Documentation

1995

• Government Electronic Mail Services
• Adoption of the Common Criteria
• Activities of the Security Policy Board
• Cryptography-related NIST-sponsored Meetings

1994

• Escrowing Release/Program Procedures
• Alternative Key Escrow
• Security in the NII

July 2008

FISMA Letter:
This letter offers recommendations of the Information Security and Privacy Advisory Board to OMB regarding the efficacy of security metrics in regard to FISMA.

July 2008

EBK Letter:
This letter offers recommendations of the Information Security and Privacy Advisory Board to OMB regarding the information Security Essential Body of Knowledge (EBK) project.

September 2007

COOP Letter:
This letter offers recommendations of the Information Security and Privacy Advisory Board, that OMB and NIST work with DHS and other involved agencies to issue guidance on incorporating sound security and privacy practices into emergency response.

September 2007

REAL ID Letter:
This letter offers the comments and advice of the Information Security and Privacy Advisory Board's, concept of the issues and views on the Real ID program’s use of encryption.

June 2006

Subject: This letter offers the comments and advice of the Information Security and Privacy Advisory Board, on progress of the National Information Assurance Program (NIAP) review since its initiation in mid-2004. It provided recommendations on the key issues with NIAP.

January 2005

This letter offers the comments and advice of the Information Security and Privacy Advisory Board, on Section 522 of the Consolidated Appropriations Act of 2005, Division H Transportation/Treasury, which provides for the establishment of statutory Chief Privacy Officers in Federal departments and agencies and prescribes certain actions to meet Federal government privacy management responsibilities.

August 2004

The Board produced the report "The National Institute of Standards and Technology Computer Security Division: The Case for Adequate Funding" in June 2004. A letter transmitting the final report and Board recommendations for consideration was submitted to the Honorable Joshua B. Bolten, Director of the Office of Management and Budget.

August 2002

Final Report "Computer System Security and Privacy Advisory Board Findings and Recommendations on Government Privacy Policy Setting and Management," was approved by the Board at their September 17-19, 2002, meeting

January 2003

Questions to Establish Potential Chilling Effects

July 2008

FISMA Letter:
This letter offers recommendations of the Information Security and Privacy Advisory Board to OMB regarding the efficacy of security metrics in regard to FISMA.

July 2008

EBK Letter:
This letter offers recommendations of the Information Security and Privacy Advisory Board to OMB regarding the information Security Essential Body of Knowledge (EBK) project.

September 2007

COOP Letter:
This letter offers recommendations of the Information Security and Privacy Advisory Board, that OMB and NIST work with DHS and other involved agencies to issue guidance on incorporating sound security and privacy practices into emergency response.

September 2007

REAL ID Letter:
This letter offers the comments and advice of the Information Security and Privacy Advisory Board's, concept of the issues and views on the Real ID program’s use of encryption.

June 2006

Subject: The Board has followed the progress of the National Information Assurance Program (NIAP) review since its initiation in mid-2004 and has received several progress briefings on the review, most recently at its March 2006 meeting. While the final report of the review has still not been released, the March briefing gave the Board a clear sense of the direction that the review has taken.

September 15, 2004

Subject: Report on funding for the cyber security program at the National Institute of Standards and Technology (NIST) prepared by ISPAB.

June 2004

Subject: Request for Board's advice on a list of activities that would be useful for both the Board and NIST to meet our respective statutory responsibilities for FY 2005.

October 30, 2003

Subject: The issue of agencies using Web-based transactions to provide "e-government" services to members of the public. A key issue was whether (and how) an application might place program code (often referred to as "plug-ins" or "mobile code") into the user's browser.

August 20, 2003

Subject: The e-Authentication initiative and the importance of establishing privacy policies and practices as mandatory components of technical models and systems being considered to support e-authentication services.

April 8, 2003

Subject: Discussion of considerations the Board feels are important to the ongoing development of the National Strategy to Secure Cyberspace, issued February, 2003.

December 20, 2002

Subject: The Board's observations and recommendations on the September draft of the Strategy to Secure Cyberspace.

May 20, 2002

Subject: Final draft of a report of the Computer System Security and Privacy Advisory Board adopted at its March 2002 meeting.

December 14, 2001

Subject: Support of initiative of the National Security Council and the Partnership for Critical Infrastructure Security to educate home users and small business owners on computer security measures.

April 9, 2001

Subject: Board's views on the Subcommittee's publication "First Report Card on Computer Security at Federal Departments and Agencies."