SP 800-160 (Draft)

Systems Security Engineering: An Integrated Approach to Building Trustworthy Resilient Systems

Date Published: May 2014
Comments Due: July 11, 2014 (public comment period is CLOSED)
Email Questions to: sec-cert@nist.gov

Author(s)

Ron Ross (NIST), Janet Oren (NSA), Michael McEvilley (MITRE)

Announcement

NIST requests comments on the initial public draft of Special Publication (SP) 800-160, Systems Security Engineering: An Integrated Approach to Building Trustworthy Resilient Systems. The new security guidelines recommend steps to help develop a more defensible and survivable information technology (IT) infrastructure—including the component products, systems, and services that compose the infrastructure. A formal announcement of the publication is planned on May 13, 2014 at the College of Science and Engineering, Technology Leadership Institute, University of Minnesota.

Abstract

Keywords

Systems engineering;  ;  ;  ;  ;  ;  ;  ; system life cycle;  ;  ;  ; integration; implementation; stakeholder; security requirements;  ;  ;  ;  ;  ;  ; security authorization; engineering trades; systems; system-of-systems;  ;  ;  ; inspection;  ; developmental engineering;  ; specifications; systems security engineering; assurance; trustworthiness;  ; information security;  ; information security policy;  ; security architecture;  ; security design;  ; verification;  ; validation; disposal;  ; protection needs;  ; resiliency;  ; requirements analysis;  ; risk management;  ; risk assessment; risk treatment;  ; system element;  ; system component;  ; penetration testing;  ; review;  ; field engineering
Control Families

None selected

Documentation

Publication:
Initial Public Draft SP 800-160

Supplemental Material:
None available

Document History:
05/13/14: SP 800-160 (Draft)
05/04/16: SP 800-160 (Draft)
09/22/16: SP 800-160 (Draft)

Topics

Security and Privacy
risk management; systems security engineering