General
Topics
Specialized
Topics
- Cryptography
- Electronic
Commerce
- Firewalls
- Java
- Kerberos
- Miscellaneous
- Steganography
- Viruses
- World
Wide Web (WWW)
Other
Sites - Security Standards, Laws, and Guidelines
- A
Novice's Guide to the IETF
- Good
guide to how the IETF works (useful for understanding
the IETF standards process).
- ACSI
33
- Security
guidelines for Australian government IT systems
(typical unclassified-level security guidelines).
- Advanced
Encryption Standard (AES) Development Effort
- NIST's
AES home page.
- AICPA
Exposure Draft of the WebTrust Principles and
Criteria
- Webtrust
(US and Canadian CPA) CA certification guidelines,
brought to you in a Micros~1-friendly format.
- An
Analysis of PGP's Trust Model
- ATM
Security Page
- Asynchronous
Transfer Mode security standards, products,
publications, and work in progress.
- Außenhandelsgesetz
- Dual Use Güter
- Austrian
(EU-derived) export restrictions.
- Australian
Controls on the export of Defence and Strategic
Goods
- Australia's
Legal Framework for Electronic Commerce
- Australian
government work on establishing a legal framework
for e-commerce.
- Banking
technology resource home page
- Links
to info on ATM's, crypto, standards, publications.
- Biometric
Application Programming Interface (BAPI)
- Biometric
API documentation and information.
- Canadian
Cryptography
- Canadian
government position and information on cryptography.
- CAVE
encryption algorithm
- The
(deliberately crippled) US cellular phone "encryption"
algorithm.
- CDSA
- Common Data Security Architecture
- CDSA
specs from the OpenGroup.
- Cloud
Cover
- GCHQ's
GAK PKI.
- Commerce
At Light Speed-EDI
- Various
links to EDI/EDIFACT information.
- Commercial
Encryption Export Controls
- ITAR
(under new management).
- Common
Criteria Project -- HomePage
- ISO
9000 for computer security.
- Common
Data Security Architecture
- CDSA
specs from Intel (unlike the OpenGroup, you
don't have to be a member to get this version).
- Communications
Assistance for Law Enforcement Act
- FBI
universal surveillance act, since used as a
blueprint in other countries (eg Enfopol in
Europe).
- Computer
seizure guidelines
- US
federal guidelines for searching and siezing
computers.
- Computer
Security Objects Register
- NIST
security-related object identifier registry.
- Cryptographic
Standards Library
- FIPS
140-1, 46-2, 74, 81, 171, 180, DOD 5200.28-STD
(TCSEC), 5220.22-M, NCSC-TG-25.
- Cryptographic
Standards Validation Programs at NIST
- Validation
information and suites for DES, Skipjack, DSA,
and crypto modules.
- CSP
Designators
- Crypto
designators for WWII-era and early postwar comsec
gear.
- DAP
Malaysia National Homepage
- Malaysian
computer crimes, digital signature, and telemedecine
bills.
- DCE
Security
- DCE
security specs and literature, DCE security
program group and research efforts.
- Derived
Test Requirements for FIPS 140-1
- Requirements
for FIPS 140-1 compliance testing.
- Digital
Signature Guidelines
- ABA
Digital Signature Guidelines
- Draft
UNCITRAL
- Draft
UN law on electronic commerce.
- Digital
Signature Standard Validation System (DSSVS)
User's Guide
- Validation
suite for DSA and SHA.
- DTI
- Strategic Export Controls
- DTI
report on tightening export controls further
to provide the illision of stopping all crypto
getting out.
- Electronic
commerce: Commission proposes electronic signatures
Directive
- EU
digital signature directive.
- Export
Administration Regulations (EAR)
- Latest
version of the ITAR (which became the DTR, and
now the EAR).
- ECMA
Standards (Blue cover)
- EDI
Security
- An
overview of EDI security.
- EDIFACT
Security Implementation Guidelines
- EDIFACT
security... dear oh dear.
- EESSI
Work Items
- ETSI/CEN
digital signature and PKI work in progress.
- Electronic
Commerce: A Guide for the Business and Legal
Community
- NZ
Law Commision report on e-commerce.
- Electronic
Commerce, EDI, EDIFACT and Security
- Internet
electronic commerce security (PEM, PGP, SHTTP,
S/MIME, SET, SSL, etc), EDI security (X.12,
EWOS), EDIFACT security, other EDI and EDIFACT
standards.
- EMV
sets standards for global integration of Chip
cards
- Standards
for smart cards. smart card terminals, and applications.
- ETSI
Publications
- All
ETSI standards documents available online for
free.
- ETSI
TC SEC Homepage
- ETSI
technical committee on security home page.
- Excerpts
from the Export Control List of Canada
- The
sections which apply to crypto software/hardware.
- Extended
Log File Format
- WWW
common logfile format.
- Extensions
to PGP Key Format
- Extensions
to the PGP key format for PGP 5.
- FIPS
Home Page
- Federal
Information Processing Standards (including
many crypto standards).
- German
Digital Signature Law
- Draft
of the law with related press releases and information.
- GiTS
Security
- Crypto
security API overview.
- GSM
Security and Encryption
- Overview
of GSM security and encryption.
- HA-API
- Human
Authentication API (biometrics AP).
- IEEE
P1363
- RSA,
Diffie-Hellman, elliptic curve, and related
public-key cryptography (P1363)
- IETF
RFC Index
- RFC's
indexed in various ways.
- Information
Technology Security Branch
- RCMP
IT security bulletins and information.
- International
Wassenaar Crypto Campaign
- EFA-coordinated
Wassenaar crypto campaign.
- Internet
drafts
- RFC
drafts.
- Internet
Mail Standards
- Including
S/MIME, PGP/MIME, MSP security in MIME, simple
authentication and security layer (SASL), and
mail ubiquitous security extensions (MUSE).
- IESS
Specs
- Intelsat
specs - roll your own Echelon.
- IP
Security Protocol (ipsec) Charter
- IPSEC
drafts and RFC's.
- IP
Security Working Group News
- IPSEC
specifications, drafts, related drafts, mailing
list archives, and implementations.
- ISAKMP
and Oakley Information
- Internet
security association and key management protocol
information.
- ISO
SC27 Standing Document 7
- Abstracts
|
