fisma certification and accreditation handbook phần 7 pdf

... 15, 2005. ISBN: 075 0 677 953. Landoll, Douglas J., CRC. The Security Risk Assessment Handbook. December 12, 2005. ISBN: 0849329981. Long, Johnny and Chris Hurley, with Mark Wolfgang and Mike Petruzzi. ... Hossein. Handbook of Information Security,Volume 3,Threats, Vulnerabilities, Prevention, Detection, and Management. John Wiley & Sons, January 2006. ISBN: 0 471 648329. Jones...

Ngày tải lên: 14/08/2014, 18:20

... VBP965T5T5 0 07 HJJJ863WD3E 008 2987GVTWMK 009 629MP5SDJT 010 IMWQ295T6T PUBLISHED BY Syngress Publishing, Inc. 800 Hingham Street Rockland, MA 02 370 FISMA Certification & Accreditation Handbook Copyright ... stored, and executed in a computer system, but they may not be reproduced for publication. 1 2 3 4 5 6 7 8 9 0 ISBN: 1-5 974 9-116-0 ISBN-13: 978 -1-5 974 9-116 -7 Publis...

Ngày tải lên: 14/08/2014, 18:20

... acknowledgment www.syngress.com Understanding the Certification and Accreditation Process • Chapter 3 37 409_Cert_Accred_03.qxd 11/2/06 1:28 PM Page 37 Summary Certification and Accreditation processes formally ... Understanding the Certification and Accreditation Process 409_Cert_Accred_03.qxd 11/2/06 1:28 PM Page 28 Understanding the Certification and Accreditation Process “Y...

Ngày tải lên: 14/08/2014, 18:20

... Integrity, www.syngress.com Determining the Certification Level • Chapter 7 79 409_Cert_Accred_ 07. qxd 11/2/06 2:10 PM Page 79 Table 7. 13 Data Sets and Security Profile Recommendations That Are Applicable to ... security ■ Physical and environmental operations and safeguards ■ Administration and implementation ■ Preventative maintenance ■ Contingency and disaster recovery plann...

Ngày tải lên: 14/08/2014, 18:20

... reject rates? Are biometric false reject and false acceptance rates tracked and documented? Logical Access Controls Required by: FISMA § 3542-44, 35 47; OMB Circular A-130 III; FISCAM AC-3.2 Recommended ... Lincoln Topics in this chapter: ■ Purpose and Applicability ■ Policies and Guidelines ■ Reporting Framework ■ Roles and Responsibilities ■ Definitions ■ Incident Handling ■ For...

Ngày tải lên: 14/08/2014, 18:20

... Addison-Wesley, September 2001. ISBN: 020 170 7195. Lucas, Julie and Brian Moeller. The Effective Incident Response Team. Addison-Wesley, 2004. ISBN: 020 176 175 0. Mandia, Kevin and Chris Prosise. Incident Response, ... important memorandum on privacy to heads of departments and agencies.The memo can be viewed at www.whitehouse.gov/omb/memoranda/fy2006/m-06-15 .pdf. The memorandum rem...

Ngày tải lên: 14/08/2014, 18:20

... understand table ■ Make decisions on what to do about the risks Figure 17. 1 System Risk Assessment Process www.syngress.com Performing a System Risk Assessment • Chapter 17 277 409_Cert_Accred_ 17. qxd ... Contingency Plan and provide input and comments? www.syngress.com Developing the Contingency Plan • Chapter 16 271 409_Cert_Accred_16.qxd 11/3/06 2:45 PM Page 271 your information...

Ngày tải lên: 14/08/2014, 18:20

... of firewalls and proxy servers are used and where they are deployed ■ What type of VPNs (SSL, IPSec) are used and where they are deployed ■ What type of routers and gateways are used and where they ... Certification Package for Accreditation • Chapter 21 375 Continued 409_Cert_Accred_21.qxd 11/3/06 2:59 PM Page 375 kept, how often employees must participate in the training, and...

Ngày tải lên: 14/08/2014, 18:20

... Comments Requirement T -77 Do all remote access capabilities provide strong identification and authentication and protect sensitive information in transit? T -78 Are friendly and unfriendly termination procedures ... coordinating the development of standards and guidelines under section 20 of the National Institute of Standards and Technology Act (15 U.S.C. 278 g–3) with agencies...

Ngày tải lên: 14/08/2014, 18:20

... Institute of Standards and Technology pursuant to paragraphs (2) and (3) of section 20(a) of the National Institute of Standards and Technology Act (15 U.S.C. 278 g–3(a)), prescribe standards and guidelines ... informa- www.syngress.com 478 Appendix C • FIPS 199 409_Cert_Accred_AC.qxd 11/3/06 4: 37 PM Page 478 Index 4 87 process described, 2–3, 37 43 roles, responsibilities, 27 3...

Ngày tải lên: 14/08/2014, 18:20