Advisory Memorandum on Web Browser Security Vulnerabilities

Short Description
Although the use of a Web browser puts the machine the browser is on at some …. Web browser security features. Nevertheless, several Java-based attacks …

Website: csrc.nist.gov | Filesize: 181kb

Content
UNCLASSIFIED
UNCLASSIFIED
NSTISSAM INFOSEC 3-00
August 2000
Advisory Memorandum
on
Web Browser Security
Vulnerabilities
THIS DOCUMENT PROVIDES MINIMUM STANDARDS. FURTHER
INFORMATION MAY BE REQUIRED BY YOUR DEPARTMENT OR AGENCY.UNCLASSIFIED
National Security Telecommunications and Information Systems Security Committee
NSTISSC Secretariat (I42). National Security Agency.9800 Savage Road STE 6716. Ft Meade MD 20755-6716
(410) 854-6805.UFAX: (410) 854-6814
nstissc@radium.ncsc.mil
UNCLASSIFIED
FOREWORD
1. Virtually all major Web browsers have significant security flaws,
making it possible for hackers to attack. These attacks run the gamut from
simple denial of service, through theft of files and personal information, to fullfledged
system penetration permitting the attacker to delete files, insert
viruses, change information, and leave hidden monitoring programs. But Web
browsers offer tremendous convenience and productivity advantages and their
use will only accelerate in both industry and government.
2. This NSTISSAM outlines some of the steps you can take to lower your
risk when browsing the Web and discusses the benefits and consequences of
the security measures.
3. Representatives of the National Security Telecommunications and
Information Systems Security Committee (NSTISSC) may obtain additional
copies of this instruction at the address listed below.
4. Comments and suggestions regarding this NSTISSAM may be directed
to the NSA Information Systems Security Policy and Doctrine Division,
telephone (410) 854-6815 or DSN 244-6815.
MICHAEL V….