NIST preps security standards
The National Institute of Standards and Technology is expected to soon release a draft set of security standards, required under the Federal Information Security Management Act, which is designed to help agencies determine minimum security requirements for different information systems. The act requires that the final standard be published by the end of this year.
The draft standards will help agencies determine where their systems fall in three categories — high, moderate and low — based on the level of risk a system faces and the potential effect on an agency's mission if it is compromised.
IG raps student tracking system
The Student and Exchange Visitor Information System is not fully implemented despite assertions from Immigration and Naturalization Service officials that it has been operational since Jan. 1, a report from the Justice Department's inspector general said. INS is now part of the Homeland Security Department.
The database does not contain complete information and investigators are not trained properly, the report said.
INS has not dedicated adequate resources to the program, and its oversight of the contract investigators who conduct onsite reviews of schools is inadequate to ensure the quality of the reviews, the report found.