Government Documents, Laws, Testimonies or Reports and Contributed by Organizations or Campuses

Federal Register notice of inquiry concerning DNSSEC. The Department of Commerce (Department) notes the increase in interest among government, technology experts and industry representatives regarding the deployment of Domain Name and Addressing System Security Extensions (DNSSEC) at the root zone level. The Department remains committed to preserving the security and stability of the DNS and is exploring the implementation of DNSSEC in the DNS hierarchy, including at the authoritative root zone level. Accordingly, the Department is issuing this notice to invite comments regarding DNSSEC implementation at the root zone.

Comments are due on November 24, 2008.

The IT Security EBK conceptualizes IT security skill requirements in a new way to address evolving IT security challenges.

The Federal Trade Commission and the federal financial institution regulatory agencies have sent to the Federal Register for publication final rules on identity theft “red flags” and address discrepancies. The final rules implement sections 114 and 315 of the Fair and Accurate Credit Transactions Act of 2003.

The OCC, Board, FDIC, OTS, NCUA and FTC (the Agencies) are jointly issuing final rules and guidelines
implementing section 114 of the Fair and Accurate Credit Transactions Act of 2003 (FACT Act) and final rules implementing section 315 of the FACT Act. The rules implementing section 114 require each financial institution or creditor to develop and implement a written Identity Theft Prevention Program (Program) to detect, prevent, and mitigate identity theft in connection with the opening of certain accounts or certain existing accounts. In addition, the Agencies are issuing guidelines to assist financial institutions and creditors in the formulation and maintenance of a Program that satisfies the requirements of the rules. The rules implementing section 114 also require credit and debit card issuers to assess the validity of notifications of changes of address under certain circumstances. Additionally, the Agencies are issuing
joint rules under section 315 that provide guidance regarding reasonable policies and procedures that a user of consumer reports must employ when a consumer reporting agency sends the user a notice of address discrepancy.

This website is a one-stop national resource to learn about the crime of identity theft. It provides detailed information to help you deter, detect, and defend against identity theft.  

On this site, consumers can learn how to avoid identity theft – and learn what to do if their identity is stolen.  Businesses can learn how to help their customers deal with identity theft, as well as how to prevent problems in the first place.  Law enforcement can get resources and learn how to help victims of identity theft.

An FTC announcement that financial institutions and creditors are now required to develop and implement written identity theft prevention programs under the new "Red Flags Rules."

The E-Government Act of 2002 (Public Law 107-347), recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act, entitled the Federal Information Security Management Act of 2002 (FISMA), tasked NIST with responsibilities for standards and guidelines, including the development of:
- Standards to be used by all federal agencies to categorize all information and information systems collected or maintained by or on behalf of each agency based on the objectives of providing appropriate levels of information security according to a range of risk levels;
- Guidelines recommending the types of information and information systems to be included in each category; and
- Minimum information security requirements (i.e., management, operational, and technical controls), for information and information systems in each such category.

The purpose of this primer is to provide the design community and school administrators with the basic principles and techniques to design a school safe from terrorist attacks.

Recently in response to the tragedy at Virginia Tech, Chairman Patrick Leahy of the Senate Judiciary Committee has combined several pre-existing bills into a comprehensive package that would provide for improvements in school safety and law enforcement. This legislation was approved by Committee and is waiting for full consideration by the Senate.

This bill, The School Safety and Law Enforcement Improvement Act of 2007 (SSLEIA), would establish a National Center for Campus Public Safety to foster collaboration among campus safety stakeholders by serving as a focal point for research, model policies and best practices, education, and public policy formulation to enhance the safety and security of U.S. college and university campuses. And it would also establish a $50 million grant program for institutions of higher education to use for their campus public safety offices, in a 50-50 match

This federal register notice informs the public and interested stakeholders that the Department of Homeland Security (DHS) is making available for public review and comment ``Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development.'' This framework is intended to assist the public, private, and academic sectors with strategic IT security workforce development initiatives including professional development, training and education. The EBK is not an additional set of DHS guidelines, and it is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, defines four primary functional perspectives, and establishes an IT Security Role, Competency, and Functional Matrix.