Information Technology Reference
In-Depth Information
Control
Reference
Description of
Applicability
a
Category/Document
SA
SP 800-23:
Guideline to Federal
Organizations on Security Assurance
and Acquisition/Use of Tested/Evaluated
Products
SA
SP 800-21, Rev 1:
Guideline for
Implementing Cryptography in the
Federal Government
SA
SP 800-14:
Generally Accepted Principles
and Practices for Securing Information
Technology Systems
SA
SP 800-12:
An Introduction to Computer
Security: The NIST Handbook
SC
System and Communications protection
SC
FIPS 201-1:
Personal Identity Verification
for Federal Employees and Contractors
SC
FIPS 200:
Security Controls for Federal
Information Systems
SC
FIPS 198:
The Keyed-Hash Message
Authentication Code (HMAC)
SC
FIPS 197:
Advanced Encryption Standard
SC
FIPS 190:
Guideline for the Use of
Advanced Authentication Technology
Alternatives
SC
FIPS 186-3:
Digital Signature Standard
(DSS)
SC
FIPS 180-2:
Secure Hash Standard (SHS)
SC
FIPS 140-2:
Security Requirements for
Cryptographic Modules
SC
SP 800-100:
Information Security
Handbook for Managers
SC
SP 800-97:
Guide to IEEE 802.11i: Robust
Security Networks