Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program for IT Products Guidelines for Checklist Users and Developers

Published

Author(s)

Stephen D. Quinn, Murugiah P. Souppaya, Melanie Cook, Karen Scarfone

Abstract

Special Publication 800-70 Revision 2 - National Checklist Program for IT Products Guidelines for Checklist Users and Developers describes security configuration checklists and their benefits, and it explains how to use the NIST National Checklist Program (NCP) to find and retrieve checklists. The publication also describes the policies, procedures, and general requirements for participation in the NCP. SP 800-70 Revision 2 updates the previous version of the document, which was released in 2009, primarily by adding additional SCAP-oriented guidance and content related to the United States Government Configuration Baseline (USGCB). [Supersedes SP 800-70 Rev. 1 (September 2009): http://www.nist.gov/manuscript-publication-search.cfm?pub_id=901337]
Citation
Special Publication (NIST SP) - 800-70 Rev 2
Report Number
800-70 Rev 2

Keywords

checklists, baseline, security configuration, security measurement, vulnerability measurement, vulnerability scoring

Citation

Quinn, S. , Souppaya, M. , Cook, M. and Scarfone, K. (2011), National Checklist Program for IT Products Guidelines for Checklist Users and Developers, Special Publication (NIST SP), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=907732 (Accessed March 28, 2024)
Created February 25, 2011, Updated May 4, 2021