NIST SP Flashcards

1
Q

NISTIRs

A

NIST Interagency Reports

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

ITL

A

Information Technology Laboratory Bulletins

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

FIPs 199

A

Security Categorization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

FIPs 200

A

Minimum Security Requirements for Federal Information and Information Systems

  • Promotes secure IS
  • Establish minimum levels
  • Selecting and specifying controls
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

NIST SP 800-18 rev 1

A

Security Planning

steps of developing SSP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

NIST SP 800-30 Rev 1

A

Risk Assessment

Guidance on conducting Risk Assessment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

NIST SP 800-37

A

Guide for applying RMF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

NIST SP 800-39

A

Risk Mgmt

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

NIST SP 800-53

A

Recommended Security Controls

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

NIST SP 800-53A

A

Security Control Assessment

*Building SAP, procedures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

NIST SP 800-59

A

National Security Systems

Guideline for Identifying an Information System as a National Security System

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

NIST SP 800-60

A

Security Category Mapping

Helps mapping impact level of the types of information and information systems

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

NIST SP 800-70

A

Guidelines for Checklists

*Configuration checklists

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

NIST SP 800-137

A

Continuous Monitoring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

RMF Guidance Review

A

Phase 1 (Categorize) - FIPs 199 and NIST SP 800-60

Phase 2 (Select) - FIPs 200 and NIST SP 800-53

Phase 3 (Implement) - NIST SP 800-70

Phase 4 (Assess) - NIST SP 800-53A

Phase 5 (Authorize) - NIST SP 800-37

Phase 6 (Monitoring) - NIST 800-37 and NIST SP 800-53A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly