Search results
Results from the WOW.Com Content Network
NIST Special Publication 800-82 Rev. 2 "Guide to Industrial Control System (ICS) Security" describes how to secure multiple types of Industrial Control Systems against cyber attacks while considering the performance, reliability, and safety requirements specific to ICS.
NIST Cybersecurity Framework; NIST hash function competition; NIST SP 800-90A; NIST SP 800-90B; NIST Special Publication 800-53; NIST Special Publication 800-92; NIST stone test wall; NIST World Trade Center Disaster Investigation; NIST-7; NIST-F1; NIST-F2
Special Publications (SP) aside, most of the informative references requires a paid membership or purchase to access their respective guides. The cost and complexity of the framework has resulted in bills from both houses of Congress that direct NIST to create Cybersecurity Framework guides that are more accessible to small and medium businesses.
The NIST Computer Security Division develops standards, metrics, tests, and validation programs, and it publishes standards and guidelines to increase secure IT planning, implementation, management, and operation. NIST is also the custodian of the U.S. Federal Information Processing Standard publications (FIPS).
NIST Special Publication 800-92, "Guide to Computer Security Log Management", establishes guidelines and recommendations for securing and managing sensitive log data.The publication was prepared by Karen Kent and Murugiah Souppaya of the National Institute of Science and Technology and published under the SP 800-Series; [1] a repository of best practices for the InfoSec community.
NIST had an operating budget for fiscal year 2007 (October 1, 2006 – September 30, 2007) of about $843.3 million. NIST's 2009 budget was $992 million, and it also received $610 million as part of the American Recovery and Reinvestment Act. [18] NIST employs about 2,900 scientists, engineers, technicians, and support and administrative personnel.
NIST Special Publication 800-37 Rev. 1 was published in February 2010 under the title "Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach". This version described six steps in the RMF lifecycle. Rev. 1 was withdrawn on December 20, 2019 and superseded by SP 800-37 Rev. 2. [1]
The catalog of minimum security controls is found in NIST Special Publication SP 800-53. FIPS 200 identifies 17 broad control families: AC Access Control; AT Awareness and Training; AU Audit and Accountability; CA Security Assessment and Authorization (historical abbreviation) CM Configuration Management; CP Contingency Planning