Computer Security Act of 1987

From Wikipedia, the free encyclopedia
Jump to: navigation, search
Computer Security Act of 1987
Great Seal of the United States
Long title An Act to provide for a computer standards program within the National Bureau of Standards, to provide for Government-wide computer security, and to provide for the training in security matters of persons who are involved in the management, operation, and use of Federal computer systems, and for other purposes.
Acronyms (colloquial) CSA
Enacted by the 100th United States Congress
Effective January 8, 1988
Public law 100-235
Statutes at Large 101 Stat. 1724
Titles amended 15 U.S.C.: Commerce and Trade
U.S.C. sections amended
Legislative history
Major amendments
Repealed by the Federal Information Security Management Act of 2002

The Computer Security Law of 1987, Public Law No. 100-235 (H.R. 145), (Jan. 8, 1988), was passed by the United States Congress. It was passed to improve the security and privacy of sensitive information in federal computer systems and to establish a minimum acceptable security practices for such systems. It requires the creation of computer security plans, and the appropriate training of system users or owners where the systems house sensitive information.


It was repealed by the Federal Information Security Management Act of 2002 SEC. 305. (a)


  • Assigns the National Institute of Standards and Technology (NIST, At the time named National Bureau of Standards) to develop standards of minimum acceptable practices with the help of the NSA
  • Requires establishment of security policies for Federal computer systems that contain sensitive information.
  • Mandatory security awareness training for federal employees that use those systems.


External links[edit]