Skip to Content
Taming the Hacking Storm
book

Taming the Hacking Storm

by Roger A. Grimes
April 2025
Intermediate to advanced
336 pages
9h 37m
English
Wiley
Content preview from Taming the Hacking Storm

Chapter 11Trust Assurance Service

Trust plays a significant role in whether people want to use the Internet or not. Part of that trust is in identifying who is who when communicating across a network. Identity is base and essential to network communications. Most computers have multiple “identifiers” to communicate over a network.

Nearly every computer has an Address Resolution Protocol (ARP) service (to resolve local IP addresses to physical addresses), a Dynamic Host Configuration Protocol (DHCP) client (to get assigned an IP Address), a Domain Naming Service (DNS) client (to convert domain names to IP addresses), Remote Procedure Call (RPC) service, and NetBIOS resolution client. These are all the clients and protocols needed to make the average computer device connect over a network and work by default. Even if you tell your local firewall to block all connections by default, it will usually still allow these services to send and answer essential network requests. If it didn’t, your computer would not work over the network, leaving the average user very confused about what is going on.

But we don’t have a default Internet security service to ask and determine “Can I trust this connection or content I’m about to interact with?” Nope, all our computers will just as readily connect to a rogue site and interact with malicious content just as readily as it will interact with legitimate sites and content. The computer has no way of knowing if what it is connecting to or displaying ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

AirBnbBlueOriginElectronic ArtsHomeDepotNasdaqRakutenTata Consultancy Services

QuotationMarkO’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.
Julian F.
Head of Cybersecurity
QuotationMarkI wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.
Addison B.
Field Engineer
QuotationMarkI’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.
Amir M.
Data Platform Tech Lead
QuotationMarkI'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Mark W.
Embedded Software Engineer

You might also like

Hacking Cryptography

Hacking Cryptography

Kamran Khan, Bill Cox
Offensive Security Using Python

Offensive Security Using Python

Rejah Rehim, Manindar Mohan
Learning Ransomware Response & Recovery

Learning Ransomware Response & Recovery

W. Curtis Preston, Michael Saylor
Ethical Hacking

Ethical Hacking

Daniel G. Graham

Publisher Resources

ISBN: 9781394349586Purchase Link