New rules drafted on intrusion detection
- By Diane Frank
- Feb 18, 2001
NIST Computer Security Resource Center
The National Institute of Standards and Technology has released new draft guidance on intrusion-detection systems, outlining all the factors agencies need to consider when integrating these security systems into their networks.
The guidance, unveiled Feb. 12, is part of a series of special publications NIST has put out to assist agencies in the information security arena. Under the Computer Security Act of 1987, NIST serves as the primary point for technical guidance for civilian agencies.
"This guidance document is intended to assist federal agencies and others as a primer in intrusion detection," according to the NIST Computer Security Resource Center. "[It is] developed for those who need to understand what security goals intrusion-detection mechanisms serve, how to select and configure intrusion-detection systems for their specific system and network environments, how to manage the output of intrusion-detection systems and how to integrate intrusion-detection functions with the rest of the organizational security infrastructure."
Comments on the draft are due to Peter Mell at NIST by March 14.