405 KB | 3 files | PDF
Follow these NIST recommendations on secure configuration of all components of your information systems.
Organizations have to make frequent changes to their information systems in order to implement new and updated hardware and software components, correct software flaws and other errors, address new security threats and adapt to changing business objectives. These constant changes result in adjustments being made to the configuration of information systems; these activities could have an impact on the security of the systems and operations.
In developing information systems, organizations employ many components that can be interconnected in different arrangements to meet the organization’s business, mission and information security needs. To protect information systems and information, organizations need techniques for the secure configuration, operation and management of system components, including mainframes, workstations, servers, networks, operating systems, middleware and applications, and for the management and control of risks to systems and information.
The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) has issued a new guide to help organizations develop a well-defined process for managing and controlling secure system configurations and for managing risks in information systems.
Included in this ZIP file are:
This excerpt focuses on the conceptual aspects of defect management, including the basic concepts of a defect, how to manage defects, and an analysis of the root causes of defects. ... More >>
This Word 2016 Quick Reference Card covers program fundamentals, as well as essential keyboard shortcuts for navigation, editing and formatting that can make your work go even faster. ... More >>
This report lays the foundation for a rational approach to software metrology, with the scope of the current effort being software as the object of measurement. ... More >>