UMBC Center for Information Security and Assurance


Best Practices

Vendor/Product Security

Apple Product Security Portal
OS X Security Configuration Guides
Security-Announce Mailing List (also available via RSS)
Apple's Product Security PGP Key for the responsible disclosure of security bugs
Microsoft Safety & Security Center
SELinux Project
This project provides documentation, tutorials, and developer information.
Linux Kernel Archives
NSA's SELinux project website
NSA Configuration Guidance
Provides guidance for system and network configuration, media handling, electronic emissions (TEMPEST), and trusted computing.
Forum of Incident Response and Security Teams
FIRST provides a collection of best practices for incident response.
National Institute of Standards and Technology

Secure Software Engineering

MSDN Security Development Center
Security Development Lifecycle
Microsoft's Patterns and Practices for Security
Security Engineering Guidelines

Safe Online Experience

Department of Homeland Security
Stop. Think. Connect. Initiative for managing your identity online.
Stay Safe Online
The National Cyber Security Alliance website educating people, businesses, and children on safe online practices.
OnGuard Online
The Federal Trade Commission website for a safe online experience.

Personal Computing

UMBC DoIT Security Blog

Security Certifications & Training

DoD Directive 8570
This directive places requirements of certification and training of IA professionals working for the Department of Defense.
National Information Assurance Training and Education Center
SANS (SysAdmin, Audit, Network, Security) Institute
CERT Coordination Center