Home > government and politics, National Institute of Standards and Technology, national security, privacy and security, technology and internet > Revision of SP 800-53 Addresses Current Cybersecurity Threats, Adds Privacy Controls

Revision of SP 800-53 Addresses Current Cybersecurity Threats, Adds Privacy Controls

March 1, 2012

Revision of SP 800-53 Addresses Current Cybersecurity Threats, Adds Privacy Controls
Source: National Institute of Standards and Technology

A major revision of a Federal Information Security Management Act (FISMA) publication released today by the National Institute of Standards and Technology (NIST) adds guidance for combating new information security threats and incorporates new privacy controls to the framework that federal agencies use to protect their information and information systems.

To handle insider threats, supply chain risk, mobile and cloud computing technologies, and other cybersecurity issues and challenges, NIST has released Security and Privacy Controls for Federal Information Systems and Organizations, Special Publication (SP) 800-53, Revision 4 (Initial Public Draft). The document is considered a principal catalog of security standards and guidelines used by federal government agencies that NIST is required to publish by law.

“The changes we propose in Revision 4 are directly linked to the current state of the threat space—the capabilities, intentions and targeting activities of adversaries—and analysis of attack data over time,” explained Ron Ross, FISMA Implementation Project Leader and NIST fellow.

The revision also adds a new privacy appendix to the publication that provides privacy controls and associated implementation guidance. “Privacy and security are complementary, so we decided to combine them in SP 800-53,” said Ross.

+ Full Document

About these ads
Follow

Get every new post delivered to your Inbox.

Join 963 other followers

%d bloggers like this: