Secure Coding mailing list archives
NIST SP 800-37
From: list-spam at secureconsulting.net (Benjamin Tomhave)
Date: Wed, 03 Feb 2010 14:15:09 -0500
800-37 has been in release for a while, providing the basis for the C&A process. My understanding is that C&A is evolving (and going the way of the dinosaur) very soon as NIST works with CNSS/JTF on the next big thing. I'm blanking on the rest of the details (not my space), but pinging Mike Smith (@rybolov) or Dan Philpott (@danphilpott) on Twitter would likely be a good starting point. On 2/3/10 1:12 PM, McGovern, James F. (eBusiness) wrote:
NIST has created a draft document entitled: Guide for applying risk management framework to federal information systems: a security lifecycle approach. Curious to know if anyone has identified gaps, differences in opinion, etc between NIST and how either SAMM or BSIMM would define the same? ************************************************************ This communication, including attachments, is for the exclusive use of addressee and may contain proprietary, confidential and/or privileged information. If you are not the intended recipient, any use, copying, disclosure, dissemination or distribution is strictly prohibited. If you are not the intended recipient, please notify the sender immediately by return e-mail, delete this communication and destroy all copies. ************************************************************ _______________________________________________ Secure Coding mailing list (SC-L) SC-L at securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________
-- Benjamin Tomhave, MS, CISSP tomhave at secureconsulting.net Blog: http://www.secureconsulting.net/ Twitter: http://twitter.com/falconsview LI: http://www.linkedin.com/in/btomhave [ Random Quote: ] "Opportunity is missed by most people because it is dressed in overalls and looks like work." Thomas A. Edison
Current thread:
- NIST SP 800-37 McGovern, James F. (eBusiness) (Feb 03)
- NIST SP 800-37 Benjamin Tomhave (Feb 03)
- Message not available
- [SAMM] NIST SP 800-37 McGovern, James F. (eBusiness) (Feb 03)