본문 바로가기

Work Log/As Cybersecurity Consultant

NIST 8 System Security Principles


1. Computer Security Supports the Mission of the Organization


2. Computer Security is an Integral Element of Sound Management


3. Computer Security Should Be Cost-Effective


4. Systems Owners Have Security Responsibilities Outside Their Own Organizations


5. Computer Security Responsibilities and Accountability Should Be Made Explicit


6. Computer Security Requires a Comprehensive and Integrated Approach


7. Computer Security Should Be Periodically Reassessed


8. Computer Security is Constrained by Societal Factors