Federal standard issued for improving IT security

February 13, 2004

Computer security specialists at the National Institute of Standards and Technology (NIST) have developed a new standard to help federal agencies better protect their computer networks. The standard provides a new way to categorize government information and information systems.

"Protecting our government networks remains a critical priority for this administration," said U.S. Commerce Secretary Donald L. Evans. "This new standard will help agencies better handle security threats by providing better information and guidance to federal agencies so they can make sound decisions."

The standard was developed following passage of the Federal Information Security Management Act (FISMA) of 2002. Federal Information Processing Standard (FIPS) 199, Standards for the Security Categorization of Federal Information and Information Systems, introduces significant changes in how the federal government protects information and the computerized networks that store information by giving detailed guidance on how to categorize systems.

The standard includes criteria to be used by civilian agencies in categorizing information and information systems, providing appropriate levels of security according to a range of impact levels. Under the standard, agencies will assess the potential impact on their missions that would result from a security breach due to loss of confidentiality (unauthorized disclosure of information), integrity (unauthorized modification of information) or availability (denial of service).

The mandatory standard will be a critical component of an agency's risk management program. As required by FISMA, NIST is also developing a companion standard that will specify minimum security requirements for all federal systems. A draft of that material was published by NIST in 2003 for public comment. Together, these two standards will help ensure that appropriate, cost-effective security measures are put in place for each federal system. NIST also has a variety of computer security guidelines that may be used in conjunction with the new standard.
-end-
A copy of the standard is available at http://csrc.nist.gov.

National Institute of Standards and Technology (NIST)

Related Information Systems Articles from Brightsurf:

Nervous systems of insects inspire efficient future AI systems
Study explores functions of fruit fly's nervous system in food seeking / results valuable for the development and control of artificial intelligence.

New drug carrier systems
A UD research team has devised tiny cargo-carrying systems many times smaller than a human hair, made from molecules called peptides that help provide structure for cells and tissues.

Avoiding environmental losses in quantum information systems
New research published in EPJ D has revealed how robust initial states can be prepared in quantum information systems, minimising any unwanted transitions which lead to losses in quantum information.

Software of autonomous driving systems
Researchers at TU Graz and AVL focus on software systems of autonomous driving systems.

Hormone systems can still be adapted in adulthood
Behavioural biologists at M√ľnster University have now been able to demonstrate for the first time that male guinea pigs are still able to adapt their hormone systems to changes in their social environment in adulthood.

Fishing can disrupt mating systems
In many fish species body size plays an important role in sexual selection.

Recipe for neuromorphic processing systems?
The field of 'brain-mimicking' neuromorphic electronics shows great potential for basic research and commercial applications, and researchers in Germany and Switzerland recently explored the possibility of reproducing the physics of real neural circuits by using the physics of silicon.

Systems analysis for a new Arctic
A major new IIASA report highlights new and emerging policy trends in the Arctic, a region on the front lines of climate change, geopolitics, and global governance.

Making systems robust
Both nature and technology rely on integral feedback mechanisms to ensure that systems resist external perturbations.

Quantum systems: Same, but different
Remarkable rules have been detected in the apparent chaos of disequilibrium processes.

Read More: Information Systems News and Information Systems Current Events
Brightsurf.com is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com.