NOTICE: Due to a lapse in annual appropriations, most of this website is not being updated. Learn more.

Form submissions will still be accepted but will not receive responses at this time. Sections of this site for programs using non-appropriated funds (such as NVLAP) or those that are excepted from the shutdown (such as CHIPS and NVD) will continue to be updated.

U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

NIST Delivers Strong and Flexible Security Standards Managing Enterprise Risk in a World of Sophisticated Cyber Threats

Published

Author(s)

Ronald S. Ross

Abstract

This article summarizes the fundamental concepts of the FISMA project and reinforces the core principles that have guided the project from its initiation in 2003.
Citation
Computer (IEEE Computer)
Pub Type
Journals

Download Paper

Local Download

Keywords

FISMA, security controls, risk management, categorization
Cybersecurity and privacy

Citation

Ross, R. (2007), NIST Delivers Strong and Flexible Security Standards Managing Enterprise Risk in a World of Sophisticated Cyber Threats, Computer (IEEE Computer), [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=51204 (Accessed October 9, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact [email protected].

Created July 9, 2007, Updated February 19, 2017
Was this page helpful?