The National Institute for Standards and Technology today released the first draft of a publication describing mandated security controls for federal information systems. NIST officials want agencies to experiment with the initial public draft, “Special Publication 800-53: Recommended Security Controls for Federal Information Systems.” It outlines electronic and physical controls for systems categorized under three levels of potential impacts, such as what would happen if someone steals information from a federal system and modifies the data or disrupts a government service. Low-, medium- and high-impact levels are defined in draft “Federal Information Processing Standard (FIPS) 199: Standards for Security Categorization of Federal Information and Information Systems.” NIST officials released the final draft of that standard in September. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.