U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.


We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

SP 800-53 Rev. 4

Security and Privacy Controls for Federal Information Systems and Organizations

Date Published: April 2013 (Updated 1/22/2015)

Superseded By: SP 800-53 Rev. 5 (09/23/2020)
Supersedes: SP 800-53 Rev. 4 (01/15/2014)

Planning Note (9/23/2020): This publication was superseded by SP 800-53 Rev. 5 on September 23, 2020. Revision 4 will be officially withdrawn in one year, on September 23, 2021.


Joint Task Force Transformation Initiative



FIPS Publication 200; FISMA; Privacy Act; Risk Management Framework; security controls; FIPS Publication 199; security requirements  ; ; computer security; assurance
Control Families

Access Control; Audit and Accountability; Awareness and Training; Assessment, Authorization and Monitoring; Configuration Management; Contingency Planning; Identification and Authentication; Incident Response; Maintenance; Media Protection; Personnel Security; Physical and Environmental Protection; Planning; Risk Assessment; System and Communications Protection; System and Information Integrity; System and Services Acquisition