fisma certification and accreditation handbook phần 9 doc

... Processing Standards (FIPS) Publication 199 , Standards for the Security Categorization of Federal Information and Information Systems http://csrc.nist.gov/publications/fips/fips 199 /FIPS-PUB- 199 - final.pdf www.syngress.com 426 ... you better understand Certification and Accreditation: ■ Certification and Accreditation 101 www.intranetjournal.com/articles/200406/ij_06_23_04a.html ■ Cl...

Ngày tải lên: 14/08/2014, 18:20

... determining the level of accreditation is a document known as FIPS 199 (see Appendix C) written by the National Institute of Standards. Although I don’t plan on trying to recreate FIPS 199 , I want to help ... information technology audits and in that regard, the FISCAM guidance is certainly applicable. Special Publication 800-26 is a 95 -page document, and FISCAM is a 298 - page docu...

Ngày tải lên: 14/08/2014, 18:20

... VBP965T5T5 007 HJJJ863WD3E 008 298 7GVTWMK 0 09 629MP5SDJT 010 IMWQ 295 T6T PUBLISHED BY Syngress Publishing, Inc. 800 Hingham Street Rockland, MA 02370 FISMA Certification & Accreditation Handbook Copyright ... stored, and executed in a computer system, but they may not be reproduced for publication. 1 2 3 4 5 6 7 8 9 0 ISBN: 1- 597 49- 116-0 ISBN-13: 97 8-1- 597 49- 116-7 Pub...

Ngày tải lên: 14/08/2014, 18:20

... Understanding the Certification and Accreditation Process 4 09_ Cert_Accred_03.qxd 11/2/06 1:28 PM Page 28 Understanding the Certification and Accreditation Process “You say it as you understand it.” —Johann ... Order 1 295 8. The White House Office of the Press Secretary, April 17, 199 5 (www.fas.org/sgp/clinton/eo1 295 8.html). www.syngress.com Types of Certification and Accreditati...

Ngày tải lên: 14/08/2014, 18:20

... and handling instructions clearly marked on all media? www.syngress.com Performing and Preparing the Self-Assessment • Chapter 8 1 29 Continued 4 09_ Cert_Accred_08.qxd 11/2/06 1:51 PM Page 1 29 Table ... Awareness and Training Requirements • Chapter 9 141 4 09_ Cert_Accred_ 09. qxd 11/2/06 1:54 PM Page 141 Table 10.2 continued Rules of Behavior for Handhelds End-User Rules of Beha...

Ngày tải lên: 14/08/2014, 18:20

... Departments and Agencies. United States Office of Management and Budget. January 7, 199 9 (www.whitehouse.gov/omb/ memoranda/m 99- 05.html). 5. Jacob J. Lew.“Privacy Policies on Federal Web Sites.” Memorandum ... Memorandum for Heads of Executive Departments and Agencies. United States Office of Management and Budget. June 2, 199 9 (www.whitehouse.gov/OMB/memoranda/m 99- 18.html). 6. J...

Ngày tải lên: 14/08/2014, 18:20

... to Disaster Planning and Recovery,Volume 2. TechRepublic, CNET Networks, 199 5–2003. ISBN: 193 1 490 651. www.syngress.com 272 Chapter 16 • Developing the Contingency Plan 4 09_ Cert_Accred_16.qxd ... September 2000. ISBN: 096 4164876. Hiles, Andrew. Business Continuity—Best Practices. Rothstein Associates, December 2003. ISBN: 193 1332223. Hiles, Andrew. Enterprise Risk Assessment and B...

Ngày tải lên: 14/08/2014, 18:20

... 2005. ISBN: 075067 795 3. Landoll, Douglas J., CRC. The Security Risk Assessment Handbook. December 12, 2005. ISBN: 08 493 299 81. Long, Johnny and Chris Hurley, with Mark Wolfgang and Mike Petruzzi. ... Chapter 17 293 4 09_ Cert_Accred_17.qxd 11/3/06 2:58 PM Page 293 on, and approves of.You need to list formal document names that include the revision number and the publication da...

Ngày tải lên: 14/08/2014, 18:20

... of firewalls and proxy servers are used and where they are deployed ■ What type of VPNs (SSL, IPSec) are used and where they are deployed ■ What type of routers and gateways are used and where they ... implemented? www.syngress.com Preparing the System Security Plan • Chapter 19 335 4 09_ Cert_Accred_ 19. qxd 11/3/06 2:50 PM Page 335 4 09_ Cert_Accred_20.qxd 11/3/06 2:54 PM Page 364...

Ngày tải lên: 14/08/2014, 18:20

... Availability. REFERENCES [1] Privacy Act of 197 4 (Public Law 93 -5 79) , September 197 5. [2] Paperwork Reduction Act of 199 5 (Public Law 104-13), May 199 5. [3] OMB Circular A-130,Transmittal Memorandum #4, Management of ... from www.syngress.com FIPS 199 • Appendix C 4 794 79 Appendix C • FIPS 199 4 09_ Cert_Accred_AC.qxd 11/3/06 4:37 PM Page 4 79 ‘‘(D) ensure compliance with— ‘‘(i) t...

Ngày tải lên: 14/08/2014, 18:20