I'm a big fan of Bruce Schneier and follow his blog for many years. I bought this book immediately after its release and finished it in less than a week.
- It is a very good review of what was happening in IT/Internet/IoT security field during the last few years, with all main events mentioned, everything is thoroughly source-referenced and explained (the Notes part takes one quarter on the book)
- Even despite some dryness in delivery style, the factual part on the book is very interesting to read, the story catches you in a good sense
- Information is (mostly) packed in high-density way, the book is pretty short (~200 pages) and to the point, while at the same time it can be easily read by non-professionals in the field.
- The proposal/prediction parts look less focused comparing to the factual part and to the standard one may expect from the work of this caliber.
- It is hard to say what exactly happened here, but it seems like the author either tried to squeeze as many conclusions as possible in limited amount of pages or he simply did not plan to analyse current IoT security trends that much at all. In too may places it goes like "Something is definitely going to happen, and it may be either A, B or C." Full stop. Huh? That's it? "The weather tomorrow is going to be nice. Or bad. Or it may be raining, but sunny and cloudy weather is also possible". Well, if you know nothing about the different weather phenomena, this is a lot of new and interesting information. If you read this to know what going on the weather front - sorry, but this information is useless.
- (spoiler) The same applies to the chapters about government role in Internet security. Once again, author provides a lot of very precise facts on what happened in the past in the area, how government regulation in the security field came to be what they are now and what to expect in the nearest future and how all these will probably be unable to solve any existing challenges - very thoughtful analysis and based on solid factual evidence. So, what's the author's proposed solution - "Let's create new government agency". Not even "I think it's going to end up in creating new government agency", no, "To solve this, we need a new agency" Even though you just showed how exactly it will not work? I don't get this logic at all. And this is kind of culminating point of the book, if there is one. Very disappointing.
Conclusion (tl;dr) - if you happen to be working in IT or IoT security field, you will probably get very little new information from this book, both the factual one and analysis. If you are somebody who are new to the field, you may find parts of the book interesting or even more like revelations.
The conclusions part of the book is somewhat blurry, less focused and does not sound really convincing. Given the quality of the source material and knowing Mr. Schneier reputation, I was expecting more insights into what's going in the industry than this book has delivered.
- Hardcover: 288 pages
- Publisher: *Norton agency titles; 1 edition (4 September 2018)
- Language: English
- ISBN-10: 0393608883
- ISBN-13: 978-0393608885
- Product Dimensions: 16.5 x 3 x 24.4 cm
- Boxed-product Weight: 499 g
- Average Customer Review: Be the first to review this item
- Amazon Bestsellers Rank: 56,480 in Books (See Top 100 in Books)