Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

Supplementation

Abbreviation(s) and Synonym(s):

None

Definition(s):

  The process of adding security controls or control enhancements to a security control baseline from NIST Special Publication 800-53 or CNSS Instruction 1253 in order to adequately meet the organization’s risk management needs.
Source(s):
NIST SP 800-39 under Supplementation (Security Controls)

  The process of adding security controls or control enhancements to a security control baseline as part of the tailoring process (during security control selection) in order to adequately meet the organization’s risk management needs.
Source(s):
NIST SP 800-53 Rev. 4

  The process of adding security controls or control enhancements to a security control baseline from NIST Special Publication 800-53 or CNSSI No. 1253 in order to adequately meet the organization’s risk management needs.
Source(s):
NIST SP 800-30 Rev. 1 under Supplementation (Security Controls) (NIST SP 800-39)