The IT Law Wiki

This wiki's URL has been migrated to the primary domain.Read more here


The IT Law Wiki


NIST, Underlying Technical Models for Information Technology Security (NIST Special Publication 800-33) (Dec. 2001) (full-text).


The purpose of this document is to provide a description of the technical foundations, termed "models," that underlie secure information technology (IT). The intent is to provide, in a concise form, the models that should be considered in the design and development of technical security capabilities. These models encompass lessons learned, good practices, and specific technical considerations.

The intended audience consists of both government and private sectors including:

  • IT users desiring a better understanding of system security,
  • Engineers and architects designing/building security capabilities, and
  • Those developing guidance for others to use in implementing security capabilities.