system security plan

A | B | C | D | E | F | G | H | I | J | K | L | M | N | O | P | Q | R | S | T | U | V | W | X | Y | Z

Abbreviation(s) and Synonym(s):

information system security plan
Security Plan
SECURITY PLAN
SSP

Definition(s):

  Formal document that provides an overview of the security requirements for an information system and describes the security controls in place or planned for meeting those requirements.
Source(s):
FIPS 200 under SYSTEM SECURITY PLAN NIST SP 800-18 Rev. 1
CNSSI 4009-2015 under system security plan (SSP) NIST SP 800-18 Rev. 1
NIST SP 800-137 under System Security Plan FIPS 200
NIST SP 800-30 Rev. 1 under System Security Plan NIST SP 800-18
NIST SP 800-37 Rev. 1 under System Security Plan NIST SP 800-18
NIST SP 800-39 under System Security Plan NIST SP 800-18
NIST SP 800-53 Rev. 4 under System Security Plan NIST SP 800-18
NIST SP 800-53A Rev. 4 under System Security Plan NIST SP 800-18
NISTIR 8170 under System Security Plan NIST SP 800-18

  See System Security Plan.
Source(s):
FIPS 200 under SECURITY PLAN
NIST SP 800-18 Rev. 1 under Security Plan

  Formal document that provides an overview of the security requirements for the system and describes the security controls in place or planned for meeting those requirements.
Source(s):
NIST SP 800-12 Rev. 1 under System Security Plan NIST SP 800-18

  Formal document that provides an overview of the security requirements for the information system and describes the security controls in place or planned for meeting those requirements.
Source(s):
NIST SP 800-128 under System Security Plan NIST SP 800-18
NIST SP 800-18 Rev. 1 under System Security Plan NIST SP 800-18
NIST SP 800-82 Rev. 2 under Security Plan NIST SP 800-53

  Formal document that provides an overview of the security requirements for a system and describes the security controls in place or planned for meeting those requirements.
Source(s):
NIST SP 800-82 Rev. 2 under System Security Plan NIST SP 800-18 - Adapted

  A formal document that provides an overview of the security requirements for an information system and describes the security controls in place or planned for meeting those requirements.
Source(s):
NIST SP 800-128 under information system security plan OMB Circular A-130
NIST SP 800-37 Rev. 2 under information system security plan

  A system document that provides an overview of the security requirements of a system and describes the controls in place to meet those requirements.
Source(s):
NIST SP 800-127 under System security plan (SSP) [Withdrawn]

  See information system security plan.
Source(s):
NIST SP 800-128
NIST SP 800-37 Rev. 2

  Formal document that provides an overview of the security requirements for an information system or an information security program and describes the security controls in place or planned for meeting those requirements. See System Security Plan or Information Security Program Plan.
Source(s):
NIST SP 800-37 Rev. 1 under Security Plan
NIST SP 800-53A Rev. 4 under Security Plan NIST SP 800-18
NIST SP 800-30 Rev. 1 under Security Plan NIST SP 800-18
NIST SP 800-53 Rev. 4 under Security Plan

  Formal document that provides an overview of the security requirements for an information system or an information security program and describes the security controls in place or planned for meeting those requirements. See System Security Plan or Information Security Program Plan.
Source(s):
NIST SP 800-39 under Security Plan NIST SP 800-18
NIST SP 800-53 Rev. 4 under Security Plan

  Formal document that provides an overview of the security requirements for an information system or an information security program and describes the security controls in place or planned for meeting those requirements. See System Security Plan or Information Security Program Plan.
Source(s):
NIST SP 800-137 under Security Plan NISTIR 7298

  A document that describes how an organization meets the security requirements for a system or how an organization plans to meet the requirements. In particular, the system security plan describes the system boundary; the environment in which the system operates; how the security requirements are implemented; and the relationships with or connections to other systems.
Source(s):
NIST SP 800-171 Rev. 2
NIST SP 800-171 Rev. 1 [Superseded]

  Formal document that provides an overview of the security requirements for an information system or an information security program and describes the security controls in place or planned for meeting those requirements. See System Security Plan.
Source(s):
NISTIR 8170 under Security Plan NIST SP 800-18

Glossary Comments

Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.

Comments about the glossary's presentation and functionality should be sent to secglossary@nist.gov.

See NISTIR 7298 Rev. 3 for additional details.

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center

Computer Security Resource Center

system security plan

Glossary Comments