Web Security & Commerce Written by Simson Garfinkel & Gene Spafford . Published by O'Reilly.  This book provides and excellent overview of web security. It is written clearly and concisely with good, real examples of security breaches to hammer home the importance of the topic. The authors do a very good job of explaining the dangers of downloadable code in the form of JavaScript and Active X controls. These explanations are strengthened with real examples and scenarios where computers were compromised using sample code downloaded from the Internet. A good portion of this book is spent on the topic of signed code, i.e.: Authenticode, as well as Cryptography. These topics are covered thoroughly from a users perspective as well as from an administrator’s perspective and contain a lot of detail on Digital Certificates and SSL. If you are looking for an overview of the security risks associated with surfing and doing business on the web with detailed discussions of these risks, including topics on downloadable code, certificates, cryptography, firewalls and securing your web presence then look no further.