Guide for Security-Focused Configuration Management of Information Systems: The National Institute of Standards and Technology Special Publication 800-128
Arnold Johnson, Kelley Dempsey, Ron Ross, Sarbari Gupta, Dennis Bailey
- 出版商: CreateSpace Independ
- 出版日期: 2012-07-02
- 售價: $870
- 貴賓價: 9.5 折 $827
- 語言: 英文
- 頁數: 94
- 裝訂: Paperback
- ISBN: 1478180196
- ISBN-13: 9781478180197
-
相關分類:
資訊安全
海外代購書籍(需單獨結帳)
相關主題
商品描述
The purpose of the National Institute of Standards and Technology Special Publication 800-128, Guide for Security-Focused Configuration Management of Information Systems, is to provide guidelines for organizations responsible for managing and administering the security of federal information systems and associated environments of operation. Configuration management concepts and principles described in NIST SP 800-128, provide supporting information for NIST SP 800-53, Recommended Security Controls for Federal Information Systems and Organizations. NIST SP 800-128 assumes that information security is an integral part of an organization’s overall configuration management. The focus of this document is on implementation of the information system security aspects of configuration management, and as such the term security-focused configuration management (SecCM) is used to emphasize the concentration on information security. In addition to the fundamental concepts associated with SecCM, the process of applying SecCM practices to information systems is described. The goal of SecCM activities is to manage and monitor the configurations of information systems to achieve adequate security and minimize organizational risk while supporting the desired business functionality and services.~