UMBC Center for Information Security and Assurance
Best Practices
Vendor/Product Security
- Apple Product
Security Portal
- OS X
Security Configuration Guides
- Security-Announce Mailing List
(also available via RSS)
- Apple's Product
Security PGP Key for the responsible disclosure of security bugs
- Microsoft Safety &
Security Center
- SELinux Project
- This project provides documentation, tutorials, and developer
information.
- Linux Kernel Archives
- NSA's SELinux project
website
- NSA
Configuration Guidance
- Provides guidance for system and network configuration, media
handling, electronic emissions (TEMPEST), and trusted computing.
- Forum of Incident Response and
Security Teams
- FIRST provides a collection of best practices for incident response.
- National Institute of Standards and
Technology
Secure Software Engineering
- MSDN Security
Development Center
- Security Development
Lifecycle
- Microsoft's
Patterns and Practices for Security
- Security
Engineering Guidelines
Safe Online Experience
- Department of Homeland Security
- Stop. Think. Connect.
Initiative for managing your identity online.
- Stay Safe Online
- The National Cyber Security Alliance website educating people,
businesses, and children on safe online practices.
- OnGuard Online
- The Federal Trade Commission website for a safe online experience.
Personal Computing
- UMBC DoIT
Security Blog
Security Certifications & Training
-
DoD Directive 8570
- This directive places requirements of certification and training of
IA professionals working for the Department of Defense.
- National Information Assurance Training
and Education Center
- SANS (SysAdmin, Audit, Network,
Security) Institute
- CERT Coordination Center
