RFC1244 - Page 89

• Title: Site Security Handbook
• Author: J.P. Holbrook, J.K. Reynolds
• Date: July 1, 1991

Page Navigation:

1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  21  22  23  24  25  26  27  28  29  30  31  32  33  34  35  36  37  38  39  40  41  42  43  44  45  46  47  48  49  50  51  52  53  54  55  56  57  58  59  60  61  62  63  64  65  66  67  68  69  70  71  72  73  74  75  76  77  78  79  80  81  82  83  84  85  86  87  88  89  90  91  92  93  94  95  96  97  98  99  100  101 

Printable Version: RFC1244.PDF

RFC 1244                 Site Security Handbook                July 1991


   [LU]
           Lu, W., and M. Sundareshan, "Secure Communication in
           Internet Environments: A Hierachical Key Management Scheme
           for End-to-End Encryption", IEEE Transactions on
           Communications, Vol. 37, No. 10, Pg. 1014, 1 October 1989.

   [LU1]
           Lu, W., and M. Sundareshan, "A Model for Multilevel Security
           in Computer Networks", IEEE Transactions on Software
           Engineering, Vol. 16, No. 6, Page 647, 1 June 1990.

   [NSA]
           National Security Agency, "Information Systems Security
           Products and Services Catalog", NSA, Quarterly Publication.

           NSA's catalogue contains chapter on: Endorsed Cryptographic
           Products List; NSA Endorsed Data Encryption Standard (DES)
           Products List; Protected Services List; Evaluated Products
           List; Preferred Products List; and Endorsed Tools List.

           The catalogue is available from the Superintendent of
           Documents, U.S. Government Printing Office, Washington,
           D.C.  One may place telephone orders by calling:
           (202) 783-3238.

   [OTA]
           United States Congress, Office of Technology Assessment,
           "Defending Secrets, Sharing Data: New Locks and Keys for
           Electronic Information", OTA-CIT-310, October 1987.

           This report, prepared for congressional committee considering
           Federal policy on the protection of electronic information, is
           interesting because of the issues it raises regarding the
           impact of technology used to protect information.  It also
           serves as a reasonable introduction to the various encryption
           and information protection mechanisms.  185 pages.  Available
           from the U.S. Government Printing Office.

   [PALMER]
           Palmer, I., and G. Potter, "Computer Security Risk
           Management", Van Nostrand Reinhold, NY, 1989.

   [PFLEEGER]
           Pfleeger, C., "Security in Computing", Prentice-Hall,
           Englewood Cliffs, NJ, 1989.

           A general textbook in computer security, this book provides an
           excellent and very readable introduction to classic computer



Site Security Policy Handbook Working Group                    [Page 89]