148 KB | 3 files | PDF
If properly envisaged and designed, access control can serve a more vital role in computing than one might expect.
Although access control (AC) currently plays an important role in securing data services (DS), if properly envisaged and designed, access control can serve a more vital role in computing than one might expect. The Policy Machine (PM), a framework for AC developed at NIST, was designed with this goal in mind. The PM has evolved beyond just a concept to a prototype implementation and is now being directed toward an open source project.
The attached zip file includes:
This excerpt focuses on the conceptual aspects of defect management, including the basic concepts of a defect, how to manage defects, and an analysis of the root causes of defects. ... More >>
This document makes recommendations for how users and developers should select checklists from the NIST National Checklist Repository, evaluate and test checklists, and apply them to IT products. ... More >>
This publication is intended to assist organizations in understanding the basics of application whitelisting. It also explains planning and implementation for whitelisting technologies throughout the security deployment lifecycle. ... More >>