Title: An Introduction to Computer Security: The NIST Handbook
(DRAFT) 
Authors: National Institute of Standards and Technology  
File name: pubdocguidelinesNIST_Handbook_Draft 
File size: 470881 bytes 

Abstract: The purpose of this Handbook is to assist
managers in securing computer-based resources (including
hardware, software, and information) by explaining important
concepts, cost considerations, and interrelationships of security
controls. Such knowledge is vital for managers to make informed
decisions in selecting cost-effective, appropriate controls to
protect systems in their unique operating and threat
environments. The Handbook provides a broad overview of the field
of computer security. It assists the readers understanding of
their computer security needs and to develop a sound approach to
the selection of appropriate security controls. The document does
not, however, describe detailed steps necessary to implement a
computer security program, provide detailed implementation
procedures for securitcontrols, or give guidance for auditing the
security of specific systems. References of how-to-too books and
articles that give further information are also provided.