NIST ADDRESSES NEED FOR SECURITY METRICS.In June 2000, NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. and the Computer System Security and Privacy Advisory Board convened a workshop to discuss security metrics metrics Managed care A popular term for standards by which the quality of a product, service, or outcome of a particular form of Pt management is evaluated. See TQM. , the means by which IT security programs are measured. Focusing on unclassified un·clas·si·fied adj. 1. Not placed or included in a class or category: unclassified mail. 2. systems, the workshop surveyed current information infrastructure protection metrics and their uses to identify any voids and suggest solutions. Security metrics are needed to understand the current state of program security, to improve that state, and to obtain resources and sponsorship for those improvements. The problem is the diversity of meanings given to security metrics and the ambiguity surrounding them. The workshop provided a starting point Noun 1. starting point - earliest limiting point terminus a quo commencement, get-go, offset, outset, showtime, starting time, beginning, start, kickoff, first - the time at which something is supposed to begin; "they got an early start"; "she knew from the to catalog and develop measures for determining the effectiveness of federal security programs. Workshop presentations are available at csrc.nist.gov/csspab/june13-15/sec-metrics.html. |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion