Radack, S.
(2008),
Keeping Information Technology (IT) System Servers Secure: A General Guide to Good Practices, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=900179
(Accessed April 26, 2024)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Keeping Information Technology (IT) System Servers Secure: A General Guide to Good Practices
Published
Author(s)
Abstract
This bulletin summarizes information disseminated in NIST Special Publication (SP) 800-123, Guide to General Server Security: Recommendations of the National Institute of Standards and Technology, which was written by Karen Scarfone and Wayne Jansen of NIST and by Miles Tracy of Federal Reserve Information Technology. The guide helps organizations select, implement and maintain security controls for their servers, such as those that provide web and email services. The bulletin summarizes the information in the guide, and covers the needed activities for implementing and maintaining the security of servers that provide services over network communications as their main function. Issues covered in the bulletin include common server vulnerabilities and threats, the requirements to protect servers, and how to install, configure and maintain secure servers through organizational efforts for careful planning and the implementation of appropriate management practices and controls.Citation
ITL Bulletin -
NIST Pub Series
Pub Type
NIST Pubs
Download Paper
Keywords
Information systems security, information technology, network servers, public Web servers, server security, risk management, security controls, security management, Web applications.
Citation
Created October 15, 2008, Updated February 19, 2017