NIST readies new security documents
- By Patricia Daukantas
- Oct 23, 2003
A new National Institute of Standards and Technology method for categorizing systems security risks is on the cusp of final approval.
The first public draft of the minimum security requirements for systems in new risk categories, Special Publication 800-53, will be released in a couple of weeks, project manager Ron Ross said earlier this month at an enterprise architecture conference in Vienna, Va.
Federal Information Processing Standard 199 ranks systems as low, medium and high risk in the categories of confidentiality, availability and integrity, Ross said.