security Engineering<\/em> x\u1ee9ng \u0111\u00e1ng \u0111\u01b0\u1ee3c xem l\u00e0 t\u00e0i li\u1ec7u tham kh\u1ea3o kinh \u0111i\u1ec3n cho b\u1ea5t k\u1ef3 ai nghi\u00eam t\u00fac trong vi\u1ec7c x\u00e2y d\u1ef1ng c\u00e1c h\u1ec7 th\u1ed1ng ph\u00e2n t\u00e1n an to\u00e0n, b\u1ec1n v\u1eefng v\u00e0 \u0111\u00e1ng tin c\u1eady. \u0110\u00e2y kh\u00f4ng ph\u1ea3i l\u00e0 cu\u1ed1n s\u00e1ch \u0111\u1ec3 \u0111\u1ecdc nhanh, m\u00e0 l\u00e0 cu\u1ed1n s\u00e1ch \u0111\u1ec3 \u0111\u1ecdc k\u1ef9, suy ng\u1eabm v\u00e0 \u00e1p d\u1ee5ng l\u00e2u d\u00e0i trong th\u1ef1c ti\u1ec5n k\u1ef9 thu\u1eadt.<\/p>\n\n\n\n B\u1ea1n c\u00f3 th\u1ec3 d\u1ec5 d\u00e0ng t\u1ea3i xu\u1ed1ng ho\u1eb7c \u0111\u1ecdc tr\u1ef1c tuy\u1ebfn cu\u1ed1n s\u00e1ch n\u00e0y tr\u00ean nhi\u1ec1u n\u1ec1n t\u1ea3ng kh\u00e1c nhau nh\u01b0 SlideShare, Scribd, Issuu hay Studylid. M\u1ed7i n\u1ec1n t\u1ea3ng \u0111\u1ec1u h\u1ed7 tr\u1ee3 \u0111\u1ecdc tr\u1ef1c ti\u1ebfp, l\u01b0u l\u1ea1i \u0111\u1ec3 xem sau v\u00e0 t\u1ea3i v\u1ec1 khi c\u1ea7n, r\u1ea5t ti\u1ec7n cho c\u1ea3 m\u00e1y t\u00ednh<\/a> l\u1eabn \u0111i\u1ec7n tho\u1ea1i. H\u00e3y ch\u1ecdn n\u01a1i ph\u00f9 h\u1ee3p nh\u1ea5t v\u1edbi th\u00f3i quen s\u1eed d\u1ee5ng c\u1ee7a b\u1ea1n \u0111\u1ec3 tr\u1ea3i nghi\u1ec7m tr\u1ecdn v\u1eb9n n\u1ed9i dung cu\u1ed1n s\u00e1ch.<\/p>\n\n\n\n [1] R. Anderson, Security Engineering: A Guide to Building Dependable Distributed Systems<\/em>, 3rd ed. Hoboken, NJ, USA: Wiley, 2021. Kh\u00f4ng ch\u1ec9 \u0111\u01a1n thu\u1ea7n l\u00e0 m\u1ed9t cu\u1ed1n s\u00e1ch v\u1ec1 m\u1eadt m\u00e3 hay an ninh m\u1ea1ng, Security Engineering ti\u1ebfp c\u1eadn an ninh nh\u01b0 m\u1ed9t ng\u00e0nh k\u1ef9 thu\u1eadt \u0111\u00fang ngh\u0129a, n\u01a1i c\u00e1c quy\u1ebft \u0111\u1ecbnh thi\u1ebft k\u1ebf ch\u1ecbu t\u00e1c \u0111\u1ed9ng \u0111\u1ed3ng th\u1eddi c\u1ee7a c\u00f4ng ngh\u1ec7, kinh t\u1ebf, h\u00e0nh vi con ng\u01b0\u1eddi v\u00e0 ch\u00ednh s\u00e1ch.<\/p>\n","protected":false},"author":1,"featured_media":2798,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"googlesitekit_rrm_CAowieHDDA:productID":"","footnotes":""},"categories":[5],"tags":[66],"class_list":["post-2797","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tai-lieu","tag-tai-lieu"],"_links":{"self":[{"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/posts\/2797","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/comments?post=2797"}],"version-history":[{"count":3,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/posts\/2797\/revisions"}],"predecessor-version":[{"id":3178,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/posts\/2797\/revisions\/3178"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/media\/2798"}],"wp:attachment":[{"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/media?parent=2797"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/categories?post=2797"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kienthucmo.com\/vi\/wp-json\/wp\/v2\/tags?post=2797"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}1. Th\u00f4ng tin c\u01a1 b\u1ea3n v\u1ec1 cu\u1ed1n s\u00e1ch<\/h2>\n\n\n\n
\n
2. T\u00f3m t\u1eaft s\u01a1 l\u01b0\u1ee3c n\u1ed9i dung<\/h2>\n\n\n\n
2.1. An ninh nh\u01b0 m\u1ed9t ng\u00e0nh k\u1ef9 thu\u1eadt<\/h3>\n\n\n\n
2.2. C\u00e1c m\u1ee5c ti\u00eau v\u00e0 m\u00f4 h\u00ecnh an ninh<\/h3>\n\n\n\n
\n
2.3. C\u01a1 ch\u1ebf k\u1ef9 thu\u1eadt v\u00e0 t\u00e0i nguy\u00ean h\u1ec7 th\u1ed1ng<\/h3>\n\n\n\n
\n
2.4. Y\u1ebfu t\u1ed1 con ng\u01b0\u1eddi v\u00e0 kinh t\u1ebf an ninh<\/h3>\n\n\n\n
\n
2.5. Nghi\u00ean c\u1ee9u t\u00ecnh hu\u1ed1ng v\u00e0 l\u0129nh v\u1ef1c \u1ee9ng d\u1ee5ng<\/h3>\n\n\n\n
\n
3. V\u00ec sao b\u1ea1n n\u00ean \u0111\u1ecdc cu\u1ed1n s\u00e1ch n\u00e0y?<\/h2>\n\n\n\n
4. Cu\u1ed1n s\u00e1ch n\u00e0y d\u00e0nh cho ai?<\/h2>\n\n\n\n
5. K\u1ebft lu\u1eadn<\/h2>\n\n\n\n
6. T\u1ea3i xu\u1ed1ng, tr\u1ea3i nghi\u1ec7m<\/h2>\n\n\n\n
\n
7. T\u00e0i li\u1ec7u tham kh\u1ea3o<\/h2>\n\n\n\n
[2] R. Anderson, \u201cWhy Information Security Is Hard\u2014An Economic Perspective,\u201d in Proc. 17th Annual Computer Security Applications Conference (ACSAC)<\/em>, New Orleans, LA, USA, 2001, pp. 358\u2013365, doi: 10.1109\/ACSAC.2001.991552.
[3] M. Bishop, Computer Security: Art and Science<\/em>, 2nd ed. Boston, MA, USA: Addison-Wesley, 2019.
[4] B. Schneier, Secrets and Lies: Digital Security in a Networked World<\/em>. New York, NY, USA: Wiley, 2000.
[5] R. Anderson, \u201cSecurity Engineering Lecture Notes,\u201d Computer Laboratory, University of Cambridge, Cambridge, U.K., [Online]. Available: https:\/\/www.cl.cam.ac.uk\/~rja14\/book.html<\/a>
[6] IEEE Security & Privacy Society, \u201cBook Review: Security Engineering (3rd Edition),\u201d IEEE Security & Privacy<\/em>, 2021.<\/p>\n","protected":false},"excerpt":{"rendered":"