ITL Bulletins

Updated 5/24/10

Month/Year	Title of Bulletin
April 2010	Guide To Protecting Personally Identifiable Information
March 2010	Revised Guide Helps Federal Organizations Improve Their Risk Management Practices And Information System Security
February 2010	Secure Management of Keys in Cryptographic Applications: Guidance for Organizations
January 2010	Security Metrics: Measurements to Support the Continued Development of Information Security Technology
November 2009	Cybersecurity Fundamental for Small Business Owners
October 2009	Protecting Information Systems with Firewalls: Revised Guidelines on Firewall Technologogies and Policies
September 2009	Updated Digital Signature Standard Approved as Federal Information Processing Standards (FIPS) 186-3
August 2009	Revised Catalog of Security Controls for Federal Information Systems and Organizations: For Use in Both National Security and Nonnational Security Systems
July 2009	Risk Management Framework: Helping Organizations Implement Effective Information Security Programs
June 2009	Security for Enterprise Telework and Remote Access Solutions
April 2009	The System Development Life Cycle (SDLC)
March 2009	The Cryptographic Hash Algorithm Family: Revision of the Secure Hash Standard and Ongoing Competition for New Hash Algorithms
February 2009	Using Personal Identity Verification (PIV) Credentials in Physical Access Control Systems
January 2009	Security of Cell Phones and PDAs
December 2008	Guide to Information Security Testing and Assessment
November 2008	Bluetooth Security: Protecting Wireless Networks and Devices
October 2008	Keeping Information Technology (IT) System Servers Secure: A General Guide To Good Practices
September 2008	Using Performance Measurements to Evaluate and Strengthen Information System Security
August 2008	Security Assessments: Tools for Measuring the Effectiveness of Security Controls
July 2008	Guidelines on Implementing A Secure Sockets Layer (SSL) Virtual Private Network (VPN)
May 2008	New Cryptographic Hash Algorithm Family: NIST Holds a Public Competition to Find New Algorithms
April 2008	Using Active Content and Mobile Code and Safeguarding the Security of Information Technology Systems
March 2008	Handling Computer Security Incidents: NIST Issues Updated Guidelines
February 2008	Federal Desktop Core Configuration (FDCC): Improving Security for Windows Desktop Operating Systems
January 2008	Securing Web Servers: Protecting Web Sites that are Accessed by the Public
December 2007	Securing External Computers and Other Devices Used By Teleworkers
November 2007	Using Storage Encryption Technologies to Protect End User Devices
October 2007	The Common Vulnerability Scoring System (CVSS)
August 2007	Secure Web Services
July 2007	Border Gateway Protocol Security
June 2007	Forensic Techniques for Cell Phones
May 2007	Securing Radio Frequency Identification (RFID) Systems
April 2007	Securing Wireless Networks
March 2007	Improving the Security of Electronic Mail: Updated Guidelines Issued by NIST
February 2007	Intrusion Detection and Prevention Systems
January 2007	Security Controls For Information Systems: Revised Guidelines Issued by NIST
December 2006	Maintaining Effective Information Technology (IT) Security Through Test, Training, and Exercise Programs
November 2006	Guide to Securing Computers Using Windows XP Home Edition
October 2006	Log Management: Using Computer and Network Records to Improve Information Security
September 2006	Forensic Techniques: Helping Organizations Improve Their Responses to Information Security Incidents
August 2006	Protecting Sensitive Information Processed and Stored in Information Technology (IT) Systems
June 2006	Domain Name System (DNS) Services: NIST Recommendations for Secure Deployment
May 2006	An Update on Cryptographic Standards, Guidelines, and Testing Requirements
April 2006	Protecting Sensitive Information Transmitted in Public Networks
March 2006	Minimum Security Requirements for Federal Information and Information Systems: Federal Information Processing Standard (FIPS) 200 Approved by the Secretary of Commerce
February 2006	Creating a Program to Manage Security Patches and Vulnerabilities: NIST Recommendations for Improving System Security
January 2006	Testing and Validation of Personal Identity Verification (PIV) Components and Subsystems for Conformance to Federal Information Processing Standard 201

Subscription Information:

To be placed on a mailing list to receive future bulletins, send your name, organization, and business address by e-mail to elizabeth.lennon@nist.gov or send to ITL Publications, National Institute of Standards and Technology, 100 Bureau Drive, Stop 8900, Gaithersburg, MD 20899-8901.

To receive an electronic copy, send an e-mail message from your business e-mail account to listproc@nist.gov, leave the Subject line blank, and in the body of the message, type: subscribe itl-bulletin and your name, e.g., John Doe. You can unsubscribe from the list using the same format. Note: You will be placed on this mailing list only.

To request a copy of an ITL Bulletin prior to January 2006, email itlab@nist.gov.

NIST is an agency of the
U.S. Department of Commerce

Privacy Policy/Security Notice
Disclaimer | FOIA

Date Created: 1998
Latest Update: May 24, 2010
For additional information, e-mail ITL