NIST releases two wireless security guides, requests comment

October 26, 2011

The National Institute of Standards and Technology (NIST) has issued for public review and comment two draft guides to securing wireless communication networks. NIST is requesting comments on the two publications—one on Bluetooth networks and one on wireless local area networks—by Nov. 10, 2011.

The draft Guide to Bluetooth Security (NIST Special Publication 800-121 Rev. 1) is a revision of the original guide, which was released in September 2008. The document describes the security capabilities of technologies based on Bluetooth, which is an open standard for short-range radio frequency communication, and gives to organizations on securing their devices effectively. Significant changes from the original SP 800-121 include an update to the vulnerability mitigation information for "Secure Simple Pairing," which helps protect against eavesdropping, and the introduction of Bluetooth version 3.0 High Speed and Bluetooth version 4.0 Low Energy security mechanisms and recommendations. Version 3.0 provides data rate improvement over previous versions of Bluetooth, while 4.0 concerns smaller, resource-constrained devices like heart rate monitors and other wearable medical sensor networks.

The draft Guidelines for Securing Wireless Local Area Networks (SP 800-153) is intended to provide organizations with recommendations for improving the security configuration and monitoring of their wireless local area networks (WLANs) and their devices connecting to those networks. SP 800-153's recommendations cover topics such as standardized WLAN security configurations, security assessments and continuous monitoring. SP 800-153 is an entirely new document that supplements and does not replace older NIST publications on WLAN , such as SP's 800-97 and 800-48.

Explore further: Wake-up call: Draft security pub looks at cell phones, PDAs

More information: The draft version of SP 800-153 is available at csrc.nist.gov/publications/drafts/800-153/Draft-SP800-153.pdf , and of SP 800-121 rev. 1 at csrc.nist.gov/publications/drafts/800-121r1/Draft-SP800-121_Rev1.pdf .

Related Stories

Wake-up call: Draft security pub looks at cell phones, PDAs

July 10, 2008

In recent years cell phones and PDAs—"Personal Digital Assistants"—have exploded in power, performance and features. They now often boast expanded memory, cameras, Global Positioning System receivers and the ability to ...

New publication offers security tips for WiMAX networks

October 7, 2009

Government agencies and other organizations planning to use WiMAX -- Worldwide Interoperability for Microwave Access—networks can get technical advice on improving the security of their systems from a draft computer security ...

Build safety into the very beginning of the computer system

April 29, 2011

A new publication from the National Institute of Standards and Technology (NIST) provides guidelines to secure the earliest stages of the computer boot process. Commonly known as the Basic Input/Output System (BIOS), this ...

Recommended for you

Netherlands bank customers can get vocal on payments

August 1, 2015

Are some people fed up with remembering and using passwords and PINs to make it though the day? Those who have had enough would prefer to do without them. For mobile tasks that involve banking, though, it is obvious that ...

Power grid forecasting tool reduces costly errors

July 30, 2015

Accurately forecasting future electricity needs is tricky, with sudden weather changes and other variables impacting projections minute by minute. Errors can have grave repercussions, from blackouts to high market costs. ...

Microsoft describes hard-to-mimic authentication gesture

August 1, 2015

Photos. Messages. Bank account codes. And so much more—sit on a person's mobile device, and the question is, how to secure them without having to depend on lengthy password codes of letters and numbers. Vendors promoting ...

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.