SP 800-36. Guide to Selecting Information Technology Security Products
作者: Timothy Grance , Marissa Myers , Marc Stevens
DOI:
关键词:
摘要: The selection of IT security products is an integral part the design, development and maintenance infrastructure that ensures confidentiality, integrity, availability mission critical information. guide seeks to assist in choosing meet organization's requirements. It should be used with other NIST publications develop a comprehensive approach meeting computer information assurance This defines broad product categories, specifies types within those then provides list characteristics pertinent questions organization ask when selecting from these categories.
acm.org 参考文章(11)
P Mell, T Grance, Use of the Common Vulnerabilities and Exposures (CVE) Vulnerability Naming Scheme Special Publication (NIST SP) - 800-51. ,(2002) , 10.6028/NIST.SP.800-51
Gary Stoneburner, SP 800-33. Underlying Technical Models for Information Technology Security National Institute of Standards & Technology. ,(2001)
Timothy Grance, Joan Hash, Nadya Bartol, Kristofor O'Neal, Marc Stevens, SP 800-35. Guide to Information Technology Security Services National Institute of Standards & Technology. ,(2003)
Barbara Guttman, Marianne Swanson, SP 800-14. Generally Accepted Principles and Practices for Securing Information Technology Systems National Institute of Standards & Technology. ,(1996)
Shu-jen H. Chang, Vincent Hu, D. Richard Kuhn, W. Timothy Polk, SP 800-32. Introduction to Public Key Technology and the Federal PKI Infrastructure National Institute of Standards & Technology. ,(2001)
Rita C. Summers, Secure Computing: Threats and Safeguards ,(1996)
Gary Stoneburner, Alexis Feringa, Clark Hayden, Engineering Principles for Information Technology Security (A Baseline for Achieving Security), Revision A ,(2004)
Raymond G. Kammer, William M. Daley, Digital Signature Standard (DSS) ,(2000)
Gary Stoneburner, Alice Goguen, Alexis Feringa, Risk Management Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology Risk Management Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology / AHIMA, American Health Information Management Association. ,(2002) , 10.6028/NIST.SP.800-30
Edward A Roback, SP 800-23. Guidelines to Federal Organizations on Security Assurance and Acquisition/Use of Tested/Evaluated Products Special Publication (NIST SP) - 800-23. ,(2000) , 10.6028/NIST.SP.800-23