U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

NIST SP 800-160 (Initial Public Draft)

Systems Security Engineering: An Integrated Approach to Building Trustworthy Resilient Systems

Date Published: May 2014
Comments Due: July 11, 2014 (public comment period is CLOSED)
Email Questions to: sec-cert@nist.gov

Author(s)

Ron Ross (NIST), Janet Oren (NSA), Michael McEvilley (MITRE)

Announcement

NIST requests comments on the initial public draft of Special Publication (SP) 800-160, Systems Security Engineering: An Integrated Approach to Building Trustworthy Resilient Systems. The new security guidelines recommend steps to help develop a more defensible and survivable information technology (IT) infrastructure—including the component products, systems, and services that compose the infrastructure. A formal announcement of the publication is planned on May 13, 2014 at the College of Science and Engineering, Technology Leadership Institute, University of Minnesota.

Abstract

Keywords

Systems engineering;  ;  ;  ;  ;  ;  ;  ; system life cycle;  ;  ;  ; integration; implementation; stakeholder; security requirements;  ;  ;  ;  ;  ;  ; security authorization; engineering trades; systems; system-of-systems;  ;  ;  ; inspection;  ; developmental engineering;  ; specifications; systems security engineering; assurance; trustworthiness;  ; information security;  ; information security policy;  ; security architecture;  ; security design;  ; verification;  ; validation; disposal;  ; protection needs;  ; resiliency;  ; requirements analysis;  ; risk management;  ; risk assessment; risk treatment;  ; system element;  ; system component;  ; penetration testing;  ; review;  ; field engineering
Control Families

None selected

Documentation

Publication:
Initial Public Draft SP 800-160 (pdf)

Supplemental Material:
None available

Document History:
05/13/14: SP 800-160 (Draft)
05/04/16: SP 800-160 (Draft)
09/22/16: SP 800-160 (Draft)

Topics

Security and Privacy

risk management, systems security engineering