Security Related List Servers

There are several excellent email list servers available to help you to keep up with tomorrow's headlines: Just click in the link to visit the page where you can sign up to start receiving the posts. All of them are absolutely free.

Weekly NE-ISSA Security Tidbits - Well worth it to subscribe to. They do a great job of listing links to the top 20 - 30 news making articles of the previous week.

Security Wire Digest - Published by Information Security Magazine every Monday and Thursday. Each email also contains a very thorough list of upcoming events in the security field.

SANS Institute Security Digests - Excellent technical alerts and descriptions of the many countermeasures and general announcements sent in for just about every operating system out there.

Information Security Related Sites

Listed below are some of the best resources for security related issues that affect our National Infrastructures. All these sites provide free material that will assist you in protecting your infrastructures.

National Infrastructure Protection Center - The National Infrastructure Protection Center (NIPC) serves as a national critical infrastructure threat assessment, warning, vulnerability, and law enforcement investigation and response entity. The NIPC provides timely warnings of international threats, comprehensive analysis and law enforcement investigation and response.

President's Commission on Critical Infrastructure Protection - The President's Commission on Critical Infrastructure Protection (PCCIP) was created with Executive Order 13010.  Its purpose is to formulate a comprehensive national strategy for protection the "infrastructures" on which we all depend.

Critical Infrastructure Assurance Office - The Critical Infrastructure Assurance Office (CIAO) was created in response to Presidential Decision Directive 63 (PDD-63) in May 1998 as a mechanism to assist in the coordination of the Federal Government's initiatives on critical infrastructure protection. PDD-63 assigned the following specific missions to the CIAO: Integrating the various infrastructure sector plans into a national plan; Coordinating departmental analyses on how to mitigate unacceptable risks resulting from the U.S. Government's own dependencies on critical infrastructure; Coordinating a national education and awareness program targeted toward increasing public understanding and participation in protection efforts; and Coordinating legislative and public affairs to integrate infrastructure assurance objectives into the public and private sectors.

CERT Computer Emergency Response Team - At the CERT®/CC, we study Internet security vulnerabilities, handle computer security incidents, publish a variety of security alerts, do research for long-term changes in networked systems, and develop information and training to help you improve security at your site.

Partnership for Critical Infrastructure Security - Coordinate cross-sector initiatives and complement public / private efforts to promote and assure reliable provision of critical infrastructure services in the face of emerging risks to economic and national security.

The World Wide Information Sharing and Analysis Center - A Worldwide ISAC (Information Sharing and Analysis Center) comprises a secure database, analytic tools, and information gathering and distribution facilities designed to allow authorized individuals to submit either anonymous or attributed reports about information security threats, vulnerabilities, incidents and solutions.

The ENERGY Information Sharing and Analysis Center - An ISAC (Information Sharing and Analysis Center) comprises a secure database, analytic tools, and information gathering and distribution facilities designed to allow authorized individuals to submit either anonymous or attributed reports about information security threats, vulnerabilities, incidents and solutions.

Federal Computer Incident Response Center - The Federal Computer Incident Response Capability (FedCIRC) is the central coordination and analysis facility dealing with computer security related issues affecting the civilian agencies and departments of the Federal Government. FedCIRC's incident response and advisory activities bring together elements of the Department of Defense, Law Enforcement, Intelligence Community, Academia and computer security specialists from Federal Civilian Agencies and Departments forming a multi-talented virtual security team.

National White Collar Crime Center - The National White Collar Crime Center (NW3C) provides support services to state and local law enforcement for the prevention, investigation, and prosecution of high-tech and economic crime.

Computer Incident Advisory Center - CIAC provides on-call technical assistance and information to Department of Energy (DOE) sites faced with computer security incidents. This central incident handling capability is one component of all encompassing service provided to the DOE community. The other services CIAC provides are: awareness, training, and education; trend, threat, vulnerability data collection and analysis; and technology watch. This comprehensive service is made possible by a motivated staff with outstanding technical skills and a customer service orientation. CIAC is an element of the Computer Security Technology Center (CSTC), which supports the Lawrence Livermore National Laboratory (LLNL).

The Forum of Incident Response and Security Teams (FIRST) - This coalition, the Forum of Incident Response and Security Teams (FIRST), brings together a variety of computer security incident response teams from government, commercial, and academic organizations. FIRST aims to foster cooperation and coordination in incident prevention, to prompt rapid reaction to incidents, and to promote information sharing among members and the community at large.

CSRC - Computer Security Resource Center - This site contains information about a variety of computer security issues, products, and research of concern to Federal agencies, industry, and users. This site is operated and maintained by NIST's Computer Security Division as a service to the computer security and IT community.

National InfraGard Site - InfraGard is a Partnership between Private Industry and the U.S. government (represented by the FBI). The InfraGard initiative was developed to encourage the exchange of information by the govern

The Terrorism Research Center - The Terrorism Research Center is dedicated to informing the public of the phenomena of terrorism and information warfare. This site features essays and thought pieces on current issues, as well as links to other terrorism documents, research and resources.