Technology Industry
Industry: Email Alert RSS FeedCommerce Department Announces New IT Security Standard for Federal Agencies
Enterprise Networks & Servers, Mar 2004
U.S. Commerce Secretary Donald L. Evans has announced a new standard to help federal agencies better protect their computer networks.
The standard provides a new way to categorize government information and information systems.
"Protecting our government networks remains a critical priority for this administration," said Evans. "This new standard will help agencies better handle security threats by providing better information and guidance to federal agencies so they can make sound decisions."
Most RecentTechnology Articles
Computer security specialists at the Commerce Department's National Institute of Standards and Technology (NIST) developed the standard following passage of the Federal Information Security Management Act (FISMA) of 2002. Federal Information Processing Standard (FIPS) 199, Standards for the Security Categorization of Federal Information and Information Systems, introduces significant changes in how the federal government protects information and the computerized networks that store information.
The standard includes criteria to be used by civilian agencies in categorizing information and information systems, providing appropriate levels of security according to a range of impact levels. Under the standard, civilian agencies will assess the potential impact on their missions that would result from a security breach due to loss of confidentiality (unauthorized disclosure of information), integrity (unauthorized modification of information) or availability (denial of service).
Risk Management
The mandatory standard will be a critical component of an agency's risk management program. As required by FISMA, NIST also is developing a companion standard that will specify minimum-security requirements for all federal information systems.
A draft of that standard was published by NIST in 2003 for public comment. Together, these two standards will help ensure that appropriate, cost-effective security measures are put in place for each federal information system.
NIST also has produced a variety of computer security guidelines that may be used in conjunction with the new standard.
The standard applies to federal nonnational security systems. Classified systems use other standards.
A copy of the standard is available at http://csrc.nist.gov.
CXO UnpluggedSmart Business interviews on BNET
See and hear how senior level executives across the Asia Pacific are developing smart business ideas across a variety of sectors. The focus is on the future, and on how businesses need to evolve.
Brought to you by CBS MoneyWatch.com
- Best- and Worst-Paid College Degrees
- 6 Things You Should Never Do on Twitter or Facebook
- How Much Sleep Do You Really Need?
- 6 Big Myths about Gas Mileage
Most Recent Technology Articles
- INTERVIEW WITH BEN BUTTERS, DIRECTOR OF EUROPEAN AFFAIRS AT EUROCHAMBRES : "A PERFECT ROAD MAP FOR EU CLUSTERS DOES NOT EXIST".
- AGENDA.(Brief article)(Conference notes)
- FIGHT AGAINST INTERNET PIRACY.
- INTERNET : AUTHORS' SOCIETIES URGE ACTION AGAINST PIRACY.
- TELECOMMUNICATIONS : BUSINESSEUROPE HOSTILE TO FURTHER CONTRACTUAL OBLIGATIONS.(Brief article)
Most Recent Technology Publications
Most Popular Technology Articles
- 3G: naughty or nice? PhoneErotica.com generates over 300 million hits per month, and rings up more minutes of use per month than MSN
- Business process re-engineering in the small firm: A case study
- Performance analysis of shell and tube heat exchanger using miscible system
- What is precision air conditioning and why is it necessary?
- Optimizing of Trichoderma viride cultivation in submerged state fermentation
Most Popular Technology Publications
Content provided in partnership with
