IA Area | Standard
|
| Secure Web Server | • IETF RFC 2246, The Transport Layer Security (TLS) Protocol, Version 1.0, January 1999
|
| • IETF RFC 3207, SMTP Service Extension for Secure SMTP over TLS, February 2002
|
| Defense Messaging | • ACP-120, Allied Communication Publication 120, Common Security Protocol (CSP), June 1998
|
| • ITU-T Recommendation X.411 (1999)/ISO/IEC 10021-4:1999, Information Technology – Open Systems Interconnection – Message Handling Systems (MHS) – Message Transfer System: Abstract Service Definition Procedures
|
| • ITU-T Recommendation X.509 (2000)/ISO/IEC 9594-8:2001, Information Technology – Open Systems Interconnection – The Directory: Public Key and Attribute Certificate Frameworks, 2001, w/Technical Corrigendum 1:2002, and Technical Corrigendum 2:2002, and Corrigendum 3, April 2004
|
| • ITU-T Recommendation X.481 (2000)/ISO/IEC 15816-12:2000, Information Technology – Security Techniques – Security Information Objects for Access Control
|
| • SDN.801, Access Control Concept and Mechanisms, Revision C, 12 May 1999
|
IA Area | Standard
|
| Secure Mail | • IETF RFC 3369, Cryptographic Message Syntax August 2002
|
| • IETF RFC 2632, S/MIME, Certificate Handling, Version 3, June 1999
|
| • IETF RFC 2634, Enhanced Security Services for S/MIME, June 1999
|
| Password Security Standard | • Joint DoDIIS/Cryptologic SCI Information Systems Security Standards (JDCSISSS), Section 10.5.2, Password Requirements for SCI Systems, 31 March 2001, Rev 2
|
| Authentication Servers | • IETF RFC 1510, The Kerberos Network Authentication Service, Version 5, 10 September 1993
|
| Secure File Transfer | • IETF RFC 2228, FTP Security Extensions, October 1997
|
| Hash Algorithms | • FIPS PUB 197, Advanced Encryption Standard (AES), 26 November 2001
|
| • FIPS 180-2 Secure Hash Standard, 2002 August 01
|
IA Area | Standard
|
| Digital Signature | • FIPS PUB 186-2, Digital Signature Standard (DSS) Digital Signature Algorithm (DSA), 27 January 2000, with Change Notice dated October 5, 2001
|
| Cryptographic Key Algorithm | • SKIPJACK and KEA Algorithm Specifications, Version 2.0, NIST, 29 May 1998
|
| • IETF RFC 2228, FTP Security Extensions, October 1997
|
| Cryptographic Module | • FIPS PUB 140-2, Security Requirements for Cryptographic Modules, 25 May 2001
|
| Network Layer Security | • IETF RFC 2401, Security Architecture for the Internet Protocol, November 1998
|
| • IETF RFC 2402, IP Authentication Header, November 1998
|
| • IETF RFC 2404, The Use of HMAC-SHA-1-96 within ESP and AH, November 1998
|
| • IETF RFC 2406, IP Encapsulating Security Payload (ESP), November 1998
|
| • IETF RFC 2407, The Internet IP Security Domain of Interpretation for ISAKMP, November 1998
|
| • IETF RFC 2408, Internet Security Association and Key Management Protocol (ISAKMP), November 1998
|
| • IETF RFC 2409, The Internet Key Exchange (IKE), November 1998
|
IA Area | Standard
|
| Data Link Layer Security | • IETF RFC 3193, Securing L2TP using Ipsec, November 2001
|
| TEMPEST | • NSTISSAM TEMPEST/2-95, Guidelines for Facility Design and Red/Black Installation, 12 December 1995, with Amendment A, February 2000
|
| • CNSSP 300, National Policy on Control of Compromising Emanations, 10 April 2004
|
| EMI/EMC | • MIL STD 461, Revision E, Requirements for the Control of Electromagnetic Interference Characteristics of Subsystems and Equipment, 20 August 1999
|
| • ANSI C63.12-1999, Electromagnetic Compatibility Limits – Recommended Practice
|
| • IEEE 1000-1999, Powering and Grounding Sensitive Electronic Equipment, ISBN 0-7381-1660-2
|
| • IEEE 1143-1994, Guide on Shielding Practice for Low Voltage Cables, ISBN 1-5593-7460-8
|
| • IEC 61000-5-1 TR3, Edition 1.0b:1996, Electromagnetic Compatibility (EMC) – Part 5, Installation and Mitigation Guidelines
|
| • ANSI/EIA 426-74 (R81), Filters, Radio Interference Committee: P-3.3
|
| • ANSI/TIA/EIA 607-94, Commercial Building Grounding and Bonding Requirements for Telecommunications
|
| • IEC 60533, Edition 2.0 en:1999, Electrical and Electronic Installation in Ships – Electromagnetic Compatibility
|
IA Area | Standard
|
| Public Key Infrastructure (PKI) | • FIPS 140-2, Security Requirements for Cryptographic Modules, 25 May 2001
|
| • IETF RFC 2401, Security Architecture for the Internet Protocol, November 1998
|
| • IETF RFC 2246, The TLS Protocol, Version 1.0, January 1999
|
| • IETF RFC 3280, Internet X.509 Public Key Infrastructure Certification and CRL Profile, April 2002
|
| • IETF RFC 2560, Internet X.509 PKI Online Certificate Status Protocol (OCSP), June 1999
|
| • IETF RFC 2587, Internet X.509 Public Key Infrastructure LDAPv2 Schema, June 1999
|
| • IETF RFC 3447, PKCS #1:RSA Cryptography Standard, Version 2.1, February 2003
|
| • IETF RFC 2986, Certification Request Syntax Standard, Version 1.7, November 2000
|
| • PKCS #11, Cryptologic Token Interface Standard, Version 2.20, RSA Laboratories, 28 June 2004
|
| • PKCS #12, Public Key Cryptography Standard, Personal Information Exchange Syntax Standard, Version 1.0, 24 June 1999
|
| • PKCS #15, Public Key Cryptography Standard, Cryptographic Token Information Format Standard, Version 1.1, 6 June 2000
|
| Common Criteria | • ISO/IEC 15408:1999, Information Technology, Security Techniques – Evaluation Criteria for Information Technology Security (parts 1 through 3), 1 December 1999
|
IA Area | Standard
|
