NIST logo

Publications Portal

You searched on:
Topic Area: Cybersecurity
Sorted by: date

Displaying records 181 to 190 of 240 records.
Resort by: Date / Title


181. Technical Guide to Information Security Testing and Assessment
Series: Special Publication (NIST SP)
Report Number: 800-115
Topic: Cybersecurity
Published: 9/30/2008
Authors: Murugiah P Souppaya, Karen Ann Scarfone
Abstract: The purpose of this document is to assist organizations in planning and conducting technical information security tests and examinations, analyzing findings, and developing mitigation strategies. The guide provides practical recommendations for desig ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152164

182. Evidence-Based, Good Enough, and Open
Topic: Cybersecurity
Published: 8/4/2008
Author: Karen Ann Scarfone
Abstract: One of the holy grail questions in computer security is how secure are my organization systems? This paper describes our new approach to answering this question. This approach is distinguished from previous efforts in three ways: 1) uses evide ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=890007

183. Guide for Mapping Types of Information and Information Systems to Security Categories (2 vols.)
Series: Special Publication (NIST SP)
Report Number: 800-60 Rev 1
Topic: Cybersecurity
Published: 8/1/2008
Authors: Kevin Mcguire Stine, Richard L Kissel, William C Barker, Annabelle Lee, J Fahlsing, Jessica Gulick
Abstract: Title III of the E-Government Act, titled the Federal Information Security Management Act (FISMA) of 2002, tasked NIST to develop (1) standards to be used by all Federal agencies to categorize information and information systems collected or maintain ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152106

184. Guide to General Server Security
Series: Special Publication (NIST SP)
Report Number: 800-123
Topic: Cybersecurity
Published: 7/25/2008
Authors: Karen Ann Scarfone, Wayne Jansen, Miles C. Tracy
Abstract: The purpose of this document is to assist organizations in understanding the fundamental activities performed as part of securing and maintaining the security of servers that provide services over network communications as a main function. The docume ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=890008

185. Guide to Securing Legacy IEEE 802.11 Wireless Networks
Series: Special Publication (NIST SP)
Report Number: 800-48 Rev 1
Topic: Cybersecurity
Published: 7/25/2008
Authors: Karen Ann Scarfone, Derrick Dicoi, Matt Sexton, Cyrus Tibbs
Abstract: The purpose of this document is to provide guidance to organizations in securing their legacy Institute of Electrical and Electronics Engineers (IEEE) 802.11 wireless local area networks (WLAN) that cannot use IEEE 802.11i. The document provides an ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=890006

186. Web Services Security: Techniques and Challenges (Extended Abstract)
Topic: Cybersecurity
Published: 7/21/2008
Author: Anoop Singhal
Abstract: Web services-based computing is currently an important driver for the software industry. While several standards bodies (such as W3C and OASIS) are laying the foundation for Web services security, several research problems must be solved to make secu ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152155

187. An Attack Graph Based Probabilistic Security Metric
Topic: Cybersecurity
Published: 7/16/2008
Authors: Lingyu Wang, Tania Islam, Tao Long, Anoop Singhal, Sushil Jajodia
Abstract: To protect critical resources in today's networked environments, it is desirable to quantify the likelihood of potential multi-step attacks that combine multiple vulnerabilities. This now becomes feasible due to a model of causal relationships betwee ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152107

188. Performance Measurement Guide for Information Security
Series: Special Publication (NIST SP)
Report Number: 800-55 Rev 1
Topic: Cybersecurity
Published: 7/16/2008
Authors: Elizabeth Chew, Marianne M. Swanson, Kevin Mcguire Stine, N Bartol, Anthony Brown, W Robinson
Abstract: This document provides guidance on how an organization, through the use of metrics, identifies the adequacy of in-place security controls, policies, and procedures. It provides an approach to help management decide where to invest in additional secur ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152183

189. Dynamic Routing and Congestion Control Through Random Assignment of Routes
Topic: Cybersecurity
Published: 7/15/2008
Authors: Fern Y Hunt, Vladimir V Marbukh
Abstract: We introduce an algorithm for maximizing utility through congestion control and random allocation of routes to users. The allocation is defined by a probability distribution whose degree of randomness as measured by its entropy, is controlled. We se ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=152133

190. Guide for Assessing the Security Controls in Federal Information Systems: Building Effective Security Assessment Plans
Series: Special Publication (NIST SP)
Report Number: 800-53A
Topic: Cybersecurity
Published: 7/1/2008
Authors: Ronald S Ross, L A. Johnson, Stuart William Katzke, Patricia R Toth, G. Stoneburner, G Rogers
Abstract: [Superseded by NIST SP 800-53A, Rev. 1 (June 2010): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=906065] The purpose of NIST Special Publication 800-53A is to provide guidelines for building effective security assessment plans and pro ...
http://www.nist.gov/manuscript-publication-search.cfm?pub_id=51209



Search NIST-wide:


(Search abstract and keywords)


Last Name:
First Name:







Special Publications:

Looking for a NIST Special Publication (NIST SP Series)? Place the series number and dash in the report number field (Example: 800-) and begin your search.

  • SP 250-XX: Calibration Services
  • SP 260-XX: Standard Reference Materials
  • SP 300-XX: Precision Measurement and Calibration
  • SP 400-XX: Semiconductor Measurement Technology
  • SP 480-XX: Law Enforcement Technology
  • SP 500-XX: Computer Systems Technology
  • SP 700-XX: Industrial Measurement Series
  • SP 800-XX: Computer Security Series
  • SP 823-XX: Integrated Services Digital Network Series