FEDERAL CIO COUNCIL PROMOTES NIST GUIDELINES TO FEDERAL AGENCIES.The Federal Chief Information Officers (CIO CIO: see American Federation of Labor and Congress of Industrial Organizations. (Chief Information Officer) The executive officer in charge of information processing in an organization. ) Council recently issued a memorandum to federal agency CIOs encouraging agencies to take advantage of a new guidance document published by NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. . NIST Special Publication 800-23, Guidelines to Federal Organizations on Security Assurance and Acquisition/Use of Tested/Evaluated Products-Recommendations of the National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. , provides advice to agencies for sensitive (i.e., non-national security) unclassified systems on the acquisition and use of security-related IT products. The document describes two government programs of particular interest--the National Information Assurance Partnership (NIAP)s Common Criteria Evaluation and Validation Program and NIST's Cryptographic Module Validation Program The Cryptographic Module Validation Program (CMVP) is a joint American and Canadian security accreditation program for cryptographic modules. The program is available to any vendors who seek to have their products certified for use by the U.S. (CMVP). |
|
||||||||||||||||||||

Printer friendly
Cite/link
Email
Feedback
Reader Opinion