Additional Resources
A Framework for Secure Justice Information Sharing
This briefing presents an overview of the resultant Global Justice Information Sharing Initiative (Global) Security Working Group (GSWG)-proposed Framework for secure justice information sharing, and describes the ongoing efforts to recommend mechanisms and prepare products that support its incorporation into justice information sharing applications.
Information Security in Integrated Justice Applications: An Introductory Guide for the Practitioner
This guide provides an overview for criminal justice practitioners on the security issues they face when planning, procuring, and implementing integrated justice systems. It discusses important security technologies, such as encryption, public key infrastructure, biometrics, firewalls, and virtual private networks, and security standards for an integrated justice environment.
Making the Web Available While Protecting Assets
Providing information security for Web services presents the challenge of balancing services with security. To address Web security challenges, Ms._Carlynn Thompson, U.S. Department of Defense, Defense Technical Information Center, has developed an educational security briefing—Making the Web Available While Protecting Assets. This briefing contains best practices for Web security policies, multilevel security architectures, risk mitigation, and access control. In addition, a case study in the automation of password management using Lightweight Data Access Protocol (LDAP) is provided for educational purposes. This briefing demonstrates that security for Web services is critical and provides a strong case for risk management instead of risk avoidance.
http://it.ojp.gov/...The Justice Standards Clearinghouse for Information Sharing (JSC or Clearinghouse) is a repository of standards and specifications that help practitioners increase the nation's safety. This dynamic Web site was developed as part of the U.S. Department of Justice interoperability effort to facilitate information sharing. The Web site captures existing standards and alerts users of new or emerging standards. It also provides comment areas for users to offer support for the listed standards.
The state of Arizona’s Target Security Architecture substantiates the fundamental significance of security to the state by delineating a set of processes, recommended standards, and best practices that will securely and economically protect the state’s business functions, including public access to appropriate information and resources, while maintaining compliance with the legal requirements established by existing state and federal statutes pertaining to confidentiality, privacy, accessibility, availability, and integrity. Target Security Architecture provides the framework and foundation to enable secure communication, protect agency business processes and information resources, and ensure that new methods for delivering service are secure.
Missouri Security GuidelinesThis document serves as an example of the Information Technology Guidelines for information sensitivity levels and access controls.
The Missouri Office of the State Courts Administrator (OSCA) provides these Data Security Guidelines to any user of the