|
An extensive webliography of Internet sites on computer security
http://www.istl.org/02-fall/internet.html
ASIS International: Organization for Security Professionals
http://www.asisonline.org/
Bell-La Padula Paper
http://csrc.nist.gov/publications/history/bell76.pdf
Center for Internet Security
http://www.cisecurity.org/
CERIAS/Purdue University
http://www.cerias.purdue.edu/
CISSP certification
http://www.isc2.org/
Cryptography A-2-Z
http://www.ssh.com/support/cryptography/
CVE (Computer Vulnerabilities and Exposures)
http://cve.mitre.org
Computer Emergency Response Team (CERT)
http://www.cert.org/
Computer Security Institute (CSI)
http://www.gocsi.com/
Computer Security Policies
http://dmoz.org/Computers/Security/Policy
Crisis, disaster, and emergency management Web sites for researchers
http://www.ala.org/ala/mgrps/divs/acrl/publications/crlnews/2002/nov/crisisdisaster.cfm
Cybercrime
http://www.cybercrime.gov/
Cyber Security Industry Alliance
http://www.csialliance.org/home
Disaster Recovery Institute International (DRII): Professional Practices for Business Continuity Planners
http://www.drii.org/DRII/ProfessionalPractices/
about_professional_detail.aspx
Disaster Recovery Journal
http://www.drj.com/
2007 E-Crime Watch Survey
http://www.csoonline.com/article/221351/Survey_Security_Complacency_Rising_Among_Execs
Fema Emergency Management Guide for Business and Industry
a 67 page guide on how to create a comprehensive emergency management program
http://www.fema.gov/business/guide/index.shtm
FIOS: Discusses Electronic Discovery
http://www.fiosinc.com/
Information Security Magazine
http://www.infosecuritymag.com/
Homeland Security Newsletter
http://www.twotigersonline.com/newsletter.html
Homeland Security
http://www.whitehouse.gov/homeland/
Important Information Security Organizations
American Society for Industrial Security
http://www.asisonline.org/
Forum of Incident Response and Security Teams (FIRST)
http://www.first.org/
Information Systems Security Association (ISSA)
http://www.issa.org/
Institute for Security Technology Studies
http://www.ists.dartmouth.edu/
Internet Security Report: Symantec
http://www.symantec.com/enterprise/
theme.jsp?themeid=threatreport
NIST Computer Security Clearinghouse
http://csrc.ncsl.nist.gov/
National Information Assurance Training and Education Consortium
http://niatec.org/
National Institute of Standards and Technology: Computer Security Resource Center
http://csrc.nist.gov/
2006 National Security Strategy of the U.S.
http://www.asksam.com/ebooks/NSS/
National Strategy for the Physical Protection of Critical Infrastructures and Key Assets
http://www.dhs.gov/xlibrary/assets/Physical_Strategy.pdf
The National Vulnerability Database - CVE
http://nvd.nist.gov/
NSA Information Assurance
http://www.nsa.gov/ia/
Open Web Application Security Project
http://www.owasp.org/
The Rainbow Series Library
http://www.fas.org/irp/nsa/rainbow.htm
SANS Institute
http://www.sans.org/
Sans on Computer Vulnerabilities
http://www.sans.org/top20/Q1-2005update/
Security Focus
http://www.securityfocus.com/
Security in the Information Age 2002
Joint Economic Committee: US Congress (134 page document)
http://www.house.gov/jec/security.pdf
Security Label Framework for the Internet
http://www.faqs.org/rfcs/rfc1457.html
Security Trends Report
http://www.websensesecuritylabs.com/docs/
WebsenseSecurityLabs20052H_Report.pdf
Top 100 Security tools
http://www.insecure.org/tools.html
2600: Hacker Quarterly
http://www.2600.com/
Web Security Trends Report
Free registration required
http://www.finjan.com/Content.aspx?id=827
World Wide Security FAQ - Compliments Stein’s book, Web Security: A Step-by-Step Reference Guide
http://www.w3.org/Security/faq
|