Course Introduction ../introduction/module.htm introduction Course Overview Course Objectives Importance of Information Assurance ../importance/module.htm importance Introduction IA Overview Evolution of IA DISN Policy and Law Critical Infrastructure Protection (CIP) Summary and Review Check Your Understanding Conclusion Threats to Information Assurance ../threats/module.htm threats Introduction Threats and Vulnerabilities Social Engineering Internet Security Summary and Review Check Your Understanding Conclusion Malicious Code ../malicious_code/module.htm malicious_code Introduction Malicious Code Overview Protecting Your System Understanding Internet Hoaxes Summary and Review Check Your Understanding Conclusion User Roles ../user_roles/module.htm user_roles Introduction Protecting DoD Systems Protecting DoD Information Summary and Review Check Your Understanding Conclusion Personal and Home Computer Security ../pers_computer_sec/module.htm pers_computer_sec Introduction Online Transactions Security Tips Summary and Review Check Your Understanding Conclusion DoD Publications http://www.dtic.mil/whs/directives/ externalWindow Joint Doctrine http://www.dtic.mil/doctrine/index.html externalWindow Joint Publications http://www.dtic.mil/doctrine/jel/jointpub.htm externalWindow The Committee on National Security Systems (CNSS), formerly the National Security Telecommunications and Information Systems Security Committee (NSTISSC), Issuances: http://www.google.com externalWindow DISA Information Assurance (IA) Training Products: http://iase.disa.mil externalWindow GSA Information Technology Policy Documents: http://www.gsa.gov/Portal/gsa/ep/home.do?tabld=0 externalWindow National Security Agency/Central Security Service (NSA/CSS) INFOSEC: http://www.nsa.gov/isso/index.html externalWindow National Institute of Standards and Technology (NIST) Publications: http://www.nist.gov/public_affairs/pubs.htm externalWindow NIST Computer Security Resource Center (CSRC): http://csrc.nist.gov/ externalWindow National Information Assurance Partnership (NIAP): http://niap.nist.gov/ externalWindow Common Criteria (CC): http://www.commoncriteria.org/ externalWindow Presidential Decision Directive (PDD) 63: http://www.fas.org/irp/offdocs/pdd-63.htm externalWindow PDD 63 White Paper: http://www.fas.org/irp/offdocs/paper598.htm externalWindow OMB Circular No. A-130: http://www.whitehouse.gov/omb/circulars/a130/a130.html externalWindow Public Law 100-235 (Computer Security Act of 1987): http://csrc.nist.gov/secplcy/csa_87.txt externalWindow Clinger-Cohen Act: http://wwwoirm.nih.gov/policy/itmra.html externalWindow Federal Information Security Management Act (FISMA): http://www.fedcirc.gov/library/legislation/FISMA.html externalWindow Joint Publication 3-13, Joint Doctrine for Information Operations, 9 October 1998: http://www.dtic.mil/doctrine/jel/new_pubs/jp3_13.pdf externalWindow DoD Directive 5000.1, The Defense Acquisition System, 12 May 2003: http://www.dtic.mil/whs/directives/corres/html/50001.htm externalWindow DoD Instruction 5000.2, Operation of the Defense Acquisition System, 12 May 2003: http://www.dtic.mil/whs/directives/corres/html/50002.htm externalWindow DoD Directive 8500.1, Information Assurance (IA), 24 October 2002: http://www.dtic.mil/whs/directives/corres/html/85001.htm externalWindow DoD Directive 8500.2, Information Assurance (IA) Implementation, 6 February 2003: http://www.dtic.mil/whs/directives/corres/html/85002.htm externalWindow DoD Instruction 5200.40, DoD Information Technology Security Certification and Accreditation Process (DITSCAP), 30 December 1997: http://www.dtic.mil/whs/directives/corres/html/520040.htm externalWindow DoD Manual 8510.1-M, DoD Information Technology Security Certification and Accreditation Process (DITSCAP) Application Manual, 31 July 2000: http://www.dtic.mil/whs/directives/corres/html/85101m.htm externalWindow NSTISSI No. 1000, National Information Assurance Certification and Accreditation Process (NIACAP), April 2000: http://www.nstissc.gov/Assets/pdf/nstissi_1000.pdf externalWindow NSTISSI No. 4015, National Training Standard for System Certifiers, December 2000: http://www.nstissc.gov/Assets/pdf/nstissi_4015.pdf externalWindow Joint Publication 1-02, Department of Defense Dictionary of Military and Associated Terms, 12 April 2001 (As Amended Through 5 September 2003): http://www.dtic.mil/doctrine/jel/new_pubs/jp1_02.pdf externalWindow CNSS Instruction No. 4009, National Information Assurance (IA) Glossary, May 2003: http://www.nstissc.gov/Assets/pdf/4009.pdf externalWindow DoD Directive 8100.2, Use of Commercial Wireless Devices, Services, and Technologies in the Department of Defense (DoD) Global Information Grid (GIG): http://www.dtic.mil/whs/directives/corres/pdf/d81002_041404/d81002p.pdf externalWindow