I am not a security expert, so I am not in a position to understand how much information contained in the book is new, part of it was new and valuable to me. The author is, opinionated, but, after all, the book is less controversial than I expected, mostly dominated by pragmatic common-sense. The chapters on “Open Source Security” and “Responsible Disclosure” were very interesting to me, even if they show the peculiar author’s bias (but we are all biased in a way or another).
The book format is indeed very handy, divided into multiple, short, self-contained chapters. I’ve read most of it during my lunch breaks

Rating: 4 / 5

John Viega’s latest book “Myths of Security” has something for everyone – from the everyday home computer user to the corporate security analyst. He gives some sound advice on how to secure your computers with some unique insights. He also offers up some thought-provoking ideas on what the security industry should be doing to improve itself.

As the title indicates, Mr. Viega dispels some common beliefs about computer security. One of my favorites is “Do anti-virus vendors write their own viruses?” Bravely, Mr. Viega also takes some shots at Google, Bruce Schneier and Trusteer while he dispels some myths about them. He tackles questions about the security of open source and virtualization.

The book is organized into many (40+) short (10 pages or less) chapters. Each chapter addresses a specific topic. This makes reading this book very easy. The topics seem to be directed to certain audiences – he provides tips to the average consumer on how to secure their home computer and also explains why anti-virus is so slow. He devotes several chapters to security product vendors providing recommendation on how they can improve their products. He even gives direction to IT security people on what security technologies might be most useful and why.

Rating: 5 / 5