U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

SP 800-12 Rev. 1 (Draft)

An Introduction to Information Security

Date Published: January 2017
Comments Due: February 22, 2017 (public comment period is CLOSED)
Email Questions to: sp800-12-draft@nist.gov


Michael Nieles (NIST), Kelley Dempsey (NIST), Victoria Pillitteri (NIST)


NIST invites comments on Draft SP 800-12 Revision 1, An Introduction to Information Security. Information security is a constantly growing and evolving science. With that, it is necessary to update the information from the original publication to stay current with information security terms and technology associated with operating systems in today‚Äôs complex computing environment. The authors encourage readers to comment on the draft, specifically to address areas where more information would be helpful to individuals looking to gain a better understanding of introductory information security principles. Additionally, suggestions for supplementary sections/topics are welcome to ensure this publication is as complete and thorough as possible. Feedback on this draft will be incorporated into the Revision 1 release, anticipated for Summer 2017. 



assurance; computer security; information security; introduction; risk management; security 108 controls; security requirements
Control Families

None selected


Draft SP 800-12 Rev. 1

Supplemental Material:
None available

Document History:
01/23/17: SP 800-12 Rev. 1 (Draft)
06/22/17: SP 800-12 Rev. 1 (Final)


Security and Privacy
general security & privacy

Laws and Regulations
OMB Circular A-130