Security and Privacy Controls for Information Systems and Organizations

SYSTEM and INFORMATION INTEGRITY

The SYSTEM and INFORMATION INTEGRITY Playbook addresses the following areas:

  • Policy and Procedures
  • Flaw Remediation
  • Malicious Code Protection
  • System Monitoring
  • Security Alerts, Advisories, and Directives
  • Security and Privacy Function Verification
  • Software, Firmware, and Information Integrity
  • Spam Protection
  • Information Input Validation
  • Error Handling
  • Information Management and Retention
  • Predictable Failure Prevention
  • Non-Persistence
  • Information Output Filtering
  • Memory Protection
  • Fail-Safe Procedures
  • Personally Identifiable Information Quality Operations
  • De-Identification
  • Tainting
  • Information Refresh
  • Information Diversity
  • Information Fragmentation

The SYSTEM and INFORMATION INTEGRITY Playbook is included in the Security and Privacy Controls for Information Systems and Organizations (NIST 80-53) Library which has been developed by the U.S. Department of Commerce's  National Institute of Standards and Technology (NIST).  It establishes controls for systems and organizations. The controls can be implemented within any organization or system that processes, stores, or transmits information.  

Back (Small2)