Security Guide for Interconnecting Information Technology Systems PDF Download

Are you looking for read ebook online? Search for your book and save it on your Kindle device, PC, phones or tablets. Download Security Guide for Interconnecting Information Technology Systems PDF full book. Access full book title Security Guide for Interconnecting Information Technology Systems by nist. Download full books in PDF and EPUB format.

Security Guide for Interconnecting Information Technology Systems

Security Guide for Interconnecting Information Technology Systems PDF Author: nist
Publisher:
ISBN: 9781495202421
Category :
Languages : en
Pages : 60

Get Book

Book Description
The Security Guide for Interconnecting Information Technology Systems provides guidance for planning, establishing, maintaining, & terminating interconnections between information technology (IT) systems that are owned & operated by different organizations. They are consistent with the requirements specified in the Office of Management and Budget (OMB) Circular A-130, Appendix III,for system interconnection and information sharing. A system interconnection is defined as the direct connection of two or more IT systems for the purpose of sharing data & other information resources. The document describes benefits ofinterconnecting IT systems, defines the basic components of an interconnection, identifies methods & levels of interconnectivity, & discusses potential security risks.The document then presents a ?life-cycle? approach for system interconnections, with an emphasis on security. Four phases are addressed:?Planning the interconnection:the organizations perform preliminary activities; examine technical, security, & administrative issues; & form an agreement governing the management, operation, &use of the interconnection.?Establishing the interconnection: the organizations develop & execute a plan for establishing the interconnection, including implementing or configuring security controls. ?Maintaining the interconnection: the organizations maintain the interconnection after it is established to ensure that it operates properly & securely.?Disconnecting the interconnection: one or both organizations may terminate the interconnection. The termination should be conducted in a planned manner to avoid disrupting the other party?s system. In an emergency, however, oneor both organizations may choose to terminate the interconnection immediately. The document provides recommended steps for completing each phase, emphasizingsecurity measures to protect the systems & shared data. The document also contains guides & samples for developing an Interconnection Security Agreement (ISA) & a Memorandum of Understanding/Agreement (MOU/A). The ISA specifies technical & security requirements of the interconnection; the MOU/A defines the responsibilities of the organizations. Finally, the document contains a guide for developing anImplementation Plan to establish the interconnection.