NIST logo

Publications Portal

You searched on: Author: peter mell

Displaying records 21 to 30 of 37 records.
Resort by: Date / Title

21. Common Vulnerability Scoring System
Published: 12/29/2006
Authors: Peter M Mell, Karen Kent Scarfone, Sasha Romanosky
Abstract: Organizations struggle to assess the relative importance of software vulnerabilities across disparate hardware and software platforms. They must prioritize vulnerabilities and remediate those that pose the greatest risk. However, most software vendor ...

22. Guide to Malware Incident Prevention and Handling
Series: Special Publication (NIST SP)
Report Number: 800-83
Published: 11/23/2005
Authors: Peter M Mell, Karen Kent, Joseph Nusbaum
Abstract: [Superseded by SP 800-83 Rev. 1 (July 2013):] This publication provides recommendations for improving an organizations malware incident prevention measures. It also gives extensive ...

23. Creating a Patch and Vulnerability Management Program
Series: Special Publication (NIST SP)
Report Number: 800-40 Ver 2.0
Published: 11/16/2005
Authors: Peter M Mell, Tiffany Bergeron, Dave Henning
Abstract: [Superseded by SP 800-40 Rev. 3 (July 2013):] This document provides guidance on creating a security patch and vulnerability management program and testing the effectiveness of that ...

24. An Overview of Issues in Testing Intrusion Detection Systems
Series: NIST Interagency/Internal Report (NISTIR)
Report Number: 7007
Published: 7/11/2003
Authors: Peter M Mell, R Lippmann, Chung Tong Hu, J Haines, M Zissman
Abstract: While intrusion detection systems are becoming ubiquitous defenses in today's networks, currently we have no comprehensive and scientifically rigorous methodology to test the effectiveness of these systems. This paper explores the types of performa ...

25. Use of the Common Vulnerabilities and Exposures (CVE) Vulnerability Naming Scheme
Series: Special Publication (NIST SP)
Report Number: 800-51
Published: 9/1/2002
Authors: Peter M Mell, Timothy Grance
Abstract: [Superseded by SP 800-51 Rev. 1 (February 2011):] The Common Vulnerabilities and Exposures (CVE) vulnerability naming scheme is a dictionary of common names for publicly known inform ...

26. Procedures for Handling Security Patches
Series: Special Publication (NIST SP)
Report Number: 800-40
Published: 8/1/2002
Authors: Peter M Mell, Miles C. Tracy
Abstract: [Superseded by SP 800-40 Version 2.0 (November 2005):] Timely patching is critical to maintain the operational availability, confidentiality, and integrity of IT systems. However, fa ...

27. Intrusion Detection Systems
Series: Special Publication (NIST SP)
Report Number: 800-31
Published: 11/1/2001
Authors: Rebecca Bace, Peter M Mell
Abstract: [Superseded by NIST SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS),] Intrusion detection systems (IDSs) are software or hardware systems that automate the proce ...

28. A Denial-of-Service Resistant Intrusion Detection Architecture
Published: 10/1/2000
Authors: Peter M Mell, D G. Marks, Mark McLarnon
Abstract: As the capabilities of intrusion detection systems (IDS) advance, attackers may attempt to disable an organization's IDS before attempting to penetrate more valuable targets. As IDSs evolve into distributed systems withinterdependent components, they ...

29. Identifying Critical Patches With ICAT
Series: ITL Bulletin
Published: 7/1/2000
Author: Peter M Mell
Abstract: [For the latest information on vulnerabilities, see the National Vulnerability Database,]The NIST computer security division has created a searchable index containing 700 of the most important computer vulnerabilities. This index, called ...

30. Mitigating Emerging Hacker Threats
Series: ITL Bulletin
Published: 6/28/2000
Authors: Peter M Mell, John P Wack
Abstract: [For the latest information on vulnerabilities, see the National Vulnerability Database,] It seems that every week, computer security organizations are issuing press releases concerning the latest hacker attack. Some sound dangerous, lik ...

Search NIST-wide:

(Search abstract and keywords)

Last Name:
First Name:

Special Publications:

Looking for a NIST Special Publication (NIST SP Series)? Place the series number and dash in the report number field (Example: 800-) and begin your search.

  • SP 250-XX: Calibration Services
  • SP 260-XX: Standard Reference Materials
  • SP 300-XX: Precision Measurement and Calibration
  • SP 400-XX: Semiconductor Measurement Technology
  • SP 480-XX: Law Enforcement Technology
  • SP 500-XX: Computer Systems Technology
  • SP 700-XX: Industrial Measurement Series
  • SP 800-XX: Computer Security Series
  • SP 823-XX: Integrated Services Digital Network Series