Maintaining e-mail security is an ongoing process, and organizations should be prepared to apply patches in a timely manner and test security frequently, according to February 20 guidance from the National Institute of Standards and Technology (NIST).
SP 800-45 Version 2, Guidelines on Electronic Mail Security offers recommendations for protecting individual e-mail messages and for securing mail server operating systems and applications.
NIST also released the following publications:
- SP 800-94, Guide to Intrusion Detection and Prevention Systems
This offers guidance in designing, implementing, configuring, and maintaining intrusion detection and prevention systems.
- SP 800-97, Establishing Wireless Robust Security Networks: A Guide to IEEE 802.11i
This document provides detailed information on the Institute of Electrical and Electronics Engineers (IEEE) 802.11i standard for wireless local area network security.
[ via HIPAA Weekly Advisor ]