References
- Cloud Strategies
- Cloud Computing
- Configuration Management
- Continuous Monitoring
- Data Security
- Incident Response
- Measurement and Metrics
- Media Sanitization
- Physical and Logical Access Control
- Remote Access
- Risk Management
- Security Management and Planning
- Security Assessment and Testing
- Guidelines on Security and Privacy in Public Cloud Computing
- A NIST Definition of Cloud Computing
- Cloud Computing Synopsis and Recommendations (DRAFT)
- USG Cloud Computing Technology Roadmap Volume I – High Priority Requirements to Further USG Agency Cloud Computing Adoption, Release 1.0 (DRAFT)
- USG Cloud Computing Technology Roadmap Volume II – Useful Information for Cloud Adopters, Release 1.0 (DRAFT)
- USG Cloud Computing Technology Roadmap Volume III – Technical Considerations for USG Cloud Computer Deployment Decisions Release 1.0 (DRAFT)
- NIST Cloud Computing Reference Architecture (DRAFT)
- NIST Cloud Computing Standards Roadmap (DRAFT)
- Creating a Patch and Vulnerability Management Program Version 2.0
- Guide for Security-Focused Configuration Management of Information Systems
- Guide to General Server Security
- Guide to Secure Web Services
- Guidelines on Active Content and Mobile Code
- Guidelines on Firewalls and Firewall Policy
- Guidelines on Securing Public Web Servers
- National Checklist Program for IT Products: Guidelines for Checklist Users and Developers
- Guide to Intrusion Detection and Prevention Systems
- Guide to Adopting and Using the Security Content Automation Protocol (SCAP) Version 1.0
- Information Security Continuous Monitoring for Federal Information Systems and Organizations
- The Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.0
- The Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.1
- The Technical Specification for the Security Content Automation Protocol (SCAP): SCAP Version 1.2
- An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule
- Guide to Protecting the Confidentiality of Personally Identifiable Information (PII)
- Recommendation for Key Management (Part 1)
- Recommendation for Key Management (Part 2)
- Recommendation for Key Management (Part 3)
- An Introduction to Computer Security: The NIST Handbook
- Contingency Planning Guide for Federal Information Systems
- Engineering Principles for Information Technology Security (A Baseline for Achieving Security)
- Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach
- Guide for Developing Security Plans for Federal Information Systems
- Guide for Mapping Types of Information and Information Systems to Security Categories: Volume 1: Guide Volume
- Guide for Mapping Types of Information and Information Systems to Security Categories: Volume 2: Appendices
- Information Technology Security Training Requirements: A Role- and Performance-Based Model
- Recommended Security Controls for Federal Information Systems and Organizations
- Security Considerations in the System Development Life Cycle