Minnesota  State Archives

Trustworthy Information Systems Handbook: Section 11

Bibliography

Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

Minnesota: Guidelines and Reports

Office of the Secretary of State.

Digital Signature Program (including proposed "Minnesota State Agency Digital Signature Implementation and Use Standard"). 1999.

Office of the Legislative Auditor.

Click here for report titles and summaries of technology-related issues, 1996 to 2005.

Minnesota Department of Administration, Office of Enterprise Technology

The following standards are available at http://www.oet.state.mn.us.

Minnesota Recordkeeping Metadata Standard. IRM Standard 20, Version 1. May 2002.

Minnesota State Agency Digital Signature Implementation and Use Standard. IRM Standard 18, Version 1. November 1999.

Computerized Information Resources Security Standards for State Agencies. IRM Standard 16, Version 1. June 1998.

Management Standards for the Reproduction of Government Records Using Imaging Systems. IRM Standard 13, Version 1. February 1995.

Technical Standards for the Reproduction of Government Records Using Imaging Systems. IRM Standard 12, Version 1. February 1995.

Minnesota Historical Society, State Archives Department. Electronic Records Management Guidelines.

http://www.mnhs.org/preserve/records/electronicrecords/erguidelines.html


Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

Minnesota Laws

Rules of Evidence: Article 9 (Authentication and Identification—Rules 901 and 902). Statutes: Court Rules. 1998.

http://www.revisor.leg.state.mn.us/

Chapter 13 (Government Data Practices). Statutes. 1998.

http://www.revisor.leg.state.mn.us/stats/13/

Chapter 15.10 (Records Delivered to Department Heads). Statutes. 1998.

http://www.revisor.leg.state.mn.us/stats/15/10.html

Chapter 15.17 (Official Records). Statutes. 1998.

http://www.revisor.leg.state.mn.us/stats/15/17.html

Chapter 138.163(Preservation and Disposal of Public Records). Statutes. 1998.

http://www.revisor.leg.state.mn.us/stats/138/163.htm

Chapter 138.17 (Government Records; Administration). Statutes. 1998.

http://www.revisor.leg.state.mn.us/stats/138/17.html

Chapter 325K (Minnesota Electronic Authentication Act). Statutes. 1998.

http://www.revisor.leg.state.mn.us/stats/325K/

Chapter 325L (Uniform Electronic Transactions Act). Statutes. 2000.

https://www.revisor.leg.state.mn.us/statutes/?id=325L

Chapter 8130.7500, Subpart 8 (Department of Revenue, Sales and Use Taxes: Returns and Records—Electronic Data Processing Records). Rules. 1997.

http://www.revisor.leg.state.mn.us/arule/8130/7500.html

Chapter 8275 (Secretary of State: Electronic Authentication). Rules.1998.

http://www.revisor.leg.state.mn.us/arule/8275/


Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

Other States: Guidelines, Reports, and laws

Delaware. Delaware Public Archives. Model Guidelines for Electronic Records. 20 January 1998.

New York. New York State Archives and Records Administration. Guidelines for the Legal Acceptance of Public Records in an Emerging Electronic Environment. 1994.


Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

Federal Government: Guidelines, Reports, and Laws

U.S. Public Law 106-229. 106th Congress, 2nd Session, 30 June 2000. Electronic Signatures in Global and National Commerce Act.

http://thomas.loc.gov/

Commodity Futures Trading Commission. Recordkeeping. Proposed Rule (17 CFR Part 1) in Federal Register (5 June 1998) vol. 63, no. 108, 30668-30675.

http://www.gpoaccess.gov/nara/index.html

National Archives and Records Administration. Electronic Records Management. Code of Federal Regulations, Chapter 12, Title 36, Part 1234.

http://www.gpoaccess.gov/cfr/index.html

U.S Department of Commerce. Patent and Trademark Office. Checklist of Requirements for Electronic Records Management (ERM) Over the Life Cycle of Patent and Trademark Records. Prepared by Cohasset Associates, Inc., 26 February 1999.

U.S. Department of Commerce. Technology Administration. National Institute of Standards and Technology.

CS2: Protection Profile Guidance for Near-Term COTS, (Draft Version 0.5), and Rationale for CS2: Protection Profile Guidance for Near-Term COTS, (Draft Version 0.5), by Gary Stoneburner. 25 March 1999. Re-titled as, and superseded by, CSPP - Guidance for COTS Security Protection Profiles (Version 1.0, NISTIR 6462), January 2000.

An Introduction to Computer Security: The NIST Handbook. NIST Special Publication 800-12. October 1995.

http://csrc.nist.gov/publications/nistpubs/index.html

Generally Accepted Principles and Practices for Securing Information Technology Systems, by Marianne Swanson and Barbara Guttman. NIST Special Publication 800-14. September 1996.

http://csrc.nist.gov/publications/nistpubs/index.html

U.S. Department of Commerce. Technology Administration. National Institute of Standards and Technology, Federal Computer Security Program Managers' Forum Working Group. Guide for Developing Security Plans for Information Technology Systems, by Marianne Swanson. NIST Special Publication 800-18. December 1998.

http://csrc.nist.gov/publications/nistpubs/index.html

U.S. Department of Defense.

Design Criteria for Electronic Records Management Software. Prepared by the Assistant Secretary of Defense for Command, Control, Communications, and Intelligence. DoD 5015.2-STD. November 1997. Revised June 2002.

http://jitc.fhu.disa.mil/recmgt/standards.htm

Department of Defense Trusted Computer System Evaluation Criteria. DoD 5200.28-STD. December 1985.

http://www.fas.org/irp/nsa/rainbow/std001.htm

Password Management Guideline. CSC-STD-002-85. 12 April 1985.

http://www.fas.org/irp/nsa/rainbow/std002.htm

U.S. Department of Defense. National Computer Security Center.

A Guide to Understanding Audit in Trusted Systems. NCSC-TG-001. 1 June 1988.

http://www.fas.org/irp/nsa/rainbow/tg001.htm

A Guide to Understanding Configuration Management in Trusted Systems. NCSC-TG-006-88. 28 March 1988.

http://www.fas.org/irp/nsa/rainbow/tg006.htm

A Guide to Understanding Identification and Authentication in Trusted Systems. NCSC-TG-017. September 1991.

http://www.fas.org/irp/nsa/rainbow/tg017.htm

Trusted Network Interpretation of the TCSEC (TNI). NCSC-TG-005. 31 July 1987.

http://www.fas.org/irp/nsa/rainbow/tg005.htm

Trusted Product Evaluation Questionnaire. 2 May 1992.

http://www.fas.org/irp/nsa/rainbow/tg019-2.htm

Integrity in Automated Information Systems, by Terry Mayfield, J. Eric Roskos, Stephen R. Welke, and John M. Boone. C Technical Report 79-91. September 1991.

http://www.iwar.org.uk/comsec/resources/standards/rainbow/C-TR-79-91.htm

U.S. Department of Defense. National Security Agency. National Telecommunications and Automated Information Systems Security Committee. Advisory Memorandum on Office Automation Security Guidelines. NTISSAM COMPUSEC 1-87. 1987.

http://www.iwar.org.uk/comsec/resources/standards/rainbow/N-C-1-87.htm

U.S. Department of Energy. Records Considerations for Electronic Information: Guidelines for Individuals and Systems Administrators. Prepared by the Lockheed Martin Energy Systems Electronic Records Committee for the Oak Ridge National Laboratory. February 1996.

U.S. Department of Health and Human Services. Security and Electronic Signature Standards [as related to Health Insurance Portability and Accountability Act of 1996]. Proposed Rule (45 CFR Part 142) in Federal Register (12 August 1998) vol. 63, no. 155, 43241-43280.

http://www.gpoaccess.gov/nara/index.html

U.S. Department of Health and Human Services. Food and Drug Administration. Electronic Records; Electronic Signatures. Code of Federal Regulations, Chapter 1, Title 21, Part 11. Final Rule in Federal Register (20 March 1997) vol. 62, no. 54, 13430-13466.

http://www.gpoaccess.gov/nara/index.html

U.S. Department of Justice. National Criminal Background Check System Regulations. Proposed Rule (28 CFR Part 25) in Federal Register (4 June 1998) vol. 63, no. 107, 30430-30438.

http://www.gpoaccess.gov/nara/index.html

U.S. Department of Treasury. Customs Service. Recordkeeping Requirements. Code of Federal Regulations, Chapter 1, Title 19, Parts 19, 24, 111, 113, 143, 162, 163, 178, and 181. Final Rule in Federal Register (16 June 1998) vol. 63, no. 115, 32916-32955.

http://www.gpoaccess.gov/nara/index.html

U.S. Department of Treasury. Internal Revenue Service.

Revenue Procedure 98-25. 1998.

"Retention of Books and Records: Section 4—Electronic Storage System Requirements." Revenue Procedure 97-22. 1997.


Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

International Government: Guidelines, reports, and laws

Australia. Australian Archives (National Archives of Australia). Link to the National Archives Publication List by Topic. Resources include guidelines and reports.

http://www.naa.gov.au/records-management/publications/topic.aspx

Australia. Defence Signals Directorate.

Australian Communications—Electronic Security Instructions 33 (ACSI 33): Security Guidelines for Australian Government IT Systems. April 1998. Updates issues periodically.

http://www.dsd.gov.au/library/infosec/acsi33.html

Australian Communications—Electronic Security Instructions 38 (ACSI 38): Australian Government Standards for the Protection of Electronic Business Systems and Internet Delivery Mechanisms. 9 February 1999.

Great Britain. Public Record Office.

Management, Appraisal and Preservation of Electronic Records—Vol. I: Principles.1999.

http://www.nationalarchives.gov.uk/electronicrecords/advice/guidelines.htm

Management, Appraisal and Preservation of Electronic Records—Vol. II: Procedures. 1999.

http://www.nationalarchives.gov.uk/electronicrecords/advice/guidelines.htm


Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

National Organizations: Guidlines and Reports

American Bar Association, Internal Security Committee, Electronic Commerce and Information Technology Division, Section of Science and Technology. Digital Signature Guidelines: Legal Infrastructure for Certification Authorities and Secure Electronic Commerce. 1 August 1996.

http://www.abanet.org/scitech/ec/isc/dsgfree.html

Association for Information and Image Management.

The following reports are available for purchase at: http://www.aiim.org

Performance Guideline for the Legal Acceptance of Records Produced by Information Technology Systems—Part I: Performance Guideline for Admissibility of Records Produced by Information Technology Systems as Evidence. AIIM Report No. TR31-1992. 1992.

Performance Guideline for the Legal Acceptance of Records Produced by Information Technology Systems—Part II: Performance Guideline for the Acceptance by Government Agencies of Records Produced by Information Technology Systems. ANSI/AIIM Report No. TR31-1993. 1993.

Performance Guideline for the Legal Acceptance of Records Produced by Information Technology Systems—Part III: Implementation of the Performance Guideline for the Legal Acceptance of Records Produced by Information Technology Systems. ANSI/AIIM Report No. TR31-1994. 1994.

Performance Guideline for the Legal Acceptance of Records Produced by Information Technology Systems—Part IV: Model Act and Rule. ANSI/AIIM Report No. TR31-1994. 1994.

Information Systems Audit and Control Association and Foundation. COBIT: Control Objectives for Information and Related Technology. 1998.

http://www.isaca.org/cobit.htm

International Federation of Accountants, Information Technology Committee. International Information Technology Guideline: Managing Security of Information. January 1998.

 

Nuclear Information and Records Management Association.

The following reports were previously available at: http://nirma.org/default.aspx (Resources not found as of June 2009.)

Authentication of Records and Media (Report No. TG11-1998). 1998.

Electronic Records Protection and Restoration (Report No. TG21-1998). 1998.

Management of Electronic Records (Report No. TG15-1998). 1998.

Software Configuration Management and Quality Assurance (Report No. TG16-1998). 1998.


Minnesota: Guidelines and Reports | Minnesota: Laws | Other States | Federal Government
International Government | National Organizations | Electronic Records Projects and Studies

Electronic Records Projects and Studies

Center for Technology in Government (Albany, New York). Models for Action: Developing Practical Approaches to Electronic Records Management and Preservation. 1998.

https://www.ctg.albany.edu/publications/journals/models_for_action/models_for_action.pdf

Duranti, Luciana, Terry Eastwood, and Heather MacNeil. The Preservation of the Integrity of Electronic Records. 1997.

http://www.interpares.org/UBCProject/index.htm

Indiana University Archives. Indiana University Electronic Records Project, Phase II - 2000-2002: Final Report to the National Historical Publications and Records Commission (NHPRC). 2002.

http://www.indiana.edu/~libarch/ER/nhprcfinalreport.doc

University of Pittsburgh, School of Information Sciences. Functional Requirements for Evidence in Recordkeeping. 1996.

Appendices next

Go to Table of Contents

TIS Handbook last updated July 2002, Version 4.
Bibliography updated 27 April 2005.

Links updated June 30, 2010.