• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 188
  • Last Modified:

Need list of security standards

I need a list of implemented security standards. Those that I know of are the C1 and C2 standards that the DOD did awhile ago.

The story is that I'm working on a product that needs to be secure and I would rather adopt an already existing standard rather than making up my own.
1 Solution
C1 and C2 aren't recognized any more.  They've been replaced by the Common Criteria project, which is a joint project between several nations.

The equivelant of C2 is now something called Controled Access Protection Profile.  See http://www.radium.ncsc.mil/tpep/library/protection_profiles/index.html for more info.

Other places to look are the Center for Internet Security (http://www.cisecurity.org/), the SANS Institute (http://www.sans.org), ICSA Labs (http://www.icsalabs.com/html/certification/index.shtml), and the Generally Accepted System Security Principles site (http://web.mit.edu/security/www/gassp1.html).
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now