|
CSRC
Homepage
CSRC Site Map
Search
CSRC:
CSD
Publications:
- Special
Publications
- FIPS Pubs
- ITL Security
Bulletins
- NIST IRs
CSD
Focus Areas:
- Cryptographic Standards
& Application
- Security Testing
- Security Research
/
Emerging
Technologies
- Security Management
&
Guidance
- Outreach Awareness
&
Education
- FISMA Implementation
Project
General
Information:
- Site
Map
- List of Acronyms
- Archived
Projects
&
Conferences
- Virus Information
- ICAT Alerts
Search
NIST's ICAT
Vulnerability Archive:
|
|
![Weekly News Header Image](/peth04/20041014213915im_/http://csrc.nist.gov/images/headers/weeklynews_head.gif)
CSD
Announcements for the Week of October 11-15, 2004:
CSD
Announcements for the Week of September 27-Oct. 8, 2004:
- September 29, 2004
-- NIST is pleased to announce the first public draft
of Special Publication 800-52, Guidelines on the Selection and Use of
Transport Layer Security. This document is a guideline for implementing
Transport Layer Security in the Federal Government to protect sensitive
information. Care must be taken when selecting cryptographic mechanisms
for authentication, confidentiality, and message integrity, as some
choices are non-compliant with Government standards, or may pose security
risks. The comment period for this document will be 30 days, ending
on November 1st, 2004. Please direct all comments and questions to Matthew
J. Fanto at matthew.fanto@nist.gov.
- September 28, 2004
-- NIST has completed the second public draft of Special
Publication 800-53, Recommended Security Controls for Federal Information
Systems. This draft guideline provides a recommended set of security
controls for low, moderate, and high impact information systems based
upon the system's FIPS 199 security categorization. Final publication
is anticipated o/a January 31, 2005. Special Publication 800-53, when
finalized, will serve as NIST interim guidance on security controls
for federal information systems until December 2005, which is the statutory
deadline to publish minimum standards for all non-national security
systems. Comments may be sent to sec-cert@nist.gov
until November 30, 2004.
Last updated:
October 14, 2004
Page created: October 4, 2004
|