Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Information Technology

Cybersecurity and privacy

Search Publications

Search Title, Abstract, Conference, Citation, Keyword or Author

Title

Author

NIST Pub Series

Report Number

Published Date

Min

Max

Displaying 1451 - 1475 of 1521

Security Requirements for Cryptographic Modules

January 11, 1994

Author(s)

National Institute of Standards and Technology (NIST), Lisa Carnahan, Miles E. Smid

[Superseded by FIPS 140-2 (May 25, 2001): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=902003] The selective application of technological and related procedural safeguards is an important responsibility of every Federal organization in

General Procedures for Registering Computer Security Objects

December 1, 1993

Author(s)

N Nazario

Good Security Practices for electronic Commerce, Including Electronic Data Interchange

December 1, 1993

Author(s)

Roy Saltman

Electronic commerce (EC) is the use of documents in electronic form, rather than paper, for carrying out functions of business or government that require interchange of information, obligations, or monetary value between organizations. Electronic data

Automated Password Generator (APG)

October 5, 1993

Author(s)

National Institute of Standards and Technology (NIST), Charles Dinkel

[Withdrawn on October 19, 2015] The Automated Password Generator Standard specifies an algorithm to generate passwords for the protection of computer resources. This standard is for use in conjunction with FIPS PUB 112, Password Usage Standard, which

Planning for the Fiber Distributed Data Interface (FDDI)

October 1, 1993

Author(s)

William E. Burr

Report of the NIST Workshop on Digital Signature Certificate Management, December 10-11, 1992

October 1, 1993

Author(s)

Dennis K. Branstad

The purpose of the workshop, held at the National Institute of Standards and Technology (NIST) on December 10-11, 1992, was to review the existing and required technologies for digital signature certification authorities, and to develop recommendations for

Security of SQL-Based Implementations of Product: Data Exchange Using Step

October 1, 1993

Author(s)

Lawrence E. Bassham, William T. Polk

Security Issues in the Database Language SQL

August 2, 1993

Author(s)

William T. Polk, Lawrence E. Bassham

The Database Language SQL (SQL) is a standard interface for accessing and manipulating relational databases. An SQL-compliant database management system (DBMS) will include a minimum level of functionality in a variety of areas. However, many additional

Workshop on Security Procedures for the Interchange of Electronic Documents: Selected Papers and Results

August 1, 1993

Author(s)

Roy Saltman

Secure Hash Standard (SHS)

May 11, 1993

Author(s)

National Institute of Standards and Technology (NIST), Elaine Barker

[Superseded by FIPS 180-1 (April 17, 1995): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917977] This standard specifies a Secure Hash Algorithm (SHA) which can be used to generate a condensed representation of a message called a message

Report of the NSF/NIST Workshop on NSFNET/NREN Security, July 6-7, 1992

May 1, 1993

Author(s)

A Oldehoeft

The Workshop on NSFNET/NREN Security was hosted by NIST and sponsored by NSF to address the need for improving the security of national computer networks. Emphasis was on identifying off-the-shelf security technology that could be implemented in the NSF

Minimum Security Requirements for Multi-User Operating Systems

March 1, 1993

Author(s)

David F. Ferraiolo, N Lynch, Patricia R. Toth

[NOTE: THIS DOCUMENT HAS BEEN SUPERSEDED BY THE FEDERAL CRITERIA.] The Minimum Security Requirements for Multi-User Operating Systems (MSR) document provides basic commercial computer system security requirements applicable to both government and

A Guide to the Selection of Anti-Virus Tools and Techniques

December 1, 1992

Author(s)

William T. Polk, Lawrence E. Bassham

Computer viruses continue to pose a threat to the integrity and availability of computer systems. This is especially true for users of personal computers. A variety of anti-virus tools are now available to help manage this threat. These tools use a wide

Automated Tools for Testing Computer System Vulnerability

December 1, 1992

Author(s)

William T. Polk

Computer security "incidents" occur with alarming frequency. The incidents range from direct attacks by both hackers and insiders to automated attacks such as network worms. Weak system controls are frequently cited as the cause, but many of these

Assessing Federal and Commercial Information Security Needs (IT)

November 1, 1992

Author(s)

David F. Ferraiolo, D M. Gilbert, N Lynch

In a cooperative effort with government and industry, the National Institute of Standards and Technology (NIST) conducted a study to assess the current and future information technology (IT) security needs of the commercial, civil, and military sectors

Role-Based Access Controls

October 13, 1992

Author(s)

David F. Ferraiolo, David R. Kuhn

While Mandatory Access Controls (MAC) are appropriate for multilevel secure military applications, Discretionary Access Controls (DAC) are often perceived as meeting the security processing needs of industry and civilian government. This paper argues that

Threat Assessment of Malicious Code and External Attacks

October 1, 1992

Author(s)

Lawrence E. Bassham, William T. Polk

As a participant in the U. S. Army Computer Vulnerability/Survivability Study Team, the National Institute of Standards and Technology has been tasked with providing an assessment of the threats associated with commercial hardware and software. This

Computer Security Training & Awareness Course Compendium

May 1, 1992

Author(s)

Kathie A. Everhart

Computer Security Considerations in Federal Procurements: A Guide for Procurement Initiators, Contracting Officers, and Computer Security Officials

March 2, 1992

Author(s)

Barbara Guttman

[Superseded by SP 800-64 (October 2003): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=917469] This NIST Special Publication provides guidance for federal procurement initiators, contracting officers, and computer security officials on

A Review of U.S. and European Security Evaluation Criteria

March 1, 1992

Author(s)

Charles Dinkel

Foundations of a Security Policy for Use of the National Research and Educational Network

February 1, 1992

Author(s)

A Oldehoeft

The National Research and Education Network (NREN) is an integral part of the planned High- Performance Computing and Communication (HPCC) infrastructure that will extend throughout the scientific, technical and education communities. The projected vision

Sample Statement of Work for Federal Computer Security Services: For Use in-House or Contracting Out

December 1, 1991

Author(s)

D M. Gilbert, N Lynch

Each federal organization is fully responsible for its computer security program whether the security program is performed by in-house staff or contracted out. Time constraints, budget constraints, availability or expertise of staff, and the potential

Establishing a Computer Security Incident Response Capability (CSIRC)

November 1, 1991

Author(s)

John P. Wack

[Superseded by SP 800-61 (January 2004): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=151291] Government agencies and other organizations have begun to augment their computer security efforts because of increased threats to computer

Computer Security Bulletin Board System User's Guide

September 1, 1991

Author(s)

Mark Skandera, Marianne M. Swanson

Security in ISDN

September 1, 1991

Author(s)

William E. Burr

The Integrated Services Digital Network (ISDN) standards will provide worldwide digital communications service and will play a key role in the transition to electronic documents and business transactions. ISDN has been developed with little thought to

Was this page helpful?