Information security centric blog. Covering administrative, technical and governance security issues. Topics include compliance, microsoft windows, apple osx, solaris, unix and linux technical how-to. Discussions regarding penetration testing, security assessments, and security controls. Opinions related to PCI-DSS, NERC, FERC ISO27000 and other compliance related themes.
Friday, March 20
PII Guide Draft from NIST - SP800-122
SP800-122 - is a relatively new draft guideline regarding the protection of confidentiality related to personal information. Check it out.