NIST SP 800 series documents

SP = Special Publication

800 series = Information Technology Security

NIST SP 800-53 contains the master list of security controls

There are over 100 SP 800 docs

Here is a list of other key 800 series documents:

  • 800-18 is about security plans
  • 800-30 is about risk management
  • 800-34 is about contingency plans
  • 800-37 is about C&A
  • 800-40 is about patch and vulnerability management
  • 800-41 is about firewalls
  • 800-42 is about security testing
  • 800-47 is about interconnecting systems
  • 800-48 is about legacy wireless security
  • 800-50 is about awareness and training
  • 800-55 is about security metrics
  • 800-60 is about system categorization
  • 800-61 is about incident response
  • 800-64 is about the system development life cycle
  • 800-66 is about HIPAA
  • 800-77 is about IPSEC VPNs
  • 800-81 is about DNS
  • 800-83 is about malware prevention
  • 800-88 is about media sanitization
  • 800-92 is about log management
  • 800-94 is about intrusion detection system
  • 800-97 is about robust security wireless
  • 800-114 is about telework and remote access devices
  • 800-115 is a new DRAFT on information security testing

You can download all of the NIST SP 800 series documents from their Computer Security Resource Center

Comments are closed.