NIST logo

Publications Portal

You searched on: Author: peter mell

Displaying records 21 to 30 of 40 records.
Resort by: Date / Title


21. A Complete Guide to the Common Vulnerability Scoring System Version 2.0
Published: 7/30/2007
Authors: Peter M Mell, Karen Ann Scarfone, Sasha Romanosky
Abstract: The Common Vulnerability Scoring System (CVSS) provides an open framework for communicating the characteristics and impacts of IT vulnerabilities. CVSS consists of three groups: Base, Temporal and Environmental. Each group produces a numeric score ra ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=51198

22. CVSS-SIG Version 2 History
Published: 7/30/2007
Authors: Peter M Mell, Karen Ann Scarfone, Gavin Reid
Abstract: This document attempts to interpret the history and rationale behind changes made in the Common Vulnerability Scoring System (CVSS) from version 1 to version 2 (referred to as CVSS v1 and v2 in this document.) This document contains multiple appendic ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=51199

23. Guide to Intrusion Detection and Prevention Systems (IDPS)
Series: Special Publication (NIST SP)
Report Number: 800-94
Published: 2/20/2007
Authors: Karen Ann Scarfone, Peter M Mell
Abstract: The National Institute of Standards and Technology (NIST) developed this document in furtherance of its statutory responsibilities under the Federal Information Security Management Act (FISMA) of 2002, Public Law 107-347. This publication seeks to as ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=50951

24. Common Vulnerability Scoring System
Published: 12/29/2006
Authors: Peter M Mell, Karen Kent Scarfone, Sasha Romanosky
Abstract: Organizations struggle to assess the relative importance of software vulnerabilities across disparate hardware and software platforms. They must prioritize vulnerabilities and remediate those that pose the greatest risk. However, most software vendor ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=50899

25. Guide to Malware Incident Prevention and Handling
Series: Special Publication (NIST SP)
Report Number: 800-83
Published: 11/23/2005
Authors: Peter M Mell, Karen Kent, Joseph Nusbaum
Abstract: [Superseded by SP 800-83 Rev. 1 (July 2013): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=913930] This publication provides recommendations for improving an organizations malware incident prevention measures. It also gives extensive ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=150416

26. Creating a Patch and Vulnerability Management Program
Series: Special Publication (NIST SP)
Report Number: 800-40 Ver 2.0
Published: 11/16/2005
Authors: Peter M Mell, Tiffany Bergeron, Dave Henning
Abstract: [Superseded by SP 800-40 Rev. 3 (July 2013): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=913929] This document provides guidance on creating a security patch and vulnerability management program and testing the effectiveness of that ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=150402

27. An Overview of Issues in Testing Intrusion Detection Systems
Series: NIST Interagency/Internal Report (NISTIR)
Report Number: 7007
Published: 7/11/2003
Authors: Peter M Mell, R Lippmann, Chung Tong Hu, J Haines, M Zissman
Abstract: While intrusion detection systems are becoming ubiquitous defenses in today's networks, currently we have no comprehensive and scientifically rigorous methodology to test the effectiveness of these systems. This paper explores the types of performa ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=50745

28. Use of the Common Vulnerabilities and Exposures (CVE) Vulnerability Naming Scheme
Series: Special Publication (NIST SP)
Report Number: 800-51
Published: 9/1/2002
Authors: Peter M Mell, Timothy Grance
Abstract: [Superseded by SP 800-51 Rev. 1 (February 2011): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=907934] The Common Vulnerabilities and Exposures (CVE) vulnerability naming scheme is a dictionary of common names for publicly known inform ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=151265

29. Procedures for Handling Security Patches
Series: Special Publication (NIST SP)
Report Number: 800-40
Published: 8/1/2002
Authors: Peter M Mell, Miles C. Tracy
Abstract: [Superseded by SP 800-40 Version 2.0 (November 2005): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=150402] Timely patching is critical to maintain the operational availability, confidentiality, and integrity of IT systems. However, fa ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=151264

30. Intrusion Detection Systems
Series: Special Publication (NIST SP)
Report Number: 800-31
Published: 11/1/2001
Authors: Rebecca Bace, Peter M Mell
Abstract: [Superseded by NIST SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS), http://www.nist.gov/manuscript-publication-search.cfm?pub_id=50951] Intrusion detection systems (IDSs) are software or hardware systems that automate the proce ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=151244



Search NIST-wide:


(Search abstract and keywords)


Last Name:
First Name:







Special Publications:

Looking for a NIST Special Publication (NIST SP Series)? Place the series number and dash in the report number field (Example: 800-) and begin your search.

  • SP 250-XX: Calibration Services
  • SP 260-XX: Standard Reference Materials
  • SP 300-XX: Precision Measurement and Calibration
  • SP 400-XX: Semiconductor Measurement Technology
  • SP 480-XX: Law Enforcement Technology
  • SP 500-XX: Computer Systems Technology
  • SP 700-XX: Industrial Measurement Series
  • SP 800-XX: Computer Security Series
  • SP 823-XX: Integrated Services Digital Network Series