Standards for Security Categorization of Federal Information and Information Systems
Citation: National Institute of Standards and Technology (2004) Standards for Security Categorization of Federal Information and Information Systems.
Internet Archive Scholar (search for fulltext): Standards for Security Categorization of Federal Information and Information Systems
Download: http://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.199.pdf
Tagged:
Summary
Describes categorization of information based on the severity (low, moderate, high; corresponding to limited, serious, and severe or catastrophic) of the impact of the loss of confidentiality, integrity, and availability of information on individuals and organizations.
Information systems are categorized based on the maximum of the impact of loss for any information processed by the system.
Theoretical and Practical Relevance
Known as NIST FIPS Publication 199.