« 日本公認会計士協会 パブコメ 監査・保証実務委員会実務指針『受託業務に係る内部統制の保証報告書』(中間報告) | Main | NIST Special Publication 800-82, Guide to Industrial Control System (ICS) Security. »

2011.05.29

NIST 2010 Computer Security Division Annual Report

 こんにちは、丸山満彦です。NISTが2010 Computer Security Division Annual Reportを公開していますね。。。
 これから読みます。。。

■NIST
・2011.05.27 2010 Computer Security Division Annual Report

=====
Welcome
Division Organization
The Computer Security Division Implements the Federal Information Security Management Act of 2002

Security Management and Assurance Group
・ Federal Information Security Management Act Implementation Project
 ・・ FISMA Implementation Project – Phase I
 ・・ FISMA Implementation Project – Phase II
・ Outreach and Awareness
 ・・ Computer Security Resource Center
 ・・ Federal Computer Security Program Managers’ Forum
 ・・ Federal Information Systems Security Educators’ Association
 ・・ Information Security and Privacy Advisory Board
 ・・ Security Practices and Policies
 ・・ Small and Medium Size Business Outreach
・ Security and Health Information Technology
・ National Initiative for Cybersecurity Education (NICE)
・ Smart Grid Cyber Security
・ Supply Chain Risk Management
・ Cryptographic Validation Programs and Laboratory Accreditation
 ・・ Cryptographic Module Validation Program and Cryptographic
 ・・ Laboratory Accreditation
・ Algorithm Validation Program
 ・・ Automated Security Testing and Test Suite Development
 ・・ ISO Standardization of Cryptographic Module Testing

Cryptographic Technology Group
・ Cryptographic Standards Toolkit
 ・・ Hash Algorithms and the Secure Hash Standard Competition
 ・・ Block Cipher Modes of Operation
・ Key Management
・ Transitioning of Cryptographic Algorithms and Key Lengths
・ Internet Security
・ Quantum Computing
・ Authentication
・ Security Aspects of Electronic Voting
・ Development of FIPS 140-3, Security Requirements for Cryptographic Modules

Systems and Emerging Technologies Security Research Group
・ Identity Management Systems
 ・・ Personal Identity Verification
 ・・ NIST Personal Identity Verification Program
 ・・ Conformance Tests for Transportation Workers Identification Credential Specifications
 ・・ Identity Credential Smart Card Interoperability ISO/IEC 24727
 ・・ Identification Cards Integrated Circuit Cards Programming Interfaces
・ Biometric Standards and Conformity Assessment Activities
・ Research in Emerging Technologies
 ・・ Access Control - Information Sharing Environment
 ・・ Access Control and Privilege Management Research
 ・・ Automated Combinatorial Testing for Software
 ・・ Conformance Verification for Access Control Policies
 ・・ Forensics for Web Services
 ・・ Mobile Handheld Device Security and Forensics
 ・・ NIST Cloud Computing Project
 ・・ Policy Machine
 ・・ Security for Grid and Pervasive Systems
 ・・ Security Ontologies: Modeling Quantitative Risk Analysis of Enterprise Systems
・ Protecting Virtualization Technologies
 ・・ Cloud Computing and Virtualization Laboratory
 ・・ Access Control and Identitiy Management in Virtualized Systems
・ Automated Vulnerability Management
 ・・ Security Content Automation Protocol (SCAP)
 ・・ National Vulnerability Database
 ・・ National Checklist Program
 ・・ Security Content Automation Protocol Validation Program
・ Technical Security Metrics
 ・・ Vulnerability Measurement and Scoring
 ・・ Network Security Analysis Using Attach Graphs
・ Infrastructure Services, Protocols, and Applications
 ・・ Internet Protocol Version 6 and Internet Protocol Security
 ・・ Securing the Domain Name System
・ CSD's Part in National and International IT Security Standards Processes

Honors and Awards
Computer Security Division Publications Released in FY2010 & Abstracts
Ways to Engage Our Division and NIST

=====

|

« 日本公認会計士協会 パブコメ 監査・保証実務委員会実務指針『受託業務に係る内部統制の保証報告書』(中間報告) | Main | NIST Special Publication 800-82, Guide to Industrial Control System (ICS) Security. »

Comments

No offense, but if there's a facebook like button, it'll be much easier for me to share.

Posted by: elliptical reviews | 2011.11.30 12:34

Post a comment



(Not displayed with comment.)


Comments are moderated, and will not appear on this weblog until the author has approved them.



TrackBack


Listed below are links to weblogs that reference NIST 2010 Computer Security Division Annual Report:

« 日本公認会計士協会 パブコメ 監査・保証実務委員会実務指針『受託業務に係る内部統制の保証報告書』(中間報告) | Main | NIST Special Publication 800-82, Guide to Industrial Control System (ICS) Security. »