nerdexam
(ISC)2

CAP · Question #190

Which of the following NIST C&A documents is the guideline for identifying an information system as a National Security System?

The correct answer is B. NIST SP 800-59. NIST SP 800-59 (B) is the guideline specifically titled 'Guideline for Identifying an Information System as a National Security System.' It provides criteria based on statutory definitions to determine whether a system qualifies as a National Security System (NSS). The other docu

Scope of the System

Question

Which of the following NIST C&A documents is the guideline for identifying an information system as a National Security System?

Options

  • ANIST SP800-53
  • BNIST SP 800-59
  • CNIST SP 800-37
  • DNIST SP 800-53A

How the community answered

(55 responses)
  • A
    2% (1)
  • B
    93% (51)
  • C
    2% (1)
  • D
    4% (2)

Explanation

NIST SP 800-59 (B) is the guideline specifically titled 'Guideline for Identifying an Information System as a National Security System.' It provides criteria based on statutory definitions to determine whether a system qualifies as a National Security System (NSS). The other documents serve different purposes: NIST SP 800-53 provides security and privacy control catalogs for federal information systems; NIST SP 800-37 describes the Risk Management Framework (RMF) for applying security to information systems; and NIST SP 800-53A provides assessment procedures for evaluating security control effectiveness.

Topics

#NIST Special Publications#National Security Systems (NSS)#Information System Classification#Compliance Frameworks

Community Discussion

No community discussion yet for this question.

Full CAP Practice