NIST solicits comment on new security publications

Draft Special Publication 800-45A, Guidelines on Electronic Mail Security

The National Institute of Standards and Technologies released three new drafts of security-related special publications today. They cover e-mail security, intrusion detection and prevention, and securing Web services and applications.

The first is called “Guidelines on Electronic Mail Security,” an update to SP 800-45 released in 2002. The guide includes policy suggestions for deploying and configuring e-mail servers, training employees on security, and applying encryption. NIST will accept public comments on this publication at [email protected] until Oct. 6.

The second publication is titled “Guide to Intrusion Detection and Prevention Systems.” It provides assistance to agencies for designing, implementing, configuring, securing, monitoring and maintaining IDP systems for an entire enterprise and smaller divisions. It also provides guidance for different network-based IDP systems. NIST will take comments at [email protected] until Oct. 20.

The third publication, “Guide to Secure Web Services,” deals with Web services security, specifically in applications. It also details security features in Extensible Markup Language; Simple Object Access Protocol; and the Universal Description, Discovery and Integration protocol and related open standards. NIST will accept comments at [email protected] until Oct. 30.

Featured

  • Defense
    Soldiers from the Old Guard test the second iteration of the Integrated Visual Augmentation System (IVAS) capability set during an exercise at Fort Belvoir, VA in Fall 2019. Photo by Courtney Bacon

    IVAS and the future of defense acquisition

    The Army’s Integrated Visual Augmentation System has been in the works for years, but the potentially multibillion deal could mark a paradigm shift in how the Defense Department buys and leverages technology.

  • Cybersecurity
    Deputy Secretary of Homeland Security Alejandro Mayorkas  (U.S. Coast Guard photo by Petty Officer 3rd Class Lora Ratliff)

    Mayorkas announces cyber 'sprints' on ransomware, ICS, workforce

    The Homeland Security secretary announced a series of focused efforts to address issues around ransomware, critical infrastructure and the agency's workforce that will all be launched in the coming weeks.

Stay Connected