Standards 

The following is a list of standards and guidelines for your use as a basis of comparison in your agency’s technology decisions. You will also find some additional resources to further your research. Please note that some of the listed standards are promulgated and some are in draft form. If you have any questions regarding these standards or guidelines, please send a message to itpolicyteam@arkansas.gov.

Number Document/Topic Status Additional Resources
SS-70-001 Data and System Security Classification - PDF

Promulgated
5/15/2005
  Data Definitions - PDF    
DNS Standard - PDF
Promulgated 10/1/2012
  Electronic Signature Policy - PDF    
SS-70-011 Electronic Signature Standard - PDF
Digital Signage Instructions
   
SS-70-006 Encryption - PDF

DRAFT
SS-50-001

Machine Readable
Privacy Policy - P3P
- PDF

Promulgated
5/15/2005

Laws and Standards

Resources

SS-70-002 Password Management - PDF

Promulgated
2/14/2003
  • BitPipe - Password Management Vendor Reports
  • CobiT Control Objectives for Information and Related Technology
  • BitPipe - Password Management White Papers
  • SANS Institute - Policies
SS-70-007 Personnel Security - PDF
Promulgated
2/28/2004
SS-70-008 Physical and Logical Security - PDF
Promulgated
05/01/2006
 
  Physical Data Attribute Standards - PDF    
SS-70-009 Remote Access
DRAFT  
SS-70-005 Spyware Scanning - PDF
Promulgated
09/01/2006
 
SS-70-004

Virus Scanning - PDF

Promulgated
12/14/2003

Publications

Hoaxes, Scams, Urban Legends

Security Updates

SS-70-003 Warning Banner - PDF

Promulgated
12/14/2003
SS-70-010 Wireless Security - PDF
DRAFT   
   Web Filtering Content - DOCX
DRAFT  

Additional Resources