wectar
web nectar
Wectar - Computers - Security - Policy
 | submit a site to this category |
| wectar web site suggestions for this odp category |
| Subcategories | |||
|---|---|---|---|
| Companies | HIPAA | Sample Policies | Standards |
|
|
SANS InfoSec Reading RoomURL: http://www.sans.org/rr/ ODP description: Articles on security policy and other information security topics. Page title: SANS Institute - SANS Information Security Reading Room - Security White Papers Page description: The SANS Institute, offering computer security training for system administrators, computer security professionals, and network administrators, is a cooperative research and education organization that has many consensus projects to return computer security information to the community.  |
|
|
Make Your Web Site P3P CompliantURL: http://www.w3.org/P3P/details.html ODP description: How to create and publish your company's platform for privacy performance policy, a W3C initiative, in 6 steps. Page title: More information on using P3P |
|
|
IT Security CookbookURL: http://www.boran.com/security/ ODP description: A guide to computer and network security with a strong focus on writing and implementing security policy. This is primarily for security managers and system administrators. Page description: Comprehensive online book including: Computer/Network security, Internet, Risk analysis, UNIX, NT, Encryption, ITSEC |
|
|
Common Criteria Evaluation and Validation SchemeURL: http://www.niap-ccevs.org/cc-scheme/ ODP description: Provides details of this US government scheme. Page title: CCEVS Page description: NIAP CCEVS is managed by the NSA, and is focus on establishing a national program for the evaluation of information technology products for conformance to the International Common Criteria for Information Technology Security Evaluation. |
|
|
OSSTMM: Open Source Security Testing Methodology ManualURL: http://www.isecom.org/projects/osstmm.shtml ODP description: A widely used, peer-reviewed, methodology for performing security tests. |
|
|
Return on Information Security InvestmentURL: http://www.geocities.com/amz/ ODP description: Assess your company's Return on Information Security Investment Page description: Assess the return of information security inverstment of your organisation. Use the balanced scorecard to evaluate the financial and strategic aspects of your information security programme. |
|
|
U.S. Department of Health and Human ServicesURL: http://www.cms.hhs.gov/InformationSecurity/ ODP description: Security standards, transactions and code set standards, identifier standards, mailing lists, implementation guides, and administrative simplification. Page title: Overview |
|
|
RFC2196 (Site Security Handbook)URL: http://tools.ietf.org/html/rfc2196 ODP description: a guide to developing computer security policies and procedures for sites that have systems on the Internet. Published 1997. Page title: RFC 2196 Site Security Handbook |
|
|
Canada's Export ControlsURL: http://www.efc.ca/pages/doc/crypto-export.html ODP description: Unofficial / unverified article describing Canada's export controls on cryptographic software. Page title: Canada's export controls |
|
|
P3P Guiding PrinciplesURL: http://www.w3.org/TR/NOTE-P3P10-principles ODP description: Principles behind the W3C Platform for Privacy Preferences initiative. |
|
|
How to Develop Good Security Policies and Tips on Assessment and EnforcementURL: http://www.giac.org/practical/Kerry_McConnell_GSEC.doc ODP description: [Word Document] Invest the time up front to carefully develop sound policies and then identify ways to gauge their effectiveness and assess the level of compliance within your organization. Commit to spending the time and resources required to ensure that the policies are kept current and accurately reflect your company's security posture. Page title: How to Develop Good Security Policies and Tips on Assessment and Enforcement - GIAC Certified Student Practical |
|
|
A Structured Approach to Computer SecurityURL: http://citeseer.ist.psu.edu/241365.html ODP description: A security policy is a set of rules written in general terms stating what is permitted and what is not permitted in a system during normal operation. Page title: A Structured Approach to Computer Security - Olovsson (ResearchIndex) Page description: Security and dependability are two closely connected areas. Recently, some attempts have been made to integrate the two concepts by integrating security into the more general topic of dependability. This paper describes security concepts and gives a survey of security terminology. It also establishe |
|
|
Internet/Network Security Policy DevelopmentURL: http://netsecurity.about.com/compute/netsecurity/library/weekly/aa080299.htm?iam=mt ODP description: How to write an effective network security policy. This is Part 4 of a 5 part tutorial on Internet and network security. Page title: Previous Network/Internet Security Articles Page description: Previous articles about Network and Internet security issues, resources, tools, vulnerabilites and reviews on Microsoft Windows, Unix, Linux, and Mac systems |
|
|
Institute for Security and Open Methodologies (ISECOM)URL: http://www.isecom.org ODP description: Non-profit, international research initiative dedicated to defining standards in security testing and business integrity testing. Page title: ISECOM - Institute for Security and Open Methodologies |
|
|
What makes a good security policy and why is one necessary?URL: http://www.giac.org/practical/Caroline_Reyes_GSEC.doc ODP description: Security does not come from automated applications, rather it is compromised of security applications or systems, processes and procedures and the personnel to implement both the systems and processes. In order to properly address security, the most fundamental item necessary is a security policy. Page title: What Makes a Good Security Policy and Why Is One Necessary? - GIAC Certified Student Practical |
|
|
GASSP Home PageURL: http://csrc.nist.gov/publications/nistpubs/800-14/800-14.pdf ODP description: Generally Accepted System Security Principles, developed by The International Information Security Foundation. |
|
|
Information Security Program DevelopmentURL: http://www.blackmagic.com/ses/bruceg/progmgt.html ODP description: Security standards are needed by organizations because of the amount of information, the value of the information, and ease with which the information can be manipulated or moved. Page title: Information Security Program Development - Bruce C. Gabrielson, PhD |
|
|
Information Security PoliciesURL: http://www.neupart.com ODP description: Make and manage security policies. Run awareness programs with audits and e-learning to build a human firewall. Page title: Neupart - Information Security Management & Awareness Page description: Neupart: Information Security Management and Awareness; Solutions and Services; Based on standards. |
|
|
Windows IT LIbraryURL: http://www.windowsitlibrary.com/Content/121/07/1.html?Ad=1& ODP description: This paper offers wide ranging advice on the development and implementation of security policies. Page title: Developing Effective Security Policies |
|
|
The Basics of an IT Security PolicyURL: http://www.giac.org/practical/jack_albright_gsec.doc ODP description: This paper is intended to address the importance of having a written and enforceable Information Technology (IT) security policy, and to provide an overview of the necessary components of an effective policy. Page title: The Basics of an IT Security Policy - GIAC Certified Student Practical |
 |
|  |