Nov 7, 2023: NIST issues SP 800-53 Release 5.1.1 (patch release). A list of updates in Release 5.1.1 is available under Supplemental Material. For more information, including an overview of the changes refer to the SP 800-53 Release 5.1.1 FAQ.
SP 800-53 provides a catalog of controls for systems and organizations to manage cybersecurity and privacy risk. Only Chapter 3 of SP 800-53 is included in CPRT; the publication includes background and additional guidance.
No major change between 800-53 Rev 5.1.0 and 5.1.1, added '0' padding to control and control enhancement identifiers.
AC | ACCESS CONTROL | |
AT | AWARENESS AND TRAINING | |
AU | AUDIT AND ACCOUNTABILITY | |
CA | ASSESSMENT, AUTHORIZATION, AND MONITORING | |
CM | CONFIGURATION MANAGEMENT | |
CP | CONTINGENCY PLANNING | |
IA | IDENTIFICATION AND AUTHENTICATION | |
IR | INCIDENT RESPONSE | |
MA | MAINTENANCE | |
MP | MEDIA PROTECTION | |
PE | PHYSICAL AND ENVIRONMENTAL PROTECTION | |
PL | PLANNING | |
PM | PROGRAM MANAGEMENT | |
PS | PERSONNEL SECURITY | |
PT | PERSONALLY IDENTIFIABLE INFORMATION PROCESSING AND TRANSPARENCY | |
RA | RISK ASSESSMENT | |
SA | SYSTEM AND SERVICES ACQUISITION | |
SC | SYSTEM AND COMMUNICATIONS PROTECTION | |
SI | SYSTEM AND INFORMATION INTEGRITY | |
SR | SUPPLY CHAIN RISK MANAGEMENT |