NIST's New Site Lists Validated Software Security Tools for Federal IT
February 19, 2008 // Published as a news service by IHS
| |
| Electronics & Telecom Docs |
IHS sells a full selection of standards documents & collections from the industry's top organizations.
To learn more, and for a free quote, please complete the form below. |
|
The National Institute of Standards and Technology (NIST) introduced a technical framework called the Security Content Automation Protocol (SCAP), which provides technical specifications for identifying, enumerating, assigning and sharing security-related data.
The new web site can help federal information systems managers maintain the security of their systems by providing a list of software security tools that have been validated for correct performance.
In recent years, the U.S. government significantly increased the security requirements for federal information systems. NIST developed the web site to make it easier for IT staff at federal agencies to maintain their systems' security.
The site was developed by NIST, in collaboration with the U.S. Department of Defense (DOD), the U.S. Department of Homeland Security (DHS) and the MITRE Corporation.
Experts said SCAP supports the automation of security operations in information systems for the purpose of improving the operations' efficiency and effectiveness.
The new NIST web page lists software tools that have been validated by external testing labs as processing SCAP correctly, making it easier for government agencies to take advantage of SCAP's capabilities and to ensure compliance with federally mandated computer security standards.
The NIST site will be updated regularly. It can be accessed at http://nvd.nist.gov/scapproducts.cfm.
Source: National Institute of Standards and Technology (NIST).