StillSecure, After All These Years: security tips

5 posts categorized "security tips"

April 23, 2008

An old/new kind of cybercrime/cybercriminal

I was reading Ellen Messmer's report today about the security incident over at Lending Tree. Yeah, I know another information breach by insiders case, BFD. But I think there is something different about this one. From what I am reading this is more a case of corporate espionage than the usual hackers for fraud and financial gain type of deal. For a long time now we have been hearing from people like Bruce Schneier in this article talk about the front in security moving from dealing with script kiddies working for kicks to organized cybercriminal gangs that are in it for financial gain. Mostly the gain is about identity theft and gaining access to funds fraudulently.

In the Lending Tree case though there was not evidently a motive to use the ill begotten information for identity theft or fraud. Rather they represented Glengary, Glen Ross leads. That is the names, contacts and qualifications of people looking for mortgages. A mortgage company would consider these leads more valuable than gold, more valuable even that gasoline! So to my mind this is more a case of corporate espionage where a company that is competitive to Lending Tree infiltrated their networks through people, rather than technology to gain access to their corporate crown jewels.

This sort of stealing your competitors information has been going on for decades, well before computers and cybercrime were around. However, this is a great example of some things not going out of style. Obtaining your competitors information is a great motive, computers are just the container where the information is kept. Sort of like cracking a safe. It is always easier getting into a safe if you are given the combination, than if you have to crack it yourself.

Yet another front in the cybercrime war that security folks need to be on guard for!

11:13 AM in Current Affairs, General Security, security tips, the security industry | Permalink | Comments (0) | TrackBack (0)

January 04, 2007

A new, pragmatic approach to security - is it the future of security?

New times call for new ideas. In security we have seen a revolution over the past few years in the depth and breadth of security solutions that are available to the security administrator and CSO. However, all of this new technology and the methods of securing our businesses and data have not left us any safer or more secure. The reasons for this are many. Some are, the increased sophistication of the bad guys tools, the monetary reward to the hacker, the lack of secure software development, mono-cultural computing environments, etc. So throwing more technology and dollars at the problem is not the solution. What is the professional security person to do? The answer comes from our friend Mike Rothman. Mike has had a vision of writing a book and developing a community that offers the over-stressed security professional a new way of dealing with the problems. A blueprint for success in security. A realistic and holistic model to succeed in these tough new times. In short a pragmatic methodology to becoming a successful security manager and a happier person. He calls the book and the soon to be launched community the Pragmatic CSO. Don't let the CSO part fool you. If you are in any way, shape or form responsible for security as part of your job or want to learn what to do to get a handle on a near impossible task, this book and the content to follow on the web site is for you. At $97 dollars for the PDF version it is a steal and I would not waste any time before buying it.

I was lucky enough to be given an advance copy of the book by Mike last month. Truthfully, I was going to take a look at it as a courtesy to Mike, but did not relish the thought of reading yet another boring business book. I was hooked in the first chapter. The fictional Mike attends his first 12 step "security anonymous" program. His story is one that is all too familiar to many of us in the security field. Despite the hard work, the never ending flow of money out the door and the best of intentions, it is just not working. The security is not there, the boss doesn't appreciate the problems or the amount of effort that goes into solving them and his life is running from one fire to another. Into this desperate situation comes salvation in the form of the P-CSO 12 step program. The 12 steps are divided into 4 broad categories. They are as copied from the site:

Section 1 – Plan to be Pragmatic
	Step 1: Assess the Value of Your Business Systems You can’t protect what you don’t know about, so the first step is to figure out what you have. Likewise, you don’t want to spend $50,000 protecting a $2,000 business system, so in Step 1 you talk to senior management and discern how important each system is to the operations of the business. Then you can figure out how much to invest in protecting it.
	Step 2: Baseline Your Environment If you don’t know where you are, it’s pretty unlikely you’ll know that you’ve made progress. In Step 2, you gather data to understand your current state, where your most significant exposures are, and how much work you need to do.
	Step 3: Manage Expectations Managing executive expectations are the most critical responsibilities of the CSO. You must be very clear about what you are going to accomplish and how you are going to do it. In Step 3 you see the power of speaking security in the language of business, and how you can get everyone on the same page regarding what the security program does.
Section 2 – Build a Pragmatic Security Environment
	Step 4: Build Your Security Business Plan Every business needs a plan, and yours is no exception. In Step 4, you prepare a high-level business plan, laying out the reasons your business exists and presents a high level architecture, committed service levels, and the milestones that you plan to achieve.
	Step 5: Sell the Story You need money to secure anything, in Step 5 you package your business plan, associated service levels and milestones and sell the program to senior executives getting the funding you need to protect your corporate assets.
	Step 6: Procure the Solution A structured procurement process is critical to getting the right products, at the right time, for the right price. In Step 6, you learn about Security Incite’s Buying Security Products methodology and how that should be applied to how you buy the products and services you need for the Pragmatic CSO process.
Section 3 – Run Your Security Organization Pragmatically
	Step 7: Operate/Monitor Now that parts of the solution are implemented, you need to make sure they’re doing what they’re supposed to. In Step 7, you learn how to fortify your perimeter defenses, what you should be monitoring, and how to navigate the change control process.
	Step 8: Contain the Problem Inevitably you will have a compromise or breach situation. Dealing with that will make the difference between a CSO with a job and one collecting unemployment. In Step 8, you learn how to recover as gracefully as possible and use a structured incident response process to make sure you live to fight another day.
	Step 9: Train the Users Users are the weakest link in the security chain, so all the technology in the world will not help if a user gives up a password to the bad guys. In Step 9, you learn why a structured user awareness training process is critical to educate users to think and act securely and avoid many of the easy attacks used every day.
	Step 10: Assure Your Defenses It doesn’t matter if you say something is secure, you need third-party validation. In Step 10, you’ll engage third parties to try to penetrate your defenses, both to see where you are really exposed and also to make the case for more funding.
Section 4 – Communicate your Value
	Step 11: Benchmark Your Progress Quantitative measurements prove your worth and ensure your program is moving in the right direction. In Step 11, you’ll benchmarking your program by tracking the right metrics and comparing what you are doing relative to your peer group and other businesses your size.
	Step 12: Comply without Going Nuts Compliance with a variety of both internal policies and legislative regulations is a critical aspect of every CSO’s job. In Step 12, you see how compliance is a benefit of implementing the Pragmatic CSO program and how by generating a set of hard-hitting reports, the auditors will be gone in a fraction of the time it used to take.

Following the level headed, plain talking advice will give the reader and pragmatic practitioner a new sense of power over his security domain and a path to success. It does not promise a magic bullet, just a realistic method and approach of dealing with the every day tasks and goals that all security folks live with. The writing style of the book is light and refreshing. It is from Mike the recovering and now pragmatic CSO's point of view. It will feel more like you are reading a short story than another how to business book. I think the Pragmatic CSO will go down as a milestone in the security management arena. I can already envision the follow ons as the pragmatic methodology is more fully fleshed out. I am already thinking of how StillSecure can better align our products to help all of the new pragmatists that will be managing security out there. Congratulations to Mike on a job well done! I am looking forward to what is to come and seeing how the security pragmatists change the security world.

02:29 AM in Books, General Security, Security Incite, security tips | Permalink | Comments (1) | TrackBack (1)

Technorati Tags: alan shimel, mike rothman, pragmatic CSO, security incite

August 30, 2006

So who would you rather wake up next too?

So Mike Rothman (or should I call him Robin Gibb) has an issue with the 10 most important reasons security products don't work according to Dark Reading and the fact that I thought it helpful. OK Mike, everyone is entitled to their opinions. Mike says the problem is you go to bed thinking you are with Heidi Klum and wake up with Medusa. But I do detect some bias here. First of all , against Dark Reading, as it appears Mike had some pre-conceived notions here. Secondly and more troubling is the blame the vendor mentality. I get that we are couching this in mismatched expectations, but when Mike digs in, it is always the job of the vendor to set expectations and we slimy vendors lie, cheat and steal our way into your hard won security dollars. I don't know Mike, maybe you have been hanging out with the wrong crowd of security vendors and then I can see why you ran back to analysis. Maybe, you are pandering to your constituency, the end user. What I can tell you, is don't paint us all with the same broad brush. We try very hard here at StillSecure and I know other vendors do, to solve the customers problems. To quote Chris Hoff, this "ain't my first ride on the tuna boat fella" and I know that I may fool a customer initially but sooner or later he is going to see through whether my product does the job for him or not. You can fool all of the people some of the time, but you only get to fool them once then. Sell them a product yeah, we have end of quarter pressure and quotas to meet like everyone else. Companies who stick around though build their business being honest with the customer and not pumping and dumping.

Most of the problems I have seen in easily fall into one of the 10 categories the Dark Reading folks have highlighted. Sometimes they are the vendors fault, sometimes they are the end user's fault. We could all do a better job and that includes mismatched expectations. But there are plenty of honest vendors out there who want to do more business with the customers in the future and know that they build those kind of relationships one sale at a time.

06:08 PM in Security Incite, security tips | Permalink | Comments (1) | TrackBack (1)

Technorati Tags: rothman

August 05, 2006

Pay it forward security tip #4

Not sure if Michael and Michael are still putting out the pay it forward tip of the day, but I already had one lined up for today, so wanted to put it out. This one is a little different than my earlier ones, in that it is not aimed at an individual, but at the networked enterprise. Today's tip is to regularly schedule vulnerability scans and put a comprehensive vulnerability management solution in place. If your vulnerability policy is using Microsoft update after every patch Tuesday, you have trouble. If your only full vulnerability scan is a once a year audit, again you have trouble

Vulnerabilities are to fast and frequent to scan once or twice a year. You should be scanning for them regularly. Also, there are many vulnerabilities that are not Microsoft or even Windows specific. You need to scan printers, faxes, switches, firewalls, routers, hubs, etc. Anything with an IP needs to be scanned. Also, only about 20 to 25% of vulnerabilities need to be patched. Many need other types of remediation. So a patch manager alone is not a comprehensive vulnerability management solution. When looking at a good VAM system, also remember how important reporting is as well. Hope this helps. If you want an example of a good vulnerability management system, check out our own VAM product.

02:13 AM in security tips, VAM, vulnerability management | Permalink | Comments (0) | TrackBack (0)

August 04, 2006

Pay it forward security tip #3

Ok, here at the airport and wanted to post the pay it forward tip of the day. For those who don't know this is a series of tips I am doing with Michael Farnum and Michael Wright. Today's tip is another simple and obvious one, but unfortunately is too often not followed. For those of you with wireless networks at home, enable even WEP or better yet WPA. There is just no good reason not too. Most wireless access points make it chimp-simple to do this. Recently I was in NYC at a friends apartment. I fired up my laptop and had my choice of about 8 or 9 networks to log on to. Only 2 or 3 had any security, the rest were wide open. Could I have gone on and done something bad? Maybe, maybe not. The computers may have been locked down tight and at best I would have had free internet access. However, you are looking for trouble. While we are at it, not broadcasting your SSID is another good practice for your home wireless network.

12:09 AM in security tips | Permalink | Comments (0) | TrackBack (9)

Lijit Search

disclaimer

The views and opinions expresed here are those of myself only and in no way represent the views or positions or opinions of my employer, Latis Networks, Inc. d/b/a StillSecure or anyone else.

Forbes.com

StillSecure, After all these years, the podcast

Currently Reading

James Carroll: Constantine's Sword: The Church and the Jews -- A History
Looks like a book I will learn a lot from. It is long, but than again it covers two thousand years. Will be interesting to see what I say when I finish. (****)

Read Recently

Wilbur Smith: The Quest
Smith has an amazing ability to transport you back to ancient Eygpt. I have read several of his novels about Eygpt and am always totally absorbed from the very first pages to the end. (****)
Jeff Shaara: The Rising Tide: A Novel of World War II
Great historical novel about WWII. North Africa and Sicily campaigns come alive. You feel like you really are getting to know Ike, Patton, Rommel and the rest. (****)
Dale Brown: Strike Force: A Novel
Another great book by Dale Brown. Iran is getting help from Russia and the Iranian monarchy is trying to overthrow the theocracy. Dreamland's super weapons to the rescue! (****)
Christopher Moore: Lamb: The Gospel According to Biff, Christ's Childhood Pal
The Gospel according to Jesus's childhood pal, Biff. Need I say more. Actually pretty funny stuff. (***)
David Weber: Off Armageddon Reef
Aliens have destroyed humanity. A small isolated colony has been hidden to grow into a new human empire, but they are robbed of the knowledge of their inheritance. A religion based on keeping the people in the dark about their legacy controls the world. Great reading, good fantasy (****)
Michael Chabon: The Amazing Adventures of Kavalier & Clay
Brad Feld gave me this book. It is a Pulitzer Prize winner from the author of the Yiddish Policemens Union. This book is even better. Funny, yet biting it brings the horror and excitement of WWII to life through the eyes of a jewish refugee from Prauge and his cousin from Brooklyn. All about the comic book industry and real life tragedies and love. Worthy of all the praise and awards! (*****)
W. Michael Gear: People of the Nightland (First North Americans)
I have read almost every book in this series of paleo Indians by this husband/wife team. I don't know what it is, but I love hearing these stories based upon Native American legends and myths. (***)
David Michaels: Tom Clancy's EndWar (Tom Clancy's Endwar)
A new series inspired by Tom Clancy and based on a game. It is WW III, Saudi Arabia and Iran have exchanged nukes and the Russians are fighting the US and Euros. Not up to Clancy himself standards, but a good airplane read. (***)
John Grisham: The Appeal
A new legal thriller from Grisham. Does anyone do these better? It started right up from the get go and holds the reader captive. Without giving away the ending, Grisham brings the end of this book home to today's political climate. (****)
Gary Jennings: Aztec Rage (Aztec)
A continuation to the series started by the late Jennings. Not quite as brilliant as the first novel, but it is fairly faithful to Jennings style and continues the history of the Aztec/Spanish mix that becomes Mexico. (***)
Stephen Baxter: Navigator: Time's Tapestry, Book Three (Time's Tapestry)
The 3rd in this alternate history series by Baxter. I am still waiting to see what is alternate about this history. Alternate or not though, Baxter is a master storyteller and it is a pleasure to read. (****)
Harry Turtledove: Opening Atlantis
The first in a new trilogy by the master of alternate history. In this series there is an 8th continent between Europe and America called Atlantis. How it effects the unfolding of world history will be the subject of the series. So far it is pretty interesting. (***)
John Grisham: The Innocent Man: Murder and Injustice in a Small Town
This is a non-fiction book but reads like lots of Grisham's legal thrillers. After reading this book it is hard to think that the death penalty can be enforced in this country without innocent men being executed. It also makes you think Oklahoma is just not a great place to be living in. (***)
David Michaels: Tom Clancy's Splinter Cell: Fallout (Tom Clancy's Splinter Cell)
I really like this series and its hero Sam Fisher. Based on a video game the author has done a great job making Sam Fisher a real person. In this one Sam is chasing his brothers killers who are involved in nuclear terrorism in the former USSR.
Michael Crichton: Next (Harper Fiction)
Everything comes together a little too coincidentally, but it shows us what can happen with gene science gone mad. (**)
Raymond Khoury: The Sanctuary
I liked his Templar book so thought I would give this one a try. Set in 1700's Europe and modern day Iraq and Lebanon, it is a good thriller. (***)
Stephen Baxter: Conqueror: Time's Tapestry Book Two (Time's Tapestry)
Book 2 in the time tapestry series, it is a great historical novel of post-Roman Britain. I am just not sure what the alternative history is here. It seems pretty much as I remember learning it. (***)
John Grisham: Playing For Pizza: A Novel
Another one of Grisham's easy reading non-legal thriller kind of books. A disgraced NFL quarterback goes to play for pizza in Italy. (***)
Harry Turtledove: The Grapple (Settling Accounts, Book 3)
Somehow I am on book 3 of this series. I read book 1 and 2, but did not write up the review of 2. Anyway, in book 3 the tide turns against the CSA and for USA. Great alternate history of WW II (***)
Bill Bryson: The Life and Times of the Thunderbolt Kid: A Memoir
I was looking for something light on a trip back home. Though I am a bit young (beleive it or not) for a lot of this and did not grow up in the Mid-West there are some things about growing up that are universal. Very funny book! (****)
Dale Brown: Dale Brown's Dreamland: Retribution (Dreamland (Harper Paperback))
One of the better ones so far in this series. Lots of cool weapons and sinister bad guys. (***)
Thomas L. Friedman: The World Is Flat: A Brief History of the Twenty-first Century
Finally it comes to paperback and a new updated edition at that! For some reason I never read this bible of our brave new world. So much of it now seems obvious, but there is still much to learn here. (****)
Brian Herbert & Kevin Anderson: Sandworms of Dune
Finally! All of your questions around Dune are answered. The fate of the Universe and the Tyrant's Golden Path is revealed. Every Dune fan should read this one to tie up the loose ends. Also reading Herbert and Anderson's prequels to the original series will help. (*****)
Jack Whyte: Knights of the Black and White
I don't know what it is with Templars, but I am facisinated by the story. This is a good one and looks like the start of a series. I reccomend it! (****)
Patrick M. Lencioni: The Five Dysfunctions of a Team: A Leadership Fable
Got this book from Mitchell. It is a quick read and offers some excellent insight into how a real team can function allowing for the free flow of information and exchange of ideas in a healthy and productive way. Great read for anyone part of an executive team. (****)
Harry Turtledove: Return Engagement (Settling Accounts Trilogy, Book 1)
The start of WW II in the alternate history series by Turtledove. The CSA gets off to a quick start against the USA. (***)
Michael Chabon: The Yiddish Policemen's Union: A Novel
Full of Yiddish sayings, in this alternate history of post-WWII Jews is both funny and sad. A good read wrapped in a detective story who done it. (***)
Dale Brown: Edge of Battle
Dale Brown does better when doing battle with other superpowers, not drug smugglers, terrorists and tackling topics immigration reform. I love his action and technology, but didn't like the subject matter. (**)
Kevin J. Anderson: Of Fire and Night (The Saga of Seven Suns, Book 5)
This one clears up a lot of the plot lines from the first four books in a neat bow. However, just when you think the end is near, a new twist comes along that has you waiting for the next book. A big time scifi epic! (****)
Kevin Phillips: American Theocracy: The Peril and Politics of Radical Religion, Oil, and Borrowed Money in the 21stCentury
This can be dry and slow reading, but will open your eyes to what is really going on here. Phillips, a former Republican strategist, lays out a strong case on how oil, religious wars and debt are driving America away from world leadership. (****)
Raymond Khoury: The Last Templar
Another book on the long lost secret of the Templars, which can bring the Church to its needs. It was a good thriller. All of these DaVinci Code spawn are starting to run together in my mind. (***)
Harry Turtledove: American Empire: The Victorious Opposition (American Empire)
Turteldove is the master of alternate history. Many other SF writers are trying this genre, including Card and Baxter. In this one, the Confederate States of America takes on the role of the Nazi's in pre-WWII. Good read. (***)
Steve Berry: The Templar Legacy: A Novel
A DaVinci Code type of novel, with the recent press and controversy around the tomb of Jesus being discovered, this one became more real from it. A good read. (****)
Steve Berry: The Third Secret: A Novel of Suspense
A love story of a priest, a pope and the woman they loved. Wrapped around a quest for the missing 3rd secret of Fatima and an anti-christ potential new pope. Good story (***)
Tobsha Learner: The Witch of Cologne
A little slow moving at first, it picks up steam mid way through. A tale of the end of the inquisition and the begining of modern Europe. This is the backdrop of a forbidden love between a Kabalah trained midwife and her inquisitor priest. It did get you into the plot. (****)
Mark Winegardner: The Godfather's Revenge
Another follow on authorized by Mario Puzo's estate. This fills in the time between Godfather, Part 2 and Part 3. With the characters from the original, it can't help but be good. (***)
Orson Scott Card: Empire
Its the red versus blue states, urban versus rural, neo-cons versus the far left, in this American Civil War II. A little far fetched, the treachery though kept you guessing who and what was really behind it. (****)
James Patterson: Honeymoon
My first Patterson book. I don't usually go in for this type of thriller, but I was getting on the plane in 5 minutes and had to have something to read. I finished it in just a few hours, it was pretty good. (***)
Stephen Baxter: Transcendent (Destiny's Children (Paperback))
The third in the hive series by Baxter. It has his usual long historical sweep between the near and far future. Good harc core sci fi. (****)
David Michaels: Tom Clancy's Splinter Cell: Checkmate (Tom Clancy's Splinter Cell)
This series based on a PC game (corny isn't it) has actually turned into one of the better Clancy series out there. It is number 3 in the series and was pretty good. (***)
Dale Brown: Dale Brown's Dreamland: End Game (Dreamland (Harper Paperback))
Another in the Dreamland series by Dale Brown. It started off a bit slow, but revved up to the usual Brown level of thriller. (***)
Eric Flint: 1812: The Rivers of War
A good alternative history of the War of 1812 and the role of the Native Americans. The alternative prospective is allowing the Cherokee's a planned retreat West and sparing them the Trail of Tears. (***)
Harry Turtledove: End of the Beginning: A Novel of Alternate History
The great sequel to an alternative history where the attack is Pearl Harbor is followed by an invasion and conquest of the islands. No we take them back with a vengence. (****)
Mitch Albom: For One More Day
Like all his books, this one will make you laugh a little, cry a little and think a lot. This particular story was a bit close to home for me. It is a quick read. (*****)
Eliyahu M. Goldratt: The Goal
A great book to make you think about managing a business in a new way. I highly recomend it to anyone interested in how to measure and effect efficient production (****)
Brian Herbert: The Road to Dune
Sort of like viewing the bonus features on a DVD, only the most hard core Dune fan is going to appreciate this. Stuff that wasn't good enough for the originals put together here. (**)
Brian Herbert: Hunters of Dune (The Dune Series)
OK the son is not the father (talking about the authors, not the characters), but this is based on his outlines and haven't you always wondered who the outside enemy was. This is chapter 7 of Dune and if you read the others, you have to read this. (****)
Harry Turtledove: Days of Infamy
I love Sci Fi and Historic novels. So I am drawn to alternate . This one involves the invasion of Hawaii after Pearl Harbor. Of course it will change the course of WW II, at least for a little while before the inevitible. (***)
Dan Simmons: Olympos
Great conclusion to Ilium. This book ties up the the varied stories of both books into one story line. A vast sage, I think this may be his best yet! (****)
Jeffrey Anderson: Second Genesis
Great story on genetic manipulation, stem cells, medical ethics and just a great thriller. I really liked this book about genetically enhanced chimps. (****)
Chris Stewart: The Fourth War
With everything going on in the Middle East, this one got a little to real. Pakastani nukes are up for grabs. The Israeli Shin Bet and US CIA try to get to them before an Al Queda type of organization can get there hands on them. Scary stuff! (****)
David McCullough: 1776
McCullough is a master of well researched history. This is just about the first year of the revolution and puts you in the middle of the pivotal events. (****)
Kevin J. Anderson: Scattered Suns (The Saga of Seven Suns, Book 4)
After my last two books, it was time for something a little lighter. This is book 4 in a grand SciFi space saga. Lots of characters and plots, good reading. (****)
Karen Armstrong: A History of God: The 4,000-Year Quest of Judaism, Christianity and Islam
A great historical look at the evolution of our concepts and beliefs in God, primarily from the view of Judeo-Christian-Islam perspective. However, other philosophies and religous beliefs are discussed as well. It is very heavy on philosophy and mysticism. You need to think with this book. (****)
James Bradley: Flag of our Fathers
A detailed personal look at the 6 Marines in the famous Iwo Jima flag photo, written by the son of one of them. The loving attention to these American heros is well deserved. (****)
Arthur C. Clarke & Stephen Baxter: Sunstorm (A Time Odyssey)
A sequel to their first book together, A Time's Eye, this is hardcore SF at its best. The story revolves around the inner workings of the sun and the catastrophic results to Earth and humanity if any minor deviation of the Sun's energy output were to take place (***)
Edward Rutherfurd: The Rebels of Ireland : The Dublin Saga
Another great book by the master of historic novels. He may even be better than Michener. This is the sequel to The Princes of Ireland and is even better than the first. (*****)
Stephen Baxter: Exultant (Destiny's Children (Hardcover))
A grand sweeping space saga of the type that Baxter is known for. This one covers from before the big bang to the early history of our universe and such hard science topics as dark energy and dark matter. Great book! (****)
Peter F. Hamilton: Judas Unchained
The sequel to Pandora's Star, this book had almost too many sub-plots. It made it difficult to follow sometimes. The story that had so much promise in Pandora's Star, really seemed to just never get off the ground in this one. Not one of my favorite Hamilton books. He can be up and down like that. (**)
Dan Brown: Digital Fortress : A Thriller
For some reason I thought his other books were not going to be as good as Da Vinci and Angels & Demons. No religous theme here, but a good thriller with lots of twists to keep you on the edge. (****)
Steve Perry: Tom Clancy's Net Force 10 : The Archimedes Effect (Net Force)
This series used to be pretty good reading. Lately it is just not as good. It is OK to pass the time though. (**)
Troy Denning: The Swarm War (Star Wars: Dark Nest, Book 3)
Set after the New Jedi Order series, good filler for trying across the country. (**)
Joseph J Ellis: His Excellency
Good biography on Washington, by one of the masters of revolutionary war history. (****)
Michael Crichton: State of Fear
Great book about the environmental movement. Chricton has another thriller, but this will make you think about your views on global warming, the media and other environmenta issues (****)
David Michaels: Tom Clancy's Splinter Cell: OPERATION BARRACUDA
Based on a video game (yeah thats right), this series is actually pretty good. Makes for good airplane reading. (***)
John Grisham: The Broker
I had low expectations but this book really hooked me. I was over 200 pages in before I took a breath. The end was sort of rushed, but enjoyed this book. He is a master storyteller. (****)
Billy Crystal: 700 Sundays
Based on his one man Broadway show. Billy examines his relationship with his Dad who died when he was 15. He spent about 700 Sundays with him. You will laugh a little and cry a little but I think you will like it. (****)
Bob Dylan: Chronicles : Volume One
One cliche after another, you had to laugh after a while. A hodge podge of glimpes into his early and mid-career. The DVD is much better. (**)
Philip Roth: The Plot Against America: A Novel
A "what if" book. The premise is Lindbergh runs for president in 1940. He defeats Roosevelt, keeps us out of the war and institutes a anti-semtic, facsist administration. Scary! (***)
Ian Caldwell: The Rule of Four
Not as good as the Dan Brown novels I think but an interesting puzzle book. Lots of Princeton stuff by two new young authors (***)
Dale Brown: Act of War : A Novel
I have read all of Dale Brown's books starting with Flight of the Old Dog. If you like Clancy, you will love Dale Brown. (****)
Jeff Rovin: Op-Center XII: War of Eagles (Tom Clancy's Op-Center)
Uses Tom Clancy's name but by other authors. I read all of these series to fill time on planes. Not the greatest books you will ever read but they pass the time away (**)
Brad Meltzer: The Zero Game
My first book by Meltzer, it just seemed a little to simple for me. (**)
Stephen Baxter: Evolution
Great Sci Fi from one of the two new great authors of sci fi from the UK. Baxter and Hamilton pick up the baton from Clark and Asimov (****)
W. Michael Gear: People of the Raven
Another in the first American series. Here white people come to the Pacific Northwest thousands of years ago. (****)
Jimmy Carter: The Hornets Nest
It's hard I guess for an ex-president to really let loose. However, good historical novel of Georgia in American Revolutionary times. (***)