RealNews

NIST posts security control guidelines for comment

The National Institute of Standards and Technology yesterday released an initial public draft of recommended security controls for federal information systems. The guidelines for mandatory controls are expected to go into effect in two years. The agency’s IT Laboratory drafted Special Publication 800-53 under the Federal Information Security Management Act. SP 800-53 is one of seven NIST publications to be completed over the next two years as a security framework. Federal Information Processing Standard Publication 200, “Minimum Security Controls for Federal Information Systems,” will replace SP800-53 in late 2005 and will be mandatory for government systems not involved in national security. Controls include management, operational and technical safeguards and countermeasures that ensure the confidentiality, integrity and availability of government systems. Full Story

OODA Analyst

OODA Analyst

OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.