Need list of security standards

I need a list of implemented security standards. Those that I know of are the C1 and C2 standards that the DOD did awhile ago.

The story is that I'm working on a product that needs to be secure and I would rather adopt an already existing standard rather than making up my own.
htjAsked:
Who is Participating?
 
chris_calabreseCommented:
C1 and C2 aren't recognized any more.  They've been replaced by the Common Criteria project, which is a joint project between several nations.

The equivelant of C2 is now something called Controled Access Protection Profile.  See http://www.radium.ncsc.mil/tpep/library/protection_profiles/index.html for more info.

Other places to look are the Center for Internet Security (http://www.cisecurity.org/), the SANS Institute (http://www.sans.org), ICSA Labs (http://www.icsalabs.com/html/certification/index.shtml), and the Generally Accepted System Security Principles site (http://web.mit.edu/security/www/gassp1.html).
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.