Information Technology Reference
In-Depth Information
Control
Reference
Description of
Applicability
a
Category/Document
AU
SP 800-14:
Generally Accepted Principles
and Practices for Securing Information
Technology Systems
AU
SP 800-12:
An Introduction to Computer
Security: The NIST Handbook
CA
Certification, Accreditation, and Security Assessments
CA
FIPS 200:
Security Controls for Federal
Information Systems
CA
SP 800-100:
Information Security
Handbook for Managers
CA
SP 800-85:
PIV Middleware and PIV Card
Application Conformance Test
Guidelines
CA
SP 800-79:
Guidelines for the Certification
and Accreditation of PIV Card Issuing
Organizations
CA
SP 800-76:
Biometric Data Specification
for Personal Identity Verification
CA
SP 800-66:
An Introductory Resource
Guide for Implementing the Health
Insurance Portability and Accountability
Act (HIPAA) Security Rule
CA
SP 800-65:
Integrating Security into the
Capital Planning and Investment
Control Process
CA
SP 800-55:
Security Metrics Guide for
Information Technology Systems
CA
SP 800-53A:
Guide for Assessing the
Security Controls in Federal Information
Systems
CA
SP 800-47:
Security Guide for
Interconnecting Information
Technology Systems
CA
SP 800-42:
Guideline on Network Security
Testing