NIST Important Publications

NIST Important FIPS and SP 800 series entries

FIPS 200

Minimum Security Requirements for Federal Information and Information Systems

FIPS 199

Standards for Security Categorization of Federal Information and Information Systems

FIPS 197

Advanced Encryption Standard (AES)

FIPS 186-33

Digital Signature Standard (DSS)

FIPS 190-4

Secure Hash Standard (SHS)

FIPS 140 Series

Security Requirements for Cryptographic Modules

SP 800-152

A Profile for US Federal Cryptographic Key Management Systems (CKMS)

SP 800-107

Recommendation for Applications Using Approved Hash Algorithms

SP 800-100

Information Security Handbook: A Guide for Managers

SP 800-63

Digital Identity Guidelines (a 4 volume set)

SP 800-53

Security and Privacy Controls for Information Systems and Organizations

SP 800-30

Guide for Conducting Risk Assessments

SP 800-13

An Introduction to Computer Security

SP 800-39

6 steps to create RMF (Risk Management Framework):

1. Categorize information sytems

2. Select security controls

3. Implement security controls

4. Assess security controls

5. Authorize information systems

6. Monitor security controls