Page History

Versions Compared

Old Version 1

changes.mady.by.user Unknown User (endlecm)

Saved on Apr 11, 2019

compared with

New Version Current

changes.mady.by.user Unknown User (endlecm)

Saved on Apr 11, 2019

Key

This line was added.
This line was removed.
Formatting was changed.

Scrollbar

icons	false

Include Page

	LexEVS 6.5.0 Project Contract Information
	LexEVS 6.5.0 Project Contract Information

Panel

title	Contents of this Page

Table of Contents

minLevel	2

The purpose of this document is to document the security plan for the National Cancer Institute Center for Biomedical Informatics and Information Technology (NCI CBIIT) LexEVS Release 6.5.2.

Information Systems Security Plan

A list of the industry standard security controls expected in this product

HTTPS
Multiexcerpt include
MultiExcerptName ExitDisclaimer
nopanel true
PageWithExcerpt wikicontent:Exit Disclaimer to Include
REST security (if needed)
- Possible uses:
  - URI Resolver administration
  - CTS2 Development Framework administration
  - LexEVS REST secure ontology access/token transfer
RFC 2196
Multiexcerpt include
MultiExcerptName ExitDisclaimer
nopanel true
PageWithExcerpt wikicontent:Exit Disclaimer to Include
- Specifiically, section 3.1.2 Separation of Services
  Multiexcerpt include
  MultiExcerptName ExitDisclaimer
  nopanel true
  PageWithExcerpt wikicontent:Exit Disclaimer to Include
  - This architecture will allow services to be separated to those needing to be exposed externally and those that do not.
  - Services NOT to expose externally:
    - URI Resolver administration
    - CTS2 Development Framework administration

The components of the CBIIT technologies used for security controls

None

Any expected deviation from the standards