U.S. Department of Commerce: Methodology for Certifying Sensitive Computer Applications

Roback, Edward

doi:https://doi.org/10.6028/NIST.IR.4451

July 19, 2023: URLs for CSRC publication details pages have changed. Legacy URLs should automatically redirect to the new URLs. However, links to the actual publications have NOT changed (e.g., DOIs and PDFs on nvlpubs.nist.gov). Please send inquiries to csrc-inquiry@nist.gov. [12:20 pm ET - If you received "Page Not Found" errors recently, please retry accessing those files. File synchronization should now be complete.]

NIST IR 4451

U.S. Department of Commerce: Methodology for Certifying Sensitive Computer Applications

Documentation Topics

Date Published: November 1990

Editor(s)

Edward Roback (NIST)

Abstract

This National Institute of Standards and Technology Interagency Report (NISTIR) presents the Methodology for Certifying Sensitive Computer Applications developed by the U.S. Department of Commerce, Office of Information Resources Management. The National Institute of Standards and Technology (NIST) makes no claim or endorsement of this certification methodology. However, as this material may be of use to other organizations, the report is being reprinted by NIST to make it publicly available and to provide for broad dissemination of this federally sponsored work. This publication is part of a continuing effort to assist federal agencies in accordance with NIST's mandate under the Computer Security Act of 1987.

Keywords

certification and accreditation; computer security

Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.IR.4451
Download URL

Supplemental Material:
None available

Document History:
11/01/90: IR 4451 (Final)

Topics

Security and Privacy

audit & accountability, risk assessment