No edit summary |
(Adding categories) |
||
| (11 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| + | == Citation == |
||
| − | '''Citation:''' NIST, "Creating a Patch and Vulnerability Management Program," NIST Special Publication 800-40 Ver. 2 (Jan. 2006).[http://csrc.nist.gov/publications/nistpubs/800-40-Ver2/SP800-40v2.pdf] |
||
| + | |||
| + | [[National Institute of Standards and Technology]], Guide to Enterprise Patch Management |
||
| + | Technologies (Draft) ('''NIST Special Publication 800-40''') (Draft) (Rev. 3) (Sept. 2012) ([http://csrc.nist.gov/publications/drafts/800-40/draft-sp800-40rev3.pdf full-text]). |
||
== Overview == |
== Overview == |
||
| + | This publication is designed to assist organizations in understanding the basics of [[enterprise]] [[patch management]] [[technologies]]. It explains the importance of [[patch management]] and examines the challenges inherent in performing [[patch management]]. It provides an overview of [[enterprise]] [[patch management]] [[technologies]] and it also briefly discusses [[metric]]s for measuring the [[technologies]]' [[effectiveness]] and for comparing the relative importance of [[patch]]es. |
||
| − | '''NIST Special Publication 800-40''', Ver. 2 provides guidance for organizational [[security]] managers who are responsible for designing and implementing [[security]] [[patch management program|patch]] and [[vulnerability]] management programs and for testing the [[effective]]ness of the programs in reducing [[vulnerabilities]]. The guidance is also useful to system administrators and operations personnel who are responsible for applying and testing [[patch]]es and for deploying solutions to [[vulnerability]] problems. |
||
[[Category:Publication]] |
[[Category:Publication]] |
||
[[Category:Security]] |
[[Category:Security]] |
||
| + | [[Category:Software]] |
||
| + | [[Category:2012]] |
||
Latest revision as of 05:11, 23 September 2014
Citation[]
National Institute of Standards and Technology, Guide to Enterprise Patch Management Technologies (Draft) (NIST Special Publication 800-40) (Draft) (Rev. 3) (Sept. 2012) (full-text).
Overview[]
This publication is designed to assist organizations in understanding the basics of enterprise patch management technologies. It explains the importance of patch management and examines the challenges inherent in performing patch management. It provides an overview of enterprise patch management technologies and it also briefly discusses metrics for measuring the technologies' effectiveness and for comparing the relative importance of patches.