U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Glossary
A  |  B  |  C  |  D  |  E  |  F  |  G  |  H  |  I  |  J  |  K  |  L  |  M  |  N  |  O  |  P  |  Q  |  R  |  S  |  T  |  U  |  V  |  W  |  X  |  Y  |  Z

control assessment

Abbreviation(s) and Synonym(s):

assessment

Definition(s):

  See Security Control Assessment.
Source(s):
NIST SP 800-171 Rev. 2 under assessment
NIST SP 800-172 under assessment
NIST SP 800-171 Rev. 1 [Superseded] under assessment

  See control assessment or risk assessment.
Source(s):
NIST SP 800-37 Rev. 2 under assessment
NIST SP 800-53 Rev. 5 under assessment

  The testing or evaluation of the controls in an information system or an organization to determine the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security or privacy requirements for the system or the organization.
Source(s):
NIST SP 800-37 Rev. 2
NIST SP 800-53 Rev. 5 from NIST SP 800-37 Rev. 2

  See security control assessment or risk assessment.
Source(s):
CNSSI 4009-2015 under assessment from NIST SP 800-30 Rev. 1

  A completed or planned action of evaluation of an organization, a mission or business process, or one or more systems and their environments; or
Source(s):
NIST SP 800-137A under assessment

  The vehicle or template or worksheet that is used for each evaluation.
Source(s):
NIST SP 800-137A under assessment