NIST Special Publication 800-83

Overview

Below is an outline for NIST Special Publication 800-83 (Revision 1) Guide to Malware Incident Prevention and Handling for Desktops and Laptops. If you’re a member, then you can log into the Library and view it in your browser using the email address you signed up with. PS. Only members can successfully log in.

  • Click HERE to log into the library (Members only).
  • Folder: Books and Guides > Security Docs

If you are having issues logging in, please check the following help guide, HERE.

 

Outline

Executive Summary
Introduction
Purpose and Scope
Audience
Document Structure

Understanding Malware Threats
Forms of Malware
Attacker Tools
The Nature of Todays Malware

Malware Incident Prevention
Policy
Awareness
Vulnerability Mitigation
Threat Mitigation
Antivirus Software
Intrusion Prevention Systems
Firewalls
Content Filtering/Inspection
Application Whitelisting
Defensive Architecture
BIOS Protection
Sandboxing
Browser Separation
Segregation Through Virtualization

Malware Incident Response
Preparation
Building and Maintaining Malware-Related Skills
Facilitating Communication and Coordination
Acquiring Tools and Resources
Detection and Analysis
Identifying Malware Incident Characteristics
Identifying Infected Hosts
Prioritizing Incident Response
Malware Analysis
Containment
Containment Through User Participation
Containment Through Automated Detection
Containment Through Disabling Services
Containment Through Disabling Connectivity
Containment Recommendations
Eradication
Recovery
Lessons Learned

Appendix A Glossary
Appendix B Acronyms and Abbreviations
Appendix C Resources
Figure 4-1 Incident Response Life Cycle

 

-----

Next steps:

This article was contributed by Jason Jacobs from Guyana. Jason is a member of the Caribbean CSPA. 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.