Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

This is an archive
(replace .gov by .rip)

SP 800-40 Rev. 3

Guide to Enterprise Patch Management Technologies

Date Published: July 2013

Supersedes: SP 800-40 Version 2.0 (November 2005)

Author(s)

Murugiah Souppaya (NIST), Karen Scarfone (Scarfone Cybersecurity)

Abstract

Keywords

information security; patch management; remediation; software patches; vulnerability management
Control Families

Configuration Management; Incident Response; Maintenance; Risk Assessment; System and Information Integrity;