Computer Security Considerations in Federal Procurements: A Guide for Procurement Initiatiors, Contracting Officers, and Computer Security

Guttman, Barbara

doi:https://doi.org/10.6028/NIST.SP.800-4

July 19, 2023: URLs for CSRC publication details pages have changed. Legacy URLs should automatically redirect to the new URLs. However, links to the actual publications have NOT changed (e.g., DOIs and PDFs on nvlpubs.nist.gov). Please send inquiries to csrc-inquiry@nist.gov.

NIST SP 800-4

Withdrawn on October 10, 2003. Superseded by SP 800-64

Computer Security Considerations in Federal Procurements: A Guide for Procurement Initiatiors, Contracting Officers, and Computer Security

Documentation Topics

Date Published: March 1992

Author(s)

Barbara Guttman (NIST)

Abstract

This NIST Special Publication provides guidance for federal procurement initiators, contracting officers, and computer security officials on including computer security in acquisitions. To accomplish this goal, computer security and federal information processing (FIP) procurement must be integrated. Computer security is the protection of the integrity, availability and confidentiality of automated information and the resources used to enter, store, process, and communicate the information. Computer security shares properties with systems/software engineering including trustworthiness, system safety, and reliability. FIP procurement is the process of acquiring hardware, software, firmware, computer-related services and telecommunications. FIP procurement begins with the process of determining needs and ends with contract completion.

Keywords

acquisition; assurance; computer security; procurement; requirements analysis; risk analysis; specifications

Control Families

None selected

Documentation

Publication:
https://doi.org/10.6028/NIST.SP.800-4
Download URL

Supplemental Material:
None available

Document History:
03/02/92: SP 800-4 (Final)

Topics

Security and Privacy

acquisition