Obsahuje:
  • všechny e-ziny od 9/1999
  • celou databázi NEWS
  • soutěže 2000-2011
  • další články a BONUSY

Security - News

http://crypto-world.info

Crypto - News | Security - News

12 / 2010
Vybrali pro vás: TR - Tomáš Rosa, JP - Jaroslav Pinkava, PV - Pavel Vondruška, VK - Vlastimil Klíma

Americký NIST vydal dva dokumenty

23.12.2010
Jsou to :
  • Draft Special Publication 800-70 Revision 2, National Checklist Program for IT Products--Guidelines for Checklist Users and Developers
    It describes security configuration checklists and their benefits, and it explains how to use the NIST National Checklist Program (NCP) to find and retrieve checklists. The publication also describes the policies, procedures, and general requirements for participation in the NCP. SP 800-70 Revision 2 updates the previous version of the document, which was released in 2009, primarily by adding additional SCAP-oriented guidance and content related to the United States Government Configuration Baseline (USGCB).
  • NIST Interagency Report 7502
    Describes a specification for the Common Configuration Scoring System (CCSS), a set of standardized measures for the severity of software security configuration vulnerabilities. NISTIR 7502 also provides examples of how CCSS measures and scores can be determined. Once CCSS measures for products are available, organizations can use CCSS to help them make security decisions based on standardized, quantitative vulnerability data.
Zdroj: http://csrc.nist.gov/
Autor: JP


<<- novější - CIA a NSA odpovídají na WIkiLeaks
CSO - p?t tip? k tomu, abyste zazá?il jako bezpe?nostní ?editel - starší ->>
Design: Webdesign