ITL Bulletin

Minimum Security Requirements for Federal Information and Information Systems: Federal Information Processing Standard (FIPS) 200 Approved by the Secretary of Commerce

Date Published: March 2006


Shirley Radack (NIST)



Federal Information Processing Standard; Federal Information Security Management Act; levels of risk; minimum security requirements; security categorization; security controls
Control Families

Access Control; Audit and Accountability; Awareness and Training; Assessment, Authorization and Monitoring; Configuration Management; Contingency Planning; Identification and Authentication; Incident Response; Maintenance; Media Protection; Personnel Security; Physical and Environmental Protection; Planning; Risk Assessment; System and Communications Protection; System and Information Integrity; System and Services Acquisition


March 2006 ITL Bulletin

Supplemental Material:
None available

Document History:
03/24/06: ITL Bulletin (Final)