NIST logo

Publications Portal

You searched on:
Topic Area: Cybersecurity

Displaying records 181 to 190 of 239 records.
Resort by: Date / Title

181. Evidence-Based, Good Enough, and Open
Topic: Cybersecurity
Published: 8/4/2008
Author: Karen Ann Scarfone
Abstract: One of the holy grail questions in computer security is how secure are my organization systems? This paper describes our new approach to answering this question. This approach is distinguished from previous efforts in three ways: 1) uses evide ...

182. Guide for Mapping Types of Information and Information Systems to Security Categories (2 vols.)
Series: Special Publication (NIST SP)
Report Number: 800-60 Rev 1
Topic: Cybersecurity
Published: 8/1/2008
Authors: Kevin Mcguire Stine, Richard L Kissel, William C Barker, Annabelle Lee, J Fahlsing, Jessica Gulick
Abstract: Title III of the E-Government Act, titled the Federal Information Security Management Act (FISMA) of 2002, tasked NIST to develop (1) standards to be used by all Federal agencies to categorize information and information systems collected or maintain ...

183. Guide to General Server Security
Series: Special Publication (NIST SP)
Report Number: 800-123
Topic: Cybersecurity
Published: 7/25/2008
Authors: Karen Ann Scarfone, Wayne Jansen, Miles C. Tracy
Abstract: The purpose of this document is to assist organizations in understanding the fundamental activities performed as part of securing and maintaining the security of servers that provide services over network communications as a main function. The docume ...

184. Guide to Securing Legacy IEEE 802.11 Wireless Networks
Series: Special Publication (NIST SP)
Report Number: 800-48 Rev 1
Topic: Cybersecurity
Published: 7/25/2008
Authors: Karen Ann Scarfone, Derrick Dicoi, Matt Sexton, Cyrus Tibbs
Abstract: The purpose of this document is to provide guidance to organizations in securing their legacy Institute of Electrical and Electronics Engineers (IEEE) 802.11 wireless local area networks (WLAN) that cannot use IEEE 802.11i. The document provides an ...

185. An Attack Graph Based Probabilistic Security Metric
Topic: Cybersecurity
Published: 7/21/2008
Authors: Lingyu Wang, Anoop Singhal
Abstract: In today's networked environments, protecting critical resources usually requires us to understand and measure the likelihood of multi-step attacks that combine different vulnerabilities for reaching the attack goal.  Such a measurement is n ...

186. Web Services Security: Techniques and Challenges
Topic: Cybersecurity
Published: 7/21/2008
Author: Anoop Singhal

187. Performance Measurement Guide for Information Security
Series: Special Publication (NIST SP)
Report Number: 800-55 Rev 1
Topic: Cybersecurity
Published: 7/16/2008
Authors: Elizabeth Chew, Marianne M. Swanson, Kevin Mcguire Stine, N Bartol, Anthony Brown, W Robinson
Abstract: This document provides guidance on how an organization, through the use of metrics, identifies the adequacy of in-place security controls, policies, and procedures. It provides an approach to help management decide where to invest in additional secur ...

188. Dynamic Routing and Congestion Control Through Random Assignment of Routes
Topic: Cybersecurity
Published: 7/15/2008
Authors: Fern Y Hunt, Vladimir V Marbukh
Abstract: We introduce an algorithm for maximizing utility through congestion control and random allocation of routes to users. The allocation is defined by a probability distribution whose degree of randomness as measured by its entropy, is controlled. We se ...

189. Guide for Assessing the Security Controls in Federal Information Systems: Building Effective Security Assessment Plans
Series: Special Publication (NIST SP)
Report Number: 800-53A
Topic: Cybersecurity
Published: 7/1/2008
Authors: Ronald S Ross, L A. Johnson, Stuart William Katzke, Patricia R Toth, G. Stoneburner, G Rogers
Abstract: [Superseded by NIST SP 800-53A, Rev. 1 (June 2010):] The purpose of NIST Special Publication 800-53A is to provide guidelines for building effective security assessment plans and pro ...

190. A Framework for Measuring the Vulnerability of Hosts
Topic: Cybersecurity
Published: 6/30/2008
Authors: Karen Ann Scarfone, Timothy Grance
Abstract: This paper proposes a framework for measuring the vulnerability of individual hosts based on current and historical operational data for vulnerabilities and attacks. Previous approaches have not been scalable because they relied on complex manually c ...

Search NIST-wide:

(Search abstract and keywords)

Last Name:
First Name:

Special Publications:

Looking for a NIST Special Publication (NIST SP Series)? Place the series number and dash in the report number field (Example: 800-) and begin your search.

  • SP 250-XX: Calibration Services
  • SP 260-XX: Standard Reference Materials
  • SP 300-XX: Precision Measurement and Calibration
  • SP 400-XX: Semiconductor Measurement Technology
  • SP 480-XX: Law Enforcement Technology
  • SP 500-XX: Computer Systems Technology
  • SP 700-XX: Industrial Measurement Series
  • SP 800-XX: Computer Security Series
  • SP 823-XX: Integrated Services Digital Network Series