CAP · Question #190
Which of the following NIST C&A documents is the guideline for identifying an information system as a National Security System?
The correct answer is B. NIST SP 800-59. NIST SP 800-59 (B) is the guideline specifically titled 'Guideline for Identifying an Information System as a National Security System.' It provides criteria based on statutory definitions to determine whether a system qualifies as a National Security System (NSS). The other docu
Question
Which of the following NIST C&A documents is the guideline for identifying an information system as a National Security System?
Options
- ANIST SP800-53
- BNIST SP 800-59
- CNIST SP 800-37
- DNIST SP 800-53A
How the community answered
(55 responses)- A2% (1)
- B93% (51)
- C2% (1)
- D4% (2)
Explanation
NIST SP 800-59 (B) is the guideline specifically titled 'Guideline for Identifying an Information System as a National Security System.' It provides criteria based on statutory definitions to determine whether a system qualifies as a National Security System (NSS). The other documents serve different purposes: NIST SP 800-53 provides security and privacy control catalogs for federal information systems; NIST SP 800-37 describes the Risk Management Framework (RMF) for applying security to information systems; and NIST SP 800-53A provides assessment procedures for evaluating security control effectiveness.
Topics
Community Discussion
No community discussion yet for this question.