return home

Information Assurance Reference Library

A Guide to Writing the Security Features: User's Guide for Trusted Systems NCSC-TG-026
An Introduction to Computer Security: The NIST Handbook
(Many of the narratives in the IASO course were adapted from and inspired by this reference)
NIST SP 800-12
Army Information Management Army Pamphlet 25-1-1AR 25-1
Computer Securtiy Act of 1987 CSA 1987
Computer Security Technical Vulnerability Reporting Program DoDI 5215.2
Department of Defense Directive, Information Assurance DoDD 8500.1
Department of Defense Directive, Wireless Policy DoDD 8100-2p
Department of Defense Instruction, Information Assurance Implementation DoDI 8500.2
Department of The Army Information Security Program AR 380-5
DITSCAP Application Manual DODD 8510.1-M
Glossary of Computer Security Terms NCSC-TG-004
Guidelines for Writing Trusted Facility Manuals NCSC-TG-016
Information Assurance AR 25-2
Information Assurance Training and Certification Best Business Practice (BBP) IA BBP
Information Assurance Workforce Improvement Program DOD 8570.01
Information Security Program DoDD 5200.1-R
Information Systems Security Monitoring AR 380-53
Management of Federal Information Resources OMB Cir A-130
Risk Management Guide for Information Technology Systems NIST SP 800-30
Security Self-Assessment Guide for Information Technology Systems NIST SP 800-26
Technical Rationale Behind CSC-STD-003-85 CSC-STD-004-85

Information Systems Security-Related Training:
Introduction to DITSCAP (2-day resident course), INFOSEC-315 DISA IPMO
Vmail: 703.681.3173; DSN: 761.3173
Fax: 703.681.4719
U.S. Army IAVA Training Program
IAVA, STAT, and Webmaster Training
On-line web training course. registration/ password required
Various security courses
DSS Academy (formerly the DoD Security Institute (DODSI))

Other Security Sites:
IASTAR ATC - Army Training & Certification Tracking System
CERT Coordination Center
Web Guidance - DoD Memorandum Web Site Administration Policies and Procedures
W3C Web Security The World Wide Web Security FAQ

  • For questions in reference to online training (Cyber Awareness, Cyber Fundamentals, or Mandated Army IT User Agreement):
    Please allow 24-48 hours for a response.
  • Please Note Certificates cannot be generated if the "Verify Training" button is not pushed at the end of the Cyber Awareness training. A certificate cannot be generated without this.

  • Questions in reference to MTT training schedules and courses available (SEC+, CISSP, NMS) can be sent to:, Charmisse Morency