Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).

View the beta site
NIST logo

Comments Sought on New Security Publications

From NIST Tech Beat: August 3, 2007

Bookmark and Share

Contact: Michael Baum

The National Institute of Standards and Technology (NIST) has released three draft Special Publications (SP) documents for public comment.

  • Revision 1, Wireless Network Security: IEEE 802.11a/b/g, and Bluetooth (SP 800-48) provides an overview of wireless networking technologies and gives detailed information on two commonly used standards: the Institute of Electrical and Electronics Engineers (IEEE) 802.11a/b/g and IEEE 802.15.1, better known as Bluetooth. The publication seeks to assist organizations in reducing the risks associated with these forms of wireless networking. It updates the original SP 800-48, which was released in November 2002. SP 800-48 Revision 1 complements but does not replace, SP 800-97, Establishing Wireless Robust Security Networks: A Guide to IEEE 802.11i. People seeking information on IEEE 802.11i should consult SP 800-97. Comments on this draft are due by Sept. 14, 2007, to 800-48comments@nist.gov (put “Comments SP 800-48” in the subject line).
  • Guide to Storage Encryption Technologies for End User Devices (SP 800-111) is intended to assist organizations in understanding storage encryption technologies for end user devices, such as laptops, PDAs, smart phones and removable media, and in planning, implementing, and maintaining storage encryption solutions. The publication also provides recommendations for cryptographic key management and authentication used for storage encryption. Comments on this draft are due by Sept. 7, 2007, to 800-111comments@nist.gov (put “Comments SP 800-111” in the subject line).
  • Guide to SSL VPNs (SP 800-113) is intended to assist organizations in understanding Secure Sockets Layer (SSL) Virtual Private Network (VPN) technologies. The publication also makes recommendations for designing, implementing, configuring, securing, monitoring and maintaining SSL VPN solutions. SP 800-113 provides a phased approach to SSL VPN planning and implementation that can help in achieving successful SSL VPN deployments. Comments on this draft are due by Sept. 21, 2007, to 800-113comments@nist.gov (put “Comments SP 800-113” in the subject line).

The draft publications are available for downloading at http://csrc.nist.gov/publications/drafts.html.