Technology Industry
Industry: Email Alert RSS FeedCommerce Department Announces New IT Security Standard for Federal Agencies
Enterprise Networks & Servers, Mar 2004
U.S. Commerce Secretary Donald L. Evans has announced a new standard to help federal agencies better protect their computer networks.
The standard provides a new way to categorize government information and information systems.
"Protecting our government networks remains a critical priority for this administration," said Evans. "This new standard will help agencies better handle security threats by providing better information and guidance to federal agencies so they can make sound decisions."
Most RecentTechnology Articles
Computer security specialists at the Commerce Department's National Institute of Standards and Technology (NIST) developed the standard following passage of the Federal Information Security Management Act (FISMA) of 2002. Federal Information Processing Standard (FIPS) 199, Standards for the Security Categorization of Federal Information and Information Systems, introduces significant changes in how the federal government protects information and the computerized networks that store information.
The standard includes criteria to be used by civilian agencies in categorizing information and information systems, providing appropriate levels of security according to a range of impact levels. Under the standard, civilian agencies will assess the potential impact on their missions that would result from a security breach due to loss of confidentiality (unauthorized disclosure of information), integrity (unauthorized modification of information) or availability (denial of service).
Risk Management
The mandatory standard will be a critical component of an agency's risk management program. As required by FISMA, NIST also is developing a companion standard that will specify minimum-security requirements for all federal information systems.
A draft of that standard was published by NIST in 2003 for public comment. Together, these two standards will help ensure that appropriate, cost-effective security measures are put in place for each federal information system.
NIST also has produced a variety of computer security guidelines that may be used in conjunction with the new standard.
The standard applies to federal nonnational security systems. Classified systems use other standards.
A copy of the standard is available at http://csrc.nist.gov.
CIO SessionsVision Series on ZDNet
See and hear what CIOs the world over thinks about the business of technology and how it's changing the way we live and work.
Brought to you by CBS MoneyWatch.com
- 10 Best Places to Retire
- Companies with the Best 401(k) Plans
- Most Important Document for Your Heirs? It's Not Your Will
- Video: Should You Expect to Retire Rich?
- Over 50? Here's How to Get (and Keep) a Great Job
Most Recent Technology Articles
- TELECOMMUNICATIONS : TELECOMS PACKAGE LEAVES COMMISSION, EP AND COUNCIL IN DISCORD.
- TELECOMMUNICATIONS : MEPS PRESSED TO FINALISE TELECOMS PACKAGE.
- AUTHORS' RIGHTS : PARIS PUTS GRADUATED RESPONSE' ON AUDIOVISUAL COUNCIL'S AGENDA.
- RAIFFEISEN INFORMATIK BUY OF PC-WARE AUTHORISED.
- MOBILE TELEPHONY : REDING OBTAINS "STRONG AGREEMENT" ON ROAMING.
Most Recent Technology Publications
Most Popular Technology Articles
- What is precision air conditioning and why is it necessary?
- Business process re-engineering in the small firm: A case study
- BizRate to monitor in-store customer satisfaction for Office Depot stores - Market Intelligence
- Speed control of separately excited DC motor
- Base course modification through stabilization using cement and bitumen
Most Popular Technology Publications
Content provided in partnership with http://findarticles.com/source//
Sponsored by Merrill Lynch