FEDERAL INFORMATION SECURITY MANAGEMENT ACT (FISMA)February 10, 2004 --
The Secretary of Commerce has approved FIPS Publication 199, Standards for Security Categorization of Federal Information and Information Systems. The FIPS Publication 199 addresses one of the requirements specified in the Federal Information Security Management Act (FISMA) of 2002 by providing security categorization standards for information and information systems. Security categorization standards provide a common framework and method for expressing security. They promote the effective management and oversight of information security programs, including the coordination of information security efforts throughout the civilian, national security, emergency preparedness, homeland security, and law enforcement communities. Such standards also enable consistent reporting to OMB and Congress on the adequacy and effectiveness of information security policies, procedures, and practices. A copy of the standard can be obtained at:
http://csrc.nist.gov/publications/fips/index.html#fips199