Accession Number:

ADA394182

Title:

Guidelines on Active Content and Mobile Code: Recommendations of the National Institute of Standards and Technology

Descriptive Note:

Corporate Author:

BOOZ-ALLEN AND HAMILTON INC MCLEAN VA

Personal Author(s):

Report Date:

2001-03-21

Pagination or Media Count:

46.0

Abstract:

The private and public sectors depend heavily upon IT systems to perform essential, mission-critical functions. As existing technology evolves and new technologies are introduced to provide improved capabilities and advanced features in systems, new technology-related vulnerabilities often arise. Organizations implementing and using advanced technologies, therefore, must be increasingly on guard. One such category of technologies is active content. Broadly speaking, active content refers to electronic documents that, unlike past character documents based on the American Standard Code for Information Interchange ASCII and related character sets, can carry out or trigger actions automatically without an individual directly or knowingly invoking the actions. Therefore, exploits based on vulnerabilities in active content technologies by their very nature can be particularly insidious. The following key guidelines are recommended to Federal departments and agencies for dealing with active content.

Subject Categories:

  • Information Science

Distribution Statement:

APPROVED FOR PUBLIC RELEASE