| | Title | Source |
| A | | |
| | A New Strategy for COTS in Certified Systems | Wiseman & Whittaker 1998 |
| | Announcing the Data Encryption Standards (DES) | FIPS 46-2 12/93 |
| | Announcing the Standard for the Automated Password Generator | FIPS 181 10/93 |
| | Assessing Federal and Commercial Information Security Needs | NISTIR 4976 11/92 |
| B | | |
| | Baseline Administrative Security / Computer Security Requirements Checklist for Federal DAAs | DoD/NSA/CSS |
| | Building and Implementing a Successful Information Security Policy | WindowSecurity.com |
| C | | |
| | Capstone Chip Technology | FIPS 180 04/93 |
| | Clipper Chip Press Release | White House 04/93 |
| | Clipper Chip Technology | NSA 04/93 |
| | Computer and Information Security Policy - Draft | NIST 1993 |
| | Computer Security Act of 1987 | HR 145 06/87 |
| | Computer Security and the Law | GSM Associates 1991 |
| | Computer Security Considerations in Federal Procurements | NIST SP 800-04 03/92 |
| | Computer Security Subsystems | NCSC TG-009 09/88 |
| | Computer User's Guide to the Protection of Information | NIST 1989 |
| | Computer Viruses - Prevention, Detection, and Treatment | NCSC 1989 |
| D | | |
| | Data Encryption Standards (DES) Fact Sheet | NIST 1990 |
| | Department of Defense Information Assurance Support Environment | Eller & Stauffer |
| | Department of Defense Trusted Computer System Evaluation Criteria | DoD 5200.28-STD 12/85 |
| | Design and Evaluation of INFOSEC Systems | NSCS 06/92 |
| | Digital Signature Standard (DSS) | FIPS 186 05/94 |
| | Disposition of Sensitive Automated Information | CSL 10/92 |
| E | | |
| | Escrowed Encryption Standard | FIPS 185 |
| F | | |
| | Fact Sheet of Digital Encryption Standard | NIST 05/94 |
| | Financial Management Systems | OMB A-127 12/84 |
| G | | |
| | Go Ahead and Visit Those Websites - You Can't Get Hurt...Can You? | Rothfuss & Parrett |
| | Green Book, The (Integrating Information Security Draft) | ISU NIATEC 2001 |
| | Guidance for Applying the DoD Trusted Computer System Evaluation Criteria in Specific Environments | CSC STD-003-85 06/85 |
| | Guide for Protecting Local Area Networks (LANs) and Wide Area Networks (WANs) | DHHS 1992 |
| | Guide to Understanding Audit in Trusted Systems | NCSC TG-001 07/87 |
| | Guide to Understanding Configuration Management in Trusted Systems | NCSC TG-006 03/88 |
| | Guide to Understanding Data Remanence in Automated Information Systems | NCSC TG-025 09/91 |
| | Guide to Understanding Design Documentation | NCSC TG-007 V1 1989 |
| | Guide to Understanding Discretionary Access Control in Trusted Systems | NCSC TG-003 09/87 |
| | Guide to Understanding Identification and Authentication in Trusted Systems | NCSC TG-017 V1 1990 |
| | Guide to Understanding Trusted Facility Management | NCSC TG-015 06/89 |
| | Guide to Writing the Security Features Users Guide for Trusted Systems | NCSC TG-026 09/91 |
| | Guideline on Office Automation Security | NTISSA 12/86 |
| | Guidelines for Formal Verification Systems | NCSC TG-014 04/89 |
| H | | |
| | History of the Computer Security Project | Matt Bishop, UCD |
| | | Computer Security Technology Planning Study | Anderson 1972 |
| | | Multics Security Evaluation: Vulnerability Analysis | Karger & Schell, USAF 1974 |
| | | Jobstream Separator System Design | Schacht 1975 |
| | | A Provably Secure Operating System | Neumann et.al. 1975 |
| | | Operating System Structures to Support Security and Reliable Software | Linden 1976 |
| | | Secure Computer System: Unified Exposition and Multics Interpretation | Bell & LaPadula 1976 |
| | | Secure Minicomputer Operating System (KSOS) | Ford Aerospace 1978 |
| | | Protection Analysis | Bisbey & Hollingworth 1978 |
| | | Proposed Technical Evaluation Criteria for Trusted Computer Systems | Nibaldi 1979 |
| | | Computer Security Threat Monitoring and Surveillance | Anderson 1980 |
| | | The Neglected Aspect of Computer Security | Myers 1980 |
| | | DoD Trusted Computer System Evaluation Criteria | Latham (DoD) 1985 |
| | | | |
| I | | |
| | Identification and Authorization Draft | NIST 1991 |
| | Implementing and Access Control Strategy with Smart Token Technology | NIST 04/89 |
| | Information Systems Security - A Comprehensive Model | McCumber, Pentagon, 1991 |
| | Information Technology Security Certification and Accreditation Process (DoD DITSCAP | DoD |
| | Internal Control Systems | OMB A-123 1986 |
| J | | |
| K | | |
| | Key Management Using ANSI X9.17 | FIPS 171 04/92 |
| | Key Management Validation Systems (KMVS) | NIST 01/92 |
| L | | |
| | Logical Access Control Draft | NIST 1991 |
| M | | |
| | | Schou 2001 |
| | Multistate Algorithm for Limited One-Way Functions (Cryptography) | Jennings, W.T. 1997 |
| N | | |
| | National Information Systems Security (INFOSEC) Glossary | NSTISSI No. 4009 9/2000 |
| | National Training Standards for Information Systems Security (INFOSEC) Professionals | NSTISSI No. 4011 6/1994 |
| | National Training Standard for Designated Approving Authority (DAA) | NSTISSI No. 4012 8/1997 |
| | National Training Standard for Systems Administrators in Information Systems Security (INFOSEC) | NSTISSI No. 4013 8/1997 |
| | National Training Standard for Information Systems Security Officers (ISSO) | NSTISSI No. 4014 8/1997 |
| | NIATEC Comprehensive Information Assurance Dictionary V3.0 (Draft) | ISU NIATEC |
| | NIST Mac Validation System (MVS) Successful Validations | NIST 03/93 |
| | NIST Computer Security Handbook Cryptography Draft | NIST 1991 |
| O | | |
| | OMB 130A (Subdir) | |
| P | | |
| | Password Management Guideline | CSC-STD-002-85 04/85 |
| | Practical Defenses Against Storage Jamming | McDermott & Froscher 1997 |
| | Protecting American Assets - Who is Responsible? | Crescenzi 1997 |
| | Public Encryption Management (Clipper Chip) | White House 04/93 |
| Q | | |
| R | | |
| | Rating Maintenance Phase Program | NCSC TG-013 06/89 |
| S | | |
| | Sample Statements of Work for Federal Computer Security Services: For Use In-House or Contracting Out | NIST 06/92 |
| | Secure Data Network System Transport Protocol | NISTIR 90-4228 |
| | Secure Hash Standard | FIPS 180 05/93 |
| | Secure Hash Standard Update | FIPS 180-1 05/95 |
| | Security Functionality Standards | NIST 01/92 |
| | Security Program Management Draft | NIST 1991 |
| | Security Requirements for Cryptographic Modules | FIPS 140-1 |
| | Sensitivity of Information | CSL 11/92 |
| | Site Security Handbook | IETF 1992 |
| | Standard Security Label for the Government Open Systems Interconnection Profile (Draft) | FIPS 1992 |
| | Stupid Javascript Security Tricks | Cooke, Walter, CISSP |
| T | | |
| | Technical Rationale Behind CSC-STD-003-85 Computer Security Requirements | DoDCSC 06/85 |
| | Threat Assessment of Malicious Code and Human Computer Threats | NISTIR 4939 10/92 |
| | Training Requirement for the Computer Security Act | OPM 01/92 |
| | (TRUSIX) Rationale for Selecting Access Control List Features for the UNIX System | NCSC-TG 020A 04/91 |
| | Trusted Database Management System Interpretation | NCSC-TG 021 04/91 |
| | Trusted Network Interpretation Environments Guideline | NCSC-TG 011 08/90 |
| | Trusted Product Evaluation Questionnaire | NCSC-TG 019 05/92 |
| | Trusted Product Evaluations | NCSC-TG 002 03/88 |
| U | | |
| | Understanding Trusted Distribution | NCSC-TG 008 12/88 |
| V | | |
| W | | |
| | When Java was One: Threats from Hostile Byte Code | Ladue, Mark 1990 |
| | Writing Trusted Facility Manuals | NCSC-TG 016 10/92 |
| | Who Should Really Manage Information Security in the Federal Government? | Korzyk & Wynne 1997 |
| X | | |
| Y | | |
| Z | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
| | | |
