Microsoft Encyclopedia of Security

I changed my review - I previously gave a 3 to this book, as I had done a cursory browsing and it looked great. Lately I have been focusing on security and trying to use the book as an actual reference and found it has some big omissions and mistakes and is NOT a reference -- Which deserves a 1 -- I am however giving it a 2 because it has coverage of lots of subjects which are important. If you are a beginner in the security area, this book may prove valuable, but be forwarned that you may be de-railed in some concepts as they are plain wrong. So far what I have found: Notable omissions: Subject, Object, Domain (not the NT one), Capability, Protected susbsystem, TCB, Reference monitor. Errors: RBAC, Principal, Ticket. FWIW here goes my previous review: Handy Reference - 3 This encyclopedia is a good "1st base" reference that gets you closer to security definitions and perspectives. Security is a constantly moving target, so some definitions are dated or lack accuracy, which is why I say it is just the 1st base. You may need to seek your 2nd and 3rd bases of information on the internet or via updated security information sources. Nevertheless, the book has value in that it allows me to avoid some amount of googling.