|
REFERENCE |
|
 |
NIST Computer Security Resource Center |
|
|
Rob Slade’s “Not the Home Page” – links to
book reviews and security glossary |
|
|
GAISP: ISSA’s project to create Generally
Accepted Information Security Principles |
|
|
ICSA Lab’s Information on security
technology |
|
|
NSA Central Security Service (links to NSA
Security Configuration Guides) |
|
|
SecurityDocs: Wide range of white papers
and articles on information security topics |
|
|
SecurityStats: Broad range of statistics
on information security topics |
|
|
Information Security Year in Review –
annual summaries back to 1995 |
|
|
About.com’s Guide to Information Security
Laws |
|
VULNERABILITIES, INCIDENTS and HOAXES |
|
|
CIAC List of Computer Hoaxes |
|
|
NIST CVE Vulnerability Search Engine |
|
|
U.S. Computer Incident Advisory Capability |
|
|
Symantec’s site on e-mail and other hoaxes |
|
|
U.S. Computer Emergency Readiness Team |
|
|
XForce threat analysis information |
|
NEWS |
|
|
SearchSecurity –News, Tips, White Papers,
Knowledge Exchange |
|
|
Information Security Magazine’s daily
Security Wire |
|
|
Internet security news and analysis |
|
PORTALS and LINKS |
|
|
Infosyssec - Broad and comprehensive
security portal |
|
|
U.K. based portal to network defense and
service information |
|
|
SecurityFocus – Broad range of information
security information, including news and jobs |
|
|
Security News Portal |
|
|
SecurityPanel: Portal to a broad range of
security topics |
|
|
SecurityPipeline: Links to information
security trends, news, product directories, and others |
|
TRAINING and CERTIFICATIONS |
|
|
CCCure: Information and learning resources
for aspiring security professionals |
|
|
Jared’s ZSquad: Archive of e-mail on the
CISSP Forum |
|
|
ISC2:
Information about CISSP and SSCP certifications |
|
|
SANS: Information security education and
research |
|
|
ISACA: Information on CISA and CISM
certification |
|
|
CERIAS: Center for Education and Research
in Information Assurance and Security |
|
|
NSA’s Centers of Excellence in Information
Security Education |
|
|
MISTI: MIS Training Institute’s
Information Security Conferences |
|
|
goCSI: Computer Security Institute’s
Conferences and Training schedules |
|
|
RSA’s information security conferences |
