NIST SP 800-60, Guide for Mapping Types of Information and Systems to Security Categories

• The NIST SP 800-60 provides guidelines on the impact you should assign to certain systems
  • Rev 1 is roughly 34 pages long, excluding appendices

Resources

Official

• SP 800-60 Vol. 1 Rev. 1, Guide for Mapping Types of Information and Information Systems to Security Categories | CSRC
  • Current full version, published 2008
• SP 800-60 Rev. 2, Guide for Mapping Types of Information and Systems to Security Categories | CSRC
  • Initial Working Draft, published Jan 31 2024

Supplemental