NIST Releases “Major Revision” of SP 800-53, Emphasizes Privacy
CYBERSECURITY—U.S.May 1, 2013
In what the National Institute of Standards and Technology describes as its most significant revision of the U.S. federal government’s foundational computer security guide since it was first released in 2005, eight new families of privacy controls, based on the international accepted Fair Information Practice Principles, have been added. Security and Privacy Controls for Federal Information Systems and Organizations, known generally as SP 800-53, now includes an Appendix J, the Privacy Control Catalog, and the name of the document as a whole now has “privacy” in it for the first time. Look for an IAPP report on this development in the near future.