Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

NETSEC Archives

Date Prev | Date Next | Date Index | Author Index | Historical [Netsec] SP 800-53 Rev. 4 SP 800-53 Rev. 4 SP 800-53 Rev. 4 SP 800-53 Rev. 4

  • From: Paul Howell
  • Date: Fri Mar 02 11:46:31 2012

At http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-53-Rev. 4

DRAFT Security and Privacy Controls for Federal Information Systems
and Organizations (Initial Public Draft)

NIST announces the Initial Public Draft of Special Publication (SP)
800-53, Revision 4, Security and Privacy Controls for Federal
Information Systems and Organizations. Special Publication 800-53,
Revision 4, represents the culmination of a year-long initiative to
update the content of the security controls catalog and the guidance
for selecting and specifying security controls for federal information
systems and organizations. The project was conducted as part of the
Joint Task Force Transformation Initiative in cooperation and
collaboration with the Department of Defense, the Intelligence
Community, the Committee on National Security Systems, and the
Department of Homeland Security. The proposed changes included in
Revision 4 are directly linked to the current state of the threat
space (i.e., capabilities, intentions, and targeting activities of
adversaries) and the attack data collected and analyzed over a
substantial time period. In particular, the major changes in Revision
4 include:
  • New security controls and control enhancements;
  • Clarification of security control requirements and specification language;
  • New tailoring guidance including the introduction of overlays;
  • Additional supplemental guidance for security controls and enhancements;
  • New privacy controls and implementation guidance;
  • Updated security control baselines;
  • New summary tables for security controls to facilitate ease-of-use; and
  • Revised minimum assurance requirements and designated assurance controls.

[...]



Discussion Communities


About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home


Merit Network, Inc.