An Overview of Corporate Computer User Policy
Article discusses the elements of a corporate security policy, which it calls the gateway to a company`s intellectual property. The main threat to information security within a company is its employees. [PDF]
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
PKI Policy Whitepaper
Provides general information about PKI policy, the role that policy plays in a PKI and how that policy applies to both traditional and PKI-enabled business environments. [PDF]
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Policy Over Policing
InfoWorld article - It's easy to develop e-mail and Internet policies, but education and documentation are crucial to their success.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
P3P Guiding Principles
Principles behind the W3C Platform for Privacy Preferences initiative.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Return on Information Security Investment
Assess your company's Return on Information Security Investment
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
RFC2196 (Site Security Handbook)
a guide to developing computer security policies and procedures for sites that have systems on the Internet. Published 1997.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
SANS InfoSec Reading Room
Articles on security policy and other information security topics.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
SecureZone
Information portal with focus on policies, protocols and standards
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
SecurityDocs
A substantial collection of papers and articles on the development and implementation of security policies.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Site Security Policy Development
This paper outlines some issues that the writer of a Site Computer Security Policy may need to consider when formulating such a document.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Structured Approach to Computer Security
A security policy is a set of rules written in general terms stating what is permitted and what is not permitted in a system during normal operation.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Understanding the Virus Threat and Developing Effective Anti-Virus Policy
This paper focuses on providing the reader with an overview of the current virus landscape and aids in developing best practice anti-virus policies.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
U.S. Department of Health and Human Services
Security standards, transactions and code set standards, identifier standards, mailing lists, implementation guides, and administrative simplification.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
What makes a good security policy and why is one necessary?
Security does not come from automated applications, rather it is compromised of security applications or systems, processes and procedures and the personnel to implement both the systems and processes. In order to properly address security, the most fund
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
What's Your Policy?
If your company doesn't have written security policies, it's time it did, and Mark Edwards has some resources to help.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Why Security Policies Fail
Objective analysis reveals that many breaches are linked to common weaknesses in the security policy...accidents waiting to happen. This article focuses on strategic and systematic weaknesses that can slowly degrade security operations.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Windows 2000 Group Policy and Security
The use of Group Policy to simplify the network security tasks that you face as a network administrator. With Group Policy, you can ensure that the machines on your network remain in a secure configuration after you deploy them.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Windows IT LIbrary
This paper offers wide ranging advice on the development and implementation of security policies.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
SecurityFocus
Intrusion detection focus area; designed to assist discussion on security related topics, and provides a comprehensive database of security knowledge and resources. It also hosts the BUGTRAQ mailing list.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
COAST Intrusion Detection Hostlist
Clearinghouse listing of many of the Internet resources associated with intrusion detection and prevention systems. Includes inventories of commercial products, research projects, and other IDS-centric material.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Internet Storm Center
Operated by the SANS Institute, the ISC provides a user-supported infrastructure for intrusion detection systems to share information about ongoing attacks that span countries, networks, and administrative boundaries.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Linux Security IDS
An excellent source of IDS-related information, including security best practices, audit procedures, penetration testing, community information and more.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
LinuxSecurity IDS Resources
Collection of IDS-related resources made available by the linuxsecurity.com community.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
Michael Sobirey's IDS Page
An excellent index of most currently available IDS and IPS products, including vendor contact information.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
myNetWatchman.com
Intrusion Reporting and Response. Users forward firewall logs that are aggregated and analysed to identify incidents that are reported to the responsible party.
Category
:: Created: 11-05-2007 :: :: Rating: 0.00 (0 votes) ::
