Login
Login

Committee on National Security Systems

{{Short description|US intergovernmental organization}}

{{Infobox Government agency

| agency_name = Committee on National Security Systems

| nativename = CNSS

| nativename_a =

| nativename_r =

| logo = CNSS Logo.svg

| logo_width = 150px

| logo_caption = Logo of the CNSS

| image =

| seal =

| seal_width =

| seal_caption =

| formed = 16 October 2001

| preceding1 = National Security Telecommunications and Information Systems Security Committee (NSTISSC)

| preceding2 = U.S. Communications Security Board (USCSB)

| dissolved =

| superseding =

| jurisdiction = United States

| headquarters = Fort Meade, Maryland

| employees =

| budget =

| chief1_name =

| chief1_position =

| chief2_name =

| chief2_position =

| chief3_name =

| chief3_position =

| chief4_name =

| chief4_position =

| chief5_name =

| chief5_position =

| chief6_name =

| chief6_position =

| chief7_name =

| chief7_position =

| chief8_name =

| chief8_position =

| chief9_name =

| chief9_position =

| parent_department =

| parent_agency = Intergovernmental, chaired by DoD

| child1_agency =

| child2_agency =

| website = [http://www.cnss.gov/ www.cnss.gov]

}}

The Committee on National Security Systems (CNSS) is a United States intergovernmental organization that sets policies for the security of the US security systems.{{Cite web |date=1969-01-01 |title=Committee on National Security Systems |url=https://www.hsdl.org/?abstract&did= |access-date=2021-09-04 |website=Homeland Security Digital Library |language=en}} The CIA triad (data confidentiality, data integrity, and data availability) are the three main security goals of CNSS.{{Cite web |title=Definition and Dimension of CNSS Model |url=https://desklib.com/blog/cnss-model/ |access-date=2023-06-08 |website=desklib.com |language=en}}

History

The Committee dates its establishment back to 1953, under the name of U.S. Communications Security Board (USCSB).{{sfn | Metheny | 2017 | p=218 | loc=Note 20}}

Under the name National Security Telecommunications and Information Systems Security Committee (NSTISSC) the committee was established by the National Security Directive 42, "National Policy for the Security of National Security Telecommunications and Information Systems", dated 5 July 1990. On October 16, 2001, President George W. Bush signed Executive Order 13231, the Critical Infrastructure Protection in the Information Age, re-designating NSTISSC as the Committee on National Security Systems.{{sfn | Metheny | 2017 | p=218 | loc=Note 20}}

Activities

The CNSS holds discussions of policy issues, sets national policy, directions, operational procedures, and guidance for the information systems operated by the U.S. Government, its contractors or agents that either contain classified information, involve intelligence activities, involve cryptographic activities related to national security, involve command and control of military forces, involve equipment that is an integral part of a weapon or weapons system(s) or are critical to the direct fulfillment of military or intelligence missions.

The Department of Defense chairs the committee. Membership consists of representatives from 21 U.S. Government Departments and Agencies with voting privileges, including the CIA, DIA, DOD, DOJ, FBI, NSA, and the National Security Council, and all United States Military Services. Members not on the voting committee include the DISA, NGA, NIST, and the NRO. The operating Agency for CNSS appears to be the National Security Agency, which serves as the primary contact for public inquiries.

Certification

The CNSS defines several standards, which include standards on training in IT security. Current certifications include:{{sfn|Schou|2003|p=308}}

  • NSTISSI-4015 National Training Standard for Systems Certifiers
  • CNSSI-4016 National Information Assurance Training Standard For Risk Analysts
  • NSTISSI-4011 National Training Standard for Information Systems Security (INFOSEC) Professionals
  • CNSSI-4012 National Information Assurance Training Standard for Senior Systems Managers
  • CNSSI-4013 National Information Assurance Training Standard For System Administrators
  • CNSSI-4014 Information Assurance Training Standard for Information Systems Security Officers

CNSS launched the National Information Assurance Certification and Accreditation Process (NIACAP) in 2000{{sfn | Metheny | 2017 | p=219}} (was cancelled in 2012).

References

{{reflist}}

Sources

  • {{cite book | last=Metheny | first=M. | title=Federal Cloud Computing: The Definitive Guide for Cloud Service Providers | publisher=Elsevier Science | year=2017 | isbn=978-0-12-809687-1 | chapter-url=https://books.google.com/books?id=9UPQDAAAQBAJ&pg=PA218 | access-date=2024-08-28 | pages=218-219 | chapter = Committee on National Security Systems (CNSS)}}
  • {{cite conference |last1=Schou |first1=C. |conference=4th Australian Information Warfare and IT Security Conference – Enhancing Trust |date=2003 |publisher=University of South Australia |location=Adelaide, Australia |title=Standards, Standards, Standards, Who has the Standards? | url = https://www.academia.edu/download/4733002/10.1.1.96.7578.pdf#page=311}}

External links

  • [http://www.cnss.gov/ Official Website]
  • [https://www.thodex.com/ Crypto Security News]
  • [https://securitycore.net/vulnerability-assessment/ Vulnerability Assessment]

Category:Computer security organizations

Category:United States government secrecy

Category:Independent agencies of the United States government

Category:Government agencies established in 2001

Category:2001 establishments in the United States