The IT Law Wiki

This wiki's URL has been migrated to the primary fandom.com domain.Read more here

READ MORE

The IT Law Wiki
Advertisement

Citations[]

NIST, Volume I: Guide for Mapping Types of Information and Information Systems to Security Categories (NIST Special Publication 800-60) (Aug. 2008) (full-text).

NIST, Volume 2: Appendices to Guide for Mapping Types of Information and Information Systems to Security Categories (NIST Special Publication 800-60) (Aug. 2008) (full-text).

Overview[]

This guideline addresses the FISMA direction to develop guidelines recommending the types of information and information systems to be included in each category of potential security impact. This guideline is intended to help agencies consistently map security impact levels to types of: (i) information (e.g., privacy, medical, proprietary, financial, contractor sensitive, trade secret, investigation); and (ii) information systems (e.g., mission critical, mission support, administrative).

It was developed to assist Federal government agencies to categorize information and information systems. The guideline's objective is to facilitate application of appropriate levels of information security according to a range of levels of impact or consequences that might result from the unauthorized disclosure, modification, or use of the information or information system. The guideline and its appendices:

Advertisement