درباره ما
IEEE Guide for Categorizing Security Needs for Protection-, Automation-, and Control-Related Data Files
IEEE Std C37.249-2024
Year: 2025
IEEE - The Institute of Electrical and Electronics Engineers, Inc.
Abstract: Security categorization is the first step in a security risk management framework because of its impact on all other steps, from the selection of security controls to apply based on the assessment to the level of effort required to assess the effectiveness of the security controls put in place. Information (data) at rest and information systems are covered by security categorization. The approach used in this guide applies only to data at rest. Types of information and information systems are considered by the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-60 Vol. 1, Rev. 1 [B16]. Security categories--based on the magnitude of harm expected to result from compromises rather than on the results of an assessment that includes an attempt to determine the probability of compromise--are established by Federal Information Processing Standards (FIPS) 199 [B1]. These standards are aligned by the approach in this guide.
Subject: IEEE C37.249
-
Statistics
IEEE Guide for Categorizing Security Needs for Protection-, Automation-, and Control-Related Data Files
Show full item record
| contributor author | IEEE - The Institute of Electrical and Electronics Engineers, Inc. | |
| date accessioned | 2025-09-30T23:08:29Z | |
| date available | 2025-09-30T23:08:29Z | |
| date copyright | 20 May 2025 | |
| date issued | 2025 | |
| identifier other | 11007250.pdf | |
| identifier uri | https://yse.yabesh.ir/std/handle/yse/348586 | |
| description abstract | Security categorization is the first step in a security risk management framework because of its impact on all other steps, from the selection of security controls to apply based on the assessment to the level of effort required to assess the effectiveness of the security controls put in place. Information (data) at rest and information systems are covered by security categorization. The approach used in this guide applies only to data at rest. Types of information and information systems are considered by the National Institute of Standards and Technology (NIST) Special Publication (SP) 800-60 Vol. 1, Rev. 1 [B16]. Security categories--based on the magnitude of harm expected to result from compromises rather than on the results of an assessment that includes an attempt to determine the probability of compromise--are established by Federal Information Processing Standards (FIPS) 199 [B1]. These standards are aligned by the approach in this guide. | |
| language | English | |
| publisher | IEEE - The Institute of Electrical and Electronics Engineers, Inc. | |
| title | IEEE Guide for Categorizing Security Needs for Protection-, Automation-, and Control-Related Data Files | en |
| title | IEEE Std C37.249-2024 | num |
| type | standard | |
| page | 66 | |
| tree | IEEE - The Institute of Electrical and Electronics Engineers, Inc.:;2025 | |
| contenttype | fulltext | |
| subject keywords | IEEE C37.249 | |
| subject keywords | protection files | |
| subject keywords | data at rest | |
| subject keywords | automation files | |
| subject keywords | security categorization | |
| subject keywords | control files | |
| identifier DOI | 10.1109/IEEESTD.2025.11007250 |