Nist Desktop Security Standards
Security testing validation and measurement nist verifies cryptographic modules based on cryptographic standards through the cryptographic module validation program.
Nist desktop security standards. The usgcb is a federal government wide initiative that provides guidance to agencies. This publication has been developed by nist in accordance with its statutory responsibilities under the federal information security modernization act fisma of 2014 44 u s c. Modules validated as conforming to specific standards are accepted by federal agencies for the protection of sensitive information. Nist is responsible for developing information security standards and guidelines incl uding.
The usgcb baseline evolved from the federal desktop core configuration mandate. For 20 years the computer security resource center csrc has provided access to nist s cybersecurity and information security related projects publications news and events csrc supports stakeholders in government industry and academia both in the u s. A security configuration checklist also called a lockdown hardening guide or benchmark is a series of instructions or procedures for configuring an it product to a particular operational environment for verifying that the product has been configured properly and or for. Nist is responsible for developing information security standards and guidelines including minimum requirements for federal information systems but such standards and guidelines shall not apply to national security systems without the express approval of appropriate federal officials exercising policy authority over such systems.
Innovation and industrial competitiveness by advancing measurement science standards and technology in ways that enhance economic security and improve our quality of life. 3541 et seq public law p l 113 283. The purpose of the united states government configuration baseline usgcb formerly the federal desktop core configuration fdcc initiative is to create security configuration baselines for information technology products widely deployed across the federal agencies. Nist maintains the national checklist repository which is a publicly available resource that contains information on a variety of security configuration checklists for specific it products or categories of it products.
The usgcb baseline evolved from the federal desktop core configuration mandate. Full virtualization is used for operational efficiency such as in. In this major update to csrc.