fisma certification and accreditation handbook phần 1 pptx

... Report Cards ■ A Standardized Process ■ Templates, Documents, and Paperwork ■ Certification and Accreditation Laws Summarized Chapter 1 1 409_Cert_Accred_ 01. qxd 11 /2/06 2 :17 PM Page 1 As the federal ... stored, and executed in a computer system, but they may not be reproduced for publication. 1 2 3 4 5 6 7 8 9 0 ISBN: 1- 59749 -11 6-0 ISBN -13 : 978 -1- 59749 -11 6-7 Publis...

Ngày tải lên: 14/08/2014, 18:20

... Understanding the Certification and Accreditation Process 409_Cert_Accred_03.qxd 11 /2/06 1: 28 PM Page 28 Understanding the Certification and Accreditation Process “You say it as you understand it.” —Johann ... Accreditation Phase. www.syngress.com Understanding the Certification and Accreditation Process • Chapter 3 41 409_Cert_Accred_03.qxd 11 /2/06 1: 28 PM Page 41 Intro...

Ngày tải lên: 14/08/2014, 18:20

... requirements? www.syngress.com Performing and Preparing the Self-Assessment • Chapter 8 11 9 Continued 409_Cert_Accred_08.qxd 11 /2/06 1: 51 PM Page 11 9 Level 1 and 2 C&A, plus a network vulnerability scan, as well as ... technical, and operational controls of the infor- www.syngress.com 10 8 Chapter 8 • Performing and Preparing the Self-Assessment 409_Cert_Accred_08.qxd...

Ngày tải lên: 14/08/2014, 18:20

... incident: www.syngress.com Addressing Incident Response • Chapter 11 17 1 409_Cert_Accred _11 .qxd 11 /2/06 5:48 PM Page 17 1 Items that I recommend that you include in your security awareness and training program are the following: ■ Ensure ... Awareness and Training Requirements • Chapter 9 14 1 409_Cert_Accred_09.qxd 11 /2/06 1: 54 PM Page 14 1 Table 10 .2 continued Rules of B...

Ngày tải lên: 14/08/2014, 18:20

... Assessment • Chapter 13 2 21 409_Cert_Accred _13 .qxd 11 /2/06 6 :11 PM Page 2 21 Table 11 .3 continued Incident Response Organizations Organization and Web site Description Common Vulnerabilities and Exposures ... is illustrated in Table 13 .1. www.syngress.com 216 Chapter 13 • Conducting a Privacy Impact Assessment 409_Cert_Accred _13 .qxd 11 /2/06 6 :11 PM Page 216 Summary I...

Ngày tải lên: 14/08/2014, 18:20

... Disaster Planning and Recovery,Volume 2. TechRepublic, CNET Networks, 19 95–2003. ISBN: 19 314 906 51. www.syngress.com 272 Chapter 16 • Developing the Contingency Plan 409_Cert_Accred _16 .qxd 11 /3/06 2:45 ... Contingency Plan and provide input and comments? www.syngress.com Developing the Contingency Plan • Chapter 16 2 71 409_Cert_Accred _16 .qxd 11 /3/06 2:45 PM Page 2 71...

Ngày tải lên: 14/08/2014, 18:20

... is a good idea. www.syngress.com 316 Chapter 19 • Preparing the System Security Plan 409_Cert_Accred _19 .qxd 11 /3/06 2:50 PM Page 316 Table 17 .3 Risks to Systems and Recommendations Vulnerability ... March 15 , 2005. ISBN: 0750677953. Landoll, Douglas J., CRC. The Security Risk Assessment Handbook. December 12 , 2005. ISBN: 08493299 81. Long, Johnny and Chris Hurley, with Mar...

Ngày tải lên: 14/08/2014, 18:20

... 14 0. 216 . 41. 2:80 CLOSE_WAIT TCP 12 8.88. 41. 2: 218 0 14 0. 216 . 41. 2:80 CLOSE_WAIT TCP 12 8.88. 41. 2 :11 88 14 0. 216 . 41. 2:80 CLOSE_WAIT (A socket is an IP address plus a port, e.g., 206.208 .16 3 .15 :80.) SE 6 Invalid ... applica- tions, and databases are hardened and locked down. Section 3544(b)(2)(D)iii www.syngress.com Preparing the System Security Plan • Chapter 19...

Ngày tải lên: 14/08/2014, 18:20

... Certification Package for Accreditation • Chapter 21 405 409_Cert_Accred_ 21. qxd 11 /3/06 2:59 PM Page 405 FISMA Appendix A: 4 31 409_Cert_Accred_AA.qxd 11 /3/06 3:58 PM Page 4 31 ... Package for Accreditation Continued 409_Cert_Accred_ 21. qxd 11 /3/06 2:59 PM Page 390 The following resources may help you better understand Certification and Accreditation: ■ Certification and...

Ngày tải lên: 14/08/2014, 18:20

... Information (PII), 215 – 217 security tests, 18 9 19 1 Confidentiality, Integrity, and Availability (CIA) 409_Cert_Accred_Index.qxd 11 /3/06 4: 41 PM Page 487 APPENDIX A TERMS AND DEFINITIONS AVAILABILITY: ... to section 11 3 31 in the table of sections at the beginning of chapter 11 3 of such title is amended to read as follows: ‘ 11 3 31. Responsibilities for Federal information...

Ngày tải lên: 14/08/2014, 18:20