New rules drafted on intrusion detection

NIST Computer Security Resource Center

The National Institute of Standards and Technology has released new draft guidance on intrusion-detection systems, outlining all the factors agencies need to consider when integrating these security systems into their networks.

The guidance, unveiled Feb. 12, is part of a series of special publications NIST has put out to assist agencies in the information security arena. Under the Computer Security Act of 1987, NIST serves as the primary point for technical guidance for civilian agencies.

"This guidance document is intended to assist federal agencies and others as a primer in intrusion detection," according to the NIST Computer Security Resource Center. "[It is] developed for those who need to understand what security goals intrusion-detection mechanisms serve, how to select and configure intrusion-detection systems for their specific system and network environments, how to manage the output of intrusion-detection systems and how to integrate intrusion-detection functions with the rest of the organizational security infrastructure."

Comments on the draft are due to Peter Mell at NIST by March 14.

Featured

  • Cybersecurity
    Boy looks under voting booth at Ventura Polling Station for California primary Ventura County, California. Joseph Sohm / Shutterstock.com

    FBI breach notice rules lauded by states, but some want more

    A recent policy change by the FBI would notify states when their local election systems are hacked, but some state officials and lawmakers want the feds to inform a broader range of stakeholders in the election ecosystem.

  • paths (cybrain/Shutterstock.com)

    Does strategic planning help organizations?

    Steve Kelman notes growing support for strategic planning efforts -- and the steps agencies take to keep those plans relevant.

Stay Connected

FCW INSIDER

Sign up for our newsletter.

I agree to this site's Privacy Policy.