Information Technology Reference
In-Depth Information
Control
Reference
Description of
Applicability
a
Category/Document
SC
SP 800-14:
Generally Accepted Principles
and Practices for Securing Information
Technology Systems
SC
SP 800-12:
An Introduction to Computer
Security: The NIST Handbook
Si
System and information integrity
SI
FIPS 200:
Security Controls for Federal
Information Systems
SI
SP 800-100:
Information Security
Handbook for Managers
SI
SP 800-92:
Guide to Computer Security
Log Management
SI
SP 800-86:
Guide to Integrating Forensic
Techniques into Incident Response
SI
SP 800-85:
PIV Middleware and PIV Card
Application Conformance Test
Guidelines
SI
SP 800-83:
Guide to Malware Incident
Prevention and Handling
SI
SP 800-66:
An Introductory Resource
Guide for Implementing the Health
Insurance Portability and Accountability
Act (HIPAA) Security Rule
SI
SP 800-61:
Computer Security Incident
Handling Guide
SI
SP 800-57:
Recommendation on Key
Management
SI
SP 800-51:
Use of the Common
Vulnerabilities and Exposures (CVE)
Vulnerability Naming Scheme
SI
SP 800-48:
Wireless Network Security:
802.11, Bluetooth, and Handheld
Devices