U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

NIST CSWP 3

Supplemental Guidance on Ongoing Authorization: Transitioning to Near Real-Time Risk Management

Date Published: 6/3/2014

Planning Note (04/19/2019): The information in this white paper has been rolled into SP 800-37 Revision 2. Please refer to that document for current guidance.

Author(s)

Kelley Dempsey (NIST), Ron Ross (NIST), Kevin Stine (NIST)

Abstract

Keywords

information security; Office of Management and Budget; ongoing assessment; ongoing authorization; Risk Management Framework; Federal Information Security Management Act; continuous monitoring
Control Families

Assessment, Authorization and Monitoring; Risk Assessment

Documentation

Publication:
https://doi.org/10.6028/NIST.CSWP.3

Supplemental Material:
None available

Document History:
06/03/14: CSWP 3 (Final)