NIST updates Web server security guidelines

The National Institute of Standards and Technology has released the second draft of its guidelines for securing public Web servers. NIST published its Special Publication 800-44 Version 2, Guidelines on Securing Public Web Servers (PDF), on June 1.

The second draft, researched and published by the computer security division within NIST's Information Technology Laboratory, is intended to help government organizations install, configure and maintain secure public Web servers. It replaces NIST's first version of the guidelines, published in 2002.

The Computer Security Division of NIST's IT lab offers federal agencies resources for securing their computer systems and protecting sensitive unclassified data. Subjects covered in its latest recommendations on Web server security include operating system security, securing Web applications and content, network infrastructure security and secure Web server administration.

NIST will take comments on the current draft until July 6. Comments should be e-mailed to [email protected] and should reference "Comments SP 800-44" in the subject line.


  • Records management: Look beyond the NARA mandates

    Pandemic tests electronic records management

    Between the rush enable more virtual collaboration, stalled digitization of archived records and managing records that reside in datasets, records management executives are sorting through new challenges.

  • boy learning at home (Travelpixs/

    Tucson’s community wireless bridges the digital divide

    The city built cell sites at government-owned facilities such as fire departments and libraries that were already connected to Tucson’s existing fiber backbone.

Stay Connected