Implementation of the Computer Security Act: Hearing Before the Subcommittee on Transportation, Aviation, and Materials and the Subcommittee on Science, Research, and Technology of the Committee on Science, Space, and Technology, U.S. House of Representatives, One Hundred First Congress, First Session, March 21, 1989, Volume 4U.S. Government Printing Office, 1989 - 148 pages |
Other editions - View all
Common terms and phrases
access control activities Administration ANSI assess assistance automated information systems budget BURROWS Chairman classified information Commission compliance computer networks Computer Security Act computer security awareness computer security plans Computer Security Program computer security training contractors cryptographic Data Encryption Standard Defense Department Director DOUG WALGREN effort evaluation federal agencies federal computer systems Federal Information FIPS PUB GLICKMAN guidance guidelines identify implementing the Computer Institute of Standards issue JAY PLAGER KAMMER MCDONOUGH McMILLEN Memorandum of Understanding Message Authentication Code MORELLA National Security Agency NBS SPEC PUB NIST and NSA NIST's NSA and NIST operating systems OPM's PLAGER plans to NIST problem process sensitive information protection questionnaire regulation reported requirements response RHILE Security and Privacy smart card Standards and Technology statement submitted technical Thank TIM VALENTINE training programs unclassified users VALENTINE Vice Admiral STUDEMAN virus viruses WALGREN
Popular passages
Page 118 - House of Representatives The Honorable Robert A. Roe Chairman, Committee on Science, Space, and Technology House of Representatives...
Page 54 - This document provides, in the form of questions and answers, the background, and basic essential information required to understand the developmental process for automatic data processing (ADP) contingency plans. The primary intended audience consists of executives and managers who depend on ADP resources and services, yet may not be directly responsible for the daily management or supervision of data processing activities or facilities.
Page 5 - Mr. Chairman and members of the subcommittees, I appreciate the opportunity to testify before you today on HR 8005 which would prohibit the importation of chrome and other products from Rhodesia.
Page 47 - Name of Standard: Data Encryption Standard (DES). Category of Standard: Operations, Computer Security. Explanation: The Data Encryption Standard (DES) specifies an algorithm to be implemented in electronic hardware devices and used for the cryptographic protection of computer data. This publication provides a complete description of a mathematical algorithm for encrypting (enciphering) and decrypting (deciphering) binary coded information. Encrypting data converts it to an unintelligible form called...
Page 49 - August 1981 Provides explicit advice on achieving database integrity and security control. Identifies integrity and security problems and discusses procedures and methods which have proven effective in addressing these problems. Provides an explicit, step-by-step procedure for examining and verifying the accuracy and completeness of a database.
Page 45 - These publications are available through the Government Printing Office (GPO) and the National Technical Information Service (NTIS). The source and price for each publication are Indicated.
Page 58 - Kammer has chaired several important evaluation committees for the Department of Commerce, including reviews of satellite systems for weather monitoring and the US LANDSAT program, and...
Page 46 - Provides guidance to Federal organizations in developing physical security and risk management programs for their ADP facilities. Covers security analysis, natural disasters, failure of supporting utilities, system reliability, procedural measures and controls, protection of off-site facilities, contingency plans, security awareness, and security audit. Can be used as a checklist for planning and evaluating security of computer systems.
Page 59 - (3) have responsibility within the Federal Government for developing technical, management, physical, and administrative standards and guidelines for the cost-effective security and privacy of sensitive information in Federal computer systems...
Page 47 - Presents a technique for conducting a risk analysis of an ADP facility and related assets. Provides guidance on collecting, quantifying, and analyzing data related to the frequency of caused by adverse events. This guideline describes the characteristics and attributes of a computer system that must be known for a risk analysis and gives an example of the risk analysis process. GUIDELINES FOR SECURITY OF COMPUTER APPLICATIONS...