Forum for Science, Industry and Business

Sponsored by:     3M 
Search our Site:

 

First Major Update to SP 800-53 Is Available for Public Comment

12.02.2009
NIST has issued for public comment its first major update of Special Publication 800-53, the catalog of security controls and technical guidelines that information technology professionals use to select appropriate safeguards and countermeasures for protecting federal information and information systems.

The National Institute of Standards and Technology (NIST) has issued for public comment its first major update of Special Publication 800-53, the catalog of security controls and technical guidelines that information technology professionals use to select appropriate safeguards and countermeasures for protecting federal information and information systems.

SP 800-53, Revision 3, Recommended Security Controls for Federal Information Systems and Organizations, is one of the principal security publications in the suite of security standards and guidelines published by NIST in response to the Federal Information Security Management Act (FISMA) of 2002.

Ron Ross, FISMA Implementation Project leader, says, “We have received excellent feedback from our customers during the past three years and have taken this opportunity to provide significant improvements to the security control catalog. We also continue to work closely with the Department of Defense and the Office of the Director of National Intelligence under the auspices of the Committee on National Security Systems on the harmonization of security control specifications across the federal government.”

SP 800-53 Revision 3 incorporates lessons learned since the original publication to update many of the current security controls, adds new security controls and control enhancements to cover advanced cyber threats, and provides a new family of controls to address organization-wide security programs. The revision introduces the concept of an information security program plan, a vehicle to capture organization-wide security program management requirements—such as capital planning and budgeting, enterprise architectures, and risk management. The revision also eliminates redundant or obsolete controls. In addition, the growing sophistication of cyber attacks necessitated specific changes to the allocation of security controls and control enhancements to the minimum baseline controls recommended by NIST.

In addition to the above modifications, Revision 3 incorporates an overview of a revised, simplified six-step risk management framework, provides additional guidance on managing common controls within organizations and adds security controls for supply chain threats. It also introduces a strategy for harmonizing the FISMA security standards and guidelines with international security standards including an updated mapping table for security controls for organizations wanting to comply with both FISMA and the International Standards Organization 27001 security standard.

Comments on SP 800-53 Revision 3 are requested. The public comment period runs through March 27, 2009 and email should be sent to sec-cert@nist.gov. The publication may be found at http://csrc.nist.gov/publications/drafts/800-53/800-53-rev3-IPD.pdf.

Evelyn Brown | Newswise Science News
Further information:
http://www.nist.gov

More articles from Information Technology:

nachricht Terahertz spectroscopy goes nano
20.10.2017 | Brown University

nachricht New software speeds origami structure designs
12.10.2017 | Georgia Institute of Technology

All articles from Information Technology >>>

The most recent press releases about innovation >>>

Die letzten 5 Focus-News des innovations-reports im Überblick:

Im Focus: Salmonella as a tumour medication

HZI researchers developed a bacterial strain that can be used in cancer therapy

Salmonellae are dangerous pathogens that enter the body via contaminated food and can cause severe infections. But these bacteria are also known to target...

Im Focus: Neutron star merger directly observed for the first time

University of Maryland researchers contribute to historic detection of gravitational waves and light created by event

On August 17, 2017, at 12:41:04 UTC, scientists made the first direct observation of a merger between two neutron stars--the dense, collapsed cores that remain...

Im Focus: Breaking: the first light from two neutron stars merging

Seven new papers describe the first-ever detection of light from a gravitational wave source. The event, caused by two neutron stars colliding and merging together, was dubbed GW170817 because it sent ripples through space-time that reached Earth on 2017 August 17. Around the world, hundreds of excited astronomers mobilized quickly and were able to observe the event using numerous telescopes, providing a wealth of new data.

Previous detections of gravitational waves have all involved the merger of two black holes, a feat that won the 2017 Nobel Prize in Physics earlier this month....

Im Focus: Smart sensors for efficient processes

Material defects in end products can quickly result in failures in many areas of industry, and have a massive impact on the safe use of their products. This is why, in the field of quality assurance, intelligent, nondestructive sensor systems play a key role. They allow testing components and parts in a rapid and cost-efficient manner without destroying the actual product or changing its surface. Experts from the Fraunhofer IZFP in Saarbrücken will be presenting two exhibits at the Blechexpo in Stuttgart from 7–10 November 2017 that allow fast, reliable, and automated characterization of materials and detection of defects (Hall 5, Booth 5306).

When quality testing uses time-consuming destructive test methods, it can result in enormous costs due to damaging or destroying the products. And given that...

Im Focus: Cold molecules on collision course

Using a new cooling technique MPQ scientists succeed at observing collisions in a dense beam of cold and slow dipolar molecules.

How do chemical reactions proceed at extremely low temperatures? The answer requires the investigation of molecular samples that are cold, dense, and slow at...

All Focus news of the innovation-report >>>

Anzeige

Anzeige

Event News

3rd Symposium on Driving Simulation

23.10.2017 | Event News

ASEAN Member States discuss the future role of renewable energy

17.10.2017 | Event News

World Health Summit 2017: International experts set the course for the future of Global Health

10.10.2017 | Event News

 
Latest News

Single nanoparticle mapping paves the way for better nanotechnology

24.10.2017 | Physics and Astronomy

A quantum spin liquid

24.10.2017 | Physics and Astronomy

Antibiotic resistance: a strain of multidrug-resistant Escherichia coli is on the rise

24.10.2017 | Life Sciences

VideoLinks
B2B-VideoLinks
More VideoLinks >>>