The IT Law Wiki
Line 5: Line 5:
 
== Overview ==
 
== Overview ==
   
This publication provides a foundation upon which organizations can establish and review [[information technology]] [[security]] programs. The eight Generally Accepted System Security Principles are designed to provide the public or private sector audience with an organization-level perspective when creating new systems, practices, or policies.
+
This publication provides a foundation upon which organizations can establish and review [[information technology]] [[security]] programs. The eight [[Generally Accepted System Security Principles]] ([[GSSP]]) are designed to provide the public or private sector audience with an organization-level perspective when creating new systems, practices, or policies.
 
[[Category:Publication]]
 
[[Category:Publication]]
 
[[Category:Security]]
 
[[Category:Security]]

Revision as of 17:02, 9 February 2012

Citation

NIST, Generally Accepted Principles and Practices for Securing Information Technology Systems (NIST Special Publication 800-14) (full-text).

Overview

This publication provides a foundation upon which organizations can establish and review information technology security programs. The eight Generally Accepted System Security Principles (GSSP) are designed to provide the public or private sector audience with an organization-level perspective when creating new systems, practices, or policies.