Scarfone, K.
, Benigni, D.
and Grance, T.
(2009),
Cyber Security Standards, Wiley Handbook of Science and Technology for Homeland Security, John Wiley & Sons, Inc., Hoboken, NJ, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=152153 (Accessed May 7, 2026)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Cyber Security Standards
Published
Author(s)
, ,
Abstract
The goal of cyber security standards is to improve the security of information technology (IT) systems, networks, and critical infrastructures. A cyber security standard defines both functional and assurance requirements within a product, system, process, or technology environment. Well-developed cyber security standards enable consistency among product developers and serve as a reliable metric for purchasing security products. Cyber security standards cover a broad range of granularity, from the mathematical definition of a cryptographic algorithm to the specification of security features in a Web browser, and are typically implementation-independent. A standard must address user needs, but must also be practical since cost and technological limitations must be considered in building products to meet the standard. Additionally, a standard s requirements must be verifiable; otherwise, users cannot assess security even when products are tested against the standard.Citation
Wiley Handbook of Science and Technology for Homeland Security
Publisher Info
John Wiley & Sons, Inc., Hoboken, NJ
Pub Type
Book Chapters
Download Paper
Keywords
cyber security, information technology, standards, standardization
Citation
Issues
If you have any questions about this publication or are having problems accessing it, please contact [email protected].
Created June 15, 2009, Updated February 19, 2017