NIST Site Search
Google
Web NIST.org
NIST.gov
Product Research

Advertise on this site
Headlines

»Insecure Loading of Dynamic Link Libraries in Windows Applications
»VMware Releases Updates for ESX Service Console Packages
»Cisco Releases Security Advisory for IOS XR Software Border Gateway Protocol
»RealNetworks Releases Update to Address Vulnerabilities in RealPlayer
»Cisco Releases Advisories for Unified Communications Manager and Unified Presence
»APWG Fax Back Phishing Education Program
»Adobe Releases Security Bulletin for Shockwave Player
»Apple Releases Security Update 2010-005
»Microsoft Releases Security Advisory
»VideoLAN Releases a Security Advisory for VLC Media Player

Date published: not known
Details

»T-430: Apple QuickTime Flaw in QTPlugin.ocx ActiveX Control Lets Remote Users Execute Arbitrary Code
Apple QuickTime Flaw in QTPlugin.ocx ActiveX Control Lets Remote Users Execute Arbitrary Code
»T-429: WaspTime MS-SQL Database instance with blank password for sa account
WaspTime MS-SQL Database instance with blank password for sa account
»T-428: Vulnerability in Help and Support Center
Vulnerability in Help and Support Center
»T-427: VMWare WebAccess Vulnerability
VMWare WebAccess Vulnerability
»T-426: Microsoft Windows Shortcut 'LNK/PIF' Files Automatic File Execution Vulnerability
Microsoft Windows Shortcut 'LNK/PIF' Files Automatic File Execution Vulnerability
»T-425: Desktop Java running in web browsers
Desktop Java running in web browsers
»T-424: Windows TCP/IP Stack IcmpSendEcho2Ex() Bug Lets Local Users Deny Service
Windows TCP/IP Stack IcmpSendEcho2Ex() Bug Lets Local Users Deny Service
»T-423: Microsoft Security Advisory (2269637) - Insecure Library Loading Could Allow Remote Code Execution
Microsoft Security Advisory (2269637) - Insecure Library Loading Could Allow Remote Code Execution
»T-422: Adobe Flash Player and AIR (CVE-2010-2216) Unspecified Memory Corruption Vulnerability
Adobe Flash Player and AIR (CVE-2010-2216) Unspecified Memory Corruption Vulnerability
»T-421: Multiple CACTI Security Vulnerabilities
Multiple CACTI Security Vulnerabilities
»T-420: Microsoft Windows TCP/IP IPv6 Extension Header Remote Denial of Service Vulnerability
Microsoft Windows TCP/IP IPv6 Extension Header Remote Denial of Service Vulnerability
»T-419: PHP 'ibase_gen_id()' Function off-by-one Buffer Overflow Vulnerability
PHP 'ibase_gen_id()' Function off-by-one Buffer Overflow Vulnerability
»T-418: Adobe Acrobat and Reader Font Parsing Remote Code Execution Vulnerability
Adobe Acrobat and Reader Font Parsing Remote Code Execution Vulnerability
»T-417: Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
»T-417: Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities

Date published: not known
Details

»ARF published as IETF standard
Abuse report format helps auto-handling of email complaints
»Microsoft releases new fix for DLL vulnerability
Earlier workaround believed to be too complex for most users.
»Malicious tweets link to fake TweetDeck update
Twitter resets passwords for accounts that appear to have been hacked.
»94% of Internet users befriend unknown 'good-looking woman'
Sensitiva data shared after two-hour chat.
»Investment boost for Quick Heal
Indian security firm gets hefty cash injection.
»41% of spam sent via Rustock botnet
Botnet spam back after short summer break.
»Avast gets $100m investment boost
Growth equity firm invests in Czech firm
»Computer chip giant buys AV giant
Intel becomes new owner of McAfee for the princely sum of $7.8bn
»AV-Test.org issues latest round of testing results
Symantec and Microsoft outdo Trend and McAfee in live tests.

Date published: not known
Details

»Networked Scanners Offer A Window Into The Enterprise, Researcher Says
Emerging Web-based features make it possible to capture document contents remotely from networked sc ...
»U.S. Businesses Could Lose Up To $1 Billion In Online Banking Fraud This Year
Small- to midsized businesses taking the biggest hit, experts say, but consumer banking customers co ...
»Product Watch: Verizon, VMware Team Up With Hybrid Cloud Service
New Verizon service offers private public-cloud option
»Could USB Flash Drives Be Your Enterprise's Weakest Link?
The Pentagon last week conceded that a USB flash drive carried an attack program inside a classified ...
»Delaware Contractor Mistakenly Posts Personal Data Of 22,000 Employees
State of Delaware contractor Aon mistakenly posts personal data of 22,000 retirees without randomiza ...
»IBM Corrects Unpatched Vulnerability Numbers After Google Challenge
X-Force Team at IBM revises data on vendors with most unpatched bugs in recent IBM X-Force 2010 Mid- ...
»Major Disruption of Pushdo Botnet Wasn't The Original Goal
Botnet's spam traffic cut by 80 percent
»China, Taiwan Nab 450 Suspects In Biggest Fraud Raid Ever
Law enforcement authorities in China, Taiwan seize cash, fraud "manuals" from alleged tele ...
»Four Best Practices For Tokenization
Going beyond Visa's best practices guide

Date published: not known
Details
Search NIST IT Security
Search For:   Enhanced Query Form
Search In:
  
Results 1 - 10 of 12 in Content
NIST FIPS 140-2
...dules to Federal Information Processing Standard (FIPS) 140-2 and other cryptography based standards. Download the complete NIST FIPS 140-2. Plea...
Posted on Wednesday 15 November 2006 - 20:44:06 in

NIST FIPS 197 - Advanced Encryption Standard (AES)
NIST announced the approval of FIPS 197 Advance Encryption Standard (AES) November 2001. AES specifies the Rijndael encryption algorithm as a FIPS-ap...
Posted on Saturday 21 January 2006 - 22:00:00 in

NIST SP 800-73 Interfaces for Personal Identity Verification
...ors, Federal Information Processing Standard 201 (FIPS 201) was developed to establish standards for identity credentials. This document, Special Publ...
Posted on Monday 06 February 2006 - 22:00:00 in

NIST FIPS 201 Personal Identity Verification (PIV)
...t information systems. Download the complete NIST FIPS 201 Please use the NIST.org Forum to ask questions or discuss this document. The belo...
Posted on Monday 06 February 2006 - 22:00:00 in

Federal Information Processing Standards (FIPS)
With the passage of the Federal Information Security Management Act (FISMA) of 2002 all Federal Information Processing Standards (FIPS) are now manda...
Posted on Sunday 22 January 2006 - 16:44:21 in

Guide to NIST Computer Security Documents
In order to make NIST information security documents more accessible, especially to those just entering the security field or with limited needs for t...
Posted on Monday 30 April 2007 - 19:58:26 in

NIST SP 800-48 Revision 1, Wireless Network Security for IEEE 802.11a/b/g and Bluetooth
...port for Federal Information Processing Standard (FIPS) validated cryptographic algorithms. Therefore, NIST recommends that organizations with existin...
Posted on Tuesday 07 August 2007 - 22:00:00 in

NIST SP 800-78 Cryptographic Algorithms and Key Sizes for Personal Identity Verification
...es for PIV systems and is a companion document to FIPS 201. Download the entire NIST SP 800-78 PDF You may use the NIST.org Forum to ask question...
Posted on Monday 06 February 2006 - 22:00:00 in

Important HSPD-12 Documents and Links
... how to implement it *OMB Memorandum M-05-24 *FIPS 140-2 *FIPS 201 NIST Special Publictions *NIST SP 800-73 *NIST SP 800-76 *NIST...
Posted on Sunday 05 February 2006 - 22:00:00 in

NIST SP 800-76 Biometric Data Specification for Personal Identity Verification
...ractors, Federal Information Processing Standard (FIPS 201), was developed to establish standards for identity credentials. This document, Special Pub...
Posted on Monday 30 January 2006 - 22:00:00 in

Go to page       >>  
Results in Links
No matches found
Results 1 - 10 of 20 in News
GSA Awards Large Contracts for 10 Encryption Products
... “data at rest”. All 10 products use NIST.gov FIPS 140-2 validated encryption modules. You will be hearing much more about these products in the c...
Posted on Wednesday 20 June 2007 - 22:52:35

Evidence that Encrypting Data is the Easy Part
...a, classified, data, top, secret, key, truecrypt, fips, 140-2, fbi, keylogger, chi, mak, tai, security, china, aes, aes256, aes128, blowfish, CAST5, s...
Posted on Friday 25 May 2007 - 15:27:08

NIST.gov releases RFID Security Publication and a NIST Security Table of Contents
..., sp, special, publication, table, contents, 800, fips@@@ NIST.gov has released NIST Special Publication (SP) 800-98, Guidelines for Securing Ra...
Posted on Tuesday 01 May 2007 - 05:56:20

U.S. Government Agencies Banning Microsoft Vista
...curity, moratorium, nist, gov, dot, faa, federal, fips, aviation, administration, office, 2007, google, apps, ocio@@@ In what turning out to be...
Posted on Tuesday 13 March 2007 - 21:56:36

NSA Posts Notice on ‘Suite B’ encryption
...ough the Federal Information Processing Standard (FIPS) 201 for identity cards makes no specific reference to it, said Brendan Ziolo, marketing direct...
Posted on Monday 12 December 2005 - 22:39:27

FISMA guidance nearly complete
...ct, guidance, guidelines, compliance, omb, a-130, fips, 200, standard, processing, requirement@@@ The publication, titled “Guide for Assessing...
Posted on Thursday 01 December 2005 - 04:25:48

NIST to set up Web site for products being FIPS-201-tested
NIST.GOV will be posting test results vendor smart cards and readers to see whether they conform to Federal Information Processing Standard-201 and NI...
Posted on Wednesday 30 November 2005 - 15:50:12

NIST.gov releases draft of Wireless Network Security for IEEE 802.11a/b/g and Bluetooth
...tute, standards, ieee, access point, adhoc, WPAN, fips, encryption, wpan, wlan, wman, wwan@@@ Draft SP 800-48 Revision 1 provides an overview of...
Posted on Wednesday 08 August 2007 - 06:17:10

News Release - LogLogic Announces FISMA Control and Compliance Suite Based On NIST For Government Organizations
...s - the Federal Information Processing Standards (FIPS), the National Institute of Standards and Technology (NIST) "Recommended Security Controls for ...
Posted on Sunday 13 May 2007 - 15:19:25

SANS.org SOHO Backups and Encryption article
...ould be mentioned, though TrueCrypt offers a NIST FIPS approved algorithm (AES) the application is not on the NIST.gov Advanced Encryption Standard Al...
Posted on Monday 11 September 2006 - 17:05:55

Go to page       >>  
Results 1 - 1 of 1 in Forum
As part of thread: Authorizing Oficial?
Forum -> NIST SP 800 Documents
...I am wrong but even though we have implemented all the security controls we are not FIPS 199 accredited since a government agency certified us.
Posted by Teddy on Wednesday 19 August 2009 - 09:48:07
Results in Comments
No matches found
Results in Other Pages
No matches found
Results in Bugtracker2
No matches found
Translate to: French German Italian Spanish Portuguese GTM_LAN_DUTCH Russian Chinese Arabic Korean English
Latest NIST.org news and comments
Google Ads




NIST Site Menu
·Home

NIST Security Books
NIST IT Security Books

Training / Books

»Security Certifications -
» CISSP, SSCP, Security+, etc.

»Computer Forensics

»Ethical Hacking

»Malware, Spyware, Viruses

»FISMA Compliance, Policies, etc

»PKI, Encryption, Smartcards

»Windows Security Guides

»HIPAA, SOX, CISP, etc.

NIST.org Security Bookstore
Current Security News
 
SANS Internet Storm Center, InfoCON: green

» Infocon: green

» Microsoft EMETv2 released, (Thu, Sep 2nd)
[02 Sep 2010 01:00pm]

» SDF, please!, (Thu, Sep 2nd)
[01 Sep 2010 06:50pm]

» Month of Undisclosed 0-day Bugs, (Wed, Sep 1st)
[01 Sep 2010 02:05pm]

» Microsoft issues updates to sysinternals ProcDump and Process Monitor: http://blogs.technet.com/b/sysinternals/archive/2010/08/30/updates-procdump-process-monitor-and-a-new-mark-s-blog-post.aspx, (Wed, Sep 1st)
[01 Sep 2010 10:29am]

» VMWARE releases 2 security advisories for ESX Service Console: http://lists.vmware.com/pipermail/security-announce/2010/000103.html and http://lists.vmware.com/pipermail/security-announce/2010/000104.html, (Wed, Sep 1st)
[01 Sep 2010 10:26am]

» Interesting PHP injection, (Tue, Aug 31st)
[31 Aug 2010 03:20am]

» Abandoned free email accounts, (Sun, Aug 29th)
[30 Aug 2010 05:38pm]

» Apple QuickTime potential vulnerability/backdoor, (Mon, Aug 30th)
[30 Aug 2010 05:24pm]

» New poll on mobile device security http://isc.sans.edu/poll.html, (Mon, Aug 30th)
[30 Aug 2010 04:26pm]

» Cisco IOS XR Software Border Gateway Protocol Vulnerability http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4411f.shtml, (Mon, Aug 30th)
[30 Aug 2010 03:51pm]
***
CNET News.com

» Facebook adds new remote log-out security feature
[02 Sep 2010 02:30pm]

» Nigerian scam tops list of decade's online cons
[02 Sep 2010 11:16am]

» India wants local servers from RIM, Google, Skype
[02 Sep 2010 10:45am]

» Twitter plans to record all links clicked
[02 Sep 2010 12:33am]

» China requires cell phone subscriber IDs
[01 Sep 2010 05:40pm]

» Quantum crypto cracked, researchers say
[01 Sep 2010 11:48am]

» Sweden reopens rape probe of Wikileaks founder
[01 Sep 2010 10:35am]

» Cars: The next hacking frontier?
[31 Aug 2010 12:07pm]

» Gmail, Skype now in India's crosshairs
[31 Aug 2010 10:47am]

» 3M to buy biometrics firm Cogent for $943 million
[30 Aug 2010 09:35am]

» RIM sidesteps BlackBerry ban in India
[30 Aug 2010 09:29am]

» 'LOL is this you?' spam spreading via Facebook chat
[27 Aug 2010 06:53pm]

» Google working on Gmail spam issue
[27 Aug 2010 12:13pm]

» RIM extends olive branch to Indian government
[26 Aug 2010 02:00pm]

» Bad flash drive caused worst U.S. military breach
[25 Aug 2010 04:37pm]
***
Computerworld Security News

» To boost security, Facebook adds remote logout
[02 Sep 2010 03:01pm]

» Botnet takedown may yield valuable data
[02 Sep 2010 04:25am]

» 3Par faces patent infringement lawsuit
[01 Sep 2010 05:04pm]

» Discover to get $5M from Heartland for '08 data breach
[01 Sep 2010 03:45pm]

» DARPA launches insider threat detection effort for military
[01 Sep 2010 03:03pm]

» Miami man pleads guilty in ID theft case
[01 Sep 2010 02:41pm]

» More Security News
***


***


More IT Security
News Feeds
More Sponsors

Advertise on this site
NIST - Books You Need

NIST Bookstore
RSS Feeds
Our news can be syndicated by using these rss feeds.
rss1.0
rss2.0
rdf
Add to NetVibes
Add to Bloglines
Add to NewsGator
Add to Google
Add to My Yahoo
Add to My MSN
Add to Technorati
Add to Pluckit
Add to My AOL
Subscribe in FeedLounge
Add to ProtoPage
Symantec News
Welcome
Username:

Password:


Remember me

[ ]
[ ]
[ ]
Other News

NIST.org is in no way connected to the U.S. government site NIST.gov

This site is © John Herron, CISSP. All Rights Reserved.

Please visit daily to stay up to date on all your IT Security compliance issues.

http://www.nist.org -
Hosted by BlueHost. We've never had a better hosting company.