Standaards for Security Categorization of Federal Information and Information Systems. Category: Computer Security, Subcategory: Cryptography

摘要

The E-Government Act of 2002 (Public Law 107-347), passed by the one hundred and seventh Congress and signed into law by the President in December 2002, recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act, entitled the Federal Information Security Management Act of 2002 (FISMA), tasked NIST with responsibilities for standards and guidelines, including the development of: Standards to be used by all Federal agencies to categorize all information and information systems collected or maintained by or on behalf of each agency based on the objectives of providing appropriate levels of information security according to a range of risk levels$ guidelines recommending the types of information and information systems to be included in each category$ and minimum information security requirements (i.e., management, operational, and technical controls), for information and information systems in each such category.