Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

This is an archive
(replace .gov by .rip)

SP 800-53 Rev. 3

Recommended Security Controls for Federal Information Systems and Organizations

Date Published: August 2009 (Updated 5/1/2010)

Withdrawn: April 30, 2014

Superseded By: SP 800-53 Rev. 4 (April 2013)
Supersedes: SP 800-53 Rev. 3 (August 2009 (Updated 9/14/2009))


Joint Task Force Transformation Initiative



common controls; FISMA; managing risk; risk management framework; security control assurance; security control baselines; security controls; security requirements
Control Families

Access Control; Audit and Accountability; Awareness and Training; Security Assessment and Authorization; Configuration Management; Contingency Planning; Identification and Authentication; Incident Response; Maintenance; Media Protection; Personnel Security; Physical and Environmental Protection; Planning; Risk Assessment; System and Communications Protection; System and Information Integrity; System and Services Acquisition;


SP 800-53 Rev. 3 (DOI)
Local Download

Supplemental Material:
None available