Government Documents, Laws, Testimonies or Reports; Cybersecurity Policy; and Data Security
Standards for Security Categorization of Federal Information and Information Systems (FIPS-199)
| Title: | Standards for Security Categorization of Federal Information and Information Systems (FIPS-199) (ID: CSD5355) | | Source: | National Institute of Standards and Technology | | Origin: | Contributed by Organizations or Campuses (02/18/2004) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | The E-Government Act of 2002 (Public Law 107-347), recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act, entitled the Federal Information Security Management Act of 2002 (FISMA), tasked NIST with responsibilities for standards and guidelines, including the development of:
- Standards to be used by all federal agencies to categorize all information and information systems collected or maintained by or on behalf of each agency based on the objectives of providing appropriate levels of information security according to a range of risk levels;
- Guidelines recommending the types of information and information systems to be included in each category; and
- Minimum information security requirements (i.e., management, operational, and technical controls), for information and information systems in each such category. | | View this resource: | |
Financial Institutions and Customer Data: Complying with the Safeguards Rule
| Title: | Financial Institutions and Customer Data: Complying with the Safeguards Rule (ID: CSD2868) | | Origin: | Contributed by Organizations or Campuses (2002) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | Many financial institutions collect personal information from their customers, such as their names, addresses and phone numbers; bank and credit card account numbers; income and credit histories; and Social Security numbers. The Gramm-Leach-Bliley (GLB) Act requires financial institutions to ensure the security and confidentiality of this type of information. As part of its implementation of the GLB Act, the Federal Trade Commission (FTC) has issued the Safeguards Rule. This Rule requires financial institutions under FTC jurisdiction to secure customer records and information. | | View this resource: | |
Standards for Safeguarding Customer Information; Final Rule (16 CFR, Part 314)
| Title: | Standards for Safeguarding Customer Information; Final Rule (16 CFR, Part 314) (ID: CSD2867) | | Origin: | Contributed by Organizations or Campuses (2002) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | The Federal Trade Commission is issuing a final Safeguards Rule, as required by section 501(b) of the Gramm-Leach-Bliley Act to establish standards relating to administrative, technical and physical information safeguards for financial institutions subject to the Commission's jurisdiction. As required by section 501(b), the standards are intended to: Ensure the security and confidentiality of customer records and information; protect against any anticipated threats or hazards to the security or integrity of such records; and protect against unauthorized access to or use of such records or information that could result in substantial harm or inconvenience to any customer. | | View this resource: | |
|
