Search Results

IR 8409 (Final)

Measuring the Common Vulnerability Scoring System Base Score Equation

15%

November 15, 2022
https://csrc.nist.gov/pubs/ir/8409/final

Abstract: This work evaluates the validity of the Common Vulnerability Scoring System (CVSS) Version 3 "base score" equation in capturing the expert opinion of its maintainers. CVSS is a widely used industry standard for rating the severity of information technology vulnerabilities; it is based on human exper...

SP 800-57 Part 3 (Final) (Withdrawn)

Recommendation for Key Management, Part 3: Application-Specific Key Management Guidance

15%

December 28, 2009

Withdrawn on January 22, 2015.

https://csrc.nist.gov/pubs/sp/800/57/pt3/final

Abstract: This Recommendation provides cryptographic key management guidance. It consists of three parts. Part 1 provides general guidance and best practices for the management of cryptographic keying material. Part 2 provides guidance on policy and security planning requirements for U.S. government agencies....

SP 800-44 Version 2 (Final)

Guidelines on Securing Public Web Servers

15%

October 9, 2007
https://csrc.nist.gov/pubs/sp/800/44/ver2/final

Abstract: Web servers are often the most targeted and attacked hosts on organizations' networks. As a result, it is essential to secure Web servers and the network infrastructure that supports them. This document is intended to assist organizations in installing, configuring, and maintaining secure public Web...

SP 800-57 Part 2 (Final) (Withdrawn)

Recommendation for Key Management, Part 2: Best Practices for Key Management Organization

15%

August 25, 2005

Withdrawn on May 23, 2019.

https://csrc.nist.gov/pubs/sp/800/57/pt2/final

Abstract: This Recommendation provides cryptographic key management guidance. It consists of three parts. Part 1 provides general guidance and best practices for the management of cryptographic keying material. Part 2 provides guidance on policy and security planning requirements for U.S. government agencies....

Search CSRC

Measuring the Common Vulnerability Scoring System Base Score Equation

Recommendation for Key Management, Part 3: Application-Specific Key Management Guidance

Guidelines on Securing Public Web Servers

Recommendation for Key Management, Part 2: Best Practices for Key Management Organization

Automated Information System Security

Automated Information System Security Program

Center for Education and Research in Information Assurance and Security

Computer Information Security Officer

DoD Information Technology Security Certification and Accreditation Process

Federal Acquisition Security Council

Federal Computer Security Managers

Federal Computer Security Program Managers

Federal Enterprise Architecture Security and Privacy Profile

federal information processing

Federal Information Processing Standard (FIPS)

federal information system

Federal Information System Controls Audit Manual

information security

Information Security and Privacy Advisory Board

information security architect

information security architecture

information security continuous monitoring (ISCM)

information security continuous monitoring (ISCM) process

information security continuous monitoring (ISCM) program

information security continuous monitoring (ISCM) strategy