go to NIST home page go to CSRC home page go to Focus Areas page go to Publications page go to Advisories page go to Events page go to Site Map page go to ITL home page CSRC home page link
header image with links

 CSRC Homepage
 
 CSRC Site Map

   Search CSRC:

 CSD Publications:
   - Draft Publications
   - Special Publications
   - FIPS Pubs
   - ITL Security Bulletins
   - NIST IRs

 CSD Focus Areas:
   - Cryptographic Standards
       & Application
   - Security Testing
   - Security Research /
       Emerging Technologies
   - Security Management
       & Assistance

 General Information:
   - Site Map
   - List of Acronyms
   - Archived Projects
        & Conferences
   - Virus Information
   - National Vulnerability
        Database

 News & Events  
   - Federal News
   - Security Events


 Services For the: 
   - Federal Community
   - Vendor
   - User
   - Small/Medium
     Businesses


 Links & Organizations
   - Academic
   - Government
   - Professional
   - Additional Links

 NIST's National
 Vulnerability Database:
Search for Vulnerabilities
Enter vendor, software, or keyword
Policies header image

Federal Requirements


Policy
Date
Title of
Policy
File format
 Dec. 2006  Recognition of Certification and Accreditation of Certified PKI Shared Service Providers Across Agency Boundaries
Memorandum for Federal Information System Security Managers from Mary Mitchell, Deputy Associate Administrator of Technology Strategy, GSA
 
.pdf file 
 June 2006  OMB Reinforces Strict Adherence to Safeguard Standards
 
.pdf file
 June 2006   Protection of Sensitive Agency Information
Memorandum for the Heads of Departments and Agencies
From Clay Johnson, Deputy Director for Management

 
.pdf file
 May 2006 Safeguarding Personally Identifiable Information
M-06-15

Memorandum for the Heads of Departments and Agencies
From Clay Johnson, Deputy Director for Management

   
.pdf file
 August 2005 OMB Memo: Implementation of HSPD 12 - Policy for a Common Identification Standard for Federal Employees and Contractors
 
.pdf file
 August 2005 OMB Memo: Transition Planning for Internet Protocol Version 6 (IPv6)
 
.pdf file
 June 2005 OMB Memo: FY 2005 Reporting Instructions for the Federal Information Security Management Act and Agency Privacy Management
 
.html page
 December 2004 Electronic Signatures: How to Mitigate the Risk of Commercial Managed Services
 
PDF file
 September 2004 Personal Use Policies and “File Sharing” Technology
 
.html pages
August 2004 Homeland Security Presidential Directive/Hspd-12
Subject: Policy for a Common Identification Standard for Federal Employees and Contractors
 
.html page 
July 2004 The FEA Security and Privacy Profile Phase I Final PDF file
 
June 2004 In June 2004, the Office of Personnel Management (OPM) released their updated regulations for information security awareness and training . . . part of public law.
 
.html webpage 
June 2004 1. Memorandum for the Heads of Executive Departments and Agencies. SUBJECT: Development of Homeland Security Presidential Directive (HSPD) -7 Critical Infrastructure Protection Plans to Protect Federal Critical Infrastructures and Key Resources
 
2.HSPD-7 Subject: Critical Infrastructure Identification, Prioritization and Protection
 
3. CIP Instructions - Attachment B: Format of Internal Department/Agency CIP Plan
 
all 3 files are .pdf files
December 2003 OMB Memo: E-authentication Guidance for Federal Agencies
 
.pdf file
December 2003 Homeland Security Presidential Directive/Hspd-7
Subject: Critical Infrastructure
Identification, Prioritization, and Protection

 
.html webpage
September 2003  OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002
 
.html webpage 
September 2003 OMB Guidance to Assist Agencies With Certification and Accreditation Efforts
 
.pdf file
December 2002 Electronic Government Act of 2002
 
.pdf file
December 2002 Cyber Security R&D Act
 
.pdf file
December 2002 Federal Information Security Management Act of 2002 (Title III of E-Gov)
 
.pdf file
October 2002 Guidance on Homeland Security Information Issued - DOJ - Action to Safeguard Information Regarding Weapons of Mass Destruction and Other Sensitive Documents Related to Homeland Security
 
.html webpage
September 12, 2002 Handling and Reporting Computer Security Incidents (memorandum)
 
.html webpage
November 26, 2001 OMB Guidance to Federal Agencies on Data Availability and Encryption
 
.pdf file
October 16,
2001
Executive Order: Critical Infrastructure Protection in the Information Age
 
.html webpage
August 15,
2001
MEMORANDUM to Chief Information Officers and Program Officials   FROM: Dan Chenok   SUBJECT: Guidance on the Release of Security Act Reports
 
.txt file
January
2001
Department of The Treasury - Fiscal Service - Electronic Authentication Policy - Policies and practices for the use of electronic transactions and authentication techniques in Federal payments and collections.
 
.txt file
November
2000
Federal Information Technology Security Assessment Framework
 
.pdf format
September
2000
OMB Guidance on Implementing the Electronic Signatures in Global and National Commerce Act. To view the OMB memorandum. (.html page)
To view the Global and National Commerce Act.(.pdf file)
 
.html webpage
& .pdf file
June
2000
This site contains a copy of a June 22, 2000 memorandum from OMB Director Jacob J. Lew on the subject of privacy policies and data collection on Federal websites.
 
.html webpage
May
2000
OMB issues Federal Register Notice on Procedures and Guidance for the Implementation of the Government Paperwork Elimination Act (.pdf file) [Federal Register, Vol. 65, No. 85, Tuesday, May 2, 2000].
 
.pdf file
March
2000
The President sent a memo to the heads of Departments and Agencies on renewing their efforts to safeguard their computer systems against denial-of-service attacks on the Internet.
 
Text file
February
2000
The Director of the OMB issues guidance to Federal agencies on Incorporating and Funding Security in Information Systems Investments.
 
.html webpage
February
2000
The President's Chief of Staff sent a memo to the heads of Federal Department's and Agencies on computer security.
 
.html webpage
July
1999
Privacy Policies on Federal Web Sites
 
.pdf file
July
1999
Security of Federal Automated Information Resources (memorandum from Jacob J. Lew, Director)
 
.pdf file
May
1998
"Critical Infrastructure Protection."
 
.pdf file
November
2000
OMB Circular A-130, Revised .pdf file
or web page
 
November 2000 Appendix III to OMB Circular No. A-130 .pdf file or web page
 
1987 Computer Security Act of 1987
(has been superceded by Federal
Information Security Management Act of 2002
(Title III of E-Gov))
 


 

Last updated: March 27, 2014
Page created: February 3, 2000

 
[an error occurred while processing this directive]