U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

SP 800-70 Rev. 3

National Checklist Program for IT Products: Guidelines for Checklist Users and Developers

Date Published: November 2015 (Updated 12/8/2016)

Supersedes: SP 800-70 Rev. 3 (12/10/2015)

Author(s)

Stephen Quinn (NIST), Murugiah Souppaya (NIST), Melanie Cook (NIST), Karen Scarfone (Scarfone Cybersecurity)

Abstract

Keywords

change detection; checklist; information security; National Checklist Program (NCP); security configuration checklist; Security Content Automation Protocol (SCAP); software configuration; vulnerability
Control Families

Configuration Management; System and Communications Protection

Documentation

Publication:
SP 800-70 Rev. 3 (DOI)
Local Download

Supplemental Material:
National Checklist Program (other)

Related NIST Publications:
SP 800-179

Document History:
12/08/16: SP 800-70 Rev. 3