Monday

Guidelines on RFID security

For those actually dealing with RFID or those who will be in the (near) future: NIST released their Guidelines for Securing Radio Frequency Identification (RFID) System
The paper focuses on RFID applications in the product supply chain, including tracking at the item level. It does not address the use of RFID technology in smart-card applications for identification or payments. It's a 154-page document.

Some other recent NIST publications are:

SP 800-45 Version 2, Guidelines on Electronic Mail Security, is intended to aid organizations in the installation, configuration, and maintenance of secure mail servers and mail clients. It presents recommendations for securing mail server operating systems and applications, protecting mail servers through the supporting network infrastructure, and administering mail servers securely. SP 800-45 Version 2 also provides guidance on protecting individual email messages, securing access to mailboxes, and securely configuring mail clients. This publication replaces the original version of SP 800-45, which was released in 2002.

SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS), seeks to assist organizations in understanding intrusion detection system and intrusion prevention system technologies and in designing, implementing, configuring, securing, monitoring, and maintaining intrusion detection and prevention system (IDPS) solutions. This publication replaces NIST SP 800-31, Intrusion Detection Systems.

SP 800-97, Establishing Wireless Robust Security Networks: A Guide to IEEE 802.11i, provides detailed information on the Institute of Electrical and Electronics Engineers (IEEE) 802.11i standard for wireless local area network (WLAN) security. The document complements, and does notWireless Network Security: 802.11, Bluetooth and Handheld Devices. replace, NIST SP 800-48,

No comments: