Guide to IPsec VPNs

Barker, Elaine B.; Dang, Quynh H.; Frankel, Sheila E.; Scarfone, Karen; Wouters, Paul

doi:10.6028/nist.sp.800-77r1

Cited by 10 publications

(11 citation statements)

References 79 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Additional information for secure VPN implementation can be found in NIST SP 800-77 Rev. 1, Guide to IPsec VPNs [44], and NIST SP 800-113, Guide to SSL VPNs [45].…”

Section: Security-focused Device Selectionmentioning

confidence: 99%

Guidelines for managing the security of 34 mobile devices in the enterprise

Souppaya

2023

View full text Add to dashboard Cite

Mobile devices were initially personal consumer communication devices, but they are now permanent fixtures in enterprises and are used to access modern networks and systems to process sensitive data. This publication assists organizations in managing and securing these devices by describing available technologies and strategies. Security concerns inherent to the usage of mobile devices are explored alongside mitigations and countermeasures. Recommendations are provided for the deployment, use, and disposal of devices throughout the mobile-device life cycle. The scope of this publication includes mobile devices, centralized device management, and endpoint protection technologies, as well as both organization-provided and personally owned deployment scenarios.

show abstract

“…Additional information for secure VPN implementation can be found in NIST SP 800-77 Rev. 1, Guide to IPsec VPNs [44], and NIST SP 800-113, Guide to SSL VPNs [45].…”

Section: Security-focused Device Selectionmentioning

confidence: 99%

Guidelines for managing the security of 34 mobile devices in the enterprise

Souppaya

2023

View full text Add to dashboard Cite

show abstract

“…Source Controls: AC-2, AC-2(3), AC-2 (13) Supporting Publications: SP 800-46 [15], SP 800-57-1 [16], SP 800-57-2 [17], SP 800-57-3 [18], SP 800-77 [19], SP 800-113 [20], SP 800-114 [21], SP 800-121 [22], SP 800-162 [23], SP 800-178 [24], SP 800-192 [25], IR 7874 [26], IR 7966 [27]…”

Section: Referencesmentioning

confidence: 99%

“…Source Controls: SC-8(1), SC-28 (1) Supporting Publications: FIPS 140-3 [42], FIPS 197 [72], SP 800-46 [15], SP 800-52 [73], SP 800-56A [77], SP 800-56B [78], SP 800-56C [79], SP 800-57-1 [16], SP 800-57-2 [17], SP 800-57-3 [18], SP 800-77 [19], SP 800-111 [55], SP 800-113 [20], SP 800-114 [21], SP 800-121 [22], SP 800-124 [29], SP 800-177 [74]…”

Section: Referencesmentioning

confidence: 99%

Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

Ross

2023

View full text Add to dashboard Cite

The protection of Controlled Unclassified Information (CUI) resident in nonfederal systems and organizations is of paramount importance to federal agencies and can directly impact the ability of the Federal Government to successfully conduct its essential missions and functions. This publication provides agencies with recommended security requirements for protecting the confidentiality of CUI when the information is resident in nonfederal systems and organizations, when the nonfederal organization is not collecting or maintaining information on behalf of a federal agency or using or operating a system on behalf of an agency, and where there are no specific safeguarding requirements for protecting the confidentiality of CUI prescribed by the authorizing law, regulation, or governmentwide policy for the CUI category listed in the CUI Registry. The requirements apply to components of nonfederal systems that process, store, or transmit CUI or that provide protection for such components. The security requirements are intended for use by federal agencies in contractual vehicles or other agreements established between those agencies and nonfederal organizations.

show abstract

“…Source Controls: AC-02, AC-02(03), AC-02 (13) Supporting Publications: SP 800-46 [14], SP 800-57-1 [15], SP 800-57-2 [16], SP 800-57-3 [17], SP 800-77 [18], SP 800-113 [19], SP 800-114 [20], SP 800-121 [21], SP 800-162 [22], SP 800-178 [23], SP 800-192 [24], IR 7874 [25], IR 7966 [26] 3.1.2. Access Enforcement REQUIREMENT: 03.01.02 Enforce approved authorizations for logical access to CUI and system resources.…”

Section: Referencesmentioning

confidence: 99%