Welcome to the Project Site...
______________________________
Promote
the development of standards and guidelines to support the Federal
Information Security Management Act including---
- Security categorization
of information and information systems;
- Selection of appropriate
security controls for information systems;
- Verification of
security control effectiveness and determination of information
system vulnerabilities; and
- Operational authorization
for processing (security accreditation) of information systems.
Leading
to---
- More consistent,
comparable, and repeatable evaluations of security controls
applied to information systems;
- A better understanding
of enterprise-wide mission risks resulting from the operation
of information systems;
- More complete,
reliable, and trustworthy information for authorizing officials---facilitating
more informed security accreditation decisions; and
- More secure information
systems within the Federal government including the critical
infrastructure of the United States.
|
Latest FISMA
News
NEW!!!
Presentations from FIAC 2004
Building More Secure
Information Systems
A Strategy for Effectively Applying the Provisions of FISMA
Plenary Session: Ron Ross
(October 26, 2004)
NIST Special Publication
800-53
Recommended Security Controls for Federal Information Systems
A Status Report
Session A1: Ron Ross
(October 26, 2004)
NIST Special Publication
800-37
Guide for the Security Certification and Accreditation of Federal
Information Systems
An Introductory Tutorial
Tutorial Session: Ron Ross
(October 28, 2004)
NIST
Special Publication 800-53, Recommended Security Controls for Federal
Information Systems
(September 2004)
FY
2004 Reporting Instructions for the Federal Information Security
Management Act
Office of Management and Budget
(August 2004)
Information
System Security Flyer for Security Awareness: Managing Enterprise
Risk
(September 2004)
Submit comments
and suggestions to:
sec-cert@nist.gov
|