| Author(s): |
Ronald S. Ross; L A. Johnson; Marianne Swanson; |
| Title: |
Recommended Security Controls for Federal Information Systems and Organizations (*DRAFT* NIST SP 800-53, Revision 3) |
| Published: |
April 03, 2009 |
| Abstract: |
[This draft publication "went final" in August 2009: http://www.nist.gov/manuscript-publication-search.cfm?pub_id=903280] The objective of NIST SP 800-53 is to provide a set of security controls that can satisfy the breadth and depth of security requirements levied on information systems and organizations and that is consistent with and complementary to other established information security standards. Revision 3 is the first major update since December 2005 and includes significant improvements to the security control catalog. |
| Citation: |
NIST SP - 800-53rev3 |
| Keywords: |
security controls; risk management framework; security control assurance; security requirements; common controls; security control baselines; managing risk; FISMA |
| Research Areas: |
Information Technology, Information Processing Systems, Cybersecurity |
