Computer Security Act of 1987: Difference between revisions
Content deleted Content added
mNo edit summary |
|||
| Line 7: | Line 7: | ||
* Assigns the [[National Institute of Standards and Technology]] (NIST, At the time named National Bureau of Standards) to develop standards of minimum acceptable practices with the help of the [[National Security Agency|NSA]] |
* Assigns the [[National Institute of Standards and Technology]] (NIST, At the time named National Bureau of Standards) to develop standards of minimum acceptable practices with the help of the [[National Security Agency|NSA]] |
||
* Requires establishment of security policies for Federal computer systems that contain sensitive information. |
* Requires establishment of security policies for Federal computer systems that contain sensitive information. |
||
* Mandatory security |
* Mandatory security awareness training for federal employees that use those systems. |
||
==Reference== |
==Reference== |
||
Revision as of 11:50, 7 June 2007
The Computer Security Law of 1987, Public Law No. 100-235 (H.R. 145), (Jan. 8, 1988), was passed by the United States Congress. It was passed to improve the security and privacy of sensitive information in Federal computer systems and to establish a minimum acceptable security practices for such systems.
History
It has been superseded by the Federal Information Security Management Act of 2002
Provisions
- Assigns the National Institute of Standards and Technology (NIST, At the time named National Bureau of Standards) to develop standards of minimum acceptable practices with the help of the NSA
- Requires establishment of security policies for Federal computer systems that contain sensitive information.
- Mandatory security awareness training for federal employees that use those systems.