Академический Документы
Профессиональный Документы
Культура Документы
If you are unsure whether there is an existing standard that addresses your request, perform a search in this PDF for the product or technology. This
searches the entire KITS library. You can search by any word (you might find an iPad by searching by iPad, Apple, or mobile).
EAS EAS Category Name Standard KITS Category KITS Domain > Area > KITS Description Approved Products Date
Code Code Category
1200 High Volume Scanners – Capable of Scanning resolutions I01.004.402 Platform > Peripheral > Inputs are the signals or data received by the • Canon Effective: 7/1/1997
Digital Imaging between 300 & 9600 depending on the Computer Input Device system, and outputs are the signals or data sent • Fujitsu
application. from it. For the purposes of the IRM, computer • Hewlett Packard Revised: 6/17/2015
input devices are those that provide data to the • Kodak
Use at least 256 levels of grey or 48 bit machine/application combination for further See information on the scanning Reviewed: 6/17/2015
color. processing or for manipulation by users through service offered by the Kentucky
the human-computer interface devices. Department of Libraries and
Compliance with CCITT Group III or IV. Archives.
1610 Multifunction Devices (MFD) Minimum acceptable configuration: I01.004.403 Platform > Peripheral > Inputs are the signals or data received by the Xerox MPS Effective: 12/20/1999
• TCP/IP Computer Output Device system, and outputs are the signals or data sent www.ky-mps.com
• Ethernet from it. For the purposes of the IRM, computer Revised: 6/17/2015
• SNMP capable output devices are those that provide data from Also see information on the
• Must support Postscript Level 2 and the machine/application combination to other volume printing services offered Reviewed: 6/17/2015
include PCL Level 5 or higher support. machines or to the user for asynchronous by the
• Fax Modem - 56 Kbps consumption. Kentucky Transportation Cabinet.
• Color scan
• Laser
• Secure Print
• Duplex
2030 Freeware Freeware is defined as “computer B10.813.327 General Government > Enterprise Licenses and Software includes License Agencies desiring to utilize Effective: 9/16/2009
software that is available for use at no Support delivery of state Management and Software Distribution; it Freeware products that are not
cost or for an optional fee. Freeware is services > Enterprise supports the purchase, upgrade and tracking of listed as approved enterprise Revised: 4/18/2019
generally proprietary (or closed source Licenses and Software legal usage contracts for system software and standards must submit an
code) software available at zero price. applications and supports the propagation, Exception request for Reviewed: 4/18/2019
The author usually installation and upgrade of written computer consideration through the
restricts one or more rights to copy, programs, applications and components. established process. Approved
distribute, and make derivative works freeware products (if any) are
of the software.” (Wikipedia). listed within each specific
One of the driving forces behind the domain category. Freeware
utilization of freeware is an expectation software (including additional
of significant cost savings as opposed to features) in these categories
a closed source or vendor-owned needs to be evaluated for
software solution. However, freeware adware, spyware, or malware
lacks guaranteed long-term support before installation.
from a software vendor. Because the
source code is also not usually open to
review or modification, the opportunity
exists for embedded malicious code to
allow unacceptable risks to the overall
security of the Commonwealth
infrastructure.
2100 Operating System (O/S) – 32-bit or 64-bit operating system with I01.002.203 Platform > Operating For personal computers, operating systems are • Windows 10 Enterprise Effective: 7/1/1997
Desktop and Laptop / graphical user interface for Intel System > Personal generally tailored to the needs of users on
Notebook processor compatible platform. Computer standalone machines that may or may not connect • Microsoft Windows 8.1 Revised: 1/27/2017
to a network, and are generally not servers of Enterprise - Windows 8.1 (32 bit
information to large numbers of other machines. and 64 bit) is approved as a Reviewed: 1/27/2017
standard product. Agencies must
test existing applications
thoroughly before migrating to
Windows 8.1. Hardware must
meet all requirements
• Microsoft Windows 7
Enterprise - Windows 7 SP1 (32
bit and 64 bit) is approved as a
standard product. Agencies must
test existing applications
thoroughly before migrating to
Windows 7 SP1. Hardware must
meet all requirements.
• Oracle Solaris
• UNIX
2110 Operating System – Server For zSeries enterprise servers: POSIX I01.002.202 Platform > Operating A midrange computer operating system is, in • IBM AIX 6.1 and newer Effective: 7/1/1997
compliant 64-bit operating system. System > Server – simplest terms, a collection of programs that IBM AIX 5.3 moved to EOS (End
For RISC platforms: POSIX compliant 64- Midrange manage a computer system's internal workings - its of Support) April, Revised: 1/14/2019
bit operating system. memory, processors, devices, and file system. 2012. Any remaining customer
For Intel platforms: 32-bit or 64-bit Midrange computers are almost universally known systems on 5.2 are charged for Reviewed: 1/14/2019
operating system. as servers to recognize that they often "serve" extended support.
applications to end users at "client" computers,
that they use a client/server computing model. • IBM z/OS
• Oracle Solaris
• UNIX
2255 Barcode Reader Software Software to read various types of A02.028.KY004 Application Components Software used for miscellaneous productivity and • Orca Scan - Bulk Barcode Effective: 11/2/2016
barcodes > Productivity > utility tasks. Scanner app for iPhone.
Miscellaneous Revised: 12/21/2016
Productivity Tools and
Utility software Reviewed: 12/21/2016
2320 Strategic Planning / Decision Software that support strategic A02.020.203 Application Components Software that supports business or organizational • Decision Lens Effective: 7/5/2018
Support Software planning and decsion making. > Analysis, Reporting and decision-making activities. Supports the
Statistics > Decision management, operations, and planning levels of an Revised: 7/5/2018
Support organization and helps to make decisions, which
may be rapidly changing and not easily specified in Reviewed: 7/5/2018
advance.
2340 Electronic Forms Various trade and industry associations A02.023.263 Application Components Software that supports the creation, modification, • OpenText Exstream (formerly Effective: 3/5/1999
provide guidelines for the development > Document and Content and usage of physical or electronic documents used known as HP Exstream).
and design of forms; however no de Management > Forms to capture information within the business cycle. • Nintex DocGen for Salesforce Revised: 6/24/2019
facto standards exist for electronic Management (formerly Drawloop).
forms. Standards do exist for the • GemBox.Document Reviewed: 6/24/2019
interface with other applications and
these must be followed:
• compliant for links to approved
databases
• MAPI compliant for use with
Microsoft Exchange messaging system
• TCP/IP compliant for Internet
distribution
• Microsoft Internet Explorer, Mozilla
Firefox and Google Chrome compliant
2500 Office Suite - Desktop and Supported by the approved operating A02.028.KY001 Application Components Software suite used for word processing, • Microsoft Office: Effective: 7/1/1997
Notebook / Laptop systems for desktop and notebook > Productivity > Office spreadsheet, presentation etc. This category is for For documents that interact
computers. Suite application components that performs multiple with eMARS Advantage Financial Revised: 6/28/2016
Graphical User Interface functionality functions. and Procurement, Office 2013,
and compatibility among all tools in the 2010 or 2007 is required. Reviewed: 6/28/2016
office suite. Integrated import and - 2016 version. Approved for
export support. use with Office 365.
- 2013 version. Extended
support slated to end on
04/11/2023.
- 2010 version. Extended
support slated to end on
10/13/2020.
- 2007 version: Extended
support slated to end on
10/10/2017.
2515 Financial Audit Management A01.004.023 System > Financial Software used to track and manage financial audits. • ACL Analytics Effective: 10/25/2017
Software Management > Financial
Audit Revised: 10/25/2017
Reviewed: 10/25/2017
2520 Procurement Software A01.001.002 System > Acquisition Software used in the acquisition of goods or • SpendMap Effective: 7/28/2017
Management > services and management of the contracts.
Procurement Revised: 7/28/2017
Reviewed: 7/28/2017
2540 Facilities Management Software that supports facilities A01.010.060 System > Property and Software that supports facilities management • ARCHIBUS Effective: 2/19/2018
Systems management including the Asset Management > including the maintenance, administration, • FMWorks
maintenance, administration, Facilities certification, and operation of office buildings that Revised: 2/19/2018
certification, and operation of buildings are possessions of the government.
that are possessions of the Reviewed: 2/19/2018
Commonwealth government.
Server Software:
• Avaya Unified Messaging:
CallPilot
• Microsoft Exchange Server
2610 Fax Software Client/server fax software fully A02.030.KY004 Application Components Software used for sending Fax from Outlook • Avaya Unified Messaging: Effective: 7/1/1997
integrated with Microsoft Exchange and > Unified (Exchange) Email. CallPilot
Outlook client software. Communications and • eCopy (Nuance) Revised: 6/30/2017
Collaboration > Fax • Fax2Mail
Software • RightFax (OpenText) - for Reviewed: 6/30/2017
integration with Healthcare
software
2650 FTP Client and Secure FTP Any FTP of classified data must be A03.040.011 Interface > Application Standard network protocol used to transfer files • Cygwin Effective: 11/3/2009
Client Software performed utilizing either ftps or sftp. Interface > FTP from one host to another host over a TCP-based • FileZilla
Software for use as Client only, Server network, such as the Internet. File Transfer • FireFTP Revised: 2/24/2017
use requires an Exception request. Protocol (FTP) is built on a client-server • PuTTY
Clients need to be FIPS compliant for architecture and uses separate control and data • WS_FTP (Ipswitch) Reviewed: 2/24/2017
Secure FTP options. connections between the client and server. For IRS Secure Data Transfer
See also the category for Data • Axway Secure Client
Classification. • SecureCRT
2680 Emergency Notification Software that enables designated A01.003.016 System > Emergency Software that enables designated individuals to • Rave Panic Button app Effective: 3/7/2018
Software individuals to send out emergency Management > communicate critical information to many • Rave Alert Mass Notification
notification information to emergency Emergency Notification individuals across multiple devices. System Revised: 3/7/2018
responders, management and
individuals across multiple devices / Reviewed: 3/7/2018
channels.
2720 Advanced Drawing / A02.028.330 Application Components Software used to create or edit a graphical object. • Adobe Creative Suite Effective: 7/1/1997
Illustration / Diagramming > Productivity > Drawing • CorelDraw
• Microsoft Visio for Revised: 1/19/2011
Diagramming
Reviewed: 6/17/2015
Reviewed: 3/26/2019
2750 Multimedia Software A02.031.390 Application Components Software to manage, develop and manipulate • Microsoft Windows Media Effective: 6/13/2016
> Visualization > content from a combination of different content Player
Multimedia forms such as text, audio, still images, animation, • VLC Media Player Revised: 9/21/2017
video, or interactivity. • Prezi
Reviewed: 9/21/2017
2760 Biosciences Software A02.028.KY005 Application Components Software used for biosciences and bioinformatics • BioNumerics Effective: 6/14/2017
> Productivity > tasks.
Biosciences Software Revised: 6/14/2017
Reviewed: 6/14/2017
2770 Law & Justice Software Software used in the Law & Justice line A01.008.KY001 System > Legal > Law & Software used for information management in the • Leica Geosystem Incident Effective: 3/1/2018
of business Justice Information Law & Justice business area Mapping Suite
Management • PowerDMS - Approved for Revised: 5/21/2019
DOCJT use
Reviewed: 5/21/2019
For EDI:
• EDI Notepad v8
Reference Materials
Management Software
• Zotero - Open Source tool to
manage bibliographic data and
research materials
2800 Geographic Information Compatible with the approved server A02.024.385 Application Components Supports the application of statistical analysis and ArcGIS Server (Server-based GIS), Effective: 7/1/1997
Systems (GIS) – Server operating systems. > Geospatial Information other informational techniques to geographically and ArcSDE (Enterprise-class
Software > Geospatial Data based data. Geospatial Storage Environment) Revised: 6/30/2017
Analysis and its ancillary modules for the
Windows Server Environment, Reviewed: 6/30/2017
from ESRI.
2850 Imaging Solution - OCR/ICR OCR software offered by vendors on A02.023.260 Application Components Software that supports the document scanning and OmniPage for standalone OCR. Effective: 7/1/1997
Software price contract. > Document and Content the interpretation of images into text. OCR software supplied with
Management > approved multifunction products Revised: 6/17/2015
Document Imaging and is permitted.
OCR Reviewed: 6/17/2015
2870 Imaging Solution - Control Imaging control software offered by A02.023.260 Application Components Software that supports the document scanning and • FileNet Effective: 7/1/1997
Software for Imaging vendors on price contract. > Document and Content the interpretation of images into text. • KnowledgeLake
Management > Revised: 3/20/2009
Document Imaging and
OCR Reviewed: 6/17/2015
2910 Content Management Enterprise content management (ECM) A02.023.262 Application Components Software used to track, store and retrieve • OnBase by Hyland Software Effective: 11/30/2017
Software solution that provides > Document and Content electronic documents and/or images of paper • OpenText ApplicationXtender
document/content organization and Management > documents. It is usually capable of keeping track of (permitted only for DOCJT use to Revised: 11/13/2019
management (import, route, archive), Document Management the different versions created by different users maintain existing content
business process management System (history tracking). management solution) Reviewed: 11/13/2019
(automation, reporting, auditing), and
records management. Product to
provide web-based, mobile device and
thick client access.
2930 E-Learning Software E-learning software capable of A01.007.042 System > Human Software that supports the design, development, • SumTotal Learn for corporate Effective: 4/7/2006
producing rich e-learning content, able Resource Management > and implementation of a comprehensive employee and academic e-learning
to access and integrate content from a Education / Training development and training approach to ensure that requirements (eLMS). Revised: 9/12/2018
diverse range of sources used in agency employees have the right competencies. • Blackboard Academic Suite
commonwealth e-learning applications, from Blackboard, Inc. for legacy Reviewed: 9/12/2018
capable of supporting student and academic and corporate e-
instructor collaboration, and capable of learning requirements (which
efficiently delivering content across the includes Elluminate).
Internet. • Articulate eLearning Software
• PassAssured Pharmacy Tech
Software
• Adobe Presenter
• TestOut (online labs)
• WIN Career Readiness System
2950 Server Virtualization Software I01.002.202 Platform > Operating A midrange computer operating system is, in For the Wintel server Effective: 6/1/2006
System > Server – simplest terms, a collection of programs that environment:
Midrange manage a computer system's internal workings - its • Microsoft Windows Server 2012 Revised: 1/7/2016
memory, processors, devices, and file system. • Microsoft Windows Server
Midrange computers are almost universally known 2008 R2 Extended support slated Reviewed: 1/7/2016
as servers to recognize that they often "serve" to end 7/9/2018.
applications to end users at "client" computers, • Microsoft Windows Server
that they use a client/server computing model. 2008 R2 Virtualization with
Hyper-V. Extended support
slated to end 7/9/2018.
• Microsoft Virtual Server 2005
R2 SP1
• VMware from EMC Corp.
2960 Business Rules Management A02.027.312 Application Components Software used to define, deploy, execute, monitor • Corticon Business Rules Server Effective: 10/26/2016
Software > Process Automation and maintain the variety and complexity of • Corticon Business Rules Studio
and Management > decision logic that is used by operational systems Revised: 10/26/2016
Business Rule within an organization or enterprise. This logic, also
Management referred to as business rules, includes policies, Reviewed: 10/26/2016
requirements, and conditional statements that are
used to determine the tactical actions that take
place in applications and systems.
3100 Cable Plant Category 6, unshielded twisted pair I02.003.302 Network > Infrastructure Transmission medium is the material and/or Systimax products with Corning Effective: 7/1/1997
(UTP) copper cable up to a maximum of > Transmission Medium technology that carries signal from one location to fiber:
295-feet; OR 8.3/125 micron single another. Systimax products with Corning Revised: 12/1/2008
mode fiber cable; OR 50/125 micron fiber:
multimode fiber optic cable • Category 6, unshielded twisted Reviewed: 6/17/2015
LC connectors pair (UTP) copper cable;
• OR 8.3/125 Single mode fiber
cable;
• OR 50/125 Multimode fiber
optic cable.
3200 Network Protocols TCP/IP - the only protocol supported by I02.004.409 Network > Transmission Transmission Protocol is a category that allows Effective: 7/1/1997
the Commonwealth Office of Type > Transmission grouping and identification of various transmission
Technology after December 31, 1998. Protocol standards, at a basic level in the OSI stack. Revised: 12/1/2008
For details, see the Agency Contact
Memo at Agency Contact Memo 9707- Reviewed: 6/17/2015
01 Ethernet - LAN topology
3300 Network Hardware • SNMP compliant I02.003.301 Network > Infrastructure Specifically for Networks, Hardware and Software Routers/Switches: Effective: 7/1/1997
Components: Routers, Hubs, • Modems: 56 Kbps v.92, International > Hardware and Software refers to many different kinds of devices and their • Avaya Networks
Remote Access, CSU/DSU, Telecommunications Union (ITU) data firmware. These devices provide many things Revised: 6/17/2015
NICS, Modems transmission standard including routing, security, etc. The software Wireless Data Networking:
• Ethernet NIC cards at included here is the firmware and/or Operating • Avaya Networks Reviewed: 6/17/2015
100Mbps/1Gps/10Gps System (OS) associated with specific network Virtual Private Networks:
• Wireless LAN installations must devices. • Avaya Networks
adhere to Enterprise IT Policy CIO-078 • NetMotion
(Wireless LAN Policy).
Load Balancing:
• F5 Networks
3450 Desktop Video ITU-T Standards supported: I02.004.405 Network > Transmission Videoconferencing is the conduct of a Cisco TelePresence (formerly Effective: 7/1/1997
Conferencing • G.711, G.722, G.728, H221, H261, Type > Video videoconference (also known as a video Tandberg):
H263 Conferencing conference or video teleconference) by a set of • Movi Revised: 6/17/2015
Video Standards and Protocols, telecommunication technologies which allow two Microsoft Lync
Algorithms and resolutions (pixels x or more locations to communicate by simultaneous - 2010 Version: Mainstream Reviewed: 6/17/2015
lines): two-way video and audio transmissions. It has also support slated to end 4/12/2016;
• T.120 standard for data collaboration been called 'visual collaboration' and is a type of Extended support slated to end
Video Decoding: groupware. 4/13/2021.
• up to 30 fps (frames per second) Office Communications Server
Video Encoding: (OCS) 2007 Mainstream support
• up to 22 fps slated to end 1/8/2013;
Interfaces: Extended support slated to end
• ISDN or IP (H.323 or SIP) 1/9/2018.
3505 Network Services – eMARS ePay (via the Link-to-Gov A01.004.021 System > Financial Software that supports collections and receivables, All approved web browser Effective: 6/1/1999
Electronic Commerce and contract) is the approved enterprise Management > Accounts including deposits, fund transfers, and receipts for products that support SSL
Payments electronic commerce facility for credit Receivable sales or service. encryption Revised: 6/17/2015
card payments via the internet. This full
service facility includes account Reviewed: 6/17/2015
creation, merchant bank services,
secure transactions, processing of
credit card payments, authorization and
settlement. Agency Contact Memo
9903-03 describes the pilot, contract
and the e-commerce workflow.
• Google Chrome
- For maximum security, and to
take advantage of advanced
client software and web site
functions and features, the latest
browser release should be
installed and used. Selecting the
setting to automatically install
updates is recommended.
3550 Network Services – Storage I01.005.503 Platform > Virtualization Storage virtualization applies virtualization • EMC Effective: 12/20/1999
Area Networks > Storage concepts to enable better functionality and more • HP
advanced features within the storage system. • IBM Revised: 1/28/2016
Storage systems use special hardware and software • Netapp
along with disk drives in order to provide very fast • EMC Xtremio - SSD Storage Reviewed: 4/8/2016
and reliable storage for computing and data array
processing. • Pure Storage - SSD Storage
array
3650 Content Delivery Network Support forward and reverse proxy of I01.003.301 Platform > For the purposes of the IRM, a Network Interface • Network Appliance Effective: 10/1/2003
the following IP protocols: Communications Device is a broad term that includes devices that • Microsoft Forefront Threat
• HTTP Hardware > Network serve as a demarcation point between the carrier's Management Gateway (formerly Revised: 1/19/2011
• FTP over HTTP Interface Device local loop and the customer's on-premises wiring, Microsoft Internet Security and
• FTP over TCP where the data wires end and a customer's Acceleration (ISA) Server) – Reviewed: 6/17/2015
• FTPS (for mainframe file transfer) premise wiring starts, and network interface replaces Microsoft Proxy Server.
• HTTPS (secure transport) controllers (also known as a network interface A software-based solution that
• NNTP card, network adapter, LAN adapter and by similar runs on approved Microsoft
• MMS terms) which may be internal or external to a piece server OS platforms only.
• TSPard of computer hardware.
• ICAP
Support for a variety of streaming
media formats including MMS
(Microsoft Windows Media) and RTSP
(RealNetworks Media streaming)
Authentication using Active Directory
Flexibility that offers server-based or
appliance solutions
4030 Geographical Information The ESRI Shapefile is a popular A02.024.380 Application Components Software that supports the creation of maps. The ArcGIS suite of products Effective: 7/1/1997
Systems – Shapefile geospatial vector data format for > Geospatial Information which includes Desktop GIS,
geographic information systems > Cartography Server GIS and Mobile GIS and Revised: 6/17/2015
software. An ESRI shapefile consists of a Online GIS components.
main file, an index file, and a dBASE Windows 7 Professional 64-bit is Reviewed: 6/17/2015
table. The main file is a direct access, the recommended desktop
variable-record-length file in which platform as identified in the
each record describes a shape with a Kentucky Information
list of its vertices. In the index file, each Technology Standards Category
record contains the offset of the for Geographic Information
corresponding main file record from the Systems (GIS) - Desktop.
beginning of the main file. The dBASE
table contains feature attributes with
one record per feature. The one-to-one
relationship between geometry and
attributes is based on record number.
Attribute records in the dBASE file must
be in the same order as records in the
main file.
Approved Standard(s):
• Spatial Data Transfer Standard (SDTS),
known FIPS 173 for exchange of data
created by GIS
- Federal Geographic Data Committee
(FGDC) Metadata Standard, Sections 1
and 7
Reviewed: 10/26/2016
5120 Encrypted Flash Drive An encrypted flash drive is required by I01.001.107 Platform > Hardware > Removable storage media is any type of storage Any product that utilizes (FIPS) Effective: 2/4/2010
CIO-092 when it will contain data Removable Storage device that can be removed from a computer while 140-2 approved algorithms as
defined as sensitive or confidential Media the system is running. outlined in National Institute of Revised: 6/17/2015
according to the Kentucky Data Standards and Technology (NIST)
Classification Matrix. The encryption 800-57, part 3, Revision 1 for Reviewed: 6/17/2015
will use Federal Information Processing encrypting sensitive and
Standard (FIPS) 140-2 approved confidential data.
algorithms as outlined in National
Institute of Standards and Technology
(NIST) 800-57, part 3, Revision 1 for
encrypting sensitive and confidential
data.
5400 Authentication and A02.029.340 Application Components Software that supports obtaining information For generating Soft tokens: Effective: 10/26/2016
Authorization > Security Controls > about parties attempting to log on to a system or • Symantec VIP Access
Authentication and application for security purposes and the validation Revised: 10/26/2016
Authorization of those users.
Reviewed: 10/26/2016
5530 Virus Scanning • All desktops, laptops and servers shall A02.029.343 Application Components Software used to prevent, detect, and remove self- Windows Server OS: Effective: 7/1/1997
have antivirus/malware protection > Security Controls > replicating programs that run and spread by • McAfee Endpoint Protection –
installed Virus Protection modifying other programs or files. Advanced Suite Revised: 2/28/2018
• All systems shall undergo at a • OPSWAT Metadefender
minimum a monthly full system scan Reviewed: 2/28/2018
for viruses and malware Windows Desktop OS:
• Where possible, portable devices shall • McAfee Total Protection for
also have antivirus protection Secure Business
• Antivrus/anti-malware shall be
centrally managed with ongoing Linux OS:
updates and reports • McAfee VirusScan Enterprise
• End users shall not be able to disable for Linux
the antvirus/anti-malware software on
their systems Microsoft Exchange:
• Scans should be schedued to occur • McAfee GroupShield for
automatically Microsoft Exchange (included in
McAfee Security for Email
Servers and
Microsoft Sharepoint:
• McAfee Security for Microsoft
Sharepoint
NetWare:
• McAfee Endpoint Protection –
Advanced Suite
5550 Web Filtering • Must be able to analyze domain name A02.029.343 Application Components Software used to prevent, detect, and remove self- • CyBlock (Wavecrest) Effective: 1/19/2011
• Must be able to break down and > Security Controls > replicating programs that run and spread by • McAfee Secure Web Gateway
analyze web traffic to accurately Virus Protection modifying other programs or files. Revised: 6/17/2015
pinpoint portions of a web page which
should not be allowed into the internal Reviewed: 6/17/2015
network
• Must be able to block based on contet
• Must be able to be centrally managed
5710 Desktop / Laptop Firewall • All state-owned laptop computers S03.002.003 Controls > Control The security controls (i.e., safeguards or The current approved and Effective: 12/5/2003
Software must have desktop/laptop firewall Categories > Technical countermeasures) for an information system that supported enterprise standards
software installed on them. are primarily implemented and executed by the for individual computers Revised: 1/19/2011
• All VPN-connected and dial-up information system through mechanisms connecting to the
connected workstations that remotely contained in the hardware, software, or firmware Commonwealth’s Intranet are: Reviewed: 6/17/2015
connect to the state’s network must components of the system. See FIPS 200. • McAfee HIPS
have desktop/laptop firewall software • Microsoft Windows Firewall
installed on them. • Symantec - Norton Personal
Firewall
• Zone Labs: Zone Alarm (free for
home use); Zone Alarm Plus;
Zone Alarm Pro; Zone Labs'
enterprise solution includes Zone
Labs Integrity, Zone Labs
Integrity Desktop, and Integrity
Desktop Manager (simple
deployment tool).
6540 Inventory and Distribution Compatible with existing network A01.012.083 System > Systems Software that supports distribution of software, • System Center Configuration Effective: 7/1/1997
protocols, server OS and desktop Management > Software propagation, installation and upgrade of written Manager
computer OS. Distribution computer programs, applications and components. Revised: 6/17/2015
Reviewed: 6/17/2015
6600 Mobile Device Management A01.012.KY001 System > Systems Solution that provides the ability to enroll, track, • Microsoft Intune Effective: 3/8/2017
Management > Mobile configure and update mobile devices in an
Device Management enterprise environment. Security policies and Revised: 3/8/2017
compliance can be enforced and secure mobile
access to corporate resources can be provided. Reviewed: 3/8/2017
7360 Electronic Commerce – ISO (International Organization for I01.004.402 Platform > Peripheral > Inputs are the signals or data received by the Effective: 7/1/1997
Magnetic Stripe Card and Standardization) approved standard for Computer Input Device system, and outputs are the signals or data sent
Reader encoding magnetic stripe data is from it. For the purposes of the IRM, computer Revised: 11/10/2000
required to interface with standard input devices are those that provide data to the
readers and the bankcard network for machine/application combination for further Reviewed: 6/17/2015
online transaction processing. processing or for manipulation by users through
ISO compliant stripe card readers are the human-computer interface devices.
required.
7400 PBX – Telephone Public The Commonwealth of Kentucky has I01.003.KY003 Platform > A PBX (Private Branch Exchange) is a telephone Approved Avaya products are: Effective: 7/1/1997
Exchange adopted a standard of two Communications system within an enterprise that switches calls • Business Communications
manufacturers of Telephony PBX Hardware > PBX (Private between enterprise users on local lines while Manager (BCM) Series, Revised: 2/16/2011
systems, Avaya and Tadiran. This Branch Exchange) allowing all users to share a certain number of • Communication Server (CS)
standard has been established to external phone lines. 1000 Series, CS2100, Reviewed: 6/17/2015
reduce expenditures in maintaining • and related survivable
replacement/repair inventory and in Gateways.
training costs of personnel and Approved Tadiran products are:
associated expenditures. • Coral
Octel is approved for existing
replacement only.
7440 VoIP VoIP must be delivered in a secure I02.004.401 Network > Transmission Voice over IP (VoIP, or Voice over Internet Approved products are: Effective: 4/15/2009
environment. Category 5 Cabling Type > Voice over IP Protocol) commonly refers to the communication • Avaya
infrastructure is the minimum (VoIP) protocols, technologies, methodologies, and Revised: 6/17/2015
requirement. The agencies network transmission techniques involved in the delivery of
switches and data circuitry must be voice communications and multimedia sessions Reviewed: 6/17/2015
able to accommodate the VoIP over Internet Protocol (IP) networks, such as the
application. POE must be available. The Internet. Other terms commonly associated with
VoIP solution must be able to interface VoIP are IP telephony, Internet telephony, Voice
with all applications in the related over Broadband (VoBB), broadband telephony, IP
categories. communications, and broadband phone.
See VoIP IT Standard General Internet telephony refers to communications
Requirements document at services — voice, fax, SMS, and/or voice-messaging
"https://cgp.ky.gov/sites/COTPUBDOCS applications — that are transported via the
/Standards/VOIP_GeneralRequirements. Internet, rather than the Public Switched
pdf" for: Telephone Network (PSTN). The steps involved in
• Switch Acceptance originating a VoIP telephone call are signaling and
• Network Event Analysis media channel setup, digitization of the analog
voice signal, encoding, packetization, and
transmission as Internet Protocol (IP) packets over
a packet-switched network. On the receiving side,
similar steps (usually in the reverse order) such as
reception of the IP packets, decoding of the
packets and digital-to-analog conversion reproduce
the original voice stream.
Even though IP Telephony and VoIP are terms that
are used interchangeably, they are actually
different; IP telephony has to do with digital
telephony systems that use IP protocols for voice
communication, while VoIP is actually a subset of
IP Telephony. VoIP is a technology used by IP
telephony as a means of transporting phone calls.
7450 Desktop Unified Messaging / Desktop messaging will be available on A02.030.363 Application Components Software that supports text, voice and/or video Approved products are: Effective: 4/15/2009
Faxing employee’s desktop computer with the > Unified communications between two or more users. • Avaya
correct version of computer operating Communications and Revised: 2/16/2011
software and correct version of Collaboration > Instant
Microsoft Outlook. Manufacturer Messaging Reviewed: 6/17/2015
specifications will need to be adhered
to in compliance with approved
standards for operating systems and
email.
8100 Application Development Structured Analysis & Design - B10.813.326 General Government > IT System Development / Integration Support Design/Analysis/Data Modeling: Effective: 7/1/1997
Methodology and Software Commonwealth Office of Technology's Support delivery of state includes the software services enabling elements of Design Tools:
Systems Development Life Cycle (SDLC) services > IT System distributed business applications to interoperate • Microsoft - Excel Revised: 2/8/2019
Methodology (COT-140) Development / and the software development necessary to • Microsoft - Visio
RUP: Rational Unified Processing: Integration Support facilitate such integration. These elements can • Microsoft - Word Reviewed: 2/8/2019
Implementing Features from RUP AND share function, content, and communications • Rational Software Architect
UML BASED design and analysis across heterogeneous computing environments. Data Modeling:
OOAD: Object Oriented Analysis and • CA - ERwin Data Modeler
Design Analysis/Design/Modeling
Library:
• Docushare *Not for new
installations.
• Microsoft Visual SourceSafe
*Not for new installations.
Mainstream support slated to
end 7/10/2012; Extended
Support slated to end 7/11/2017
• Microsoft Team Foundation
Server
Design Patterns:
• GoF (Gang of Four) Patterns
Extensibility Frameworks
Developer Productivity Tool:
• ReSharper - Visual Studio
Extension
• StoriesOnBoard - Story
mapping tool for agile software
projects
• Axure RP - For creating UI
mockup
9994 Vulnerability Scanning and A01.011.KY001 System > Security Software that scans for vulnerabilities and detects • AppDetective Effective: 10/19/2015
Detection Managememt > configuration issues • AppSpider Pro
Vulnerability Scanning Revised: 3/20/2017
and Detection
Reviewed: 3/20/2017
9995 Modeling A02.025.285 Application Components Software to develop descriptions that adequately • IBM Rational System Architect Effective: 8/21/2015
> Knowledge and explain relevant data for the purpose of prediction, • Orbus iServer
Discovery Management pattern detection, exploration or general Revised: 10/27/2015
> Modeling organization of data.
Reviewed: 10/27/2015
9996 Risk Management All Commonwealth Systems and A02.027.322 Application Components Software that allows planners to explicitly address • TeamMate AM- Audit Effective: 7/23/2015
Applications must be appropriately > Process Automation uncertainty by identifying and generating metrics, Management
reviewed to determine risk. Security and Management > Risk setting parameters, prioritizing, and developing • RSA Archer Policy Management Revised: 6/15/2017
categorization of Systems and Management mitigations, and tracking risk. • RSA Archer Risk Management
Applications is an important step for • RSA Archer Compliance Reviewed: 6/15/2017
risk management. Standards for Management
Security Categorization is at • eRIMS2 - Risk Insurance
"https://cgp.ky.gov/sites/COTPUBDOCS Management System
/Standards/SystemSecurityCategorizatio
nReference.pdf".
10005 Project Management The Enterprise Project Management B10.813.538 General Government > Defines the set of capabilities to manage and Effective: 9/15/2003
Framework Framework establishes the basic Support delivery of state control a particular effort of an organization. This
conceptual structure for managing IT services > Program / includes intra-agency work. Revised: 11/21/2018
projects across the Commonwealth of Project Management
Kentucky. This Framework, and Reviewed: 11/21/2018
supporting policies, are intended to
establish minimum baseline
requirements for project oversight
while providing the flexibility necessary
to successfully manage projects of
various size, risk and complexity.
Details about the Commonwealth of
Kentucky Enterprise Project
Management Framework are available
at
"https://technology.ky.gov/oet/Pages/P
MFramework.aspx".
10200 Project Management A02.027.319 Application Components Software that provides capabilities for cost • Clarity Effective: 9/15/2003
Information System > Process Automation estimation and planning, scheduling, cost control • Microsoft Project Server
and Management > and budget management, resource allocation, • Microsoft Project Online Revised: 7/5/2018
Project Management collaboration, communication, quality
management and documentation or administration Reviewed: 7/5/2018
systems, which are used to deal with the
complexity of large projects.