nist800-30.pdfVIP专享VIP免费原创优质

下载本文档

阅读 137
下载 12
格式 pdf
大小 478.48 KB
约55页
2025-01-31 发布于陕西
收藏
评论
点赞(0)
海报
举报

/55

RiskManagementGuideforInformationTechnologySystemsRecommendationsoftheNationalInstituteofStandardsandTechnologyGaryStoneburner,AliceGoguen,andAlexisFeringaSpecialPublication800-30SP800-30PageiiCOMPUTERSECURITYComputerSecurityDivisionInformationTechnologyLaboratoryNationalInstituteofStandardsandTechnologyGaithersburg,MD20899-89301BoozAllenHamiltonInc.3190FairviewParkDriveFallsChurch,VA22042July2002U.S.DEPARTMENTOFCOMMERCEDonaldL.Evans,SecretaryTECHNOLOGYADMINISTRATIONPhillipJ.Bond,UnderSecretaryforTechnologyNATIONALINSTITUTEOFSTANDARDSANDTECHNOLOGYArdenL.Bement,Jr.,DirectorNISTSpecialPublication800-30RiskManagementGuideforInformationTechnologySystemsRecommendationsoftheNationalInstituteofStandardsandTechnologyGaryStoneburner,AliceGoguen1,andAlexisFeringa1SP800-30PageiiiReportsonComputerSystemsTechnologyTheInformationTechnologyLaboratory(ITL)attheNationalInstituteofStandardsandTechnologypromotestheU.S.economyandpublicwelfarebyprovidingtechnicalleadershipforthenation’smeasurementandstandardsinfrastructure.ITLdevelopstests,testmethods,referencedata,proof-of-conceptimplementations,andtechnicalanalysestoadvancethedevelopmentandproductiveuseofinformationtechnology.ITL’sresponsibilitiesincludethedevelopmentoftechnical,physical,administrative,andmanagementstandardsandguidelinesforthecost-effectivesecurityandprivacyofsensitiveunclassifiedinformationinfederalcomputersystems.TheSpecialPublication800-seriesreportsonITL’sresearch,guidance,andoutreacheffortsincomputersecurity,anditscollaborativeactivitieswithindustry,government,andacademicorganizations.NationalInstituteofStandardsandTechnologySpecialPublication800-30Natl.Inst.Stand.Technol.Spec.Publ.800-30,54pages(July2002)CODEN:NSPUE2Certaincommercialentities,equipment,ormaterialsmaybeidentifiedinthisdocumentinordertodescribeanexperimentalprocedureorconceptadequately.SuchidentificationisnotintendedtoimplyrecommendationorendorsementbytheNationalInstituteofStandardsandTechnology,norisitintendedtoimplythattheentities,materials,orequipmentarenecessarilythebestavailableforthepurpose.SP800-30PageivAcknowledgementsTheauthors,GaryStoneburner,fromNISTandAliceGoguenandAlexisFeringafromBoozAllenHamiltonwishtoexpresstheirthankstotheircolleaguesatbothorganizationswhorevieweddraftsofthisdocument.Inparticular,TimothyGrance,MarianneSwanson,andJoanHashfromNISTandDebraL.Banning,JeffreyConfer,RandallK.Ewell,andWaseemMamloukfromBoozAllenprovidedvaluableinsightsthatcontributedsubstantiallytothetechnicalcontentofthisdocument.Moreover,wegratefullyacknowledgeandappreciatethemanycommentsfromthepublicandprivatesectorswhosethoughtfulandconstructivecommentsimprovedthequalityandutilityofthispublication.SP800-30PageivTABLEOFCONTENTS1.INTRODUCTION..............................................................................................................................................11.1AUTHORITY.................................................................................................................................................11.2PURPOSE......................................................................................................................................................11.3OBJECTIVE..................................................................................................................................................21.4TA...

1、当您付费下载文档后，您只拥有了使用权限，并不意味着购买了版权，文档只能用于自身使用，不得用于其他商业用途（如 [转卖]进行直接盈利或[编辑后售卖]进行间接盈利）。
2、本站所有内容均由合作方或网友上传，本站不对文档的完整性、权威性及其观点立场正确性做任何保证或承诺！文档内容仅供研究参考，付费前请自行鉴别。
3、如文档内容存在违规，或者侵犯商业秘密、侵犯著作权等，请点击“违规举报”。

碎片内容