Events
December 12, 2013
https://csrc.nist.gov/events/2013/federal-computer-security-managers-forum-decembe
Presentations & Speakers at a Glance: Overview of the Continuous Diagnostics and Mitigation (CDM) Program and Blanket Purchase Agreement (BPA), George Moore, DHS; and Update on Executive Order 13636, Improving Critical Infrastructure Cybersecurity, Victoria Yan Pillitteri, NIST. NOTE: FORUM MEETINGS ARE OPEN TO ONLY FEDERAL/STATE EMPLOYEES, HIGHER EDUCATION EMPLOYEES, AND THEIR DESIGNATED SUPPORT CONTRACTORS. REGISTRANTS MUST USE A .GOV, .EDU, OR .MIL ADDRESS FOR SIGN-UP. SUPPORT CONTRACTORS MUST INDICATE THE AGENCY OR ORGANIZATION THEY SUPPORT. The Federal Computer Security...
Publications
IR 7970 (Final)
December 9, 2013
https://csrc.nist.gov/pubs/ir/7970/final
Abstract: A password policy may seem formal in the sense that it is written in a legalistic language, giving the impression of a binding contract. However, such policies are informal in the logical sense that the policy statements are not written in a clear, unambiguous form. In password policy research at th...
Publications
SP 800-83 Rev. 1 (Final)
July 22, 2013
https://csrc.nist.gov/pubs/sp/800/83/r1/final
Abstract: Malware, also known as malicious code, refers to a program that is covertly inserted into another program with the intent to destroy data, run destructive or intrusive programs, or otherwise compromise the confidentiality, integrity, or availability of the victim’s data, applications, or operating s...
Publications
SP 800-40 Rev. 3 (Final) (Withdrawn)
July 22, 2013
Withdrawn on April 06, 2022.
https://csrc.nist.gov/pubs/sp/800/40/r3/final
Abstract: Patch management is the process for identifying, acquiring, installing, and verifying patches for products and systems. This publication is designed to assist organizations in understanding the basics of enterprise patch management technologies. It explains the importance of patch management and exa...
Publications
SP 800-124 Rev. 1 (Final) (Withdrawn)
June 21, 2013
Withdrawn on May 17, 2023.
https://csrc.nist.gov/pubs/sp/800/124/r1/final
Abstract: The purpose of this publication is to help organizations centrally manage and secure mobile devices against a variety of threats. This publication provides recommendations for selecting, implementing, and using centralized management technologies, and it explains the security concerns inherent in mo...
Events
June 12, 2013 - June 14, 2013
https://csrc.nist.gov/events/2013/ispab-june-2013-meeting
(All presentations in .pdf format.) Federal Register Notice Announcing Meeting Minutes FISMA - Perspectives from OMB and DHS Dave Otto, Branch Chief for Cybersecurity Performance Management in Federal Network Resilience, DHS Continuous Monitoring and its Ability to Create Efficiences - Information Sharing Protocols / Autmoated Indicators Danny Toler, Deputy Director, Federal Network Resilience, DHS Executive Order (EO) and Legislative Actions - DHS Information Sharing Update Jenny Menna, Director, Stakeholder Engagement and Cyber Infrastructure Resilience Division, U.S. Department of...
Events
May 21, 2013 - May 22, 2013
https://csrc.nist.gov/events/2013/2013-hipaa-conference
The National Institute of Standards and Technology (NIST) and the Department of Health and Human Services (HHS), Office for Civil Rights (OCR) co-hosted the 6th annual conference Safeguarding Health Information: Building Assurance through HIPAA Security on May 21 & 22, 2013 at the Ronald Reagan Building and International Trade Center in Washington, D.C. The conference explored the current health information technology security landscape and the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. This event highlighted the present state of health information security,...
Publications
SP 800-82 Rev. 1 (Final) (Withdrawn)
May 14, 2013
Withdrawn on May 29, 2015.
https://csrc.nist.gov/pubs/sp/800/82/r1/final
Abstract: This document provides guidance on how to secure Industrial Control Systems (ICS), including Supervisory Control and Data Acquisition (SCADA) systems, Distributed Control Systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC), while addressing their uniqu...
Events
April 11, 2013
https://csrc.nist.gov/events/2013/federal-computer-security-managers-forum-april-2
Presentations & Speakers at a Glance: National Cybersecurity Center of Excellence, NIST; Policy Machine - Enabling an Enterprise-wide, Data Centric Computing Environment, David Ferraiolo & Serban Gavrila, NIST; and Trusted Geolocation in the Cloud Demo, NCCoE/NIST. NOTE: FORUM MEETINGS ARE OPEN TO ONLY FEDERAL/STATE EMPLOYEES, HIGHER EDUCATION EMPLOYEES, AND THEIR DESIGNATED SUPPORT CONTRACTORS. REGISTRANTS MUST USE A .GOV, .EDU, OR .MIL ADDRESS FOR SIGN-UP. SUPPORT CONTRACTORS MUST INDICATE THE AGENCY OR ORGANIZATION THEY SUPPORT. The Federal Computer Security Program...
Events
April 4, 2013 - April 5, 2013
https://csrc.nist.gov/events/2013/designed-in-cybersecurity-for-cyber-physical-syste
The Cyber Security Research Alliance (CSRA) and National Institute of Standards and Technology (NIST) are sponsoring a two day workshop to explore emerging research needs for cybersecurity in cyber-physical systems with the diverse cyber-physical community at large. The sponsoring organizations seek to have lively discussion on the following topics: Buying the Black Box: Security in Acquisition and Implementation Getting Reliable Information on Vulnerabilities and Threats Working with What We Have: Securing the Base Supply Chain: Its Impact on Securing CPS Approaches to Assurance and...
