Search Publications

Displaying 1426 - 1450 of 1509

Secure Hash Standard (SHS)

April 17, 1995

Author(s)

National Institute of Standards and Technology (NIST), Elaine Barker

[Superseded by FIPS 180-2(August 2002): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917976] This standard specifies a Secure Hash Algorithm (SHA-1) which can be used to generate a condensed representation of a message called a message

The Impact of the FCC's Open Network Architecture on NS/NP Telecommunications Security

February 1, 1995

Author(s)

Karen J. Olsen, John M. Tebbutt

A significant portion of National Security and Emergency Preparedness (NS/EP) telecommunications relies on the Public Switched Network (PSN). Therefore, NS/EP telecommunications is concerned with the protection of the PSN to ensure that telecommunications

Keeping Your Site Comfortably Secure: An Introduction to Internet Firewalls

December 1, 1994

Author(s)

John P. Wack, Lisa J. Carnahan

This document provides an overview of the Internet and security-related problems. It then provides an overview of firewall components and the general reasoning behind firewall usage. Several types of network access policies are described, as well as

Multi-Agency Certification and Accreditation (C&A) Process: A Worked Example

December 1, 1994

Author(s)

E Flahavin, Annabelle Lee

Guideline for the Analysis of Local Area Network Security

November 9, 1994

Author(s)

National Institute of Standards and Technology (NIST), Lisa Carnahan, Shu-jen H. Chang

[Withdrawn October 19, 2015] This guideline discusses threats and vulnerabilities and considers technical security services and security mechanisms.

Guideline for the Use of Advanced Authentication Technology Alternatives

September 28, 1994

Author(s)

National Institute of Standards and Technology (NIST), James F. Dray Jr.

[Withdrawn October 19, 2015] This Guideline describes the primary alternative methods for verifying the identities of computer system users, and provides recommendations to Federal agencies and departments for the acquisition and use of technology which

Standard Security Label for Information Transfer

September 6, 1994

Author(s)

National Institute of Standards and Technology (NIST), N Nazario

[Withdrawn October 19, 2015] Information Transfer security labels convey information used by protocol entities to determine how to handle data communicated between open systems. Information on a security label can be used to control access, specify

Computer Security Training & Awareness Course Compendium

September 1, 1994

Author(s)

Kathie A. Everhart

A Head Start on Assurance Proceedings of an Invitational Workshop on Information Technology (IT) Assurance and Trustworthiness March 21-23, 1994

August 1, 1994

Author(s)

Patricia R. Toth, M D. Abrams

The purpose of the Invitational Workshop on Information Technology (IT) Assurance and Trustworthiness was to identify crucial issues on assurance in IT systems and to provide input into the development of policy guidance on determining the type and level

Security in Open Systems

July 1, 1994

Author(s)

Robert H. Bagwill, John Barkley, Lisa J. Carnahan, Shu-jen H. Chang, David R. Kuhn, Paul Markovitz, Anastase Nakassis, Karen J. Olsen, Michael L. Ransom, John P. Wack

The Public Switched Network (PSN) provides National Security and Emergency Preparedness (NS/EP) telecommunications. Service vendors, equipment manufacturers, and the federal government are concerned that vulnerabilities in the PSN could be exploited and

Report of the NIST Workshop on Key Escrow Encryption

June 1, 1994

Author(s)

A Oldehoeft, Dennis K. Branstad

On June 10, 1994, the National Institute of Standards and Technology (NIST) hosted a one-day workshop to present and discuss key escrow encryption technology, including the recently-approved Escrowed Encryption Standard (EES), Federal Information

Digital Signature Standard (DSS) [includes Change Notice 1 from 12/30/1996]

May 19, 1994

Author(s)

Elaine B. Barker

[Superseded by FIPS 186-1 (December 15, 1998): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917974] This standard specifies a Digital Signature Algorithm (DSA) which can be used to generate a digital signature. Digital signatures are used

Escrowed Encryption Standard

February 9, 1994

Author(s)

National Institute of Standards and Technology (NIST), Miles E. Smid

[Withdrawn October 19, 2015] This standard specifies an encryption/decryption algorithm and a Law Enforcement Access Field (LEAF) creation method which may be implemented in electronic devices and used for protecting government telecommunications when such

Security Requirements for Cryptographic Modules

January 11, 1994

Author(s)

National Institute of Standards and Technology (NIST), Lisa Carnahan, Miles E. Smid

[Superseded by FIPS 140-2 (May 25, 2001): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=902003] The selective application of technological and related procedural safeguards is an important responsibility of every Federal organization in

General Procedures for Registering Computer Security Objects

December 1, 1993

Author(s)

N Nazario

Good Security Practices for electronic Commerce, Including Electronic Data Interchange

December 1, 1993

Author(s)

Roy Saltman

Electronic commerce (EC) is the use of documents in electronic form, rather than paper, for carrying out functions of business or government that require interchange of information, obligations, or monetary value between organizations. Electronic data

Automated Password Generator (APG)

October 5, 1993

Author(s)

National Institute of Standards and Technology (NIST), Charles Dinkel

[Withdrawn on October 19, 2015] The Automated Password Generator Standard specifies an algorithm to generate passwords for the protection of computer resources. This standard is for use in conjunction with FIPS PUB 112, Password Usage Standard, which

Planning for the Fiber Distributed Data Interface (FDDI)

October 1, 1993

Author(s)

William E. Burr

Report of the NIST Workshop on Digital Signature Certificate Management, December 10-11, 1992

October 1, 1993

Author(s)

Dennis K. Branstad

The purpose of the workshop, held at the National Institute of Standards and Technology (NIST) on December 10-11, 1992, was to review the existing and required technologies for digital signature certification authorities, and to develop recommendations for

Security of SQL-Based Implementations of Product: Data Exchange Using Step

October 1, 1993

Author(s)

Lawrence E. Bassham, William T. Polk

Security Issues in the Database Language SQL

August 2, 1993

Author(s)

William T. Polk, Lawrence E. Bassham

The Database Language SQL (SQL) is a standard interface for accessing and manipulating relational databases. An SQL-compliant database management system (DBMS) will include a minimum level of functionality in a variety of areas. However, many additional

Workshop on Security Procedures for the Interchange of Electronic Documents: Selected Papers and Results

August 1, 1993

Author(s)

Roy Saltman

Secure Hash Standard (SHS)

May 11, 1993

Author(s)

National Institute of Standards and Technology (NIST), Elaine Barker

[Superseded by FIPS 180-1 (April 17, 1995): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917977] This standard specifies a Secure Hash Algorithm (SHA) which can be used to generate a condensed representation of a message called a message

Report of the NSF/NIST Workshop on NSFNET/NREN Security, July 6-7, 1992

May 1, 1993

Author(s)

A Oldehoeft

The Workshop on NSFNET/NREN Security was hosted by NIST and sponsored by NSF to address the need for improving the security of national computer networks. Emphasis was on identifying off-the-shelf security technology that could be implemented in the NSF

Minimum Security Requirements for Multi-User Operating Systems

March 1, 1993

Author(s)

David F. Ferraiolo, N Lynch, Patricia R. Toth

[NOTE: THIS DOCUMENT HAS BEEN SUPERSEDED BY THE FEDERAL CRITERIA.] The Minimum Security Requirements for Multi-User Operating Systems (MSR) document provides basic commercial computer system security requirements applicable to both government and