20th NISSC Internet Technical Security Policy Panel

This paper focuses on providing the reader with an overview of the current virus landscape and aids in developing best practice anti-virus policies. After presenting the threat, we'll introduce you to today's most popular anti-virus tools.

Draft paper for NIST Computer Security Handbook.

This paper will discuss what should be covered in a corporate computer user policy that sets the overall tone of an organization's security approach. The intended audience is primarily information technology professionals.

NIAP CCEVS is managed by the NSA, and is focus on establishing a national program for the evaluation of information technology products for conformance to the International Common Criteria for Information Technology Security Evaluation.

SecurityFocus is designed to facilitate discussion on computer security related topics, create computer security awareness, and to provide the Internet's largest and most comprehensive database of computer security knowledge and resources to the public. It also hosts the BUGTRAQ mailing list.

The SANS Institute, offering computer security training for system administrators, computer security professionals, and network administrators, is a cooperative research and education organization that has many consensus projects to return computer security information to the community.

Security standards are needed by organizations because of the amount of information, the value of the information, and ease with which the information can be manipulated or moved.

Security does not come from automated applications, rather it is compromised of security applications or systems, processes and procedures and the personnel to implement both the systems and processes. In order to properly address security, the most fundamental item necessary is a security policy.

Knowing how and what to protect and what controls to put in place is difficult. It takes security management, including planning, policy development and the design of procedures.