Driving secure software initiatives using FISMA: Issues and Opportunities

Robin Gandhi, Keesha Crosby, Harvey Siy, Sayonnha Mandal

Research output: Contribution to journalArticle

Abstract

Federal agencies install many security controls for Federal Information Security Management Act (FISMA) implementation. National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 revision 4 (rev4) standardizes these security and privacy controls. This article presents a study of NIST SP 800-53 security controls. The purpose is to classify the security controls from dimensions relevant to software security. This classification highlights issues and motivates opportunities to drive software security initiatives using FISMA.

Original languageEnglish (US)
Pages (from-to)37-41
Number of pages5
JournalCrossTalk
Volume29
Issue number1
StatePublished - Jan 1 2016

Fingerprint

Security of data

ASJC Scopus subject areas

  • Software
  • Human-Computer Interaction

Cite this

Gandhi, R., Crosby, K., Siy, H., & Mandal, S. (2016). Driving secure software initiatives using FISMA: Issues and Opportunities. CrossTalk, 29(1), 37-41.

Driving secure software initiatives using FISMA : Issues and Opportunities. / Gandhi, Robin; Crosby, Keesha; Siy, Harvey; Mandal, Sayonnha.

In: CrossTalk, Vol. 29, No. 1, 01.01.2016, p. 37-41.

Research output: Contribution to journalArticle

Gandhi, R, Crosby, K, Siy, H & Mandal, S 2016, 'Driving secure software initiatives using FISMA: Issues and Opportunities', CrossTalk, vol. 29, no. 1, pp. 37-41.
Gandhi, Robin ; Crosby, Keesha ; Siy, Harvey ; Mandal, Sayonnha. / Driving secure software initiatives using FISMA : Issues and Opportunities. In: CrossTalk. 2016 ; Vol. 29, No. 1. pp. 37-41.
@article{6b00a2a7c3d946da88a87e1ad0bb102d,
title = "Driving secure software initiatives using FISMA: Issues and Opportunities",
abstract = "Federal agencies install many security controls for Federal Information Security Management Act (FISMA) implementation. National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 revision 4 (rev4) standardizes these security and privacy controls. This article presents a study of NIST SP 800-53 security controls. The purpose is to classify the security controls from dimensions relevant to software security. This classification highlights issues and motivates opportunities to drive software security initiatives using FISMA.",
author = "Robin Gandhi and Keesha Crosby and Harvey Siy and Sayonnha Mandal",
year = "2016",
month = "1",
day = "1",
language = "English (US)",
volume = "29",
pages = "37--41",
journal = "CrossTalk",
issn = "2160-1577",
publisher = "Software Technology Support Center",
number = "1",

}

TY - JOUR

T1 - Driving secure software initiatives using FISMA

T2 - Issues and Opportunities

AU - Gandhi, Robin

AU - Crosby, Keesha

AU - Siy, Harvey

AU - Mandal, Sayonnha

PY - 2016/1/1

Y1 - 2016/1/1

N2 - Federal agencies install many security controls for Federal Information Security Management Act (FISMA) implementation. National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 revision 4 (rev4) standardizes these security and privacy controls. This article presents a study of NIST SP 800-53 security controls. The purpose is to classify the security controls from dimensions relevant to software security. This classification highlights issues and motivates opportunities to drive software security initiatives using FISMA.

AB - Federal agencies install many security controls for Federal Information Security Management Act (FISMA) implementation. National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 revision 4 (rev4) standardizes these security and privacy controls. This article presents a study of NIST SP 800-53 security controls. The purpose is to classify the security controls from dimensions relevant to software security. This classification highlights issues and motivates opportunities to drive software security initiatives using FISMA.

UR - http://www.scopus.com/inward/record.url?scp=84959862871&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84959862871&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:84959862871

VL - 29

SP - 37

EP - 41

JO - CrossTalk

JF - CrossTalk

SN - 2160-1577

IS - 1

ER -