Security Standards
Saw this over at SNN
There are a number of existing standards for computer security in specific products used by the U.S. government, however, those standards are limited to specific products and often do not cover large parts of the infrastructure. A number of different parties want standards of some type, but often disagree on how to best develop those standards. At a meeting last week of the National Information Assurance Partnership (NIAP) a number of participants voiced their opinions.
Computerworld